aboutsummaryrefslogtreecommitdiff
path: root/rpkid/rpki/irdb/zookeeper.py
AgeCommit message (Collapse)Author
2014-04-05Source tree reorg, phase 1. Almost everything moved, no file contents changed.Rob Austein
svn path=/branches/tk685/; revision=5757
2014-04-05Add delete_certificate_request and show_certificate_requests to rpkic.Rob Austein
svn path=/branches/tk671/; revision=5751
2014-03-31Pull from trunk.Rob Austein
svn path=/branches/tk671/; revision=5722
2014-02-25Something broke MySQLdb on my laptop during a recent upgrade, and IRob Austein
have better things to do than shaving that particular yak today. So I'm committing untested changes (to a development branch that nobody but me is using) so I can test them on a working development platform. svn path=/branches/tk671/; revision=5682
2014-02-21Add router certificate support to yamltest, rpkic, etc.Rob Austein
svn path=/branches/tk671/; revision=5680
2014-02-15Rework add_router_certificate_request to parse the XML format.Rob Austein
svn path=/branches/tk671/; revision=5665
2014-01-29First cut of zookeeper methods to add router certs and other EE certs.Rob Austein
Likely needs further refactoring before really usable by GUI or CLI. svn path=/branches/tk671/; revision=5654
2014-01-29Rework PKCS #10 sanity checking code.Rob Austein
svn path=/branches/tk671/; revision=5653
2014-01-29Clean up OID database. Would have done this years ago, had IRob Austein
understood how the globals() function works. svn path=/branches/tk671/; revision=5652
2014-01-29CheckpointRob Austein
svn path=/branches/tk671/; revision=5651
2014-01-26Checkpoint.Rob Austein
svn path=/branches/tk671/; revision=5646
2014-01-09Update more copyrights, clean up module doc blocks.Rob Austein
svn path=/trunk/; revision=5624
2013-09-11Zookeeper.synchronize_bpki() was only synchronizing a subset of theRob Austein
BPKI material that Zookeeper.update_bpki() was updating. Fixes #611. svn path=/trunk/; revision=5492
2013-07-19Push updated BPKI CRL into pubd at the same time as we're pushingRob Austein
updated BSCs into rpkid. svn path=/trunk/; revision=5441
2013-06-18Synchronize BSCs after updating BPKI, closes #555.Rob Austein
Expanded calling sequence to Zookeeper.call_{pubd,rpkid}() methods to include sequences and generators, simplifying the calling code. svn path=/trunk/; revision=5412
2013-04-19Add option to allow setting initial resource validity when configuringRob Austein
child in rpkic, and teach yamltest to use it. svn path=/trunk/; revision=5301
2013-04-18Teach rpkic and yamltest about Ghostbusters records.Rob Austein
svn path=/trunk/; revision=5300
2013-04-16Restrict use of rpkid.self.regen_margin to certificate regeneration,Rob Austein
sharing a single regeneration interval value between certificates and CRLs just doesn't work, and we can infer the CRL regeneration interval from crl_interval. Change default value of regen_margin to something consistent with human-time-scale expectations and the GUI's impending expiration warning interval. See #347 and #512. svn path=/trunk/; revision=5297
2013-03-25Add create_identity and initialize_server_bpki, teach yamltest to useRob Austein
them, and teach Zookeeper.write_bpki_files() to tolerate being called with rootd enabled but not yet configured. See #466. svn path=/trunk/; revision=5211
2013-03-25Start splitting BPKI initialization into separate ServerCA andRob Austein
ResourceHolderCA chunks, so that we can call the former during package installation while leaving the latter for the operator. Not complete yet because I haven't yet sorted out what to do with rootd. See #466. svn path=/trunk/; revision=5206
2013-03-24First pass at cleaning up exception handling in rpkic and zookeeper.Rob Austein
See #485. svn path=/trunk/; revision=5205
2013-03-22Rewrite configure_publication_client() to avoid dependency onRob Austein
self.handle. Closes #468. svn path=/trunk/; revision=5197
2013-03-05Skip synchronization for parents with no repository set. Fixes #438.Rob Austein
svn path=/trunk/; revision=5107
2012-10-18pylintRob Austein
svn path=/branches/tk274/; revision=4786
2012-08-24TypoRob Austein
svn path=/branches/tk274/; revision=4657
2012-08-23Checkpoint.Rob Austein
svn path=/branches/tk274/; revision=4656
2012-08-20Don't write unchanged BPKI files: nothing bad happens if we do, butRob Austein
apparently it confuses the users. svn path=/branches/tk274/; revision=4647
2012-08-20Refactor Zookeeper.synchronize() into a collection of moreRob Austein
finely-tuned methods. Zookeeper.synchronize() itself kept for backwards compatability and as a blanket operation to wahck everything in sight. See #281. svn path=/branches/tk274/; revision=4646
2012-07-06Add control interface to clear CMS-timestamp-based replay protection,Rob Austein
so we can recover from misconfigured clocks. Closes #265. Add child_handle attribute to <list_published_objects/> response. Closes #266. svn path=/trunk/; revision=4588
2012-07-04Oops, forgot to include revoke_forgotten command when copying otherRob Austein
control operations over from irbe_cli to rpkic. svn path=/trunk/; revision=4572
2012-06-16Add "--flat_publication" option to yamltest, and correspondingRob Austein
"--flat" option to rpkic configure_publication_client. These are for testing and simulation, do not use them in production. svn path=/trunk/; revision=4545
2012-05-11Add rekey, revoke, and reissue commands. Closes #249.Rob Austein
svn path=/trunk/; revision=4485
2012-05-10We only need to poke requested handles once per synchronize call, notRob Austein
every time through inner loop. Fixes #248. svn path=/trunk/; revision=4484
2012-05-05Allow loading of CSV files assigning resources to unknown children.Rob Austein
We probably need a config file option or rpkic setting to control this behavior. svn path=/branches/tk33/; revision=4467
2012-05-04Add delete_rootd.Rob Austein
svn path=/branches/tk33/; revision=4464
2012-04-24Add Zookeeper.publish_world_now() and rpkic force_publication. Closes #27.Rob Austein
svn path=/trunk/; revision=4452
2012-04-24Bump default CRL interval and regeneration margin up a bit to reduceRob Austein
incidence of stale CRL and manifest warnings. See #11. svn path=/trunk/; revision=4451
2012-02-22rpki.rpkic.main.do_update_bpki() wasn't writing updated BPKI object toRob Austein
disk; see #200. Make BPKI certificate lifetimes and CRL intervals configurable; closes #201. svn path=/branches/tk161/; revision=4359
2012-02-22invoke .save() after calling .avow() or .generate_crl() to ensure the newly ↵Michael Elkins
generated objects are saved to the db. closes #200 svn path=/branches/tk161/; revision=4357
2012-02-17use .all() to select all objects. closes #199Michael Elkins
svn path=/branches/tk161/; revision=4351
2012-02-16Fix delete_self operation. Closes #196.Rob Austein
svn path=/branches/tk161/; revision=4341
2012-02-16Client objects live under server_ca, not resource_ca. Closes #194.Rob Austein
svn path=/branches/tk161/; revision=4340
2012-02-15poke rpkid to run its cron job after creating/deleting roas or gbrsMichael Elkins
svn path=/branches/tk161/; revision=4337
2012-01-20branch merge with tk100Michael Elkins
svn path=/branches/tk161/; revision=4244
2012-01-20merge with ^/branches/tk100Michael Elkins
svn path=/branches/tk161/; revision=4239
2012-01-19merge with ^/branches/tk100Michael Elkins
svn path=/branches/tk161/; revision=4231
2012-01-17merge with ^/branches/tk100Michael Elkins
svn path=/branches/tk161/; revision=4206
2012-01-13Add a couple of features Michael requested: ability to poke rpkid forRob Austein
specified handles in synchronize(), wrapper functions for calling rpkid and pubd. Also reworked a few things to reduce risk of using stale BPKI certificates in long-lived processes. svn path=/branches/tk100/; revision=4152
2012-01-12Refactor library functions out of rpkic command line shell (see #26,Rob Austein
but note that I'm working this as part of #100 so it's on the tk100 branch, see #100). This substantially completes #26 and #100, other than GUI integration. Still some documentation and cleanup work to be done. svn path=/branches/tk100/; revision=4150
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-06 09:30:57 +0000