summaryrefslogtreecommitdiff
path: root/usr.sbin/rpki-client/cert.c
AgeCommit message (Expand)Author
2024-01-11Make the -P option work for Trust Anchor certificates as wellJob Snijders
2023-12-14rpki-client: make IP address block checks stricterTheo Buehler
2023-12-10Since errno isn't used here, use warnx() instead of warn()Job Snijders
2023-10-19Add experimental support for secp256r1 aka P-256 aka prime256v1Job Snijders
2023-10-13Allow imposing constraints on RPKI trust anchorsJob Snijders
2023-09-25rpki-client: mechanical rename of some variablesTheo Buehler
2023-09-25rpki-client: Refactor sbgp_assysnum() and sbgp_addrblk()Theo Buehler
2023-09-12Ensure the X.509 Subject only contains commonName and optionally serialNumberJob Snijders
2023-06-29Retire log.cTheo Buehler
2023-06-24Remove a pair of parens and make one check more consistent with the othersTheo Buehler
2023-06-23Fix warning about empty ipAddressesOrRangesTheo Buehler
2023-06-23rpki-client: check for duplicate certificate extensionsTheo Buehler
2023-06-23rpki-client: disallow empty sets of IP Addresses or AS numbersTheo Buehler
2023-06-20Ensure the X.509 version is V3Job Snijders
2023-05-09rpki-client: use partial chains in certificate validationTheo Buehler
2023-04-15Disallow issuer and subject unique identifiersJob Snijders
2023-03-10mechanical change, rename struct members to match the original X509 namesJob Snijders
2023-03-10Show the X.509 notBefore in filemodeJob Snijders
2023-03-06Ensure .cer and .crl outside-TBS signatures are sha256WithRSAEncryptionJob Snijders
2023-03-06Add check for RSA key pair modulus & public exponentJob Snijders
2023-02-21rpki-client: ensure there is no trailing garbage in signed objectsTheo Buehler
2022-11-30Remove unused includesJob Snijders
2022-11-30Remove unused sys/socket.h includeJob Snijders
2022-11-29Only include stdarg.h, if we call any of va_{start,end}()Job Snijders
2022-11-26Make error messages about 'inherit' elements in End-Entity certs consistentJob Snijders
2022-11-08stray spaceTheo Buehler
2022-11-07Simplify use of strrchr()Job Snijders
2022-11-04whitespaceTheo Buehler
2022-11-04Catch bad characters in rpkiManifest filenames earlier onJob Snijders
2022-11-04Don't show CPS URIs when in filemodeJob Snijders
2022-11-03Constrain KeyUsage and ExtendedKeyUsage on both CA & EE certificatesJob Snijders
2022-11-03Permit only keyCertSign and CRLSign in CA KeyUsage extensionJob Snijders
2022-11-02Emit warnings when unexpected X.509v3 extensions are encounteredJob Snijders
2022-09-03Properly free() crl & auth tree in parser processJob Snijders
2022-09-03Introduce x509_any_inherit() for objects which may not have inherit elementsJob Snijders
2022-09-03Add the repoid of the cert in the cert struct. This way it is possibleClaudio Jeker
2022-09-03Move non-inheritance check for BGPsec certs into cert_parse_pre()Theo Buehler
2022-08-19Check the resources in ROAs and RSCs against EE certsTheo Buehler
2022-05-31I made non-trivial contributions to these files.Theo Buehler
2022-05-31Prepare rewrite of rsc.c with templated ASN.1Theo Buehler
2022-05-15whitespace spotted during read-thruTheo de Raadt
2022-05-12Align parsing of ipAddrBlock with autnomousSysNumTheo Buehler
2022-05-12Tidy up IP handlingTheo Buehler
2022-05-12Refactor parsing of autonomousSysNum. Adjust code so that the allocationClaudio Jeker
2022-05-11Cache X509v3 extensions as soon as we have a certTheo Buehler
2022-05-11Fix doc comment of sbgp_asrange()Theo Buehler
2022-05-11Move sbgp_addr() down to the other sbgp_addr_* functions.Theo Buehler
2022-05-11Deserialize ASIdentifiers in libcryptoTheo Buehler
2022-05-10Fix a couple of typos in doc comments, bunch of KNF (whitespace) tweaksTheo Buehler
2022-05-10Deserialize IPAddrBlocks in libcryptoTheo Buehler
generated by cgit v1.2.3 (git 2.25.1) at 2025-01-25 13:17:23 +0000