| Age | Commit message (Collapse) | Author |
|---|
|
Parents do, because Roots will be uniquely named by reference to their
associated Parent. So move the handle back to Parent.
svn path=/branches/tk705/; revision=6370
|
|
svn path=/branches/tk705/; revision=6369
|
|
Parent model into base Turtle model and derived Parent model.
svn path=/branches/tk705/; revision=6367
|
|
Fixes #804.
svn path=/branches/tk705/; revision=6364
|
|
svn path=/branches/tk705/; revision=6296
|
|
using a single bulk IRDB query for all the child data that
UpdateChildrenTask needs is a better solution.
svn path=/branches/tk705/; revision=6295
|
|
svn path=/branches/tk705/; revision=6294
|
|
svn path=/branches/tk705/; revision=6293
|
|
svn path=/branches/tk705/; revision=6292
|
|
already been postponed at least once, we stay with the current task
rather than doing a forced round-robin. This may require further
tweaks, eg, to flush the publication queue at regular intervals even
if we're not postponing, but the intent is to allow tasks with complex
setup to run to completion while remaining responsive, to avoid
wasting all of our time on repeated setup overhead.
svn path=/branches/tk705/; revision=6291
|
|
svn path=/branches/tk705/; revision=6290
|
|
svn path=/branches/tk705/; revision=6289
|
|
svn path=/branches/tk705/; revision=6287
|
|
generate duplicate ROAs.
svn path=/branches/tk705/; revision=6283
|
|
svn path=/branches/tk705/; revision=6280
|
|
svn path=/branches/tk705/; revision=6276
|
|
svn path=/branches/tk705/; revision=6273
|
|
from having SIA extensions, unlike all other RPKI certificates which
are required to have them.
Start moving RPKI conformance checks which can be performed in Python
out of POW.c, tag a bunch more for consideration.
svn path=/branches/tk705/; revision=6204
|
|
svn path=/branches/tk705/; revision=6173
|
|
Regenerate EE certificates along with everything else when activating
a new CADetail (ie, when rolling a CA key).
svn path=/branches/tk705/; revision=6172
|
|
hacks: in practice, we always bypassed it (except when we forgot...).
Make sure we revoke and withdraw the old certs and objects for ROAs
and Ghostbusters rather than the new ones during forced reissue.
svn path=/branches/tk705/; revision=6171
|
|
.publish_world_now() to something a little less whacky. Consolidate
fix for singleton URIs in SIA fields.
svn path=/branches/tk705/; revision=6170
|
|
svn path=/branches/tk705/; revision=6168
|
|
svn path=/branches/tk705/; revision=6166
|
|
rpkid_task code. Combine and simplify CRL and manifest generation.
svn path=/branches/tk705/; revision=6164
|
|
understands Django's exotic metaclasses, which in turn allows us to
re-enable a number of pylint checks we had disabled. While we were at
this, stripped out a bunch of old pylint pragmas, then added back the
subset that were really needed. As usual with pylint, this turned up
a few real bugs along with an awful lot of noise.
svn path=/branches/tk705/; revision=6162
|
|
sequence trace code to rpki.rpkidb.models to assist in simplifying
some of the gratuitously complicated method call chains. Various
trivial PyLint cleanups.
svn path=/branches/tk705/; revision=6161
|
|
or commenting conventions should be shot. If it so happens that it is
inconvenient to shoot him, then he is to be politely requested to recode
his program in adherence to the above standard."
-- Michael Spier, Digital Equipment Corporation
svn path=/branches/tk705/; revision=6152
|
|
operations, so simplify code and schema by removing gratuitous
transformations to and from binary format.
svn path=/branches/tk705/; revision=6150
|
|
UTF-8 whining on what are supposed to be binary fields that's probably
the result of a MySQL upgrade, and CMS Replay exceptions due to the
pseudo-random order in which HTTP client connections run in Tornado.
The UTF-8 mess is probably a good reason to change over to Django's
native binary field type, which we were going to want to do anyway.
The CMS Replay problem is not Tornado's fault: we probably would have
seen it in the old code were it not for an accidental side effect of a
long-since-abandoned attempt to use persistent HTTP connections. The
fix is probably to serialize requests to a particular host using use a
tornaodo.queue.Queue() object, or something like that.
svn path=/branches/tk705/; revision=6143
|
|
were ordinary functions. May want some kind of naming scheme or other
convention to make it easier to avoid this sort of thing.
svn path=/branches/tk705/; revision=6142
|
|
quite working perfectly yet (cron is a bit wonky) but manages to
produce an initial set of ROAs without thowing any exceptions, and
code is already much cleaner than the old callback-based horror.
svn path=/branches/tk705/; revision=6139
|
|
bad choice for something implemented in Python, holdover from an older
specification, but Django ORM's troubles with "self" as a keyword
argument were the last straw. Enough already. Backwards
compatability should be a straightforward data migration.
svn path=/branches/tk705/; revision=6134
|
|
Django ORM. Duct tape and bailing wire everywhere, much clean-up left
to do, but basic "make yamltest" suite runs. Much of the clean-up
isn't worth doing until after revamping the I/O system, as it'll all
change again at that point anyway.
svn path=/branches/tk705/; revision=6127
|
|
svn path=/branches/tk705/; revision=6122
|
|
and didn't notice.
svn path=/branches/tk705/; revision=6097
|
|
svn path=/branches/tk705/; revision=5981
|
|
svn path=/branches/tk705/; revision=5970
|
|
svn path=/branches/tk705/; revision=5922
|
|
svn path=/trunk/; revision=5921
|
|
svn path=/branches/tk705/; revision=5888
|
|
svn path=/branches/tk705/; revision=5881
|
|
svn path=/trunk/; revision=5845
|
|
subclass the stock one. Replace all uses of rpki.log.traceback() with
logging package .exception() calls. Use LoggingAdapter for all the
whacky per-stream logging code in rpki.http. Fix default logging
priority for non-daemon programs like rpkic.
svn path=/trunk/; revision=5843
|
|
svn path=/trunk/; revision=5838
|
|
svn path=/trunk/; revision=5837
|
|
svn path=/branches/tk685/; revision=5757
|
