boulder

History

Jacob Hoffman-Andrews eda496606d crl-updater: split temporal/explicit sharding by serial (#7990 ) When we turn on explicit sharding, we'll change the CA serial prefix, so we can know that all issuance from the new prefixes uses explicit sharding, and all issuance from the old prefixes uses temporal sharding. This lets us avoid putting a revoked cert in two different CRL shards (the temporal one and the explicit one). To achieve this, the crl-updater gets a list of temporally sharded serial prefixes. When it queries the `certificateStatus` table by date (`GetRevokedCerts`), it will filter out explicitly sharded certificates: those that don't have their prefix on the list. Part of #7094		2025-02-04 11:45:46 -05:00
..
CODE_OF_CONDUCT.md	Reorganize docs and bring in release docs (#6077 )	2022-05-04 12:21:37 -07:00
CONTRIBUTING.md	docs: update CONTRIBUTING.md (#7857 )	2024-12-04 18:26:08 -08:00
CRLS.md	crl-updater: split temporal/explicit sharding by serial (#7990 )	2025-02-04 11:45:46 -05:00
DESIGN.md	Remove some ACMEv1 comments/documentation (#6584 )	2023-01-12 10:56:39 -08:00
ISSUANCE-CYCLE.md	docs: add ISSUANCE-CYCLE.md (#7444 )	2024-05-06 13:01:08 -07:00
acme-divergences.md	Fix typos in documentation and error messages (#7975 )	2025-01-24 08:10:06 -08:00
acme-implementation_details.md	small docs change: minimum key size (#5158 )	2020-10-29 12:14:27 -07:00
config-validation.md	Remove repeated words in comments (#7445 )	2024-04-23 10:30:33 -04:00
error-handling.md	Overhaul internal error usage (#2583 )	2017-03-22 23:27:31 -07:00
logging.md	log: emit warnings and errors on stderr (#6325 )	2022-08-29 15:00:55 -07:00
multi-va.md	va: compute maxRemoteFailures based on MPIC (#7810 )	2024-11-18 15:36:09 -08:00
redis.md	Remove all static minica keys (#7489 )	2024-05-17 11:45:40 -07:00
release.md	Reorganize docs and bring in release docs (#6077 )	2022-05-04 12:21:37 -07:00