summaryrefslogtreecommitdiff
path: root/usr.sbin/rpki-client/validate.c
AgeCommit message (Expand)Author
2023-03-06Add check for RSA key pair modulus & public exponentJob Snijders
2023-01-18Require version 4 UUIDs as RRDP session IDsJob Snijders
2023-01-18rpki-client: explicitly enable policy checksTheo Buehler
2023-01-04Validate the session_id to be a real UUID.Claudio Jeker
2022-11-30Remove unused sys/socket.h includeJob Snijders
2022-11-29Only include stdarg.h, if we call any of va_{start,end}()Job Snijders
2022-11-29Update valid_x509 comment to reality. crl is no longer optional.Claudio Jeker
2022-11-29Return an error string instead of surpressing the warning in valid_x509.Claudio Jeker
2022-11-26Add support for authenticating geofeed data CSV files in filemodeJob Snijders
2022-11-02Length check URI before strncasecmp()Theo Buehler
2022-09-03Don't doublecheck whether the RSC eContent Resourceblock contains inherit ele...Job Snijders
2022-09-03Introduce x509_any_inherit() for objects which may not have inherit elementsJob Snijders
2022-09-03Move non-inheritance check for BGPsec certs into cert_parse_pre()Theo Buehler
2022-08-30Add support for ASPA objects (draft-ietf-sidrops-aspa-profile-10)Job Snijders
2022-08-19Check the resources in ROAs and RSCs against EE certsTheo Buehler
2022-06-10Dedup econtent version checksTheo Buehler
2022-06-07Fix path validation of AS numbersTheo Buehler
2022-05-15More KNF and whitespace fixes.Theo Buehler
2022-05-15Remove misplaced continueTheo Buehler
2022-05-15whitespace spotted during read-thruTheo de Raadt
2022-05-12Remove verify callbackTheo Buehler
2022-05-12nuke tabsTheo Buehler
2022-05-11In filemode check whether ROA & RSC resources are properly containedJob Snijders
2022-05-10Validate RSC filenamesTheo Buehler
2022-04-21The filemode code is enough different from the regular parser code that itClaudio Jeker
2022-04-19Adjust on how CRL and MFT files are verified.Claudio Jeker
2022-02-04Fix outdated commentJob Snijders
2022-01-23zap extra blank lineTheo Buehler
2022-01-23Simplify valid_cert() and valid_roa() by passing in struct auth insteadClaudio Jeker
2022-01-22Change valid_filename() ot return an enum rtype and rename it toTheo Buehler
2022-01-21Add function to determine the file type from the file name extensionTheo Buehler
2022-01-13Alter valid_filehash() to take a file descriptor instead of a path.Claudio Jeker
2021-12-26fix spelling of inheritanceTheo Buehler
2021-11-04Instead of passing tal descriptions around just pass a tal id andClaudio Jeker
2021-11-01Cleanup struct auth a bit. The tal description is also stored in the certClaudio Jeker
2021-10-29Ensure that RRDP snapshot and delta files are fetched from the same hostClaudio Jeker
2021-10-27Add limits on size of certain untrusted inputsBob Beck
2021-10-27Limit length on URIsJob Snijders
2021-10-24Restrict the characterset for filenames on ManifestsJob Snijders
2021-10-11Add support for BGPsec Router Certificates (RFC 8209)Job Snijders
2021-08-16add missing breakJonathan Gray
2021-04-19code review results in KNF, and moving local variables into lowest scopeTheo de Raadt
2021-03-05Factor out the URI check we do in various places into valid_uri().Claudio Jeker
2021-03-05Factor out the SHA256 hash checks into valid_filehash() so that it canClaudio Jeker
2020-09-12Include openssl/x509.h in extern.h since it uses a few of the typedefs fromClaudio Jeker
2019-11-29e2k19 - above parSebastian Benoit
2019-11-29valid_as() should be as strict as valid_ip() when it comes to not-coveredClaudio Jeker
2019-11-28Convert the auths array into an RB tree indexed by SKI. For fast lookupsClaudio Jeker
2019-11-27Only store ta certs in the trust store and build chains of theSebastian Benoit
2019-11-18Add and fix some comments.Claudio Jeker
generated by cgit v1.2.3 (git 2.25.1) at 2024-12-13 23:32:48 +0000