-/* $OpenBSD: extern.h,v 1.178 2023/04/26 16:32:41 claudio Exp $ */
+/* $OpenBSD: extern.h,v 1.179 2023/04/26 22:05:28 beck Exp $ */
/*
* Copyright (c) 2019 Kristaps Dzonsons <kristaps@bsd.lv>
*
/* Maximum number of delta files per RRDP notification file. */
#define MAX_RRDP_DELTAS 300
+/*
+ * Time - Evaluation time is used as the current time if it is
+ * larger than X509_TIME_MIN, otherwise the system time is used.
+ */
+#define X509_TIME_MAX 253402300799LL
+#define X509_TIME_MIN -62167219200LL
+extern time_t get_current_time(void);
+
#endif /* ! EXTERN_H */
-/* $OpenBSD: main.c,v 1.234 2023/04/26 16:32:41 claudio Exp $ */
+/* $OpenBSD: main.c,v 1.235 2023/04/26 22:05:28 beck Exp $ */
/*
* Copyright (c) 2021 Claudio Jeker <claudio@openbsd.org>
* Copyright (c) 2019 Kristaps Dzonsons <kristaps@bsd.lv>
int repo_timeout;
time_t deadline;
+int64_t evaluation_time = X509_TIME_MIN;
+
struct stats stats;
struct fqdnlistentry {
free(ent);
}
+time_t
+get_current_time(void)
+{
+ if (evaluation_time > X509_TIME_MIN)
+ return (time_t) evaluation_time;
+ return time(NULL);
+}
+
/*
* Read a queue entity from the descriptor.
* Matched by entity_buffer_req().
"proc exec unveil", NULL) == -1)
err(1, "pledge");
- while ((c = getopt(argc, argv, "Ab:Bcd:e:fH:jmnorRs:S:t:T:vV")) != -1)
+ while ((c = getopt(argc, argv, "Ab:Bcd:e:fH:jmnoP:rRs:S:t:T:vV")) != -1)
switch (c) {
case 'A':
excludeaspa = 1;
case 'o':
outformats |= FORMAT_OPENBGPD;
break;
+ case 'P':
+ evaluation_time = strtonum(optarg, X509_TIME_MIN + 1,
+ X509_TIME_MAX, &errs);
+ if (errs)
+ errx(1, "-P: time in seconds %s", errs);
+ break;
case 'R':
rrdpon = 0;
break;
-/* $OpenBSD: output-bird.c,v 1.15 2022/08/30 18:56:49 job Exp $ */
+/* $OpenBSD: output-bird.c,v 1.16 2023/04/26 22:05:28 beck Exp $ */
/*
* Copyright (c) 2019 Claudio Jeker <claudio@openbsd.org>
* Copyright (c) 2020 Robert Scheck <robert@fedoraproject.org>
{
extern const char *bird_tablename;
struct vrp *v;
- time_t now = time(NULL);
+ time_t now = get_current_time();
if (outputheader(out, st) < 0)
return -1;
-/* $OpenBSD: parser.c,v 1.91 2023/04/26 16:32:41 claudio Exp $ */
+/* $OpenBSD: parser.c,v 1.92 2023/04/26 22:05:28 beck Exp $ */
/*
* Copyright (c) 2019 Claudio Jeker <claudio@openbsd.org>
* Copyright (c) 2019 Kristaps Dzonsons <kristaps@bsd.lv>
const char *errstr)
{
/* check that now is not before from */
- time_t now = time(NULL);
+ time_t now = get_current_time();
if (mft == NULL) {
if (errstr == NULL)
-.\" $OpenBSD: rpki-client.8,v 1.93 2023/03/06 19:20:34 job Exp $
+.\" $OpenBSD: rpki-client.8,v 1.94 2023/04/26 22:05:28 beck Exp $
.\"
.\" Copyright (c) 2019 Kristaps Dzonsons <kristaps@bsd.lv>
.\"
.\" ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
.\" OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
.\"
-.Dd $Mdocdate: March 6 2023 $
+.Dd $Mdocdate: April 26 2023 $
.Dt RPKI-CLIENT 8
.Os
.Sh NAME
and
.Fl j
options are not specified this is the default.
+.It Fl P Ar posix-seconds
+Specify the time for the evaluation in
+.Ar posix-seconds
+seconds from the unix epoch.
+This overrides the default of using the current system time.
.It Fl R
Synchronize via RSYNC only.
.It Fl r
-/* $OpenBSD: validate.c,v 1.57 2023/04/14 00:23:16 tb Exp $ */
+/* $OpenBSD: validate.c,v 1.58 2023/04/26 22:05:28 beck Exp $ */
/*
* Copyright (c) 2019 Kristaps Dzonsons <kristaps@bsd.lv>
*
cryptoerrx("OBJ_dup");
if (!X509_VERIFY_PARAM_add0_policy(params, cp_oid))
cryptoerrx("X509_VERIFY_PARAM_add0_policy");
+ X509_VERIFY_PARAM_set_time(params, get_current_time());
flags = X509_V_FLAG_CRL_CHECK;
flags |= X509_V_FLAG_POLICY_CHECK;
projects / openbsd / commitdiff