| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2011-09-21 | Still more #83: rework CRL digest check to allow local policy, add | Rob Austein | |
| check (warning only) of CRLDPs in other objects against manifest EE certificate CRLDP. svn path=/rcynic/README; revision=3995 | |||
| 2011-09-20 | Further #83: rework check_manifest() to compare manifest numbers, | Rob Austein | |
| postpone CRL digest check until we've picked the manifest. svn path=/rcynic/rcynic.c; revision=3993 | |||
| 2011-09-19 | Progress (not complete) on #83: check CRL numbers rather than just | Rob Austein | |
| blindly accepting current when both exist, further nit-picky checks (AKI, CRL extensions, CRL and certificate versions). svn path=/rcynic/rcynic.c; revision=3992 | |||
| 2011-09-16 | Rework CMS checking to use check_x509(). (#82) | Rob Austein | |
| Start cleaning up tangled mess of interlocked checks between CRL and manifests. (#83) svn path=/rcynic/README; revision=3991 | |||
| 2011-09-15 | Consolidate and rationalize validation status codes. (#81) | Rob Austein | |
| svn path=/rcynic/rcynic.c; revision=3988 | |||
| 2011-09-15 | Check TAL URI properly. (#80) | Rob Austein | |
| Clean up a bit of dead code. svn path=/rcynic/rcynic.c; revision=3987 | |||
| 2011-09-15 | Merge rcynic-ng/ back into rcynic/. Used svn merge --ignore-ancestry | Rob Austein | |
| to minimize problems for people mirroring the repository. svn path=/configure; revision=3985 | |||
| 2011-09-01 | Clean up old APNIC trust anchor, long since replaced by TAL. | Rob Austein | |
| svn path=/rcynic-ng/sample-trust-anchors/apnic.cer; revision=3965 | |||
| 2011-06-27 | Construct file:// URI to name local trust anchors | Rob Austein | |
| svn path=/rcynic-ng/rcynic.c; revision=3901 | |||
| 2011-06-17 | Log validation status of trust anchors too | Rob Austein | |
| svn path=/rcynic/rcynic.c; revision=3886 | |||
| 2011-06-12 | Preserve timestamps when copying files. | Rob Austein | |
| svn path=/rcynic-ng/rcynic.c; revision=3864 | |||
| 2011-06-07 | First kill() the subprocess, *then* wait for it to exit. Doh. | Rob Austein | |
| svn path=/rcynic/rcynic.c; revision=3855 | |||
| 2011-05-09 | First cut at scanning both manifest and directory. Disabled by | Rob Austein | |
| default, because not really right yet: doesn't pay close enough attention to manifest staleness, and doesn't handle directory with multiple manifests gracefully. svn path=/rcynic/rcynic.c; revision=3809 | |||
| 2011-05-07 | Clean up URI cache checks; fix bug introduced in previous edit | Rob Austein | |
| (walk_cert_1() call that should have been walk_cert_2()). svn path=/rcynic/rcynic.c; revision=3805 | |||
| 2011-05-07 | Tighten up various checks | Rob Austein | |
| svn path=/rcynic/rcynic.c; revision=3803 | |||
| 2011-05-06 | DESTDIR | Rob Austein | |
| svn path=/rcynic/installation-scripts/darwin/install.sh; revision=3802 | |||
| 2011-05-06 | DESTDIR | Rob Austein | |
| svn path=/pywrap/Makefile.in; revision=3801 | |||
| 2011-04-21 | doxygen -u | Rob Austein | |
| svn path=/rcynic/Doxyfile; revision=3782 | |||
| 2011-04-21 | Tweak Doxygen stuff | Rob Austein | |
| svn path=/rcynic/Makefile.in; revision=3780 | |||
| 2011-04-20 | Finish Makefile support for Doxygen. | Rob Austein | |
| svn path=/rcynic/Makefile.in; revision=3779 | |||
| 2011-04-20 | SEPARATE_MEMBER_PAGES is a big win for a large single-file program. | Rob Austein | |
| svn path=/rcynic/Doxyfile; revision=3778 | |||
| 2011-04-13 | Don't allow EKU extension in CA certs. | Rob Austein | |
| svn path=/rcynic/rcynic.c; revision=3771 | |||
| 2011-04-13 | First cut at restricting X.509v3 extensions to only those allowed by profile. | Rob Austein | |
| svn path=/rcynic/rcynic.c; revision=3770 | |||
| 2011-04-04 | fix rcynic linux installation script to work on x86_64 | Michael Elkins | |
| svn path=/rcynic/installation-scripts/linux/install.sh.in; revision=3759 | |||
| 2011-03-30 | Make make-tal.sh executable | Rob Austein | |
| svn path=/rcynic/make-tal.sh; revision=3750 | |||
| 2011-03-22 | Blank line for better readability | Rob Austein | |
| svn path=/rcynic/make-tal.sh; revision=3735 | |||
| 2011-03-22 | First cut at Ghostbuster record support. Doesn't (yet?) check | Rob Austein | |
| anything about the VCard itself. CMS checking code could stand refactoring if I can figure out a sane way to do it while still postponing expensive signature checks until after the cheaper checks. svn path=/rcynic/Makefile.in; revision=3734 | |||
| 2011-03-17 | Updated BBN testbed TAL per request from Andrew Chi | Rob Austein | |
| svn path=/rcynic/sample-trust-anchors/bbn-testbed.tal; revision=3724 | |||
| 2011-02-18 | APNIC accidently whacked their testbed RPKI TA, so update TAL | Rob Austein | |
| svn path=/rcynic/sample-trust-anchors/testbed-apnicrpki.tal; revision=3683 | |||
| 2011-02-12 | running rsync in a chroot under CentOS 5.x requires libresolv.so.2 | Michael Elkins | |
| svn path=/rcynic/installation-scripts/linux/install.sh.in; revision=3676 | |||
| 2011-02-12 | quick fix to use -n argument to useradd when executed on CentOS | Michael Elkins | |
| svn path=/rcynic/installation-scripts/linux/install.sh.in; revision=3675 | |||
| 2011-01-28 | Whack this into working on Ubuntu 10.04 | Rob Austein | |
| svn path=/configure; revision=3672 | |||
| 2011-01-28 | Autoconf installation script for rcynic on Linux, because at least one | Rob Austein | |
| required program (awk) lives in different places in different distros. rcynic installation parameters probably ought to be configurable via autoconf too, but don't worry about that for now. svn path=/configure; revision=3671 | |||
| 2011-01-26 | s/wheel/root/g | Rob Austein | |
| svn path=/rcynic/installation-scripts/linux/install.sh; revision=3668 | |||
| 2011-01-26 | Twisty maze of shell scripts | Rob Austein | |
| svn path=/rcynic/Makefile.in; revision=3667 | |||
| 2011-01-26 | Update distclean | Rob Austein | |
| svn path=/rcynic/Makefile.in; revision=3666 | |||
| 2011-01-26 | Jailed rcynic installation working (I think) on Fedora. Remains to be | Rob Austein | |
| seen whether it works on any other Linux distro. What a mess. svn path=/configure; revision=3665 | |||
| 2011-01-25 | Feh, need to hard-link /var/run/mDNSResponder into jail | Rob Austein | |
| svn path=/rcynic/installation-scripts/darwin/RCynic/RCynic; revision=3664 | |||
| 2011-01-25 | Minimally-tested rcynic installation for Mac OS X | Rob Austein | |
| svn path=/rcynic/Makefile.in; revision=3660 | |||
| 2011-01-24 | Unfinished hacks to get rcynic jail installation working on Linux and Darwin | Rob Austein | |
| svn path=/configure; revision=3648 | |||
| 2011-01-21 | Add deinstall/uninstall targets, even when they're no-ops. | Rob Austein | |
| svn path=/Makefile.in; revision=3628 | |||
| 2011-01-21 | APNIC updated their TAL | Rob Austein | |
| svn path=/rcynic/sample-trust-anchors/apnic.tal; revision=3623 | |||
| 2011-01-09 | Rework POW build so that we can use static libraries again. | Rob Austein | |
| svn path=/configure; revision=3602 | |||
| 2011-01-08 | Generate TAL for APNIC, based on existing RTA | Rob Austein | |
| svn path=/rcynic/sample-trust-anchors/apnic.tal; revision=3601 | |||
| 2011-01-08 | Update comments | Rob Austein | |
| svn path=/rcynic/make-tal.sh; revision=3600 | |||
| 2011-01-08 | (Purported) TALs for AfriNIC and LACNIC | Rob Austein | |
| svn path=/rcynic/sample-trust-anchors/afrinic.tal; revision=3599 | |||
| 2011-01-01 | Add TAL example. | Rob Austein | |
| svn path=/rcynic/scripts/freebsd/rcynic.conf; revision=3597 | |||
| 2010-12-31 | distclean target | Rob Austein | |
| svn path=/Makefile.in; revision=3596 | |||
| 2010-12-31 | "Indirect Trust Anchor" -> "Trust Anchor Locator" | Rob Austein | |
| svn path=/rcynic/make-ita.sh; revision=3595 | |||
| 2010-12-31 | "Indirect Trust Anchor" -> "Trust Anchor Locator" | Rob Austein | |
| svn path=/rcynic/README; revision=3594 | |||
 |
index : sra/rpki.net | |
| Dragon Research Labs RPKI Toolkit | git user |
| aboutsummaryrefslogtreecommitdiff |