aboutsummaryrefslogtreecommitdiffstats
path: root/docs/development
Commit message (Collapse)AuthorAgeFilesLines
...
* Update docs to reflect a change that occured long ago with bindings (#3517)Alex Gaynor2017-04-261-3/+4
|
* format some function names in docs (#3511)Alex Gaynor2017-04-211-1/+1
|
* Another site goes HTTPS! (#3477)Alex Gaynor2017-03-231-1/+1
|
* Refs #3461 -- added a test vector with SCTs (#3462)Alex Gaynor2017-03-191-0/+2
| | | | | | * Refs #3461 -- added a test vector with SCTs * timestamp is a word
* update dev docs to also say macOS and use openssl 1.1 (#3452)Paul Kehrer2017-03-141-4/+4
|
* DH subgroup order (q) (#3369)Aviv Palivoda2017-03-051-0/+14
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Support DH q (subgroup order) * Change RFC5114.txt to NIST format * Add tests for DH q * Update docs for DH q * Fix pep8 * Improve test covergae for DH q * Create _dh_params_dup that copy q if DHparams_dup don't On OpenSSL < 1.0.2 DHparams_dup don't copy q. _dh_params_dup call DHparams_dup and if the version is smaller than 1.0.2 copy q manually * Copy q manually on libressl * Add to test vectors serialized RFC5114 2048 bit DH parameters with 224 bit subgroup * Support serialization of DH with q * Add tests for serialization of DH with q * Support DH serialization with q only if Cryptography_HAS_EVP_PKEY_DHX is true * Raise exception when trying to serialize DH X9.42 when not supported * raise unsupported key type when deserilizing DH X9.42 if not supported * pep8 fixes * Fix test_serialization * Add dhx_serialization_supported method to DHBacked * document q in dh_parameters_supported * Rename dhx_serialization_supported to dh_x942_serialization_supported
* Update NIST urls in docs (#3418)Alex Gaynor2017-02-271-1/+1
|
* Use HTTPS urls for a few more websites (#3416)Alex Gaynor2017-02-231-2/+2
|
* This is HTTPS now (#3407)Alex Gaynor2017-02-181-1/+1
|
* DH serialization (#3297)Aviv Palivoda2017-02-071-0/+14
| | | | | | | | | | | | | | | | | | * DH keys support serialization * Add DH serialization documentation * Add tests for DH keys serialization in DER encoding * update version to 1.8 * Allow only SubjectPublicKeyInfo serialization * Remove support in TraditionalOpenSSL format * Fix pep8 * Refactor dh serialization tests
* Drop 1.0.0 (#3312)Alex Gaynor2016-12-131-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * delete the 1.0.0 support * drop the version check * drop the AES-CTR stuff * Update the example * openssl truncates for us now * delete unused test * unused imports * Remove a bunch of conditional bindings for NPN * no more 1.0.0 builders * libressl fix * update the docs * remove dead branches * oops * this is a word, damnit * spelling * try removing this * this test is not needed * unused import
* OpenSSL DH backend implementation [Second attempt] (#2914)Aviv Palivoda2016-11-261-0/+8
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Start of OpenSSL DH backend implementation * Supporting DH in MultiBackend * DHBackend has dh_parameters_supported method * Removed DHParametersWithNumbers and DHPrivateKeyWithNumbers from documentation * Removed ExchangeContext. exchange is a method of DHPrivateKeyWithSerialization * PEP8 fixes * Fixed TestDH.test_bad_tls_exchange * Fixed generate_private_key reference in dh documentation * test DH multibackend support * testing DH coversion to serialized * Validating that we receive serialized class in test_generate_dh * Testing DH exchange symmetric key padding * struct DH is now opaqued * PEP8 fixes * Testing load_dh_private_numbers throws ValueError when DH_check fails * Using openssl_assert * Passing keywords arguments in DH key exchange example * test_dh::test_bad_tls_exchange now uses pre calculated parameters * TestDH - Add test that the computed secret is equivalent to the definition by comparing with secret computed in pure python * Add missing generator parameter to DHBackend interface docs. * Include parameter type in DHBackend abc docs. * Add docs for dh.generate_parameters function * Remove the dh Numbers section, and move the DHNumbers class docs to where they are first used. * Add note of big endian byte packing to DH exchange method. * DH documentation updates. Add single sentence overview with wikipedia link. Add paragraph on assembling using Numbers objects. Add link to backend interface docs. First section was all indented, I think by mistake. * Add exchange method to DHPrivateKey abstract base class. * Small tweaks to DH documentation - remove Provider. * Add endian to dictionary * Use utils.int_from_bytes in test_tls_exchange_algorithm * Removed duplicate line * Change dh.rst exchange algorithm from doctest to code-block The example in the Diffie-Hellman exhange algorithm is using 2048 bits key. Generating the parameters of 2048 takes long time. This caused the automated tests to fail. In order to pass the tests we change the example to code-block so it will not run in the doc tests. * Fix dh docs * Document the generator in DHBackend relevant methods * Fix dh tests * use DHparams_dup * Fix key type to unsigned char as expected by DH_compute_key * Validate that DH generator is 2 or 5 * test dh exchange using botan vectors * group all numbers classes * Simplify _DHPrivateKey * Rename test with serialized to numbers * Move bad exchange params to external vector file * update exchange versionadded to 1.7 * Make key_size bit accurate * Change botan link * Added CHANGELOG entry
* Random flake8 cleanups for the latest release (#3242)Alex Gaynor2016-11-155-0/+5
|
* add alternate signature OID for RSA with SHA1 + test and vector (#3227)Paul Kehrer2016-11-111-0/+4
| | | | | | * add alternate signature OID for RSA with SHA1 + test and vector * mozilla is a proper noun leave me alone spellchecker
* Last pass over fixing the links (#3224)Alex Gaynor2016-11-063-3/+3
|
* Use the canonical host for two urls on the OpenSSL website (#3219)Alex Gaynor2016-11-061-1/+1
|
* Clarified Windows development installation and docd upstream enchant bug (#3128)Nick Badger2016-09-031-3/+13
| | | | | | | | * Clarified Windows development installation and doc'd upstream enchant bug * Fixed whitespace problems * Fixed merge resolution mistake
* Add recommendation about terminology (#3079)Gabriel Orisaka2016-08-021-0/+5
|
* Random grammar stuff (#2955)Alex Gaynor2016-06-022-2/+2
|
* add RSA OAEP SHA2 vectors via custom vector creation (#2829)Paul Kehrer2016-06-024-0/+600
| | | | | | | | | | | | | | | | | | | | | | | | * add RSA OAEP SHA2 vectors via custom vector creation * update the docs * retab * remove sha2 oaep support (it will be added again in another PR) * add header to each vector file * Add Java 8 Bouncy Castle based verification of RSA-OAEP SHA-2 test vectors (#4) * Update Java verifier to skip past test vector file header if present (#5) * Update Java verifier to skip past test vector file header if present * Fix tabs vs. space whitespace * generate sha1 oaep permutations as well + verify support in java * address review feedback
* Update URLs for new RTD domain (#2879)Alex Gaynor2016-04-281-1/+1
|
* Update getting-started.rst to clarify OS X Homebrew pip install (#2876)Chris Collis2016-04-231-3/+31
| | | | | | | | | | | | | | | | * Update getting-started.rst to clarify OS X Homebrew pip install On OS X El Capitan following the current instructions fails with fatal error: 'openssl/opensslv.h' file not found on pip install -r dev-requirements.txt; this change adds to the instructions to clarify that CFLAGS and LDFLAGS may need to be set. I based this on the instructions in the Installation page. * Address reaperhulk comments, OpenSSL must be installed. Clarify that OpenSSL must be installed via Homebrew or MacPorts and how to build statically. * Make Homebrew, MacPorts, OpenSSL links * Fix doc errors and improve overall flow Insert tip about tox needing the same flags Make console example multi-line so that pip install is visible Change heading levels to allow OS X sub-section
* Use HTTPS for a link in our docs (#2869)Alex Gaynor2016-04-091-1/+1
|
* Add vectors for unkeyed blake2s and blake2b. (#2867)Terry Chia2016-04-091-0/+2
| | | | | | | | | | * Add vectors for unkeyed blake2s and blake2b. * Add short note describing source of vectors. * Add link to OpenSSL repository. * Amend docs.
* Merge pull request #2773 from jared-mess/test-vectors-NIST-800-108-counter-modePaul Kehrer2016-03-151-0/+2
|\ | | | | NIST SP 800-108 Counter Mode KDF test vectors.
| * Fixing line > 79 characters, PEP8Jared Messenger2016-03-141-1/+2
| |
| * NIST SP 800-108 Counter Mode KDF test vectors.Jared Messenger2016-03-071-0/+1
| | | | | | | | NIST CAVP test vectors for Counter Mode KDF using HMAC-SHA1, HMAC-SHA224, HMAC-SHA256 and HMAC-SHA512 as the PRF.
* | add e-trust russian x509 test vectorPaul Kehrer2016-03-111-0/+4
|/
* HTTPS some links, in the odd event users of a cryptographic library would ↵Alex Gaynor2016-03-061-1/+1
| | | | care about authentication, integrity, or confidentiality
* Merge pull request #2670 from joernheissler/x509_req_verifyPaul Kehrer2016-03-061-2/+4
|\ | | | | Add verify method on CertificateSigningRequest
| * Add verify method on CertificateSigningRequestJoern Heissler2016-01-131-2/+4
| |
* | add another policy constraints test vectorPaul Kehrer2016-02-271-0/+2
| |
* | Document the vectorAlex Gaynor2016-02-261-0/+3
|/
* update some links with the redirects shown in the linkcheckerPaul Kehrer2016-01-011-2/+2
|
* new unsupported extension x509 test vectorPaul Kehrer2015-12-301-0/+4
| | | | see #2288
* add new CRL test vectorPaul Kehrer2015-12-221-0/+3
|
* support CRLs with no revoked certificatesPaul Kehrer2015-12-201-0/+1
|
* use the non-deprecated name for this functionAlex Gaynor2015-12-191-2/+2
|
* Also include arc4 in the toctree in test vectorsEhren Kret2015-11-281-0/+1
|
* Fix pep8 lint errorsEhren Kret2015-11-281-9/+18
|
* Reference arc4.rst from the test-vectors.rst pageEhren Kret2015-11-281-1/+3
|
* Add support for 160 bit ARC4 keysEhren Kret2015-11-283-0/+230
|
* add crl file to test-vectors.rstErik Trauschke2015-10-151-0/+2
|
* Merge pull request #2402 from ddcc/patch-1Paul Kehrer2015-10-111-0/+6
|\ | | | | minor fix to handle malformed certificates without hostname
| * fix to handle malformed certificates without hostnameDominic Chen2015-10-101-0/+6
| |
* | Fixed #2404 -- handle a certificate with an unknown public keyAlex Gaynor2015-10-101-0/+2
|/
* drop the tls, it uses a weird CA that's not supported on our CIAlex Gaynor2015-10-021-1/+1
|
* a few more fixesAlex Gaynor2015-10-021-2/+2
|
* HTTPS-ifiy to some linksAlex Gaynor2015-10-021-1/+1
|
* Add NIST Vectors for ANSI X9.63 KDFSimo Sorce2015-09-181-0/+1
| | | | | | | Source: http://csrc.nist.gov/groups/STM/cavp/documents/components/800-135testvectors/ansx963_2001.zip Signed-off-by: Simo Sorce <simo@redhat.com>
generated by cgit v1.2.3 (git 2.25.1) at 2025-04-02 10:50:22 +0000