]>
WPIA git - cassiopeia.git/log
Felix Dörre [Sat, 21 Mar 2015 15:30:12 +0000 (16:30 +0100)]
upd: adding a newline to SPKAC output.
Felix Dörre [Thu, 12 Mar 2015 18:56:21 +0000 (19:56 +0100)]
add: exclude sql testcase if there is no config for it
Felix Dörre [Thu, 12 Mar 2015 18:32:58 +0000 (19:32 +0100)]
upd: with own ssl, there is own libssl there is no package required
Felix Dörre [Thu, 12 Mar 2015 18:22:05 +0000 (19:22 +0100)]
fix: non existing CA-private-key should not cause crash
Felix Dörre [Thu, 12 Mar 2015 18:18:32 +0000 (19:18 +0100)]
Fix: typo, it's collision
Felix Dörre [Sat, 7 Mar 2015 08:40:18 +0000 (09:40 +0100)]
Merge remote-tracking branch 'origin/libs/detectcoll/local'
Felix Dörre [Mon, 23 Feb 2015 20:53:21 +0000 (21:53 +0100)]
Merge remote-tracking branch 'benbe/toCoverity'
Benny Baumann [Mon, 23 Feb 2015 20:33:55 +0000 (21:33 +0100)]
chg: Use std::shared_ptr for resource management
Benny Baumann [Mon, 23 Feb 2015 20:13:29 +0000 (21:13 +0100)]
chg: Use automatic memory and resource management
Felix Dörre [Sun, 22 Feb 2015 17:48:39 +0000 (18:48 +0100)]
FIX: make dependencies for openssl
Benny Baumann [Mon, 23 Feb 2015 18:41:04 +0000 (19:41 +0100)]
fix: Refine Error Management and note about further plces that need care
Benny Baumann [Mon, 23 Feb 2015 18:34:58 +0000 (19:34 +0100)]
fix: Properly check for success to create the necessary directories
Benny Baumann [Mon, 23 Feb 2015 18:34:16 +0000 (19:34 +0100)]
fix: Check the CA certificate file could be loaded
Benny Baumann [Mon, 23 Feb 2015 18:33:48 +0000 (19:33 +0100)]
fix: Check return value of writeBackFile for non-empty filename
Benny Baumann [Sun, 22 Feb 2015 14:46:27 +0000 (15:46 +0100)]
fix: Use a less arcane way of typecasting from char[] to T
Felix Dörre [Sat, 21 Feb 2015 00:48:52 +0000 (01:48 +0100)]
Fix: uninitialized fields
Felix Dörre [Sat, 21 Feb 2015 00:40:03 +0000 (01:40 +0100)]
Fix: coverity complaining about memory corruption
Felix Dörre [Tue, 10 Feb 2015 20:53:56 +0000 (21:53 +0100)]
ADD: test for mysql interface (requires config.txt)
Felix Dörre [Fri, 13 Feb 2015 11:51:51 +0000 (12:51 +0100)]
upd: striping system lib crom coverage
Felix Dörre [Tue, 10 Feb 2015 20:32:26 +0000 (21:32 +0100)]
UPD: use lcov for coverage
Felix Dörre [Tue, 10 Feb 2015 01:15:58 +0000 (02:15 +0100)]
UPD: calling 'getSignature' on unsigned CRLs violates contract
(from now on) due to openssl, strange behaviour
Felix Dörre [Mon, 9 Feb 2015 23:53:03 +0000 (00:53 +0100)]
ADD: gcov make launch
Felix Dörre [Sat, 31 Jan 2015 02:27:13 +0000 (03:27 +0100)]
upd: Make testcases cppcheck-compliant
Felix Dörre [Sat, 31 Jan 2015 02:21:07 +0000 (03:21 +0100)]
fix: Make CppCheck happy by fixing the code
Used CppCheck command:
cppcheck --enable=all -v --inconclusive
Felix Dörre [Tue, 20 Jan 2015 15:36:43 +0000 (16:36 +0100)]
upd: Add max validity period to profile configurations
Felix Dörre [Mon, 19 Jan 2015 15:19:05 +0000 (16:19 +0100)]
fix: Avoid errors when genTestData is re-executed (while test data already exists)
Felix Dörre [Mon, 19 Jan 2015 15:18:14 +0000 (16:18 +0100)]
add: Implement signing based on requested "wish time"
Felix Dörre [Fri, 16 Jan 2015 23:37:08 +0000 (00:37 +0100)]
add: Implement automatic re-signing of the CRL
Felix Dörre [Tue, 13 Jan 2015 08:15:57 +0000 (09:15 +0100)]
upd: split revoking command into add-serial and revoke
Felix Dörre [Tue, 13 Jan 2015 07:51:59 +0000 (08:51 +0100)]
add: write signed from and to back to db
Felix Dörre [Sat, 10 Jan 2015 00:24:04 +0000 (01:24 +0100)]
fix: a bug where only serial repeated after 0xF
Felix Dörre [Sat, 10 Jan 2015 00:13:13 +0000 (01:13 +0100)]
cln: Simplified revoking code
Felix Dörre [Sat, 10 Jan 2015 00:05:50 +0000 (01:05 +0100)]
add: write back revocation dates
Felix Dörre [Fri, 9 Jan 2015 23:37:34 +0000 (00:37 +0100)]
chg: Replace ASN1_UTCTIME by ASN1_TIME
Felix Dörre [Fri, 9 Jan 2015 23:25:03 +0000 (00:25 +0100)]
fix: Fix memory-leak in CRL.cpp, revocation from DB, multiple CAs
Felix Dörre [Fri, 9 Jan 2015 08:53:25 +0000 (09:53 +0100)]
add: write back signing CA
Felix Dörre [Thu, 8 Jan 2015 17:26:59 +0000 (18:26 +0100)]
add: Full CRL tranfer (non-chunked)
Felix Dörre [Wed, 7 Jan 2015 17:01:33 +0000 (18:01 +0100)]
add: Incremental CRL transfer
Felix Dörre [Wed, 7 Jan 2015 00:01:40 +0000 (01:01 +0100)]
add: Adding CRL generation
Currently this only supports complete transfers of the CRL
Felix Dörre [Mon, 5 Jan 2015 23:21:46 +0000 (00:21 +0100)]
cln: Move code around, cleanup structure
Felix Dörre [Mon, 5 Jan 2015 22:30:34 +0000 (23:30 +0100)]
add: Initial code to implement revocation
Felix Dörre [Mon, 5 Jan 2015 02:57:19 +0000 (03:57 +0100)]
upd: Better configuration, respecting profiles
Felix Dörre [Sat, 3 Jan 2015 13:57:53 +0000 (14:57 +0100)]
add: Enable SPKAC
Felix Dörre [Sat, 3 Jan 2015 12:35:42 +0000 (13:35 +0100)]
add: write remoteSigner serial back
Felix Dörre [Tue, 30 Dec 2014 20:52:20 +0000 (21:52 +0100)]
add: Add more verbose logging
Felix Dörre [Mon, 29 Dec 2014 19:20:33 +0000 (20:20 +0100)]
fix: clean SSL shutdown, reset, allowing deamon operation
Felix Dörre [Mon, 29 Dec 2014 12:34:14 +0000 (13:34 +0100)]
upd: make serial path configurable
Felix Dörre [Mon, 29 Dec 2014 12:31:03 +0000 (13:31 +0100)]
add: Split the installation package
Felix Dörre [Sat, 27 Dec 2014 16:52:03 +0000 (17:52 +0100)]
chg: Tamper with the signature more efficiently
Felix Dörre [Sat, 27 Dec 2014 16:51:02 +0000 (17:51 +0100)]
chg: Build two binaries for the signer
Felix Dörre [Wed, 24 Dec 2014 01:00:15 +0000 (02:00 +0100)]
add: Plug things together so we can have TBSCertificates from the database
Felix Dörre [Tue, 23 Dec 2014 15:20:26 +0000 (16:20 +0100)]
add: Enable (peer)-verification
See associated commit in Gigi and certificate generation there for notes on the "keys" directory
Felix Dörre [Tue, 23 Dec 2014 12:47:05 +0000 (13:47 +0100)]
upd: move more code to remoteSigner
Felix Dörre [Mon, 22 Dec 2014 23:09:56 +0000 (00:09 +0100)]
fix: resolve some memory issues with slipBio testing
Felix Dörre [Mon, 22 Dec 2014 23:08:53 +0000 (00:08 +0100)]
upd: extract remote signer class, mostly
Felix Dörre [Sat, 20 Dec 2014 00:15:18 +0000 (01:15 +0100)]
add: Implement SSL for serial connection
Felix Dörre [Fri, 19 Dec 2014 15:09:16 +0000 (16:09 +0100)]
add: sample communication over serial line
Felix Dörre [Thu, 18 Dec 2014 15:45:23 +0000 (16:45 +0100)]
add: simple, signer-side record handling
Felix Dörre [Thu, 18 Dec 2014 15:41:33 +0000 (16:41 +0100)]
add: Implement record parsing
Felix Dörre [Thu, 4 Dec 2014 15:33:36 +0000 (16:33 +0100)]
add: move out openssl-clean
Felix Dörre [Thu, 4 Dec 2014 15:20:20 +0000 (16:20 +0100)]
add: test for SSL through slip, and patching slip
Felix Dörre [Wed, 3 Dec 2014 21:05:20 +0000 (22:05 +0100)]
upd: build system to handle openssl correctly
Felix Dörre [Wed, 3 Dec 2014 20:07:15 +0000 (21:07 +0100)]
add: require the error messages in the X509Req-CSR test
Felix Dörre [Sun, 30 Nov 2014 16:13:01 +0000 (17:13 +0100)]
add: Basic BIO implementation for SLIP
Felix Dörre [Tue, 25 Nov 2014 08:07:34 +0000 (09:07 +0100)]
add: wrapping of openssl-bios into cpp-classes (both directions)
Felix Dörre [Sun, 16 Nov 2014 18:39:29 +0000 (19:39 +0100)]
upd: add a shared_ptr, rename parse to parseCSR...
Felix Dörre [Fri, 14 Nov 2014 11:12:17 +0000 (12:12 +0100)]
add: Unit test for parsing X509-Req (CSR) and SPKAC
Benny Baumann [Thu, 22 Jan 2015 21:03:13 +0000 (22:03 +0100)]
fmt: Source formatting for the Unit Tests
Felix Dörre [Thu, 13 Nov 2014 23:09:55 +0000 (00:09 +0100)]
upd: add file I/O util funcs.
Benny Baumann [Sun, 18 Jan 2015 17:55:56 +0000 (18:55 +0100)]
Merge branch 'libs/openssl/local'
Felix Dörre [Tue, 25 Nov 2014 20:53:30 +0000 (21:53 +0100)]
upd: openssllib: added .gitignore, deleted config
Felix Dörre [Tue, 25 Nov 2014 22:06:05 +0000 (23:06 +0100)]
Merge branch 'libs/openssl/upstream' into libs/openssl/local
Felix Dörre [Tue, 25 Nov 2014 22:06:02 +0000 (23:06 +0100)]
Merge branch 'libs/openssl/fetch' into libs/openssl/local
Felix Dörre [Tue, 25 Nov 2014 20:38:43 +0000 (21:38 +0100)]
add: execute openssl fetcher to fetch openssl 1.0.1j
Felix Dörre [Tue, 25 Nov 2014 20:26:47 +0000 (21:26 +0100)]
add: script to fetch Openssl 1.0.1j
Felix Dörre [Tue, 25 Nov 2014 20:37:43 +0000 (21:37 +0100)]
Merge branch 'libs/openssl/fetch' into libs/openssl/upstream
Benny Baumann [Thu, 13 Nov 2014 18:32:59 +0000 (19:32 +0100)]
add: Basic Unit Test setup using Boost UTF
Benny Baumann [Sun, 9 Nov 2014 16:27:16 +0000 (17:27 +0100)]
fix: Fix compiler errors due to the modified build system
Benny Baumann [Sun, 9 Nov 2014 16:26:44 +0000 (17:26 +0100)]
fix: Modify the build system to fit ours
Benny Baumann [Sun, 9 Nov 2014 15:04:16 +0000 (16:04 +0100)]
Merge branch 'libs/detectcoll/upstream' into libs/detectcoll/local
Benny Baumann [Sun, 9 Nov 2014 15:04:08 +0000 (16:04 +0100)]
Merge branch 'libs/detectcoll/fetch' into libs/detectcoll/local
Benny Baumann [Sun, 9 Nov 2014 15:02:07 +0000 (16:02 +0100)]
add: Import libdetectcoll v0.2 source code by Marc Steven
Benny Baumann [Sun, 9 Nov 2014 14:52:17 +0000 (15:52 +0100)]
Merge branch 'libs/detectcoll/fetch' into libs/detectcoll/upstream
Benny Baumann [Sun, 9 Nov 2014 14:29:24 +0000 (15:29 +0100)]
add: Initial script to fetch libdetectcoll v0.2 by Marc Stevens
Felix Dörre [Wed, 5 Nov 2014 21:33:08 +0000 (22:33 +0100)]
upd: Prevent unconfigured startup by checking service defaults
Felix Dörre [Wed, 5 Nov 2014 21:10:27 +0000 (22:10 +0100)]
chg: Move the profile ID in the serial to the back
This yields (MSB->LSB): <counter> <signer-id> <profile-id> <random>
Felix Dörre [Wed, 5 Nov 2014 17:44:28 +0000 (18:44 +0100)]
fix: Make a missing configfile not result in an error
Felix Dörre [Wed, 5 Nov 2014 13:44:03 +0000 (14:44 +0100)]
upd: Setup logfile location conformant with cacert-gigi and FHS
Felix Dörre [Tue, 4 Nov 2014 17:53:48 +0000 (18:53 +0100)]
cfg: Ignore debhelper files via .gitignore
Felix Dörre [Tue, 4 Nov 2014 17:51:45 +0000 (18:51 +0100)]
chg: Rename Debian package to cacert-cassiopeia
Felix Dörre [Tue, 4 Nov 2014 09:34:37 +0000 (10:34 +0100)]
add: Put the profile id into the serial
Felix Dörre [Tue, 4 Nov 2014 08:52:24 +0000 (09:52 +0100)]
fix: Change author and user in init script
Felix Dörre [Sun, 2 Nov 2014 10:07:54 +0000 (11:07 +0100)]
add: Include Attribute-Value associations (AVAs) for C, L, ST, O and OU
Felix Dörre [Sun, 2 Nov 2014 00:39:30 +0000 (01:39 +0100)]
upd: Cleanup the Debian package
Felix Dörre [Sat, 1 Nov 2014 23:36:53 +0000 (00:36 +0100)]
add: Handling the MD for signing the certificate
Felix Dörre [Sat, 1 Nov 2014 23:30:17 +0000 (00:30 +0100)]
add: Handle Attribute Value Associations (AVAs)
Felix Dörre [Sat, 1 Nov 2014 13:34:22 +0000 (14:34 +0100)]
add: Include dummy Subject DN
Felix Dörre [Sun, 2 Nov 2014 01:16:21 +0000 (02:16 +0100)]
add: Basic implementation to generate the certificate serial
Felix Dörre [Sun, 2 Nov 2014 01:15:18 +0000 (02:15 +0100)]
fmt: Reorganizing includes
Felix Dörre [Sun, 2 Nov 2014 01:00:10 +0000 (02:00 +0100)]
add: Include support for signing based on a SPKAC request