| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* Expose BIGNUM constant time operations
This commit exposes the following functions:
BN_set_flags
BN_get_flags
BN_MONT_CTX_new
BN_MONT_CTX_set
BN_MONT_CTX_free
BN_mod_exp_mont
BN_mod_exp_mont_consttime
This commit also exposes the BN_FLG_CONSTTIME flag.
* Add myself to AUTHORS
|
| |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* add rotate method
* add some more tests for the failure modes
* start adding some documentation for the rotate method
* operate on a single token at a time, leave lists to the caller
* add versionadded
add versionadded, drop rotate from class doctest
* give rotate a doctest
* single level, not aligned
* add changelog for mf.rotate
* show that, once rotated, the old fernet instance can no longer decrypt the token
* add the instead of just the how
* update docs to reflect removal of ttl from rotate
* update tests
* refactor internal methods so that we can extract the timestamp
* implement rotate
* update wordlist (case sensitive?)
* lints
* consistent naming
* get_token_data/get_unverified_token_data -> better name
* doc changes
* use the static method, do not treat as imethod
* move up to MultiFernet docs
* add to authors
* alter wording
* monkeypatch time to make it less possible for the test to pass simply due to calls occuring in less than one second
* set the time after encryption to make sure that the time is preserved as part of re-encryption
|
|
|
|
|
|
| |
* Add CHANGELOG entries for DH serialization
* update AUTHORS
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* finish https://github.com/pyca/cryptography/pull/1973
* change API & add test
Function will now return an instance of EllipticCurvePrivateKey, as that
is the users' ultimate goal anyway.
* fix test
* improve coverage
* complete coverage
* final fix
* centos fix
* try ec.SECT283K1
* try ec.SECT571K1
* try ec.SECT409K1
* try ec.SECT283K1
* try ec.SECT233K1
* try ec.SECT163K1
* try ec.SECT571R1
* try ec.SECT409R1
* try ec.SECT283R1
* try ec.SECT233R1
* try ec.SECT163R2
* try ec.SECP521R1
* try ec.SECP256R1
* retry
* cleanup asserts
* use openssl_assert
* skip unsupported platforms
* change API name to derive_private_key
* change version added
* improve description of `secret` param
* separate successful and failure test cases
* simplify successful case
* add docs for derive_elliptic_curve_public_point
* add period
* update CHANGELOG.rst & AUTHORS.rst
for https://github.com/pyca/cryptography/pull/3225
* added reST prefix
* reduce line length
|
|
|
|
|
|
|
|
| |
Update the Name class to accept and internally store a list of
RelativeDistinguishedName objects. Add the 'rdns' attribute to give
access to the RDNs. Update ASN.1 routines to correctly decode and
encode multi-value RDNs.
Fixes: https://github.com/pyca/cryptography/issues/3199
|
| |
|
|
|
| |
Signed-off-by: Simo Sorce <simo@redhat.com>
|
| |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* Add more bindings to OpenSSL, all are used by the Python _ssl module.
* Add a conditional: SSL_CTX_clear_options() does not exist before 0.9.8m
* 80 cols
* Condionally define the TLSEXT error codes.
* Address review comments
* Remove all parameter names
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
|
|
|
|
|
| |
for loading of OpenSSH RSA public keys
Also added load_ssh_public_key as a generic method that can be later extended to support more public key algorithms.
|
| |
|
|
|
|
| |
Added Michael Hart to authors
|
| |
|
|
|
|
|
| |
I have a new key, see revocation: https://gist.github.com/lvh/9412036
New key is forward-signed with old one.
|
| |
|
| |
|
| |
|
| |
|
|
|
|
|
| |
Without this binding it is impossible to get any extension objects from an
X509Req object.
|
| |
|
| |
|
| |
|
|
|
|
| |
be installed by `pip install .`
|
| |
|
| |
|
| |
|
|
|
|
|
|
|
| |
* Moved to structure similar to OpenTLS
* api modified to load the cffi modules
* cffi verify methods broken out
* Jarret Raim and I pair programmed this
|
| |
|
|
|
|
|
|
| |
correct cffi dependency to setup_requires
ignore cffi, pycparser and pytest egg directories
add myself to AUTHORS.rst
|
| |
|
| |
|
| |
|
|
|