Commit message (Collapse) | Author | Age | Files | Lines | ||
---|---|---|---|---|---|---|
... | ||||||
* | Added BN_is_negative -- refs #4830 (#4831) | Alex Gaynor | 2019-04-05 | 1 | -0/+1 | |
| | ||||||
* | fix != comparison in py2 (fixes #4821) (#4822) | Mathias Ertl | 2019-03-25 | 1 | -0/+6 | |
| | | | | | | | | * fix != comparison in py2 (fixes #4821) * remove blank line b/c pep8 * move __ne__ next to __eq__ as per review request | |||||
* | implement eq__, __hash__ and __repr__ for OCSPNoCheck and PrecertPoison (#4819) | Mathias Ertl | 2019-03-25 | 1 | -0/+24 | |
| | ||||||
* | Try to use getrandom even in manylinux1 wheels (#4816) | Alex Gaynor | 2019-03-19 | 1 | -0/+12 | |
| | | | | | | * Try to use getrandom even in manylinux1 wheels * typo | |||||
* | add new branch for unsupported openssh serialization (#4813) | Paul Kehrer | 2019-03-18 | 1 | -2/+5 | |
| | | | | | we don't support ed448 openssh keys so we'll use that to test this branch. if we ever do support ed448 keys we can always just call this private method directly to keep coverage. | |||||
* | add OpenSSH serialization for ed25519 keys (#4808) (#4811) | bernhl | 2019-03-17 | 1 | -0/+7 | |
| | | | | | | * add OpenSSH serialization for ed25519 keys (#4808) * address review comments | |||||
* | poly1305 support (#4802) | Paul Kehrer | 2019-03-09 | 4 | -0/+117 | |
| | | | | | | | | | | | | | | | | | | | | * poly1305 support * some more tests * have I mentioned how bad the spellchecker is? * doc improvements * EVP_PKEY_new_raw_private_key copies the key but that's not documented Let's assume that might change and be very defensive * review feedback * add a test that fails on a tag of the correct length but wrong value * docs improvements | |||||
* | Improve deprecation warning to specify the release (#4804) | Josh Soref | 2019-03-08 | 1 | -2/+2 | |
| | ||||||
* | remove maccontext (#4803) | Paul Kehrer | 2019-03-07 | 6 | -47/+6 | |
| | ||||||
* | add poly1305 NID/EVP, and EVP_DigestSign{Update,Final} for incremental (#4799) | Paul Kehrer | 2019-03-07 | 3 | -0/+25 | |
| | ||||||
* | Reopen master for 2.7 (#4788) | Alex Gaynor | 2019-02-28 | 1 | -1/+1 | |
| | ||||||
* | 2.6.1 release with fixed wheels (#4792) | Alex Gaynor | 2019-02-28 | 1 | -1/+1 | |
| | ||||||
* | bump version and update changelog for 2.6 release (#4787) | Paul Kehrer | 2019-02-27 | 1 | -1/+1 | |
| | | | | | | * bump version and update changelog for 2.6 release * 1.1.1b wheels for 2.6 | |||||
* | support ed25519 openssh public keys (#4785) | Paul Kehrer | 2019-02-27 | 4 | -9/+21 | |
| | | | | | | * support ed25519 openssh public keys * don't need this check | |||||
* | ed448 support (#4610) | Paul Kehrer | 2019-02-27 | 3 | -0/+276 | |
| | | | | | | | | * ed448 support * move the changelog entry * flake8 | |||||
* | ed25519 support (#4114) | Paul Kehrer | 2019-02-26 | 4 | -0/+281 | |
| | | | | | | * ed25519 support * review feedback | |||||
* | remove unused x509 bindings (#4776) | Paul Kehrer | 2019-02-26 | 1 | -87/+1 | |
| | ||||||
* | remove unused locking functions (#4780) | Paul Kehrer | 2019-02-26 | 2 | -29/+2 | |
| | | | | | | | | * remove unused locking functions we do all this in C when necessary * oops, need this | |||||
* | remove unused DH bindings (#4779) | Paul Kehrer | 2019-02-26 | 1 | -7/+0 | |
| | ||||||
* | remove unused PEM bindings (#4778) | Paul Kehrer | 2019-02-26 | 1 | -10/+0 | |
| | ||||||
* | how about we have less NIDs (#4777) | Paul Kehrer | 2019-02-26 | 1 | -204/+0 | |
| | | | | | | * how about we have less NIDs * pyopenssl needs these two NIDs still | |||||
* | strip out unused EVP functions (#4775) | Paul Kehrer | 2019-02-26 | 1 | -51/+0 | |
| | ||||||
* | Remove unused constant binding from ecdh.py (#4774) | Alex Gaynor | 2019-02-26 | 1 | -3/+0 | |
| | ||||||
* | Remove unused constant from ec.py bindings (#4773) | Alex Gaynor | 2019-02-26 | 1 | -3/+0 | |
| | ||||||
* | Remove unused bindings from aes.py (#4772) | Alex Gaynor | 2019-02-26 | 1 | -7/+1 | |
| | ||||||
* | Removed unused constant from bindings (#4771) | Alex Gaynor | 2019-02-26 | 1 | -2/+0 | |
| | ||||||
* | Polish off removal of unused engine bindings (#4769) | Alex Gaynor | 2019-02-25 | 2 | -15/+0 | |
| | ||||||
* | reduce our engine bindings even more (#4768) | Paul Kehrer | 2019-02-25 | 5 | -110/+28 | |
| | ||||||
* | support NO_ENGINE (#4763) | Paul Kehrer | 2019-02-25 | 5 | -11/+122 | |
| | | | | | | | | * support OPENSSL_NO_ENGINE * support some new openssl config args * sigh | |||||
* | Remove a bunch of unused engine bindings (#4766) | Alex Gaynor | 2019-02-25 | 1 | -61/+0 | |
| | ||||||
* | why did we have these variables (#4764) | Paul Kehrer | 2019-02-24 | 2 | -3/+1 | |
| | ||||||
* | add an EC OID to curve dictionary mapping (#4759) | Paul Kehrer | 2019-02-20 | 1 | -0/+33 | |
| | | | | | | | | | | * add an EC OID to curve dictionary mapping * oid_to_curve function * changelog and docs fix * rename to get_curve_for_oid | |||||
* | encode the package version in the shared object (#4756) | Paul Kehrer | 2019-02-20 | 2 | -0/+37 | |
| | | | | | | | | | | * encode the package version in the shared object * review feedback * move into build_ffi so the symbol is in all shared objects * review feedback | |||||
* | Simplify string formatting (#4757) | Alex Gaynor | 2019-02-20 | 24 | -74/+74 | |
| | ||||||
* | Run wycheproof RSA tests on LibreSSL>=2.8 (#4737) | Alex Gaynor | 2019-01-24 | 1 | -1/+10 | |
| | | | | | | | | * Run wycheproof RSA tests on LibreSSL>=2.8 * Define it this way * These are errors on libressl | |||||
* | Fixes #4734 -- Deal with deprecated things (#4736) | Alex Gaynor | 2019-01-23 | 6 | -40/+7 | |
| | | | | | | | | | | * Fixes #4734 -- Deal with deprecated things - Make year based aliases of PersistentlyDeprecated so we can easily assess age - Removed encode/decode rfc6979 signature - Removed Certificate.serial * Unused import | |||||
* | Use O_CLOEXEC when it's available (#4733) | Alex Gaynor | 2019-01-23 | 1 | -10/+16 | |
| | | | | | | | | * Use O_CLOEXEC when it's available * Don't have two vars with the same name * A normal person would be emberassed | |||||
* | reopen master for 2.6 work (#4730) | Paul Kehrer | 2019-01-22 | 1 | -1/+1 | |
| | ||||||
* | changelog and version bump for 2.5 (#4729) | Paul Kehrer | 2019-01-22 | 1 | -1/+1 | |
| | ||||||
* | allow asn1 times of 1950-01-01 and later. (#4728) | Paul Kehrer | 2019-01-22 | 2 | -20/+20 | |
| | | | | | | | | * allow asn1 times of 1950-01-01 and later. * add a test * pretty up the test | |||||
* | allow 32-bit platforms to encode certs with dates > unix epoch (#4727) | Paul Kehrer | 2019-01-21 | 1 | -15/+6 | |
| | | | | | | | | | | | | | | | | | Previously we used unix timestamps, but now we are switching to using ASN1_TIME_set_string and automatically formatting the string based on the year. The rule is as follows: Per RFC 5280 (section 4.1.2.5.), the valid input time strings should be encoded with the following rules: 1. UTC: YYMMDDHHMMSSZ, if YY < 50 (20YY) --> UTC: YYMMDDHHMMSSZ 2. UTC: YYMMDDHHMMSSZ, if YY >= 50 (19YY) --> UTC: YYMMDDHHMMSSZ 3. G'd: YYYYMMDDHHMMSSZ, if YYYY >= 2050 --> G'd: YYYYMMDDHHMMSSZ 4. G'd: YYYYMMDDHHMMSSZ, if YYYY < 2050 --> UTC: YYMMDDHHMMSSZ Notably, Dates < 1950 are not valid UTCTime. At the moment we still reject dates < Jan 1, 1970 in all cases but a followup PR can fix that. | |||||
* | bind EVP_R_MEMORY_LIMIT_EXCEEDED and update a test (#4726) | Paul Kehrer | 2019-01-21 | 3 | -0/+22 | |
| | | | | | | | | | | | * bind EVP_R_MEMORY_LIMIT_EXCEEDED and update a test This will allow OpenSSL 1.1.1 on 32-bit (including our Windows 32-bit builders) to fail as expected. Technically this isn't a malloc error, but rather failing because the allocation requested is larger than 32-bits, but raising a MemoryError still seems appropriate * what you want an endif too? | |||||
* | deprecate encode_point and migrate all internal callers (#4720) | Paul Kehrer | 2019-01-20 | 3 | -2/+18 | |
| | ||||||
* | add support for encoding compressed points (#4638) | Paul Kehrer | 2019-01-20 | 3 | -7/+64 | |
| | | | | | | * add support for encoding compressed points * review feedback | |||||
* | shake128/256 support (#4611) | Paul Kehrer | 2019-01-19 | 2 | -5/+61 | |
| | | | | | | | | | | | | | | * shake128/256 support * remove block_size * doc an exception * change how we detect XOF by adding _xof attribute * interface! * review feedback | |||||
* | expose the ed448 nid (#4717) | Paul Kehrer | 2019-01-19 | 1 | -0/+1 | |
| | | | | we already did all the conditional binding, but forgot to actually expose it. | |||||
* | support byteslike in KBKDFHMAC (#4711) | Paul Kehrer | 2019-01-17 | 1 | -1/+1 | |
| | ||||||
* | support byteslike in ConcatKDF{HMAC,Hash}, Scrypt, and X963KDF (#4709) | Paul Kehrer | 2019-01-17 | 4 | -4/+5 | |
| | | | | | | | | * byteslike concatkdf * byteslike scrypt * byteslike x963kdf | |||||
* | Support byteslike in HKDF and PBKDF2HMAC (#4707) | Paul Kehrer | 2019-01-17 | 3 | -4/+5 | |
| | | | | | | | | * support byteslike in HKDF * support byteslike in PBKDF2HMAC * add missing docs | |||||
* | support bytes-like for X25519PrivateKey.from_private_bytes (#4698) | Paul Kehrer | 2019-01-17 | 1 | -6/+31 | |
| | | | yuck. |