| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | support name constraints in the openssl backend | Paul Kehrer | 2015-06-29 | 1 | -0/+30 |
| | | |||||
| * | fix a memory leak in basic constraints encoding | Paul Kehrer | 2015-06-28 | 1 | -0/+3 |
| | | |||||
| * | Merge pull request #2086 from alex/unify-parse-extensions | Paul Kehrer | 2015-06-28 | 1 | -80/+71 |
| |\ | | | | | Initial stab at unifying the extension parsing code fro CSRs and certificates | ||||
| | * | use a dict here | Alex Gaynor | 2015-06-28 | 1 | -24/+24 |
| | | | |||||
| | * | Factor this code out. | Alex Gaynor | 2015-06-28 | 1 | -40/+35 |
| | | | |||||
| | * | Initial stab at unifying the extension parsing code fro CSRs and certificates | Alex Gaynor | 2015-06-28 | 1 | -79/+75 |
| | | | |||||
| * | | move int_from_bytes so we can use it elsewhere | Paul Kehrer | 2015-06-27 | 2 | -23/+30 |
| |/ | |||||
| * | Improvemed branch coverage for ssh public key loading | Alex Gaynor | 2015-06-27 | 2 | -8/+6 |
| | | |||||
| * | Merge pull request #2076 from alex/more-branch-coverage | Paul Kehrer | 2015-06-27 | 1 | -8/+6 |
| |\ | | | | | More branch coverage improvements. By virtue of reorganization and a new test | ||||
| | * | More branch coverage improvements. By virtue of reorganization and a new test | Alex Gaynor | 2015-06-27 | 1 | -8/+6 |
| | | | |||||
| * | | Reorganized some code to improve branch coverage | Alex Gaynor | 2015-06-27 | 1 | -6/+6 |
| |/ | |||||
| * | Fixed #2067 -- raise an error if a CSRbuilder doesn't hav a subject | Alex Gaynor | 2015-06-27 | 2 | -1/+3 |
| | | |||||
| * | Merge pull request #2071 from reaperhulk/wildcard-oh-no | Alex Gaynor | 2015-06-27 | 1 | -1/+11 |
| |\ | | | | | handle wildcard DNSNames with IDNA. | ||||
| | * | do this much more simply | Paul Kehrer | 2015-06-26 | 1 | -7/+4 |
| | | | |||||
| | * | handle wildcard DNSNames with IDNA. | Paul Kehrer | 2015-06-26 | 1 | -1/+14 |
| | | | | | | | | | fixes #2054 | ||||
| * | | Merge branch 'master' into param-ordering | Alex Gaynor | 2015-06-26 | 1 | -0/+4 |
| |\| | |||||
| | * | test notimplementederror for unsupported csr extensions in backends | Paul Kehrer | 2015-06-26 | 1 | -0/+4 |
| | | | |||||
| * | | Make the parameter ordering in sign() consistent with other code | Alex Gaynor | 2015-06-26 | 1 | -1/+1 |
| |/ | |||||
| * | Use utf8 to encode attribute values instead of ascii | Ian Cordasco | 2015-06-24 | 1 | -2/+2 |
| | | |||||
| * | Add tests to the CSR Builder for EC and DSA keys | Ian Cordasco | 2015-06-24 | 1 | -1/+12 |
| | | | | | | | This skips certain tests on certain versions of differences in how X509_REQ_sign works on those versions. A separate pull request will address those differences. | ||||
| * | Address review comments around add_extension method | Ian Cordasco | 2015-06-24 | 1 | -2/+3 |
| | | | | | | | | | | - Fix typo in the docs (s/buidlder/builder/) - Remove default from the method declaration and docs - Replace ValueError with NotImpelementedError for unsupported X.509 extensions - Add TODO comment as requested by Alex - Fix test to pass critical=False since it no longer is a default value | ||||
| * | Only allow subject_name to be set once on a Builder | Ian Cordasco | 2015-06-24 | 1 | -0/+2 |
| | | |||||
| * | Unconditionally encode values to ascii | Ian Cordasco | 2015-06-24 | 1 | -5/+2 |
| | | |||||
| * | Update registering pp with ffi.gc | Ian Cordasco | 2015-06-24 | 1 | -4/+3 |
| | | | | | | This makes it more in-line with existing functions, e.g., L40-L47 of src/cryptography/hazmat/backends/openssl/x509.py @ b0e8ffa | ||||
| * | Update CSR tests and implementation | Ian Cordasco | 2015-06-24 | 2 | -2/+3 |
| | | | | | | | | | | | - Use keyword arguments for x509.BasicConstraints in tests (missed in b790edbdc8fb9a026353d6fb99994326197705c7). - Place X509_request garbage collection under assertion. - Assert that X509 extensions created are not null. - Don't copy the extensions list in CertificateSigningBuilder. They're never appended to, so copying isn't necessary. - Use RSA key fixtures instead of generating new ones on each test run | ||||
| * | Address code review regarding style and gc | Ian Cordasco | 2015-06-24 | 1 | -12/+13 |
| | | | | | | | | | | - Use keyword arguments for x509.BasicConstraints in several places - Use SHA256 instead of SHA1 in documented examples - Give function variables meaningful names in _encode_asn1_str - Accept a x509.BasicConstraints object in _encode_basic_constraints - Properly garbage-collect some things - Raise a NotImplementedError instead of a ValueError | ||||
| * | Removes set_ prefix on CSR builder method. | Andre Caron | 2015-06-24 | 1 | -1/+1 |
| | | |||||
| * | Changes builder extension API. | Andre Caron | 2015-06-24 | 1 | -3/+5 |
| | | |||||
| * | Removes CSR builder version setter. | Andre Caron | 2015-06-24 | 2 | -17/+4 |
| | | |||||
| * | Fixes memory leak, | Andre Caron | 2015-06-24 | 1 | -0/+6 |
| | | |||||
| * | Extends supported range for integer conversion, | Andre Caron | 2015-06-24 | 1 | -2/+9 |
| | | |||||
| * | Fixes docstring typo. | Andre Caron | 2015-06-24 | 1 | -1/+1 |
| | | |||||
| * | Adds method chaining to CSR builder. | Andre Caron | 2015-06-24 | 1 | -6/+12 |
| | | |||||
| * | Removes OID to txt to OID conversion. | Andre Caron | 2015-06-24 | 1 | -10/+3 |
| | | |||||
| * | Cleans up some GC semantics. | Andre Caron | 2015-06-24 | 1 | -3/+16 |
| | | |||||
| * | Renames sign_509_request to create_x509_csr. | Andre Caron | 2015-06-24 | 4 | -2/+17 |
| | | |||||
| * | Fixes memory allocation. | Andre Caron | 2015-06-24 | 1 | -12/+4 |
| | | |||||
| * | Adds CSR builder. | Andre Caron | 2015-06-24 | 2 | -1/+187 |
| | | |||||
| * | Added teh OID for ECDSA with SHA1. | Alex Gaynor | 2015-06-23 | 1 | -0/+3 |
| | | | | | In practice this is rare because the BR requires ECDSA signatures to use SHA256+ (or maybe the requirements for SHA256 just came at the same time as ECDSA, idk) | ||||
| * | fix ec_cdata_to_evp_pkey bug | Paul Kehrer | 2015-06-22 | 1 | -0/+1 |
| | | | | | | | We weren't actually returning the object and the tests weren't catching it because we didn't try to use the evp_pkey property in the tests. The added test confirms it actually works. | ||||
| * | remove unused import | Alex Gaynor | 2015-06-22 | 1 | -1/+0 |
| | | |||||
| * | Remove our workarounds for pyasn.1 bugs, a new pyasn.1 is out! | Alex Gaynor | 2015-06-22 | 1 | -5/+0 |
| | | |||||
| * | add name constraints and general subtree struct and macro stack defs | Paul Kehrer | 2015-06-21 | 1 | -0/+25 |
| | | |||||
| * | add eq/ne support to NameConstraints | Paul Kehrer | 2015-06-21 | 1 | -0/+12 |
| | | |||||
| * | add nameconstraints classes | Paul Kehrer | 2015-06-21 | 1 | -0/+52 |
| | | |||||
| * | Merge pull request #2036 from major/master | Alex Gaynor | 2015-06-21 | 1 | -0/+3 |
| |\ | | | | | Added a repr() method to x509._Certificate | ||||
| | * | Added a repr() method to x509._Certificate | Major Hayden | 2015-06-21 | 1 | -0/+3 |
| | | | |||||
| * | | Merge pull request #2034 from reaperhulk/windows-flags | Alex Gaynor | 2015-06-20 | 4 | -8/+20 |
| |\ \ | | | | | | | enable ASLR and NX on windows builds (affects 2.x only) | ||||
| | * | | enable ASLR and NX on windows builds (affects 2.x only) | Paul Kehrer | 2015-06-20 | 4 | -8/+20 |
| | | | | |||||
| * | | | Add additional CRL bindings | Stephen Holsapple | 2015-06-20 | 1 | -7/+9 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | I sorted the X50_CRL bindings and added two additional bindings: 1. X509_CRL_set_version 2. X509_CRL_sort These two functions are required to make CRL useful in pyOpenSSL re: https://github.com/pyca/pyopenssl/issues/256 | ||||
 |
index : cloud-email/cryptography | |
| python cryptography | James |
| aboutsummaryrefslogtreecommitdiffstats |