Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Merge pull request #2778 from reaperhulk/110-patch-2 | Alex Gaynor | 2016-03-09 | 1 | -0/+6 |
|\ | | | | | handle removal of M_ASN1_TIME_dup | ||||
| * | nicer formatting for the macro | Paul Kehrer | 2016-03-09 | 1 | -2/+1 |
| | | |||||
| * | handle removal of M_ASN1_TIME_dup | Paul Kehrer | 2016-03-08 | 1 | -0/+7 |
| | | | | | | | | OpenSSL 1.1.0 compat work | ||||
* | | Merge pull request #2781 from reaperhulk/110-patch-5 | Alex Gaynor | 2016-03-09 | 3 | -25/+1 |
|\ \ | | | | | | | config header changes for 1.1.0 | ||||
| * | | config header changes for 1.1.0 | Paul Kehrer | 2016-03-08 | 3 | -25/+1 |
| |/ | | | | | | | | | | | OPENSSL_config is deprecated in 1.1.0 and OPENSSL_no_config is a macro provided solely for compatibility. We don't use either of these and the only thing we actually need is an opaque typedef for CONF. | ||||
* | | Merge pull request #2777 from reaperhulk/110-patch-1 | Alex Gaynor | 2016-03-09 | 1 | -1/+10 |
|\ \ | | | | | | | In OpenSSL 1.1.0 AES_ctr128_encrypt no longer exists | ||||
| * | | In OpenSSL 1.1.0 AES_ctr128_encrypt no longer exists | Paul Kehrer | 2016-03-08 | 1 | -1/+10 |
| |/ | | | | | | | This is OpenSSL 1.1.0 compatibility patch 1 of n | ||||
* | | Merge pull request #2780 from reaperhulk/110-patch-4 | Alex Gaynor | 2016-03-08 | 1 | -1/+0 |
|\ \ | | | | | | | BIO_ptr_ctrl's ret type changed from char to void...but we don't use it | ||||
| * | | BIO_ptr_ctrl's ret type changed from char to void...but we don't use it | Paul Kehrer | 2016-03-08 | 1 | -1/+0 |
| |/ | | | | | | | So let's reduce our exposure to this sort of thing and remove it. | ||||
* / | ASN1_TIME is actually an ASN1_STRING so typedef it | Paul Kehrer | 2016-03-08 | 1 | -3/+1 |
|/ | | | | | This will be useful in OpenSSL 1.1.0 since you sometimes need to duplicate a time. | ||||
* | Removed code to silence OpenSSL deprecation warnings on OS X | Alex Gaynor | 2016-03-07 | 1 | -16/+0 |
| | | | | We dont' officially support compiling against platform OpenSSL on OS X | ||||
* | added the correct error handling for the failing test | Alex Gaynor | 2016-03-05 | 1 | -0/+1 |
| | |||||
* | move BIO_new_mem_buf to macros to handle 1.0.2g signature change | Paul Kehrer | 2016-03-01 | 1 | -1/+2 |
| | |||||
* | drop this for now | Alex Gaynor | 2016-02-27 | 1 | -1/+0 |
| | |||||
* | void | Alex Gaynor | 2016-02-27 | 1 | -1/+1 |
| | |||||
* | More policy constraint bindings | Alex Gaynor | 2016-02-27 | 1 | -0/+4 |
| | |||||
* | Added policy constraint struct binding | Alex Gaynor | 2016-02-26 | 1 | -0/+5 |
| | |||||
* | one more function | Alex Gaynor | 2016-01-31 | 1 | -0/+2 |
| | |||||
* | Added an addition binding that PyOpenSSL might want | Alex Gaynor | 2016-01-31 | 1 | -0/+2 |
| | |||||
* | Removed kSecTrustResultConfirm, which breaks the build on 10.10 since it's ↵ | Alex Gaynor | 2016-01-23 | 1 | -1/+0 |
| | | | | deprecated | ||||
* | Move SecTrustCreateWithCertificates to MACROS. | Cory Benfield | 2016-01-22 | 1 | -0/+4 |
| | | | | Annoyingly, the type of the first parameter changed across versions. | ||||
* | Fix indentation. | Cory Benfield | 2016-01-22 | 1 | -8/+8 |
| | |||||
* | Remove SecTrustCreateWithCertificates. | Cory Benfield | 2016-01-22 | 1 | -1/+0 |
| | | | | It's not present on 10.8. | ||||
* | Dedent closing brace. | Cory Benfield | 2016-01-22 | 1 | -1/+1 |
| | |||||
* | New bindings for evaluating certificates. | Cory Benfield | 2016-01-22 | 3 | -0/+48 |
| | |||||
* | SecTrust for evaluating certificates. | Cory Benfield | 2016-01-22 | 1 | -0/+15 |
| | |||||
* | Basic mutable array bindings. | Cory Benfield | 2016-01-22 | 1 | -0/+10 |
| | |||||
* | add initial OCSP bindings | Paul Kehrer | 2016-01-18 | 2 | -0/+68 |
| | |||||
* | consolidate the windows specific header trickery we need to do | Paul Kehrer | 2016-01-18 | 2 | -9/+8 |
| | |||||
* | Merge pull request #2646 from reaperhulk/static-callbacks | Alex Gaynor | 2016-01-08 | 2 | -0/+51 |
|\ | | | | | Static callbacks | ||||
| * | remove the callbacks we don't use in cryptography | Paul Kehrer | 2016-01-07 | 1 | -61/+0 |
| | | |||||
| * | Port callbacks to new static callback | Christian Heimes | 2016-01-07 | 2 | -0/+112 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | cffi 1.4.0 will introduce a new API to create static callbacks. Contrary to the old callback API, static callbacks no longer depend on libffi's dynamic code generation for closures. Static code has some benefits over dynamic generation. For example the code is faster. Also it doesn't need writeable and executable memory mappings, which makes it compatible with SELinux's deny execmem policy. The branch depends on PR #2488. https://bitbucket.org/cffi/cffi/issues/232/static-callbacks Closes: #2477 Signed-off-by: Christian Heimes <cheimes@redhat.com> | ||||
* | | use EVP_PKEY_id where we can | Paul Kehrer | 2016-01-07 | 1 | -2/+7 |
| | | |||||
* | | add Cryptography_EVP_PKEY_id | Paul Kehrer | 2016-01-07 | 1 | -0/+6 |
| | | |||||
* | | opaque EVP_PKEY since EVP_PKEY_id exists | Paul Kehrer | 2016-01-07 | 1 | -4/+1 |
|/ | |||||
* | convert other extra_link_args calls | Paul Kehrer | 2016-01-01 | 2 | -6/+4 |
| | |||||
* | don't add the NXCOMPAT and DYNAMICBASE flags if the compiler isn't msvc | Paul Kehrer | 2016-01-01 | 2 | -8/+25 |
| | |||||
* | RSA_R_OAEP_DECODING_ERROR is pretty ubiquitous | Paul Kehrer | 2015-12-27 | 1 | -8/+0 |
| | |||||
* | Add support for RSA_R_OAEP_DECODING_ERROR error flag. | Christopher Grebs | 2015-12-27 | 1 | -0/+9 |
| | |||||
* | Simplify code slightly by adding a new binding | Alex Gaynor | 2015-12-26 | 1 | -0/+2 |
| | |||||
* | new asn1 bindings needed for #2582 | Paul Kehrer | 2015-12-26 | 1 | -0/+3 |
| | |||||
* | X509_REVOKED_dup isn't available everywhere, we get to define our own | Paul Kehrer | 2015-12-25 | 1 | -1/+10 |
| | |||||
* | support revoked certificates in CertificateRevocationListBuilder | Paul Kehrer | 2015-12-25 | 1 | -0/+1 |
| | |||||
* | a different approach to refactoring the x509 extension addition | Paul Kehrer | 2015-12-24 | 1 | -0/+1 |
| | |||||
* | Add PEM_write_bio_DHparams binding | evilaliv3 | 2015-12-24 | 1 | -0/+1 |
| | |||||
* | add binding for setting the revocation date of an X509_REVOKED | Paul Kehrer | 2015-12-23 | 1 | -0/+2 |
| | |||||
* | Remove spaces. | Cory Benfield | 2015-12-23 | 1 | -1/+1 |
| | |||||
* | Add binding for CommonCrypto SecTrustCopyAnchorCertificates | Cory Benfield | 2015-12-23 | 2 | -0/+23 |
| | |||||
* | Comment lingering SSLv2 symbol. | Cory Benfield | 2015-12-14 | 1 | -0/+4 |
| | |||||
* | Remove SSLv2 bindings. | Cory Benfield | 2015-12-14 | 1 | -16/+1 |
| | | | | | | | | | This commit removes bindings that allow users to set SSLv2 handshake methods. These are regarded as unnecessary and out-of-date: see #2527. This commit does leave in a few options that refer to SSLv2 in order to avoid breaking deployments that rely on them, and in order to allow users to continue to request that SSLv2 not be enabled at all in their OpenSSL. |