| Age | Commit message (Collapse) | Author |
|---|
|
svn path=/rcynic/rcynic.c; revision=4017
|
|
closes #93.
svn path=/rcynic/rcynic.c; revision=4013
|
|
svn path=/rcynic/rcynic.c; revision=4012
|
|
warn and allow. Digest mismatch is now a warning message only.
Missing object that's listed in manifest is now logged as a serious
problem. At the moment, we do this for missing objects in both
current and backup generations. I'm not sure that's right, might make
more sense to log this only for current generation, but let's try
running this way for a little while to see what patterns show up.
svn path=/rcynic/README; revision=4007
|
|
when logging stuff related to rsync subprocesses.
svn path=/rcynic/rcynic.c; revision=4004
|
|
This fixes #91.
svn path=/rcynic/rcynic.c; revision=4003
|
|
exited yet. Dunno why this happens, but it does. Apply upper bound
to how long rcynic goes to sleep for any one select(); pity kqueue()
isn't portable, that'd be a better solution. This closes #87.
svn path=/rcynic/rcynic.c; revision=4002
|
|
svn path=/rcynic/rcynic.c; revision=3999
|
|
know how to manage. Cache values we use on every call to check_x509()
in the walk_ctx_t. This closes #83.
svn path=/rcynic/rcynic.c; revision=3997
|
|
check (warning only) of CRLDPs in other objects against manifest EE
certificate CRLDP.
svn path=/rcynic/README; revision=3995
|
|
postpone CRL digest check until we've picked the manifest.
svn path=/rcynic/rcynic.c; revision=3993
|
|
blindly accepting current when both exist, further nit-picky checks
(AKI, CRL extensions, CRL and certificate versions).
svn path=/rcynic/rcynic.c; revision=3992
|
|
Start cleaning up tangled mess of interlocked checks between CRL and
manifests. (#83)
svn path=/rcynic/README; revision=3991
|
|
svn path=/rcynic/rcynic.c; revision=3988
|
|
Clean up a bit of dead code.
svn path=/rcynic/rcynic.c; revision=3987
|
|
to minimize problems for people mirroring the repository.
svn path=/configure; revision=3985
|
|
svn path=/rcynic-ng/rcynic.c; revision=3901
|
|
svn path=/rcynic/rcynic.c; revision=3886
|
|
svn path=/rcynic-ng/rcynic.c; revision=3864
|
|
svn path=/rcynic/rcynic.c; revision=3855
|
|
default, because not really right yet: doesn't pay close enough
attention to manifest staleness, and doesn't handle directory with
multiple manifests gracefully.
svn path=/rcynic/rcynic.c; revision=3809
|
|
(walk_cert_1() call that should have been walk_cert_2()).
svn path=/rcynic/rcynic.c; revision=3805
|
|
svn path=/rcynic/rcynic.c; revision=3803
|
|
svn path=/rcynic/rcynic.c; revision=3771
|
|
svn path=/rcynic/rcynic.c; revision=3770
|
|
anything about the VCard itself. CMS checking code could stand
refactoring if I can figure out a sane way to do it while still
postponing expensive signature checks until after the cheaper checks.
svn path=/rcynic/Makefile.in; revision=3734
|
|
svn path=/rcynic/README; revision=3594
|
|
private OpenSSL or system OpenSSL. Not (yet) hacked for POW and
pywrap, nor tested (yet) on any other platform.
Mechanism we're using to find our private OpenSSL directory now is
kind of icky, may need to switch to some kind of double indirection
scheme using AC_SUBST_FILE to hide the nasty bits.
svn path=/configure; revision=3580
|
|
svn path=/rcynic/rcynic.c; revision=3470
|
|
svn path=/rcynic/rcynic.c; revision=3422
|
|
doesn't matter unless one has an implausibly large number of trust
anchors, but let's keep things tidy.
svn path=/rcynic/rcynic.c; revision=3262
|
|
svn path=/rcynic/README; revision=3261
|
|
do a bit more color coding.
svn path=/rcynic/rcynic.c; revision=3238
|
|
svn path=/rcynic/rcynic.c; revision=3235
|
|
being stale.
svn path=/rcynic/rcynic.c; revision=3234
|
|
consistancy. All concious decisions to reject an object now say so
explictly. Well, that's the intent, anyway.
svn path=/rcynic/rcynic.c; revision=3233
|
|
svn path=/rcynic/rcynic.c; revision=3232
|
|
not a local config error, so attempt to keep going if this happens.
Not (yet) sure whether this should cause non-zero exit status. Need
to do something to highlight Very Bad Things, questions are whether
this is worse than other remote data errors and whether this is the
right way to highlight.
svn path=/rcynic/rcynic.c; revision=3142
|
|
bugfixes. While we're at this, switch to 1.0.0-stable snapshot
series, with goal of eventually converging on OpenSSL 1.0.0.
This included a few changes to track OpenSSL:
- The "STRING" type used in the OpenSSL stack macros became
"OPENSSL_STRING".
- OpenSSL has deprecated the MD2 digest algorithm, so POW code can't
refer to it unconditionally (perhaps I should remove support for it
from POW entirely, but for now I just honor the compile-time
conditional).
- OpenSSL's configuration script was whining that I should run "make
depend", so I do that now as part of the OpenSSL library build.
svn path=/openssl/Makefile; revision=2883
|
|
svn path=/rcynic/rcynic.c; revision=2552
|
|
svn path=/rcynic/rcynic.c; revision=2470
|
|
svn path=/rcynic/rcynic.c; revision=2458
|
|
svn path=/rcynic/rcynic.c; revision=2452
|
|
4.2 and later.
svn path=/rcynic/rcynic.c; revision=2357
|
|
svn path=/rcynic/Doxyfile; revision=2279
|
|
svn path=/rcynic/rcynic.c; revision=2035
|
|
svn path=/rcynic/rcynic.c; revision=2029
|
|
svn path=/rcynic/rcynic.c; revision=2028
|
|
svn path=/rcynic/rcynic.c; revision=2026
|
|
new type-safety features in the OpenSSL "stack" metatype.
svn path=/openssl/Makefile; revision=2012
|
