Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Merge branch 'map-storage-signature' | Linus Nordberg | 2017-03-01 | 1 | -27/+47 |
|\ | | | | | | | | | Conflicts: NEWS.md | ||||
| * | Rename a couple functions and variables; add two comments. | Linus Nordberg | 2017-02-28 | 1 | -10/+15 |
| | | |||||
| * | Support requirement that storage servers sign stored entriesstorage-signature | Magnus Ahltorp | 2017-02-17 | 1 | -27/+42 |
| | | | | | | | | | | | | | | | | Make SCT cache mandatory. The signature server now requires signatures from the storage nodes, so if SCT is not present in the cache, always send entries to storage servers to collect signatures. Also send SCT when committing entry to storage servers. | ||||
* | | Look for root last in list, not anywhere in list. | Linus Nordberg | 2017-02-27 | 1 | -36/+36 |
| | | | | | | | | | | | | | | | | Even if verify_chain() should not return a root cert that is not last in the chain, the code is now less confusing to read. Also, rename normalise_chain/3 to verify_chain to reflect what it actually does. | ||||
* | | Don't store root cert twice when included in submission. | Linus Nordberg | 2017-02-25 | 1 | -9/+12 |
| | | | | | | | | Closes CATLFISH-96. | ||||
* | | Do test public interface for normalise_chain/2. | Linus Nordberg | 2017-02-25 | 1 | -12/+12 |
|/ | | | | Catches CATLFISH-96. | ||||
* | Support for Erlang/OTP 19perftest-fix | Magnus Ahltorp | 2017-02-08 | 1 | -0/+9 |
| | |||||
* | Parallelised merge, distribution phase. | Linus Nordberg | 2017-02-01 | 1 | -1/+1 |
| | |||||
* | Update copyright headers. | Linus Nordberg | 2017-01-12 | 3 | -2/+5 |
| | |||||
* | Log simple web request logging on level info | Magnus Ahltorp | 2016-11-22 | 1 | -2/+6 |
| | |||||
* | Added back support for R16 | Magnus Ahltorp | 2016-11-22 | 1 | -0/+10 |
| | |||||
* | Don't use erlang:timestamp/0 on R17. | Linus Nordberg | 2016-09-15 | 1 | -1/+1 |
| | |||||
* | Support R18 wrt detoxing precerts. | Linus Nordberg | 2016-08-19 | 2 | -4/+11 |
| | | | | Fixes CATLFISH-80. | ||||
* | Use erlang:timestamp/0 instead of deprecated now/0. | Linus Nordberg | 2016-08-18 | 1 | -1/+1 |
| | |||||
* | Rename module compat -> catlfish_compat. | Linus Nordberg | 2016-08-18 | 2 | -3/+3 |
| | | | | Can't have two modules with the same name in a release. | ||||
* | It's a string, not an integer. | Linus Nordberg | 2016-08-18 | 1 | -6/+4 |
| | |||||
* | Add compatibility layer for digging around in non-public data structures. | Linus Nordberg | 2016-08-18 | 2 | -5/+31 |
| | |||||
* | No need to strip "/" from path really. | Linus Nordberg | 2015-11-13 | 1 | -5/+5 |
| | |||||
* | Parametrise "application part" of URL. | Linus Nordberg | 2015-11-13 | 2 | -15/+28 |
| | | | | | Breaking out "ct/v1" to a separate argument to request(). Good for other applications. | ||||
* | Whitespace. | Linus Nordberg | 2015-11-13 | 2 | -16/+26 |
| | |||||
* | Verify MTL against leaf hash before returning get-entries. | Linus Nordberg | 2015-09-15 | 1 | -3/+4 |
| | | | | Closes CATLFISH-50. | ||||
* | Wrap entries in plop wrapper | Magnus Ahltorp | 2015-08-19 | 1 | -12/+11 |
| | |||||
* | Don't cons an improper list when serialising extra data for a precert. | Linus Nordberg | 2015-08-19 | 1 | -1/+1 |
| | |||||
* | Rename extra_data/3 and move it some. | Linus Nordberg | 2015-08-07 | 1 | -14/+14 |
| | |||||
* | Return correct extra-data for precerts too (closes CATLFISH-56). | Linus Nordberg | 2015-08-06 | 1 | -57/+60 |
| | | | | Verify precerts in make tests too. | ||||
* | Always store and return root certificate (closes CATLFISH-55). | Linus Nordberg | 2015-08-03 | 1 | -8/+7 |
| | |||||
* | Implement rate limiting of add_chain | Magnus Ahltorp | 2015-06-12 | 3 | -27/+135 |
| | |||||
* | Don't answer public requests if STH is too old or nonexistent | Magnus Ahltorp | 2015-06-12 | 1 | -0/+28 |
| | |||||
* | Remove unused temporary variable. | Linus Nordberg | 2015-06-10 | 1 | -9/+7 |
| | |||||
* | Add verification of whole entry. Implement library call for plop verification. | Magnus Ahltorp | 2015-06-10 | 1 | -6/+44 |
| | |||||
* | Fix CATLFISH-45. | Linus Nordberg | 2015-05-11 | 1 | -6/+4 |
| | | | | https://project.nordu.net/browse/CATLFISH-45 | ||||
* | Rename html/2 to err400/2. | Linus Nordberg | 2015-05-06 | 1 | -17/+17 |
| | |||||
* | Dialyzer clean. | Linus Nordberg | 2015-05-06 | 3 | -20/+23 |
| | |||||
* | Remove an extra annoying debug log printout. | Linus Nordberg | 2015-04-10 | 1 | -3/+0 |
| | |||||
* | Fix copyright strings. | Linus Nordberg | 2015-04-09 | 6 | -6/+6 |
| | |||||
* | Verify that database entry actually contains the certificatemergeverify2 | Magnus Ahltorp | 2015-04-07 | 1 | -3/+6 |
| | |||||
* | Cleanup tests and use urllib2.build_openercleanup-tests | Magnus Ahltorp | 2015-03-31 | 1 | -2/+14 |
| | | | | | | | | | Remove unused files Generate test config files directly in release directory Move test database files to "tests" directory Generate log key when preparing tests Report error when STH not found in v1.erl Make merge, fetchallcerts, submitcert, verifysct, and testcase1 take log key as argument | ||||
* | Allow non-TLS httpnopublicssl3 | Magnus Ahltorp | 2015-03-31 | 2 | -17/+23 |
| | | | | Closes CATLFISH-31 | ||||
* | Provide function for calculating entryhash from entryentryhash-merge | Magnus Ahltorp | 2015-03-27 | 1 | -0/+25 |
| | |||||
* | Store rejected certificates. | Linus Nordberg | 2015-03-25 | 1 | -52/+94 |
| | | | | | | | Not storing the full chain, which would be even more useful. No rate limiting, which would be good. Also, reorganise some in x509.erl and add tests. | ||||
* | Clarify that 0.test.pem is not a valid #'OTPCertificate'{}. | Linus Nordberg | 2015-03-24 | 1 | -14/+14 |
| | | | | Also some cosmetic changes. | ||||
* | Add spec's for most functions. | Linus Nordberg | 2015-03-23 | 2 | -11/+9 |
| | | | | NOTE: We're not dialyzer clean yet. | ||||
* | Formatting; remove debug printouts. | Linus Nordberg | 2015-03-23 | 2 | -49/+21 |
| | |||||
* | Add precert handling. | Linus Nordberg | 2015-03-23 | 3 | -160/+382 |
| | |||||
* | Cache SCT:s | Magnus Ahltorp | 2015-03-08 | 1 | -12/+31 |
| | |||||
* | Save STH instead of calculating a new one each time. | Magnus Ahltorp | 2015-03-04 | 1 | -10/+2 |
| | |||||
* | Added authentication between frontend and storage nodes | Magnus Ahltorp | 2015-02-27 | 1 | -4/+28 |
| | |||||
* | Fix a bug where verification of EC signatures made us crash. | Linus Nordberg | 2015-02-27 | 1 | -33/+40 |
| | | | | | Also, have valid_chain_p return boolean, add some debug logging and detect invalid signature types instead of crashing. | ||||
* | Verify that known roots are indeed signing themselves. | Linus Nordberg | 2015-02-27 | 2 | -22/+52 |
| | | | | | | | This filters out certificates with signing algorithms that we can't handle. Also, make unit tests better. | ||||
* | Even more debug logging. | Linus Nordberg | 2015-02-25 | 1 | -0/+3 |
| |