sra/rpki.net - Dragon Research Labs RPKI Toolkit

Age	Commit message (Collapse)	Author
2010-10-07	Merge rpkid.without_tls/ branch to rpkid/ trunk.	Rob Austein
	svn path=/rpkid/Makefile; revision=3465
2010-09-10	Refactor .wrap()/.unwrap() code prior to adding CMS timestamp checks.	Rob Austein
	svn path=/rpkid/irdbd.py; revision=3445
2010-09-09	Downgrade syslog priority of a few messages	Rob Austein
	svn path=/rpkid/rpki/https.py; revision=3444
2010-08-30	Another dropped exception event, sigh.	Rob Austein
	svn path=/rpkid/rpki/https.py; revision=3432
2010-07-14	Use setsockopt() to force normal (ie, BSD-like) IPv6 socket behavior	Rob Austein
	even on Linux. svn path=/rpkid/rpki/https.py; revision=3400
2010-07-14	Fix several Linux-related problems found during last workshop:	Rob Austein
	1) rpki.https.http_listener() didn't handle .bind() failure properly, which left asyncore in a weird state. 2) On Linux, sockaddr.getaddr() can return duplicate records. This is insane, but the maintainers appear to consider this a feature, so we have to suppress it. 3) Linux's support for IPv4 mapped addresses in IPv6 is so whacked that it's impossible to tell whether a socket.bind() failure is real or an artifact of Linux's whacked API without checking the value of a magic sysctl. This is just too much fun for words, so IPv6 listeners are now disabled by default on Linux; feel free to turn them on yourself, but don't blame me if they bite you. svn path=/rpkid/rpki/https.py; revision=3399
2010-06-10	SSLUnexpectedEOF needs to be a special case for .tls_accept(), to avoid	Rob Austein
	leaving chicken entrails all over the log on every nagios/sysmond probe. svn path=/rpkid/rpki/https.py; revision=3282
2010-06-10	Partial cleanup of exception and timeout handling.	Rob Austein
	svn path=/rpkid/rpki/exceptions.py; revision=3281
2010-06-09	More IPv6 server fun.	Rob Austein
	svn path=/rpkid/rpki/https.py; revision=3278
2010-06-09	Grr, socket.bind() fails for IPv6, dunno why. Disable IPv6 again.	Rob Austein
	svn path=/rpkid/rpki/https.py; revision=3277
2010-06-05	Don't import rpki.adns unless we're using it	Rob Austein
	svn path=/rpkid/rpki/https.py; revision=3274
2010-06-05	Preliminary asynchronous DNS and IPv6 support for rpkid et al.	Rob Austein
	Asynchronous DNS disabled by default for now, pending further testing ("localhost" is not a DNS lookup, so usual regression tests don't tell us anything useful here). IPv6 servers are enabled by default; for now, IPv6 clients are disabled by default. svn path=/rpkid/rpki/adns.py; revision=3273
2010-06-05	Add rpki.adns.getaddrinfo()	Rob Austein
	svn path=/rpkid/rpki/adns.py; revision=3272
2010-06-04	Preliminary support for asynchronous DNS.	Rob Austein
	svn path=/rpkid/rpki/https.py; revision=3270
2010-05-24	Bugfix from Gary Kennedy: handle HTTPS close event properly if it	Rob Austein
	arrives while client thinks it's still reading the response. svn path=/rpkid/rpki/https.py; revision=3260
2010-04-12	Lint	Rob Austein
	svn path=/myrpki/myrpki.py; revision=3191
2010-03-23	Try for slightly less insane handling of cert errors during TLS accept.	Rob Austein
	svn path=/rpkid/rpki/https.py; revision=3131
2010-03-17	Log host and port on connection failures, even if it's in an ugly	Rob Austein
	format. svn path=/rpkid/rpki/https.py; revision=3120
2010-03-17	Don't ask XML layer for verbose mode when we don't need it.	Rob Austein
	svn path=/rpkid/rpki/https.py; revision=3117
2010-03-16	Update copyright notices	Rob Austein
	svn path=/rpkid/irbe_cli.py; revision=3107
2010-03-16	IPv6 support, mostly.	Rob Austein
	svn path=/rpkid/rpki/https.py; revision=3101
2010-03-16	We weren't honoring the host parameter to rpki.https.server(). Apparently ↵	Rob Austein
	nobody cares. svn path=/rpkid/rpki/https.py; revision=3100
2010-02-25	Refactor "caller" class(es) and move into library.	Rob Austein
	svn path=/myrpki.rototill/myirbe.py; revision=3007
2010-01-24	Get rid of spurious connection timeout messages (helps to cancel the	Rob Austein
	timer when closing the connection, doh). svn path=/rpkid/rpki/https.py; revision=2972
2010-01-24	Logging	Rob Austein
	svn path=/rpkid/rpki/https.py; revision=2971
2010-01-24	Tweak twisty maze of connection shutdown code to adhere more closely	Rob Austein
	to underlying asynchat event sequence. I think that violating the underlying event model is why we were leaking file descriptors ("closed" connections that were not in fact being closed), overnight test seems to bear this out. svn path=/rpkid/rpki/https.py; revision=2970
2010-01-20	Clean up handling of incompletely initialized connections.	Rob Austein
	svn path=/rpkid/rpki/https.py; revision=2957
2009-12-22	Handle exception that was causing unintended exit from event_loop(),	Rob Austein
	add safety net to keep servers from crashing if something like this happens again. svn path=/rpkid/rpki/async.py; revision=2902
2009-12-22	Turn off persistant connections, premature optimization of something	Rob Austein
	that's too complex already. svn path=/rpkid/rpki/https.py; revision=2899
2009-12-21	Log connection data on (some) exceptions.	Rob Austein
	svn path=/rpkid/rpki/https.py; revision=2898
2009-12-21	Handle SSLUnexpectedEOFError in .tls_accept() so that sysmond probes won't ↵	Rob Austein
	backtrace. svn path=/rpkid/rpki/https.py; revision=2897
2009-12-21	Seriously outdated header comment.	Rob Austein
	svn path=/rpkid/rpki/https.py; revision=2896
2009-12-02	Implement deferred action queue separate from timers.	Rob Austein
	svn path=/rpkid/rpki/async.py; revision=2888
2009-12-01	Clean up timer debugging code. Clear pointers in a few places that	Rob Austein
	appear to have been causing circular references. svn path=/rpkid/rpki/async.py; revision=2887
2009-09-14	Rework call_pubd() error handling	Rob Austein
	svn path=/rpkid/rpki/https.py; revision=2751
2009-09-11	Cleanup	Rob Austein
	svn path=/rpkid/rpki/async.py; revision=2748
2009-09-04	Cleanup	Rob Austein
	svn path=/myrpki/schema.py; revision=2734
2009-09-04	Clean up some whacked exception handling.	Rob Austein
	svn path=/rpkid/rpki/exceptions.py; revision=2732
2009-08-28	myirbe now supports running rpkid without pubd.	Rob Austein
	svn path=/myrpki/myrpki.conf; revision=2715
2009-08-28	Clean up old "stable" branch that is now badly out of date	Rob Austein
	svn path=/rpkid.stable; revision=2714
2009-08-24	Update stale comment	Rob Austein
	svn path=/rpkid/rpki/https.py; revision=2706
2009-08-24	Separate HTTP protocol debug logging from TLS certificate debug	Rob Austein
	logging, and turn them both off until the next time we need them. svn path=/rpkid/rpki/https.py; revision=2705
2009-08-02	Our first Python 2.6 compatability bug.	Rob Austein
	svn path=/rpkid/rpki/https.py; revision=2684
2009-07-31	Several little portability fixes	Rob Austein
	svn path=/rpkid/rpki/https.py; revision=2683
2009-07-29	Massively increase https timeout interval. Enable slow-and-safe	Rob Austein
	version of async iteration, can look at using fast-and-risky version later on a case-by-case basis if needed. svn path=/rpkid/rpki/async.py; revision=2682
2009-07-18	Fix race condition in TLS connect phase of HTTPS client state machine.	Rob Austein
	svn path=/rpkid/rpki/https.py; revision=2644
2009-07-18	Document a bunch of assertions. Fiddle with HTTPS timeouts.	Rob Austein
	svn path=/rpkid/rpki/async.py; revision=2643
2009-07-18	Debug	Rob Austein
	svn path=/rpkid/rpki/https.py; revision=2639
2009-07-17	Include more details in assertion	Rob Austein
	svn path=/rpkid/rpki/https.py; revision=2636
2009-07-17	Cleanup	Rob Austein
	svn path=/rpkid/rpki/https.py; revision=2630