summaryrefslogtreecommitdiff
path: root/usr.sbin/rpki-client/x509.c
AgeCommit message (Expand)Author
2023-05-22Convert x509_get_time() to ASN1_TIME_to_tm()Theo Buehler
2023-03-14rpki-client: disallow AIA in self-signed certsTheo Buehler
2023-03-12Refactor expiration calculationJob Snijders
2023-03-10mechanical change, rename struct members to match the original X509 namesJob Snijders
2023-03-10Show the X.509 notBefore in filemodeJob Snijders
2023-03-06Enforce X509v3 SKIs to be the SHA-1 hash of the Subject Public KeyJob Snijders
2023-02-16Revert r1.63.Theo Buehler
2023-02-16Add missing RFC 6487 section 4.8.6 CRLDP compliance checksJob Snijders
2023-02-09Use GEN_OTHERNAME instead of hardcoding 0Theo Buehler
2022-11-30Remove unused sys/socket.h includeJob Snijders
2022-11-29Only include stdarg.h, if we call any of va_{start,end}()Job Snijders
2022-11-29Only include assert.h if we call assert()Job Snijders
2022-11-26Add support for authenticating geofeed data CSV files in filemodeJob Snijders
2022-11-07Confirm Path Length is absent in the Basic Constraints extensionJob Snijders
2022-11-06Next to signedObject only allow rpkiNotify accessMethodsTheo Buehler
2022-11-04Do not fail on non-rsync URIs in EE cert SIA extensionsTheo Buehler
2022-11-04In very verbose mode, log unexpected accessMethodsTheo Buehler
2022-11-04Check the SIA signedObject in ROA/MFT/ASPA/TAK/GBR EE certificatesJob Snijders
2022-11-02Add support for draft-ietf-sidrops-signed-tal-12Job Snijders
2022-11-02Fix x509_get_time() error checksTheo Buehler
2022-10-24Make x509_init_oid() table basedTheo Buehler
2022-09-03Introduce x509_any_inherit() for objects which may not have inherit elementsJob Snijders
2022-09-03Allow multiple X.509 locationsTheo Buehler
2022-08-30Add support for ASPA objects (draft-ietf-sidrops-aspa-profile-10)Job Snijders
2022-07-28Fix RFC number in commentTheo Buehler
2022-05-31I made non-trivial contributions to these files.Theo Buehler
2022-05-15More KNF and whitespace fixes.Theo Buehler
2022-05-11Verify MFT and GBR objects only carry RFC 3779 extensions set to 'inherit'Job Snijders
2022-05-10Confirm the absense of the Basic Constraints extension in non-CA certsJob Snijders
2022-05-09Commit file missed in previous.Theo Buehler
2022-04-15Allow more than one CRL URI in certificatesTheo Buehler
2022-04-12Generalize sbgp_sia_location() to x509_location()Theo Buehler
2022-04-08All times in the x509 are UTC so use timegm() and not mktime().Claudio Jeker
2022-04-01Change x509_get_aki(), x509_get_ski(), x509_get_aia(), and x509_get_crl()Claudio Jeker
2022-03-25Implement most of the CMS related checks required by RFC 6488 section 3Claudio Jeker
2022-02-10Fix serial number printing in crl_print() for large serials.Claudio Jeker
2022-02-10Implement some code to print crls with -f.Claudio Jeker
2022-02-04Add id-cp-ipAddr-asNumber OID to x509_init_oid()Theo Buehler
2022-02-02typoTheo Buehler
2022-01-18Kill extra newlineClaudio Jeker
2022-01-18Fix function name in warn message.Theo Buehler
2022-01-18Cleanup the scattered OBJ_txt2obj() calls and move them intoClaudio Jeker
2021-10-28Don't exit in certain cases on failures to parse x509 objects.Bob Beck
2021-10-27Add limits on size of certain untrusted inputsBob Beck
2021-10-24Add my copyright to some filesClaudio Jeker
2021-10-24Improve variable namingJob Snijders
2021-10-12Emit SKI in the JSON output and improve flow in x509_get_pubkey()Job Snijders
2021-10-11Add support for BGPsec Router Certificates (RFC 8209)Job Snijders
2021-10-07Add x509_get_expire() to extract the not-after time from a certificateClaudio Jeker
2021-10-05Add rudimentary support for BGPsec router certificatesJob Snijders
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-25 23:31:29 +0000