boulder

History

Aaron Gable c7014dfd29 Add CRL linting framework and first few lints (#6205 ) Add a collection of lints (structured similarly, but not identically, to zlint's certificate lints) which check a variety of requirements based on RFC 5280, the Baseline Requirements, and the Mozilla Root Store Policy. Add a method to lint CRLs to the existing linter package which uses its fake issuer to sign the CRL, calls all of the above lints, and returns all of their findings. Call this new method from within the CA's new GenerateCRL method immediately before signing the real CRL using the real issuer. Fixes #6188	2022-07-08 12:22:44 -07:00
..
crl_x509	Add CRL linting framework and first few lints (#6205 )	2022-07-08 12:22:44 -07:00
updater	CRL: Create crl-updater service (#6212 )	2022-07-08 09:34:51 -07:00

Add CRL linting framework and first few lints (#6205 )

Add a collection of lints (structured similarly, but not identically,
to zlint's certificate lints) which check a variety of requirements
based on RFC 5280, the Baseline Requirements, and the Mozilla
Root Store Policy.

Add a method to lint CRLs to the existing linter package which
uses its fake issuer to sign the CRL, calls all of the above lints,
and returns all of their findings. Call this new method from within
the CA's new GenerateCRL method immediately before signing
the real CRL using the real issuer.

Fixes #6188

2022-07-08 12:22:44 -07:00

crl_x509

Add CRL linting framework and first few lints (#6205 )

2022-07-08 12:22:44 -07:00

updater

CRL: Create crl-updater service (#6212 )

2022-07-08 09:34:51 -07:00