| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2013-11-22 | Conformance: Make sure CMS contains exactly one certificate and that | Rob Austein | |
| it matches the certificate specified by the SignerInfo. svn path=/trunk/; revision=5600 | |||
| 2013-11-22 | Check certificate policy for qualifiers: allow id-qt-cps with a | Rob Austein | |
| warning, since there's a WG draft about that, reject anything else. Fixes #640. svn path=/trunk/; revision=5599 | |||
| 2013-11-22 | Add NIDs for OIDs OpenSSL doesn't know about, convert all use of | Rob Austein | |
| literal OIDs in rcynic to use the NID API. We could probably do something a bit prettier with a .h file built by a script, but this addresses the basic problem. Closes #263. svn path=/trunk/; revision=5598 | |||
| 2013-11-22 | Automatic pull of documentation from Wiki. | RPKI Documentation Robot | |
| svn path=/trunk/; revision=5597 | |||
| 2013-11-21 | Automatic pull of documentation from Wiki. | RPKI Documentation Robot | |
| svn path=/trunk/; revision=5596 | |||
| 2013-11-21 | Archive the main control scripts for our old cron-driven testbed with | Rob Austein | |
| its pseudo-IANA and pseudo-RIR databases. Closes #34. svn path=/trunk/; revision=5595 | |||
| 2013-11-21 | Automatic pull of documentation from Wiki. | RPKI Documentation Robot | |
| svn path=/trunk/; revision=5594 | |||
| 2013-11-21 | New -c option in print_roa and print_rpki_manifest triggered latent | Rob Austein | |
| bug in BIO cleanup. svn path=/trunk/; revision=5593 | |||
| 2013-11-21 | Typo | Rob Austein | |
| svn path=/trunk/; revision=5592 | |||
| 2013-11-20 | Automatic pull of documentation from Wiki. | RPKI Documentation Robot | |
| svn path=/trunk/; revision=5591 | |||
| 2013-11-20 | Add -c options to print_roa and print_rpki_manifest to dump the entire | Rob Austein | |
| CMS blob in (hideously ugly) text format. See #655. svn path=/trunk/; revision=5590 | |||
| 2013-11-08 | Exit with comprehensible error code if we couldn't parse anything from | Rob Austein | |
| RIB dump. See #653. svn path=/trunk/; revision=5589 | |||
| 2013-11-07 | More precise checking of attributes in CMS SignerInfos. Fixes #644. | Rob Austein | |
| svn path=/trunk/; revision=5588 | |||
| 2013-11-07 | Check manifest validity dates against its EE certificate. Fixes #651. | Rob Austein | |
| svn path=/trunk/; revision=5587 | |||
| 2013-11-07 | Don't allow EKU in signed objects. Fixes #645. | Rob Austein | |
| svn path=/trunk/; revision=5586 | |||
| 2013-11-07 | JPNIC is now under APNIC testbed, so remove old jpnic.tal. | Rob Austein | |
| svn path=/trunk/; revision=5585 | |||
| 2013-11-06 | Check ROA max prefix length against prefix length. Fixes #648. | Rob Austein | |
| svn path=/trunk/; revision=5584 | |||
| 2013-11-06 | Check certificates for non-null SAFI. While we're at it, check for | Rob Austein | |
| unknown AFI in case that somehow slips past OpenSSL. Fixes #641. svn path=/trunk/; revision=5583 | |||
| 2013-11-06 | Check for manifestNumber too big. Fixes #652. | Rob Austein | |
| svn path=/trunk/; revision=5582 | |||
| 2013-11-06 | Check for certificate serial number too big. Fixes #642. | Rob Austein | |
| svn path=/trunk/; revision=5581 | |||
| 2013-11-06 | RFC 5280 restriction to 20 octets is 20 octets in two's complement, so | Rob Austein | |
| max value has to allow for sign bit. See #642. svn path=/trunk/; revision=5580 | |||
| 2013-11-01 | Another test case. | Rob Austein | |
| svn path=/trunk/; revision=5578 | |||
| 2013-11-01 | Allow iteration over all the resource_ranges in a resource_bag. | Rob Austein | |
| svn path=/trunk/; revision=5577 | |||
| 2013-10-31 | Checkpoint. | Rob Austein | |
| svn path=/trunk/; revision=5576 | |||
| 2013-10-31 | Checkpoint | Rob Austein | |
| svn path=/trunk/; revision=5575 | |||
| 2013-10-31 | Checkpoint. | Rob Austein | |
| svn path=/trunk/; revision=5574 | |||
| 2013-10-29 | Checkpoint. | Rob Austein | |
| svn path=/trunk/; revision=5573 | |||
| 2013-10-29 | Checkpoint. | Rob Austein | |
| svn path=/trunk/; revision=5572 | |||
| 2013-10-28 | Checkpoint. | Rob Austein | |
| svn path=/trunk/; revision=5571 | |||
| 2013-10-23 | Add rrdtool as build depend to make ./configure happy. | Rob Austein | |
| svn path=/trunk/; revision=5570 | |||
| 2013-10-22 | Checkpoint. | Rob Austein | |
| svn path=/trunk/; revision=5569 | |||
| 2013-10-22 | Checkpoint | Rob Austein | |
| svn path=/trunk/; revision=5568 | |||
| 2013-10-14 | Cosmetic change to force test of upgraded build system. | Rob Austein | |
| svn path=/trunk/; revision=5567 | |||
| 2013-10-12 | So it turns out that most DBapi Cursor implementations have been | Rob Austein | |
| extended to support the iterator protocol, and that most DBapi Connection implementations have been extended to support the context manager protocol. Who knew? svn path=/trunk/; revision=5566 | |||
| 2013-10-12 | Checkpoint | Rob Austein | |
| svn path=/trunk/; revision=5565 | |||
| 2013-10-11 | Checkpoint. | Rob Austein | |
| svn path=/trunk/; revision=5564 | |||
| 2013-10-11 | Checkpoint. | Rob Austein | |
| svn path=/trunk/; revision=5563 | |||
| 2013-10-10 | Automatic pull of documentation from Wiki. | RPKI Documentation Robot | |
| svn path=/trunk/; revision=5562 | |||
| 2013-10-09 | we must import rpki.gui.cacheview.models because it is illegal to try to ↵ | Michael Elkins | |
| import a package svn path=/trunk/; revision=5561 | |||
| 2013-10-09 | Automatic pull of documentation from Wiki. | RPKI Documentation Robot | |
| svn path=/trunk/; revision=5560 | |||
| 2013-10-09 | Fix inconsistent names for rpki-rtr's data directory. Fixes #635. | Rob Austein | |
| svn path=/trunk/; revision=5559 | |||
| 2013-10-09 | [5462] change to Auto_update error handling was incomplete. | Rob Austein | |
| Fixes #634. svn path=/trunk/; revision=5558 | |||
| 2013-10-09 | Automatic pull of documentation from Wiki. | RPKI Documentation Robot | |
| svn path=/trunk/; revision=5557 | |||
| 2013-10-08 | Checkpoint. | Rob Austein | |
| svn path=/trunk/; revision=5556 | |||
| 2013-10-08 | Add DH and DSA parameter generation, while I still remember all the | Rob Austein | |
| relevant details of the OpenSSL API. svn path=/trunk/; revision=5555 | |||
| 2013-10-08 | Preliminary support for ECDSA and EC key parameter generation. At the | Rob Austein | |
| moment, the only kind of parameters we know how to generate are for EC on the P-256 curve, but the key generation code should accept any parameters that the OpenSSL command line tool's genpkey command can generate (and is not limited to ECDSA -- DSA and DH should work, most likely ECDH as well). Adding capability of generating parameters for other well-known EC curves would just mean exposing additional NID values, so we could easily support any curve OpenSSL knows about. Adding parameter generation for DH etc would be maybe a dozen additional lines of C code per algorithm, as all of these use the same internal EVP_PKEY interface with minor variations. svn path=/trunk/; revision=5554 | |||
| 2013-10-08 | Switch RSA key generation to use a new .generateRSA() class method | Rob Austein | |
| rather than abusing the Asymmetric __init__() method, in preparation for adding support for other public key algorithms like ECDSA. svn path=/trunk/; revision=5553 | |||
| 2013-10-07 | Checkpoint | Rob Austein | |
| svn path=/trunk/; revision=5552 | |||
| 2013-10-07 | No longer need separate uri table. | Rob Austein | |
| svn path=/trunk/; revision=5551 | |||
| 2013-10-07 | Checkpoint | Rob Austein | |
| svn path=/trunk/; revision=5550 | |||
 |
index : sra/rpki.net | |
| Dragon Research Labs RPKI Toolkit | git user |
| aboutsummaryrefslogtreecommitdiff |