aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
* Add binding for CommonCrypto SecTrustCopyAnchorCertificatesCory Benfield2015-12-232-0/+23
|
* CRLNumber needs to be a class for reasons.Paul Kehrer2015-12-223-2/+28
|
* add support for parsing AuthorityInfoAccess and IssuerAltName CRL extsPaul Kehrer2015-12-221-0/+4
| | | | Expand the CRL extensions test to check the value
* lowercase the first letter since that's how it's actually declaredPaul Kehrer2015-12-221-1/+1
|
* support parsing CRL extensions in the OpenSSL backendPaul Kehrer2015-12-212-1/+20
|
* add a CRL public_bytes methodPaul Kehrer2015-12-202-0/+19
|
* Merge pull request #2538 from reaperhulk/empty-crls-are-beautiful-tooAlex Gaynor2015-12-201-7/+6
|\ | | | | support CRLs with no revoked certificates
| * support CRLs with no revoked certificatesPaul Kehrer2015-12-201-7/+6
| |
* | Merge pull request #2525 from nbastin/20151112-access-methodPaul Kehrer2015-12-201-8/+3
|\ \ | |/ |/| issue-2524
| * PEP8 fixesNick Bastin2015-12-201-3/+1
| |
| * 4-space indent for this repoNick Bastin2015-12-201-1/+1
| |
| * Allow any OID for access_method, validate OIDs at creation time, fix tests.Nick Bastin2015-12-201-5/+2
| |
* | Merge pull request #2534 from alex/ev-oidPaul Kehrer2015-12-191-0/+13
|\ \ | | | | | | Fixed #2531 -- added missing EV oid
| * | updated the short names of oidsAlex Gaynor2015-12-191-7/+3
| | |
| * | added oid namesAlex Gaynor2015-12-191-0/+11
| | |
| * | added business category oidAlex Gaynor2015-12-191-0/+1
| | |
| * | too many newlinesAlex Gaynor2015-12-191-1/+0
| | |
| * | added two more oidsAlex Gaynor2015-12-191-0/+5
| | |
| * | Fixed #2531 -- added missing EV oidAlex Gaynor2015-12-191-0/+1
| | |
* | | Change password callback to use userdata pointerChristian Heimes2015-12-201-33/+48
| |/ |/| | | | | | | | | | | | | | | Instead of a closure the pem_password_cb now uses the void *userdata argument to exchange data with the callback function. It's a necessary step to port all callbacks to new static callbacks. See: #2477 Signed-off-by: Christian Heimes <christian@python.org>
* | Merge pull request #2530 from nbastin/20151214-oid-valPaul Kehrer2015-12-181-0/+29
|\ \ | |/ |/| OID validation
| * TypoNick Bastin2015-12-171-1/+1
| |
| * Avoid IndexError on too-short OIDs, add test for regressionNick Bastin2015-12-171-0/+5
| |
| * OID validationNick Bastin2015-12-141-0/+24
| |
* | Merge pull request #2532 from reaperhulk/fix-memory-leakAlex Gaynor2015-12-151-2/+2
|\ \ | | | | | | X509_set_subject_name and X509_set_issuer_name copy the object
| * | X509_set_subject_name and X509_set_issuer_name copy the objectPaul Kehrer2015-12-151-2/+2
| | | | | | | | | | | | | | | So we need to register our own copy for gc. This fixes a memory leak reported by Wulf.
* | | Comment lingering SSLv2 symbol.Cory Benfield2015-12-141-0/+4
| | |
* | | Remove SSLv2 bindings.Cory Benfield2015-12-142-22/+1
|/ / | | | | | | | | | | | | | | | | This commit removes bindings that allow users to set SSLv2 handshake methods. These are regarded as unnecessary and out-of-date: see #2527. This commit does leave in a few options that refer to SSLv2 in order to avoid breaking deployments that rely on them, and in order to allow users to continue to request that SSLv2 not be enabled at all in their OpenSSL.
* / require not_valid_after >= not_valid_beforePaul Kehrer2015-12-131-0/+11
|/
* Merge pull request #2515 from reaperhulk/sigbusAlex Gaynor2015-12-092-22/+0
|\ | | | | remove the bindings for these x86_64 specific EC functions
| * remove the bindings for these x86_64 specific EC functionsPaul Kehrer2015-12-092-22/+0
| | | | | | | | | | | | | | | | We have no need to invoke them directly and their presence triggers a bug related to Fedora 23's hobbling of openssl EC functions (uugh) This also fixes the SIGBUS issue in #2503, although that is more appropriately resolved via header fixes for universal libraries on OS X.
* | fix the comment so that it is no longer nonsensePaul Kehrer2015-12-031-1/+1
| |
* | expose tbs_certrequest_bytes and signature on CertificateSigningRequestPaul Kehrer2015-12-033-0/+32
| |
* | Merge pull request #2504 from reaperhulk/encode-name-constraintsAlex Gaynor2015-12-032-0/+49
|\ \ | | | | | | implement support for encoding name constraints
| * | move _encode_name_constraints and _encode_general_subtreesPaul Kehrer2015-12-021-36/+36
| | |
| * | implement support for encoding name constraintsPaul Kehrer2015-12-022-0/+49
| |/
* | shouldn't need values herePaul Kehrer2015-12-011-3/+3
| |
* | if EC isn't present we need to declare this enumPaul Kehrer2015-12-011-1/+5
| |
* | let the compiler figure out these valuesPaul Kehrer2015-12-011-3/+4
| |
* | fix a warning in cffiPaul Kehrer2015-12-012-1/+8
|/ | | | | cffi doesn't want to guess the type, so we'll deopaque the enum and strip the values out of the lib if EC is unavailable
* Add support for 160 bit ARC4 keysEhren Kret2015-11-281-1/+1
|
* Add more CRYPTO_EX_DATA functionsChristian Heimes2015-11-203-0/+20
| | | | | | | | The patch adds a couple of additional functions to create, store and retrieve ex_data on SSL, SSL_CTX and X509 objects. It also adds the missing get_ex_new_index function for X509_STORE_CTX. Signed-off-by: Christian Heimes <cheimes@redhat.com>
* add tbsCertList and signature interfaces to CRLsErik Trauschke2015-11-193-0/+30
|
* RHEL 6.4 and below don't even claim to be 1.0.0 final...Paul Kehrer2015-11-121-1/+1
|
* whoopsPaul Kehrer2015-11-121-0/+1
|
* reorganize and renamePaul Kehrer2015-11-122-11/+11
|
* these functions were added in 1.0.0, while CMS was added in 0.9.8hPaul Kehrer2015-11-122-0/+15
| | | | | We didn't catch this in our CI because all our 0.9.8 targets have CMS disabled or are older than 0.9.8h
* Include the full OpenSSL error in the exception messageAlex Gaynor2015-11-081-1/+1
|
* Merge pull request #2467 from reaperhulk/fix-version-checkAlex Gaynor2015-11-041-2/+2
|\ | | | | these flags were actually added in 1.0.2beta2, not before that.
| * these flags were actually added in 1.0.2beta2, not before that.Paul Kehrer2015-11-051-2/+2
| |
generated by cgit v1.2.3 (git 2.25.1) at 2025-04-08 02:16:23 +0000