summaryrefslogtreecommitdiff
path: root/usr.sbin/rpki-client/roa.c
AgeCommit message (Expand)Author
2022-11-29Only include stdarg.h, if we call any of va_{start,end}()Job Snijders
2022-11-26Make error messages about 'inherit' elements in End-Entity certs consistentJob Snijders
2022-11-09Error out if a ROA payload contains too many ipAddrBlocksJob Snijders
2022-11-04Check the SIA signedObject in ROA/MFT/ASPA/TAK/GBR EE certificatesJob Snijders
2022-11-02Fix x509_get_time() error checksTheo Buehler
2022-10-13All of ROA, MFT, ASPA, and RSC define their respective 'version' fieldJob Snijders
2022-09-03Introduce x509_any_inherit() for objects which may not have inherit elementsJob Snijders
2022-08-30Add support for ASPA objects (draft-ietf-sidrops-aspa-profile-10)Job Snijders
2022-08-19Check the resources in ROAs and RSCs against EE certsTheo Buehler
2022-08-10Clarify warning related to ROA eContentJob Snijders
2022-08-10Disallow AS Resources extension on ROA EE certificatesJob Snijders
2022-06-10Dedup econtent version checksTheo Buehler
2022-05-31I made non-trivial contributions to these files.Theo Buehler
2022-05-23Improve #ifdefs for STACK_OF() helpers.Theo Buehler
2022-05-19Adjust or remove some stale commentsTheo Buehler
2022-05-19Rewrite mft.c and roa.c with ASN.1 templatesTheo Buehler
2022-05-15More KNF and whitespace fixes.Theo Buehler
2022-05-10Improve control flow readability by removing 'else if' stanzasJob Snijders
2022-04-25Fix spelling error in warnx()Job Snijders
2022-04-01Change x509_get_aki(), x509_get_ski(), x509_get_aia(), and x509_get_crl()Claudio Jeker
2022-02-10Implement some code to print crls with -f.Claudio Jeker
2022-01-18More fixing. Previous revert was incomplete.Claudio Jeker
2022-01-18Kill extra newlineClaudio Jeker
2022-01-18Cleanup the scattered OBJ_txt2obj() calls and move them intoClaudio Jeker
2021-12-22The maxlength is optional in roa entries. By setting it to the addressClaudio Jeker
2021-12-03Apply the same MAX_IP_SIZE limit to ROA files as it is done on certificates.Claudio Jeker
2021-11-05Simplify how IP addresses and AS numbers are passed between processes.Claudio Jeker
2021-11-04Instead of passing tal descriptions around just pass a tal id andClaudio Jeker
2021-10-28Don't exit in certain cases on failures to parse x509 objects.Bob Beck
2021-10-27Add limits on size of certain untrusted inputsBob Beck
2021-10-26Change CMS and CRL d2i functions from their BIO version to passing theClaudio Jeker
2021-10-23Finnally move away from blocking reads in rpki-client. The code was aClaudio Jeker
2021-10-07mktime() may not properly set errno on error. Just use errx() instead.Claudio Jeker
2021-09-09Rework how various OIDs are compared in the code.Claudio Jeker
2021-09-08The number of elements being processed is known upfront. So allocate theClaudio Jeker
2021-08-01%i is going out of vogue, use %d insteadjob
2021-07-28Add more checks for ROA maxLength valuesjob
2021-07-13Add more checks for eContent 'version' fields.job
2021-06-14Fix ROA & MFT version check handlingjob
2021-05-11Before calling ASN1_time_parse() initialize the struct tm. WhileClaudio Jeker
2021-05-06Add an 'expires' column to CSV & JSON outputjob
2021-03-29Inline x509_get_extensions() and remove itTheo Buehler
2021-03-27Send arguments in alphabetical orderjob
2021-02-19Convert reallocarray + memset to recallocarray.Theo Buehler
2021-02-16get Authority Information Access (AIA) from CA & EE certsjob
2021-02-04Eventhough most openssl includes include everything try to be a bit moreClaudio Jeker
2021-01-29A while ago rpki-client was changed to validate the sha256 hashes ofClaudio Jeker
2021-01-08Start using the ibuf API (ibuf_dynamic, ibuf_add, ibuf_close) for writingClaudio Jeker
2020-12-21Now that a NULL string is marshalled as NULL again we can drop someClaudio Jeker
2020-09-12Include openssl/x509.h in extern.h since it uses a few of the typedefs fromClaudio Jeker
generated by cgit v1.2.3 (git 2.25.1) at 2025-01-11 02:53:04 +0000