aboutsummaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2014-03-16Try getting version number right in setup.py.Rob Austein
svn path=/trunk/; revision=5702
2014-03-10Remove delegated resources from the labuser* accounts when resetting the ↵Michael Elkins
demo. see #544 svn path=/trunk/; revision=5701
2014-03-10Rollback deletion of cached resource certs when there is an error ↵Michael Elkins
communicating with rpkid. see #681 svn path=/trunk/; revision=5700
2014-03-06Package name for mod-wsgi changed in November, we didn't notice. Oops.Rob Austein
svn path=/trunk/; revision=5699
2014-03-06Clang found a few issues.Rob Austein
svn path=/trunk/; revision=5698
2014-03-06Tweak argparse.Rob Austein
svn path=/trunk/; revision=5697
2014-03-06One more argparse conversion; add --allow-dirty option to avoid havingRob Austein
to edit this script every time we need to debug the build process. svn path=/trunk/; revision=5696
2014-03-04rpki-ca should depend on rpki-rp. This probably breaksRob Austein
rpki-portupgrade, but it was kind of broken anyway for reasons beyond our control. svn path=/trunk/; revision=5695
2014-02-27Pull from trunk.Rob Austein
svn path=/branches/tk671/; revision=5694
2014-02-27Both manifest serial numbers and ROA autonomous system numbers can beRob Austein
longer than 31 bits, so we have to use OpenSSL's bignum routines to print them properly. Closes #683. svn path=/trunk/; revision=5693
2014-02-27Log ee_cert objects properly.Rob Austein
svn path=/branches/tk671/; revision=5692
2014-02-27Pull from trunk.Rob Austein
svn path=/branches/tk671/; revision=5691
2014-02-27Fix usage message.Rob Austein
svn path=/trunk/; revision=5690
2014-02-27More router certificate checks.Rob Austein
svn path=/trunk/; revision=5689
2014-02-26Pull from trunk.Rob Austein
svn path=/branches/tk671/; revision=5688
2014-02-26Add EKU checks for BGPSEC router certificates, now that we have aRob Austein
value for id-kp-bgpsec-router. svn path=/trunk/; revision=5687
2014-02-26Sort OIDs into numerical order.Rob Austein
svn path=/branches/tk671/; revision=5686
2014-02-26id-kp-bgpsec-router assigned by the OID Czar.Rob Austein
svn path=/branches/tk671/; revision=5685
2014-02-25regenRob Austein
svn path=/branches/tk671/; revision=5684
2014-02-25Router certificates working again after changes to get subject name out of ↵Rob Austein
the PKCS !#10. svn path=/branches/tk671/; revision=5683
2014-02-25Something broke MySQLdb on my laptop during a recent upgrade, and IRob Austein
have better things to do than shaving that particular yak today. So I'm committing untested changes (to a development branch that nobody but me is using) so I can test them on a working development platform. svn path=/branches/tk671/; revision=5682
2014-02-21Add EKU when generating router certificates.Rob Austein
svn path=/branches/tk671/; revision=5681
2014-02-21Add router certificate support to yamltest, rpkic, etc.Rob Austein
svn path=/branches/tk671/; revision=5680
2014-02-20Whack RSA-specific code to a more general API using PrivateKey andRob Austein
PublicKey classes, with RSA and ECDSA as subclasses extending PrivateKey. Revised API not necessarily in final form yet, but good enough for smoketest to generate ECDSA keys for testing router certs. svn path=/branches/tk671/; revision=5679
2014-02-20All this router certificate stuff requires enough SQL changes thatRob Austein
we're going to need a fancy upgrade script when we merge this to trunk no matter what else we do, so might as well flip the default on the long-awaited `merge_publication_directories` in the router certificate development branch and handle the upgrade actions for that along with everything else when we finally merge back to trunk. See #479. svn path=/branches/tk671/; revision=5678
2014-02-20Missed case where we have to reissue EE certificate because we justRob Austein
deprecated the issuing ca_detail. svn path=/branches/tk671/; revision=5677
2014-02-20Clean up ee_cert_obj class.Rob Austein
svn path=/branches/tk671/; revision=5676
2014-02-20Pull from trunk.Rob Austein
svn path=/branches/tk671/; revision=5675
2014-02-20Add --output option.Rob Austein
svn path=/trunk/; revision=5674
2014-02-20Checkpoint. Now generating something that looks a bit like a routerRob Austein
cert, but not right yet: RSA where should be ECDSA, EKU missing, and EE certificate class's .reissue() method isn't working properly yet. svn path=/branches/tk671/; revision=5673
2014-02-20Remove dead code (old .is_leaf property, not used for years now).Rob Austein
svn path=/branches/tk671/; revision=5672
2014-02-20Reformat some bits that were so bad I couldn't read them.Rob Austein
svn path=/branches/tk671/; revision=5671
2014-02-19Add router_cert specification to a test configuration.Rob Austein
Take advantage of YAML's automatic line folding to make the embedded shell code in some test configurations a bit more readable. svn path=/branches/tk671/; revision=5670
2014-02-19Start adding router certificates to test harness.Rob Austein
svn path=/branches/tk671/; revision=5669
2014-02-19Add ee_cert_obj and its maintenance task to rpkid. Not tested yet.Rob Austein
svn path=/branches/tk671/; revision=5668
2014-02-18Add support for setting serialNumber attribute in certificate names,Rob Austein
since the current router certificate specification uses it. svn path=/branches/tk671/; revision=5667
2014-02-15Clean up task queue initialization.Rob Austein
svn path=/branches/tk671/; revision=5666
2014-02-15Rework add_router_certificate_request to parse the XML format.Rob Austein
svn path=/branches/tk671/; revision=5665
2014-02-15RegenRob Austein
svn path=/branches/tk671/; revision=5664
2014-02-14Fix XML encoding/decoding of <list_ee_certificate_requests_elt/> elements.Rob Austein
svn path=/branches/tk671/; revision=5663
2014-02-13Better way to handle _object_exception_helper() failures.Rob Austein
svn path=/branches/tk671/; revision=5662
2014-02-13Failure of one of the _extension_helper() functions isn't really anRob Austein
assertion failure, it's bad input data. OK, it's bad input data that we should never see and would indicate an OpenSSL bug, but still. svn path=/branches/tk671/; revision=5661
2014-02-01Oops, smoketest.py depends on the DROP TABLE IF EXISTS statements in rpkid.sql.Rob Austein
svn path=/branches/tk671/; revision=5660
2014-02-01Checkpoint: Add ee_cert table to rpkid.sql. Corresponding PythonRob Austein
class not written yet. svn path=/branches/tk671/; revision=5659
2014-01-31RegenRob Austein
svn path=/branches/tk671/; revision=5658
2014-01-31Checkpoint. Untested implementation of left-rightRob Austein
<list_ee_certificate_requests/> PDU. svn path=/branches/tk671/; revision=5657
2014-01-30RegenRob Austein
svn path=/branches/tk671/; revision=5656
2014-01-30First cut at RelaxNG schema for router certificate request interchange.Rob Austein
svn path=/branches/tk671/; revision=5655
2014-01-29First cut of zookeeper methods to add router certs and other EE certs.Rob Austein
Likely needs further refactoring before really usable by GUI or CLI. svn path=/branches/tk671/; revision=5654
2014-01-29Rework PKCS #10 sanity checking code.Rob Austein
svn path=/branches/tk671/; revision=5653
generated by cgit v1.2.3 (git 2.25.1) at 2025-05-12 02:33:30 +0000