summaryrefslogtreecommitdiff
path: root/usr.sbin/rpki-client/mft.c
AgeCommit message (Expand)Author
2022-02-10Fix serial number printing in crl_print() for large serials.Claudio Jeker
2022-01-28Properly handle .mft files as intended by the RFC. Instead of alwaysClaudio Jeker
2022-01-24Adjust code to handle unsupported file types a bit more graceful.Claudio Jeker
2022-01-22Change valid_filename() ot return an enum rtype and rename it toTheo Buehler
2022-01-21Add function to determine the file type from the file name extensionTheo Buehler
2022-01-18Revert all the files that should have not been committed in last commit.Claudio Jeker
2022-01-18Kill extra newlineClaudio Jeker
2022-01-18Cleanup the scattered OBJ_txt2obj() calls and move them intoClaudio Jeker
2022-01-13Alter valid_filehash() to take a file descriptor instead of a path.Claudio Jeker
2022-01-11Change the way the parser accesses files. It now builds the file pathClaudio Jeker
2022-01-06Cleanup mft file handling, especially the stale mft bits.Claudio Jeker
2021-10-28Limit how many FileAndHash entries a single manifest may containJob Snijders
2021-10-26Change CMS and CRL d2i functions from their BIO version to passing theClaudio Jeker
2021-10-24Restrict the characterset for filenames on ManifestsJob Snijders
2021-10-23Finnally move away from blocking reads in rpki-client. The code was aClaudio Jeker
2021-09-09Rework how various OIDs are compared in the code.Claudio Jeker
2021-09-08The number of elements being processed is known upfront. So allocate theClaudio Jeker
2021-07-13Add more checks for eContent 'version' fields.job
2021-06-14Fix ROA & MFT version check handlingjob
2021-05-11Before calling ASN1_time_parse() initialize the struct tm. WhileClaudio Jeker
2021-05-09Garbage collect sz in mft_parse_filehash() which has been unusedTheo Buehler
2021-03-29Inline x509_get_extensions() and remove itTheo Buehler
2021-03-28Add some restrictions to manifest object profilejob
2021-03-27Send arguments in alphabetical orderjob
2021-03-05Factor out the SHA256 hash checks into valid_filehash() so that it canClaudio Jeker
2021-03-04Use the same way to error out in out of memory situation.Claudio Jeker
2021-02-19Convert reallocarray + memset to recallocarray.Theo Buehler
2021-02-16get Authority Information Access (AIA) from CA & EE certsjob
2021-02-04Eventhough most openssl includes include everything try to be a bit moreClaudio Jeker
2021-01-29A while ago rpki-client was changed to validate the sha256 hashes ofClaudio Jeker
2021-01-08Start using the ibuf API (ibuf_dynamic, ibuf_add, ibuf_close) for writingClaudio Jeker
2020-12-21Now that a NULL string is marshalled as NULL again we can drop someClaudio Jeker
2020-12-18Use asprintf with %.*s to construct the path based on the mft fileClaudio Jeker
2020-12-09All files provided in a manifest needs to be checked against the providedClaudio Jeker
2020-11-06Treat stale manifests as such, not as 'failed to parse'Theo Buehler
2020-11-05typoTheo Buehler
2020-11-05Fix checks for manifest validity intervalTheo Buehler
2020-09-12Include openssl/x509.h in extern.h since it uses a few of the typedefs fromClaudio Jeker
2020-06-30Remove -f (force) option.job
2020-04-11Avoid using libc SHA256File(), just perform the operation inline toTheo de Raadt
2020-04-01Split the mft file and hash check from the mft parsing. This makes it easierClaudio Jeker
2020-03-30Delay failure in mft parsing until all elements of FileAndHash have beenClaudio Jeker
2020-03-30Check the hash and with it the presence of a file referenced in a MFT earlyClaudio Jeker
2019-11-29The code is more what you'd call 'guidelines' than actual rules.Sebastian Benoit
2019-11-28enable more warning flags and fix a few issues noticed.Sebastian Benoit
2019-10-23Rewrite the time validity check for mfts. Using ASN1_GENERALIZEDTIME_printClaudio Jeker
2019-08-13Show the most common warnings only if verbose is set. Most of these warningsClaudio Jeker
2019-06-20Those changes should not have been in last commit. Revert them for now.Claudio Jeker
2019-06-20Don't use assert to validate user input. assert() is not for that, insteadClaudio Jeker
2019-06-19use $OpenBSD$ headersTheo de Raadt
generated by cgit v1.2.3 (git 2.25.1) at 2024-12-26 22:57:48 +0000