| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | add two missing methods to backend interface docs | Paul Kehrer | 2015-06-26 | 1 | -0/+31 |
| | | |||||
| * | Merge pull request #2045 from sigmavirus24/csr-builder | Paul Kehrer | 2015-06-26 | 9 | -3/+543 |
| |\ | | | | | Adds CSR Builder (Redux of #1927) | ||||
| | * | Use SECP256R1 instead of SECT283K1 in CSR tests | Ian Cordasco | 2015-06-24 | 2 | -4/+4 |
| | | | |||||
| | * | Add test for unicode attributes in CSRs | Ian Cordasco | 2015-06-24 | 1 | -0/+32 |
| | | | | | | | | | | | This creates a CSR, converts it to bytes, and then loads it again to ensure that the unicode strings are parsed properly. | ||||
| | * | Skip tests when the EC curve is unsupported | Ian Cordasco | 2015-06-24 | 2 | -0/+3 |
| | | | |||||
| | * | Use utf8 to encode attribute values instead of ascii | Ian Cordasco | 2015-06-24 | 1 | -2/+2 |
| | | | |||||
| | * | Add tests to the CSR Builder for EC and DSA keys | Ian Cordasco | 2015-06-24 | 3 | -5/+120 |
| | | | | | | | | | | | | | This skips certain tests on certain versions of differences in how X509_REQ_sign works on those versions. A separate pull request will address those differences. | ||||
| | * | Simplify test for unsupported extensions | Ian Cordasco | 2015-06-24 | 1 | -9/+1 |
| | | | |||||
| | * | Address review comments around add_extension method | Ian Cordasco | 2015-06-24 | 3 | -6/+8 |
| | | | | | | | | | | | | | | | | | | | - Fix typo in the docs (s/buidlder/builder/) - Remove default from the method declaration and docs - Replace ValueError with NotImpelementedError for unsupported X.509 extensions - Add TODO comment as requested by Alex - Fix test to pass critical=False since it no longer is a default value | ||||
| | * | Only allow subject_name to be set once on a Builder | Ian Cordasco | 2015-06-24 | 1 | -0/+2 |
| | | | |||||
| | * | Unconditionally encode values to ascii | Ian Cordasco | 2015-06-24 | 1 | -5/+2 |
| | | | |||||
| | * | Properly use RSA fixtures to generate private keys | Ian Cordasco | 2015-06-24 | 2 | -5/+11 |
| | | | |||||
| | * | Update registering pp with ffi.gc | Ian Cordasco | 2015-06-24 | 1 | -4/+3 |
| | | | | | | | | | | | This makes it more in-line with existing functions, e.g., L40-L47 of src/cryptography/hazmat/backends/openssl/x509.py @ b0e8ffa | ||||
| | * | Update CSR tests and implementation | Ian Cordasco | 2015-06-24 | 3 | -23/+8 |
| | | | | | | | | | | | | | | | | | | | | | - Use keyword arguments for x509.BasicConstraints in tests (missed in b790edbdc8fb9a026353d6fb99994326197705c7). - Place X509_request garbage collection under assertion. - Assert that X509 extensions created are not null. - Don't copy the extensions list in CertificateSigningBuilder. They're never appended to, so copying isn't necessary. - Use RSA key fixtures instead of generating new ones on each test run | ||||
| | * | Fix new tests to pass text value to NameAttribute | Ian Cordasco | 2015-06-24 | 1 | -20/+20 |
| | | | |||||
| | * | Address code review regarding style and gc | Ian Cordasco | 2015-06-24 | 3 | -20/+17 |
| | | | | | | | | | | | | | | | | | | | - Use keyword arguments for x509.BasicConstraints in several places - Use SHA256 instead of SHA1 in documented examples - Give function variables meaningful names in _encode_asn1_str - Accept a x509.BasicConstraints object in _encode_basic_constraints - Properly garbage-collect some things - Raise a NotImplementedError instead of a ValueError | ||||
| | * | Fixes PEP8 issue in tests. | Andre Caron | 2015-06-24 | 1 | -5/+0 |
| | | | |||||
| | * | Removes set_ prefix on CSR builder method. | Andre Caron | 2015-06-24 | 3 | -7/+7 |
| | | | |||||
| | * | Lists support for DSA and EC in CSR builder. | Andre Caron | 2015-06-24 | 1 | -1/+3 |
| | | | |||||
| | * | Fully qualifies symbols in doc references. | Andre Caron | 2015-06-24 | 1 | -5/+10 |
| | | | |||||
| | * | Changes builder extension API. | Andre Caron | 2015-06-24 | 3 | -40/+25 |
| | | | |||||
| | * | Polishes builder documentation, | Andre Caron | 2015-06-24 | 1 | -5/+28 |
| | | | |||||
| | * | Removes CSR builder version setter. | Andre Caron | 2015-06-24 | 3 | -40/+22 |
| | | | |||||
| | * | Fixes memory leak, | Andre Caron | 2015-06-24 | 1 | -0/+6 |
| | | | |||||
| | * | Extends supported range for integer conversion, | Andre Caron | 2015-06-24 | 1 | -2/+9 |
| | | | |||||
| | * | Fixes docstring typo. | Andre Caron | 2015-06-24 | 1 | -1/+1 |
| | | | |||||
| | * | Adds updates docs for method chaining in CSR builder. | Andre Caron | 2015-06-24 | 1 | -1/+4 |
| | | | |||||
| | * | Adds method chaining to CSR builder. | Andre Caron | 2015-06-24 | 2 | -35/+42 |
| | | | |||||
| | * | Removes OID to txt to OID conversion. | Andre Caron | 2015-06-24 | 1 | -10/+3 |
| | | | |||||
| | * | Cleans up some GC semantics. | Andre Caron | 2015-06-24 | 1 | -3/+16 |
| | | | |||||
| | * | Renames sign_509_request to create_x509_csr. | Andre Caron | 2015-06-24 | 5 | -2/+23 |
| | | | |||||
| | * | Fixes memory allocation. | Andre Caron | 2015-06-24 | 1 | -12/+4 |
| | | | |||||
| | * | Adds CSR builder. | Andre Caron | 2015-06-24 | 5 | -1/+377 |
| |/ | |||||
| * | Merge pull request #2062 from alex/x509-ecdsa-sha1 | Paul Kehrer | 2015-06-23 | 2 | -0/+8 |
| |\ | | | | | Added teh OID for ECDSA with SHA1. | ||||
| | * | Added teh OID for ECDSA with SHA1. | Alex Gaynor | 2015-06-23 | 2 | -0/+8 |
| |/ | | | | In practice this is rare because the BR requires ECDSA signatures to use SHA256+ (or maybe the requirements for SHA256 just came at the same time as ECDSA, idk) | ||||
| * | Merge pull request #2059 from reaperhulk/add-wildcard-san | Alex Gaynor | 2015-06-23 | 3 | -0/+39 |
| |\ | | | | | add wildcard SAN x509 test vector | ||||
| | * | add wildcard SAN x509 test vector | Paul Kehrer | 2015-06-23 | 3 | -0/+39 |
| | | | |||||
| * | | Merge pull request #2058 from reaperhulk/fix-nc-vectors | Alex Gaynor | 2015-06-23 | 3 | -36/+35 |
| |\ \ | |/ |/| | name constraints should not contain a wildcard character | ||||
| | * | name constraints should not contain a wildcard character | Paul Kehrer | 2015-06-23 | 3 | -36/+35 |
| |/ | | | | | According to RFC 5280 you should just start with a . (e.g. .domain.com instead of *.domain.com) | ||||
| * | Merge pull request #2057 from reaperhulk/i-are-dumb | Alex Gaynor | 2015-06-23 | 2 | -0/+19 |
| |\ | | | | | fix ec_cdata_to_evp_pkey bug | ||||
| | * | fix ec_cdata_to_evp_pkey bug | Paul Kehrer | 2015-06-22 | 2 | -0/+19 |
| |/ | | | | | | We weren't actually returning the object and the tests weren't catching it because we didn't try to use the evp_pkey property in the tests. The added test confirms it actually works. | ||||
| * | Merge pull request #2056 from alex/remove-workarounds | Paul Kehrer | 2015-06-22 | 3 | -10/+4 |
| |\ | | | | | Remove our workarounds for pyasn.1 bugs, a new pyasn.1 is out! | ||||
| | * | remove unused import | Alex Gaynor | 2015-06-22 | 1 | -1/+0 |
| | | | |||||
| | * | Remove our workarounds for pyasn.1 bugs, a new pyasn.1 is out! | Alex Gaynor | 2015-06-22 | 3 | -9/+4 |
| |/ | |||||
| * | Merge pull request #2055 from reaperhulk/name-constraints-bindings | Alex Gaynor | 2015-06-22 | 1 | -0/+25 |
| |\ | | | | | add name constraints and general subtree struct and macro stack defs | ||||
| | * | add name constraints and general subtree struct and macro stack defs | Paul Kehrer | 2015-06-21 | 1 | -0/+25 |
| |/ | |||||
| * | Merge pull request #2053 from reaperhulk/name-constraints-eq | Alex Gaynor | 2015-06-21 | 2 | -0/+41 |
| |\ | | | | | add eq/ne support to NameConstraints | ||||
| | * | add eq/ne support to NameConstraints | Paul Kehrer | 2015-06-21 | 2 | -0/+41 |
| |/ | |||||
| * | Merge pull request #1974 from reaperhulk/name-constraints | Alex Gaynor | 2015-06-21 | 3 | -0/+151 |
| |\ | | | | | add nameconstraints classes | ||||
| | * | add nameconstraints classes | Paul Kehrer | 2015-06-21 | 3 | -0/+151 |
| |/ | |||||
 |
index : cloud-email/cryptography | |
| python cryptography | James |
| aboutsummaryrefslogtreecommitdiffstats |