aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
* move two asserts much closer to call sitePaul Kehrer2015-09-251-2/+2
|
* convert the rest of the openssl backend to using openssl_assertPaul Kehrer2015-09-258-87/+90
|
* remove unnecessary checkPaul Kehrer2015-09-251-1/+0
|
* change some asserts back since they're not openssl specificPaul Kehrer2015-09-251-18/+19
| | | | plus bonus better exception msg
* start converting asserts to a function callPaul Kehrer2015-09-251-166/+185
| | | | | This prevents situations where asserts are bypassed when running python with -O.
* Add X963KDF from ANSI X9.63:2001Simo Sorce2015-09-241-0/+70
| | | | | | | | | | The implemention allows the use a Hash function to implement a KDF very similar to ConcatKDFHash, just different enough to require a separate derivation function. Closes #2203 Signed-off-by: Simo Sorce <simo@redhat.com>
* should have _asn1_* utility functions in a common placeErik Trauschke2015-09-242-73/+63
|
* Made import order alphabetical.Predrag Gruevski2015-09-231-1/+1
|
* SubjectKeyIdentifier equality now uses constant-time digest comparison.Predrag Gruevski2015-09-231-4/+2
|
* Merge branch 'master' into add_name_to_oidsBrendan McCollam2015-09-075-11/+46
|\
| * Merge branch 'master' into static-linking-osxPaul Kehrer2015-09-042-7/+6
| |\
| | * Resolve an unusual test bug related to initializing the bindingsPaul Kehrer2015-08-292-7/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | To make calls against the "SSL" parts of OpenSSL you need to call SSL_library_init. There are multiple ways this can be called: * If you're using the same OpenSSL in cryptography as you are in your Python then Python will call it for you. * If you import the openssl backend. These tests need SSL_library_init to be called. When run in our CI SSL_library_init is called because during the parametrization step the OpenSSL backend is imported (thus triggering it). However, you can also run tests directly via py.test and without this change py.test tests/hazmat/bindings/test_openssl.py would crash if you had cryptography linked against a different OpenSSL than your Python used.
| * | rename env var to CRYPTOGRAPHY_OSX_NO_LINK_FLAGSPaul Kehrer2015-08-311-1/+1
| | |
| * | no need for NonePaul Kehrer2015-08-291-1/+1
| | |
| * | add support for static linking of the openssl backend on OS XPaul Kehrer2015-08-291-3/+16
| |/
| * Removed SSL_renegotiate_abbreviated bindingkjav2015-08-281-1/+0
| | | | | | As this is not supported in OpenSSL < 1.01
| * Added bindings for SSL_renegotiate_<pending/abbreviated>kjav2015-08-281-0/+2
| |
| * Add SSL_renegotiate binding.Terry Chia2015-08-281-0/+1
| |
| * add conditional removal for SET_CERT_CBPaul Kehrer2015-08-251-1/+5
| |
| * add set_cert_cbMaximilian Hils2015-08-251-0/+17
| |
* | Adds _name property to ObjectIdentifierBrendan McCollam2015-09-061-1/+5
|/
* set the default stringmask to utf8Paul Kehrer2015-08-221-0/+6
| | | | | This corrects a problem where older OpenSSL versions don't do this by default. fixes #2291
* libre doesn't have these fields (and might only be used in sslv2 anyway)Paul Kehrer2015-08-191-2/+0
|
* compilation fixPaul Kehrer2015-08-191-2/+4
|
* style fix + remove some elements of the struct that aren't in 0.9.8Paul Kehrer2015-08-181-5/+2
|
* added attribs to SSL_SESSION, SSL_SESSION_print. CIPHER_descriptionMiWCryptAnalytics2015-08-181-0/+11
| | | For a project I am working on I need some session reflection directly from python. This change adds the required openssl SSL_SESSION struct attributes and functions within OpenSSL API
* Move signature type checksStanisław Pitucha2015-08-143-8/+9
| | | | Move the point of checking signatures, as suggested by alex in PR 2262.
* Merge pull request #2262 from viraptor/non-bytes-signaturesPaul Kehrer2015-08-123-0/+8
|\ | | | | Ensure early exeption on non-bytes signature
| * Enforce signature type in ECDSA and add testsStanisław Pitucha2015-08-121-0/+2
| | | | | | | | | | Ensure that ECDSA signatures are bytes to match RSA/DSA and add tests for all three.
| * Ensure early exeption on non-bytes signatureStanisław Pitucha2015-08-112-0/+6
| | | | | | | | | | Signature must be in bytes. If the check is skipped, verify() can explode later in cffi call in _verify_pkey_ctx() for example.
* | Merge pull request #2267 from queenp/iss2255Paul Kehrer2015-08-121-0/+9
|\ \ | | | | | | added get_extension_for_class #2255
| * | added test to raise errorPhoebe Queen2015-08-121-1/+1
| | |
| * | fixing pep8 errors #2255Phoebe Queen2015-08-121-1/+3
| | |
| * | Corrected class checking #2255Phoebe Queen2015-08-121-1/+1
| | |
| * | Merge remote-tracking branch 'upstream/master' into iss2255Phoebe Queen2015-08-123-206/+206
| |\ \ | | | | | | | | | | | | | | | | | | | | | | | | Class Extensions was moved while I was adding function. Fixed now. Conflicts: src/cryptography/x509/base.py
| * | | added get_extension_for_class #2255Phoebe Queen2015-08-121-0/+7
| | | |
* | | | reopen master for eleventh releasePaul Kehrer2015-08-121-1/+1
| | | |
* | | | Merge pull request #2266 from reaperhulk/10-releaseAlex Gaynor2015-08-121-1/+1
|\ \ \ \ | | | | | | | | | | bump versions and release 1.0
| * | | | bump versions and release 1.0Paul Kehrer2015-08-121-1/+1
| | |/ / | |/| |
* | | | Merge pull request #2250 from reaperhulk/fix-2246Alex Gaynor2015-08-122-0/+27
|\ \ \ \ | | | | | | | | | | resolve incorrect docs/naming around DSA (r, s) tuple encode/decode
| * | | | resolve incorrect docs/naming around DSA (r, s) tuple encode/decodePaul Kehrer2015-08-102-0/+27
| | | | |
* | | | | move Extensions, Extension, ExtensionType, GeneralNames, SAN, & IANPaul Kehrer2015-08-113-157/+154
| |/ / / |/| | |
* | | | move extension exceptions, NameConstraints, and KeyUsagePaul Kehrer2015-08-113-199/+199
| |/ / |/| |
* | | move ExtendedKeyUsage, CertificatePolicies, and InhibitAnyPolicyPaul Kehrer2015-08-113-214/+214
| | |
* | | move AuthorityInformationAccess, BasicConstraints, & CRLDistributionPointsPaul Kehrer2015-08-103-239/+241
| |/ |/|
* | move AKI, SKIPaul Kehrer2015-08-103-131/+149
| |
* | switch the openssl backend to use the OID namespacePaul Kehrer2015-08-102-26/+28
| |
* | namespace the rest of the oidsPaul Kehrer2015-08-093-47/+58
|/
* Merge pull request #2247 from reaperhulk/oid-nameAlex Gaynor2015-08-102-54/+52
|\ | | | | namespace Name OIDs
| * namespace Name OIDsPaul Kehrer2015-08-092-54/+52
| |
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-28 15:34:29 +0000