aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* Update link to MS docs (#4632)Alex Gaynor2018-12-091-1/+1
|
* Jenkins is fixed! (#4630)Alex Gaynor2018-12-091-5/+0
|
* Adds a more descriptive error msg for wrong wrapping (#4504)André Almeida2018-12-082-3/+44
| | | | | | | | | | | | | | | | | | | | * PoC code for check PEM wrap * Remove PoC check wrap code * Add PEM file info to FAQ * Add FAQ/PEM link in exception message * Fix flake8 style issues * refactor, update language * it's really amazing how bad the spell checker is * review feedback * change to etc
* Updated BLAKE2s and BLAKE2b error messages from unsupportedalgorithm … (#4519)Colin Metcalf2018-12-081-14/+6
| | | | | | | | | | | | | | | | | * Updated BLAKE2s and BLAKE2b error messages from unsupportedalgorithm exception to an explicit error. The error is now "ValueError: Digest size must be 32" (or 64 for BLAKE2b) This was done to give a more contextual error message and should be in place until OpenSSL supports variable lengths. * Updated if statements in hashes.py so that they no longer wrap to separate line. Updated test_hashes.py to unclude a test for non 32 or 64 digest_sizes that fall between 0-32/64. * Removed the new tests in test_hashes.py as the old ones were satisfactory. This also solved misaligned tabs and spaces. * Removed dead code in hashes.py that could no longer be reached after error message updates. * pep8 fix * remove superfluous parens
* Raise MemoryError when backend.derive_scrypt can't malloc enough (#4592)Tux2018-12-083-1/+34
| | | | | | | | | | | | * Raise MemoryError when backend.derive_scrypt can't malloc enough * Expose ERR_R_MALLOC_FAILURE and use the reason_match pattern to catch it * Add test_scrypt_malloc_failure in test_scrypt * let's see if this passes * add comment to filippo's blog post about scrypt's params
* Add RFC 4514 Distinguished Name formatting for Name, RDN and NameAttribute ↵Marti Raudsepp2018-12-087-72/+146
| | | | (#4304)
* remove idna as a primary dependency (#4624)Paul Kehrer2018-12-067-21/+67
| | | | | | | | | | * remove idna as a primary dependency * empty commit * dynamodb test fix (thanks to Matt Bullock) * review feedback
* encode IssuingDistributionPoint (#4618)Paul Kehrer2018-12-023-0/+205
|
* switch to twine check for verifying our readme renders on pypi (#4623)Paul Kehrer2018-12-022-2/+3
|
* centralize our bytes check (#4622)Paul Kehrer2018-12-0217-92/+50
| | | this will make life a bit easier when we support bytearrays
* switch osrandom engine to blocking mode when getting entropy (#4620)Paul Kehrer2018-12-022-15/+3
| | | | | | | | * switch osrandom engine to blocking mode when getting entropy * review feedback * we can remove this too
* reuse the libressl branch for OpenSSL built with OPENSSL_NO_PSK (#4619)Paul Kehrer2018-12-011-1/+1
|
* refactor some code into separate functions in asn1 encode (#4617)Paul Kehrer2018-12-011-20/+31
| | | | | | | | * refactor some code into separate functions in asn1 encode this will be useful in IDP encoding * review feedback
* allow multi-valued RDNs (#4616)Paul Kehrer2018-11-302-1/+18
| | | | RDNs can have multiple values. This allows them in FreshestCRL and upcoming IssuingDistributionPoint encoding support.
* IssuingDistributionPoint support (parse only) (#4552)Paul Kehrer2018-11-306-3/+519
| | | | | | | | | | | | | | | | | | | | | | * IssuingDistributionPoint support h/t to Irina Renteria for the initial work here * python 2 unfortunately still exists * py2 repr * typo caught by flake8 * add docs * review feedback * reorder args, other fixes * use the alex name * add changelog
* PKCS12 Basic Parsing (#4553)Paul Kehrer2018-11-286-0/+222
| | | | | | | | | | | | | | | | | | * PKCS12 parsing support * running all the tests is so gauche * rename func * various significant fixes * dangerous idiot here * move pkcs12 * docs updates * a bit more prose
* fix certbot downstream, show commit hash for all downstreams (#4614)Paul Kehrer2018-11-288-4/+14
| | | | | | | | * fix certbot downstream, show commit hash for all downstreams * Update aws-encryption-sdk.sh * lol
* Add a retry on docker pull to be more resilient to intermittent failures (#4609)Alex Gaynor2018-11-251-1/+1
|
* add ed448 test vectors (#4608)Paul Kehrer2018-11-242-0/+59
|
* Move SSH serialization to it's own file (#4607)Alex Gaynor2018-11-244-148/+158
| | | | | | * Move SSH serialization to it's own file * flake8
* refactor serialization module into package (#4606)Paul Kehrer2018-11-233-11/+35
| | | | | | * refactor serialization into a package so we can add a pkcs12 module * oops
* Added comments reminding us to improve this code when we go 1.1.1+ only (#4605)Alex Gaynor2018-11-231-0/+4
|
* X448 support (#4580)Paul Kehrer2018-11-226-0/+377
| | | | | | | | | | | | | | | | | | | | * x448 support This work was originally authored by derwolfe * update docs to have a more useful derived key length * error if key is not a valid length in from_public_bytes * one more * switch to using evp_pkey_keygen_gc for x448 keygen * review feedback * switch to using evp_pkey_derive * nit fix
* refactor x25519 exchange into utils (#4603)Paul Kehrer2018-11-222-24/+27
|
* Import idna lazily to reduce our memory consumption (#4601)Alex Gaynor2018-11-231-2/+12
| | | We only use idna in deprecated paths at this point, so we shouldn't make people pay for it.
* Debian sid is now Python 3.7 (#4602)Alex Gaynor2018-11-221-2/+2
|
* add sha3 support (#4573)Paul Kehrer2018-11-224-0/+134
| | | | | | | | * add sha3 support * missed versionadded * add prose, remove block_size
* port 2.4.2 changelog (#4599)Paul Kehrer2018-11-201-0/+8
|
* Bump 1.1.1 to a in travis (#4597)Alex Gaynor2018-11-211-3/+3
|
* Bump 1.1.0 in travis to j (#4595)Alex Gaynor2018-11-211-4/+4
|
* Adjust DTLS check (#4593)Rosen Penev2018-11-191-1/+1
| | | OpenSSL defines these even with OPENSSL_NO_DTLS.
* add EVPDigestFinalXOF for extendable output functions (#4589)Paul Kehrer2018-11-132-0/+14
|
* refactor x25519 keygen into evp_pkey_keygen (#4587)Paul Kehrer2018-11-131-7/+7
| | | this allows us to use the same code for ed25519, x448, and ed448
* Ed bindings (#4586)Paul Kehrer2018-11-133-0/+30
| | | | | | * add evp_pkey_ed25519 * ed448 bindings
* this hasn't worked in...years (#4585)Paul Kehrer2018-11-121-3/+0
|
* error if the key length for x25519 isn't 32 bytes (#4584)Paul Kehrer2018-11-122-0/+11
| | | | | | * error if the key length for x25519 isn't 32 bytes * also test 33
* add SHA512/224 and SHA512/256 support (#4575)Paul Kehrer2018-11-124-0/+66
| | | | | | * add SHA512/224 and SHA512/256 support * add missing docs
* add bindings for early data (#4582)Paul Kehrer2018-11-122-0/+13
| | | | | | * add bindings for early data * remove final var name
* add a little bit of x25519 interface docs we missed (#4574)Paul Kehrer2018-11-121-3/+9
|
* upgrade docs to 1.1.1 (#4581)Paul Kehrer2018-11-121-1/+1
|
* x448 bindings (#4577)Paul Kehrer2018-11-123-0/+24
|
* x448 test vectors (#4576)Paul Kehrer2018-11-122-1/+17
|
* add EVP raw key bindings (#4578)Paul Kehrer2018-11-122-0/+28
|
* disable healthchecks on the rest of the hypothesis tests (#4579)Paul Kehrer2018-11-121-1/+3
| | | | | | * disable healthchecks on the rest of the hypothesis tests * import the right thing
* add a few more EC OIDs (#4572)Paul Kehrer2018-11-112-0/+91
| | | | | | * add a few more EC OIDs * spaces matter
* Remove unnecessary use of six.binary_type (#4569)Jon Dufresne2018-11-111-1/+1
| | | | | All supported Pythons have type bytes. On Python 2, it is an alias of str, same as six.binary_type. Makes the code slightly more forward compatible and removes some indirection.
* reopen master for 2.5 development (#4571)Paul Kehrer2018-11-113-2/+9
|
* Revert O_CLOEXEC change to fix builds (#4570)Alex Gaynor2018-11-114-4/+18
|
* bump versions and update changelog for 2.4 release (#4568)Paul Kehrer2018-11-113-6/+4
|
* parametrize a bunch of tests (#4365)Paul Kehrer2018-11-041-281/+58
|
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-10 01:20:59 +0000