certspotter

aljaz/certspotter

Fork 0

mirror of https://github.com/SSLMate/certspotter.git synced 2026-02-02 02:34:20 +01:00

Commit Graph

Select branches

Hide Pull Requests

master

#1

#109

#112

#112

#115

#119

#119

#2

#2

#22

#25

#3

#30

#31

#33

#36

#39

#40

#41

#51

#52

#53

#54

#55

#56

#57

#58

#59

#60

#61

#62

#62

#67

#68

#72

#80

#81

#84

#89

#90

#90

#91

0.1

0.10

0.11

0.2

0.3

0.4

0.5

0.6

0.7

0.8

0.9

v0.12

v0.13

v0.14.0

v0.15.0

v0.15.1

v0.16.0

v0.17.0

v0.18.0

v0.19.0

v0.19.1

v0.20.0

v0.20.1

v0.21.0

v0.22.0

v0.23.0

v0.24.0

ec68dde647 Only allow * and ? as entire DNS name labels Andrew Ayer 2016-04-29 08:45:54 -07:00
2c9df274e9 Gracefully handle all manner of poorly encoded identifiers Andrew Ayer 2016-04-28 21:26:59 -07:00
a072440db8 Handle certificates with multiple Basic Constraints extensions Andrew Ayer 2016-04-26 18:06:59 -07:00
65ed742477 Support wildcards Andrew Ayer 2016-04-26 14:49:39 -07:00
4132ed5e9f Add support for IDNs Andrew Ayer 2016-04-26 14:38:09 -07:00
19c5f86d23 Allow DNS SANs to contain UTF-8 Andrew Ayer 2016-04-26 14:14:08 -07:00
2426817cd5 Raise parse error if certain strings are improperly encoded Andrew Ayer 2016-04-24 09:11:28 -07:00
2d2aa37202 Parse common names separately from DNS names Andrew Ayer 2016-04-22 20:58:33 -07:00
ef0b46b7a5 Remove defunct Wosign log Andrew Ayer 2016-04-14 17:55:50 -07:00
e091186d83 Save consistency proof along with evidence of misbehavior Andrew Ayer 2016-04-06 08:10:06 -07:00
db2cd2c458 logclient: work around HTTP/2 issue Andrew Ayer 2016-03-27 11:54:34 -07:00
80bfe1321c Add helpers to get fingerprint/hashes in byte form Andrew Ayer 2016-03-26 18:04:22 -07:00
ef395b8e60 Add function to validate a pre-cert Andrew Ayer 2016-03-23 21:03:00 -07:00
81bfa0bbd8 Add ctparsewatch Andrew Ayer 2016-03-23 20:19:39 -07:00
786e9e3460 Add a relaxed ASN.1 Time parser Andrew Ayer 2016-03-23 20:18:26 -07:00
af14fca70f Add HasParseErrors method to EntryInfo Andrew Ayer 2016-03-23 20:18:12 -07:00
616ac0cb83 Adjust gitignore Andrew Ayer 2016-03-23 20:04:55 -07:00
eded2ff458 Ensure ParseDNSNames does not return a nil slice Andrew Ayer 2016-03-22 17:17:38 -07:00
3b59332bf1 Rename a function for clarity Andrew Ayer 2016-03-17 16:34:53 -07:00
a071e9490a Replace embedded X509 parser with my own lightweight parser Andrew Ayer 2016-03-16 16:58:00 -07:00
5ccf9fdcd3 ctwatch: allow state dir to be set by $CTWATCH_STATE_DIR Andrew Ayer 2016-03-08 07:09:26 -08:00
f988d05b4b Decode JSON directly into []byte Andrew Ayer 2016-03-08 07:01:10 -08:00
2608a74e66 Make trailing garbage a fatal error when extracting DNS names Andrew Ayer 2016-02-22 19:35:21 -08:00
08fa700d29 scanner: don't prefix log messages with log URI Andrew Ayer 2016-02-22 19:23:08 -08:00
5803389588 Fix some pointer inconsistencies in code Andrew Ayer 2016-02-22 15:29:52 -08:00
09c37cfdfd Clarify a flag Andrew Ayer 2016-02-22 15:14:17 -08:00
8f3bd3b6ff Improve logging Andrew Ayer 2016-02-22 14:58:11 -08:00
b297ba9967 Use bits in the exit code to convey what happened Andrew Ayer 2016-02-22 14:45:50 -08:00
40123f9ba8 Allow . to be specified on stdin as well Andrew Ayer 2016-02-22 14:18:56 -08:00
94ccbc0a4f Add backoff during fetch errors Andrew Ayer 2016-02-22 14:11:47 -08:00
df6527b165 Change -all_time to only affect logs we haven't seen before Andrew Ayer 2016-02-20 12:04:07 -08:00
ff44576c87 Save old and new STHs if consistency proof fails Andrew Ayer 2016-02-18 12:40:21 -08:00
672491e065 Fix bug where we were returning a nil tree builder Andrew Ayer 2016-02-18 11:58:00 -08:00
16bf546258 Embed Google CT library, with my own changes Andrew Ayer 2016-02-18 10:44:56 -08:00
3c33dc8277 Remove sha1watch Andrew Ayer 2016-02-18 10:41:55 -08:00
e91d7bacbd Minor cleanup to improve encapsulation Andrew Ayer 2016-02-18 10:23:07 -08:00
b47d35a005 Rename some types/functions for clarity Andrew Ayer 2016-02-18 10:15:56 -08:00
35eef25f4a Rename function for clarity Andrew Ayer 2016-02-18 10:09:33 -08:00
9558efc955 Verify STH signatures Andrew Ayer 2016-02-17 16:03:49 -08:00
4b304fd192 Audit Merkle tree when retrieving entries Andrew Ayer 2016-02-17 14:54:25 -08:00
b6dec7822d Overhaul to be more robust and simpler Andrew Ayer 2016-02-09 10:28:52 -08:00
1dcbe91877 WriteCertRepository: avoid serializing precerts twice Andrew Ayer 2016-02-07 14:47:05 -08:00
a79cc26570 Include filename of saved cert in output/script invocation Andrew Ayer 2016-02-05 08:20:12 -08:00
cfaf126284 To monitor all domains, require "." to be specified Andrew Ayer 2016-02-05 08:13:11 -08:00
e73a5a89a7 Ignore non-fatal errors when parsing root certificates Andrew Ayer 2016-02-05 07:57:15 -08:00
678e8bddc8 Include log URI in error messages Andrew Ayer 2016-02-05 07:47:42 -08:00
1b17c25747 Decrease log severity of non-fatal parse errors Andrew Ayer 2016-02-05 07:45:49 -08:00
3f596730a0 New and simplified multi-log operation Andrew Ayer 2016-02-04 20:16:25 -08:00
a418a3686d Initial commit Andrew Ayer 2016-02-04 18:45:37 -08:00