aboutsummaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2010-10-02Updates to work with ARIN's new bulk-WHOIS service.Rob Austein
ARIN now considers RPSL to be a legacy format, and the XSL that generates RPSL from their XML primary dump format doesn't normalize its output properly, so we get parse errors wherever somebody inserted, eg, newlines into contact phone numbers. For the moment, assume that we don't care about any line which fails to parse, which is a really bad assumption but suffices to get updates running again with the new input files. In the longer term, this script should be replaced by XSL that generates our CSV files directly from XML, bypassing RPSL entirely. svn path=/scripts/arin-to-csv.py; revision=3454
2010-10-01Pull update_bpki command from rpkid/ to rpkid.without_tls/.Rob Austein
svn path=/rpkid.without_tls/rpki/myrpki.py; revision=3453
2010-10-01update_bpki now takes arguments like configure_daemons, so it can doRob Austein
the whole job. svn path=/rpkid/rpki/myrpki.py; revision=3452
2010-10-01Debug update_bpkiRob Austein
svn path=/rpkid/rpki/myrpki.py; revision=3451
2010-10-01First cut at automatic BPKI regenerationRob Austein
svn path=/rpkid/rpki/myrpki.py; revision=3450
2010-09-16Preliminary version of rpkid et al with all the TLS code ripped out.Rob Austein
Not quite ready for cutover yet, may need some conversion tools and instructions, but checking this into a branch (well, sort of) so that others can look at the code changes involved, try it out themselves, etc. At some point this will merge back into rpkid/ directory and there will be only one, without TLS, but converting the testbed is going to require a flag day, so need to keep the TLS version around until then. svn path=/rpkid.without_tls; revision=3449
2010-09-15Convert interface between Python and OpenSSL to use GeneralizedTimeRob Austein
syntax for both GeneralizedTime and UTCTime: bad enough that the ASN.1 code has to know about Y2050 madness, there's no sane reason why application code should need to know. svn path=/pow/POW-0.7/POW.c; revision=3448
2010-09-15Make it easier to run yamltest with other configsRob Austein
svn path=/rpkid/tests/Makefile; revision=3447
2010-09-14Don't explode when cleaning up attributes that never existedRob Austein
svn path=/rpkid/rpki/rpki_engine.py; revision=3446
2010-09-10Refactor .wrap()/.unwrap() code prior to adding CMS timestamp checks.Rob Austein
svn path=/rpkid/irdbd.py; revision=3445
2010-09-09Downgrade syslog priority of a few messagesRob Austein
svn path=/rpkid/rpki/https.py; revision=3444
2010-09-08Clean up unnecessarily opaque test condition.Rob Austein
svn path=/rpkid/rpki/rpki_engine.py; revision=3443
2010-09-08Partial (incomplete, written in a hospital waiting room) BPKI revocationn ↵Rob Austein
support. svn path=/rpkid/rpki/myrpki.py; revision=3442
2010-09-07Print CMS signingTime.Rob Austein
svn path=/utils/print_manifest/print_manifest.c; revision=3441
2010-09-07Add support for extracting signingTime from CMS messages.Rob Austein
svn path=/pow/POW-0.7/POW.c; revision=3440
2010-09-03Add new "Auto_update" flavor of DER objects: this is like Auto_file,Rob Austein
but saves the filename from which it was loaded, and attempts to reload itself automatically if the file's st_mtime changes. svn path=/rpkid/irdbd.py; revision=3439
2010-09-03Restrict extra identity checks for trusted BPKI EE certificates toRob Austein
subject name and public key, so that things won't come to a grinding halt if BPKI certificates are updated while daemons are running. svn path=/rpkid/rpki/x509.py; revision=3438
2010-09-03We don't really need the *.cacert.cer files.Rob Austein
svn path=/rpkid/rpki/myrpki.py; revision=3437
2010-09-01Clean up old sample trust anchorsRob Austein
svn path=/rcynic/sample-trust-anchors/iana-zsz.cer; revision=3436
2010-08-31regenRob Austein
svn path=/rpkid/publication-schema.rng; revision=3435
2010-08-31Sadly, it turns out that CRLs really can grow large enough to hit theRob Austein
length limits previously set in this schema as a precaution. Remove length limit and cross fingers, at least for now. svn path=/rpkid/publication-schema.rnc; revision=3434
2010-08-30Use correct exception handler in call_pubd()Rob Austein
svn path=/rpkid/rpki/left_right.py; revision=3433
2010-08-30Another dropped exception event, sigh.Rob Austein
svn path=/rpkid/rpki/https.py; revision=3432
2010-08-29Break XML packet dumps into multiple lines when logging schemaRob Austein
validation errors. svn path=/rpkid/rpki/publication.py; revision=3431
2010-08-28Allow disabling summary, mostly for extracting presentation slidesRob Austein
svn path=/rcynic/rcynic.xsl; revision=3430
2010-08-28Add test for withdrawing ROARob Austein
svn path=/rpkid/tests/smoketest.3.yaml; revision=3429
2010-08-28Clean up publication_queue wrapper methodsRob Austein
svn path=/rpkid/rpki/rpki_engine.py; revision=3428
2010-08-28Suppress duplicate roa_requestsRob Austein
svn path=/rpkid/rpki/left_right.py; revision=3427
2010-08-24Roll APNIC sample TA per mail from RobLRob Austein
svn path=/rcynic/sample-trust-anchors/apnic.cer; revision=3426
2010-08-24Schema changes a while backRob Austein
svn path=/rpkid/doc/rpkid.dot; revision=3425
2010-08-23APNIC 30 RPKI slidesRob Austein
svn path=/presentations/070523.lacnic-pki.pdf; revision=3424
2010-08-13Error in assertion messageRob Austein
svn path=/rpkid/rpki/resource_set.py; revision=3423
2010-08-06More informative title for <hostname/> field.Rob Austein
svn path=/rcynic/rcynic.c; revision=3422
2010-08-03Conversion script for TLS removal flag dayRob Austein
svn path=/scripts/convert-https-to-http.py; revision=3421
2010-07-30Doc nitRob Austein
svn path=/rpkid/rpki/__doc__.py.in; revision=3420
2010-07-28Add ITA for RIPE's current RTA, per TimRob Austein
svn path=/rcynic/sample-trust-anchors/ripe.ita; revision=3419
2010-07-27strictly enforce non-overlapping resource ranges in AddressRange and Asn ↵Michael Elkins
object trees. add cert member to Roa class to hold a pointer to the resource cert from which all prefixes in the roa derive svn path=/portal-gui/rpkigui/myrpki/forms.py; revision=3418
2010-07-22Doh. Thanks, Michael.Rob Austein
svn path=/rpkid/tests/smoketest.py; revision=3417
2010-07-19fix bug where instance method was called on class objectMichael Elkins
svn path=/portal-gui/scripts/list_resources.py; revision=3416
2010-07-16improved support for viewing unallocated address ranges in the dashboard and ↵Michael Elkins
prefix views svn path=/portal-gui/Makefile.in; revision=3415
2010-07-16irdbd uses MySQLdb directly, so has to db.ping(reconnect) on its ownRob Austein
to keep SQL connection open. Feh. svn path=/rpkid/irdbd.py; revision=3414
2010-07-16Only regenerate manifest and CRL once for batch ROA updates.Rob Austein
svn path=/rpkid/rpki/left_right.py; revision=3413
2010-07-16Doh, .sql_mark_deleted() works better if it also marks record dirty.Rob Austein
svn path=/rpkid/rpki/sql.py; revision=3412
2010-07-16Duct tape and bailing wire fix for .update_roas(). This isn't rightRob Austein
yet, arguably the underlying design is wrong here, but at least in theory this code should now clean up after itself. svn path=/rpkid/rpki/left_right.py; revision=3411
2010-07-15CleanupRob Austein
svn path=/scripts/debug-roas.py; revision=3410
2010-07-15Display some of the DER fields tooRob Austein
svn path=/scripts/debug-roas.py; revision=3409
2010-07-15Test scriptRob Austein
svn path=/scripts/debug-roas.py; revision=3408
2010-07-15ParanoiaRob Austein
svn path=/rpkid/rpki/left_right.py; revision=3407
2010-07-15More ROA loggingRob Austein
svn path=/rpkid/rpki/left_right.py; revision=3406
2010-07-15Can't see any reason why roa.asn should ever be NULL either.Rob Austein
svn path=/rpkid/rpkid.sql; revision=3405
generated by cgit v1.2.3 (git 2.25.1) at 2025-05-28 15:00:57 +0000