aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
* add create_x509_revoked_certificate to x509backend interfacePaul Kehrer2015-12-253-0/+19
|
* use _create_x509_extensions in create_x509_crlPaul Kehrer2015-12-251-20/+8
|
* add extension support to the CRLBuilderPaul Kehrer2015-12-252-1/+59
|
* a different approach to refactoring the x509 extension additionPaul Kehrer2015-12-242-21/+25
|
* don't reuse a variable, it's confusingPaul Kehrer2015-12-241-4/+6
|
* refactor x509 extension creation to make it a bit more reusablePaul Kehrer2015-12-241-38/+39
| | | | | Unfortunately X509 certs and CSRs add extensions differently, so we can't reuse quite as much as we'd like to...
* CertificateRevocationListBuilderPaul Kehrer2015-12-243-1/+135
| | | | | RSA keys only. Currently does not support CRL extensions or CRLEntry extensions.
* Merge pull request #2565 from reaperhulk/crl-interfaceAlex Gaynor2015-12-243-0/+19
|\ | | | | add create_x509_crl interface
| * coveragePaul Kehrer2015-12-241-1/+1
| |
| * add create_x509_crl interfacePaul Kehrer2015-12-243-0/+19
| |
* | Add PEM_write_bio_DHparams bindingevilaliv32015-12-241-0/+1
|/
* please the great flake8 in the skyAlex Gaynor2015-12-241-3/+1
|
* full indexing support + testsgAlex Gaynor2015-12-241-4/+12
|
* Make indexing a CRL O(1) instead of O(n).Alex Gaynor2015-12-241-2/+5
| | | | This drops support for slicing, if that's important someone say something and I can add it back
* Simplify implementation of CRL indexing and iteration.Alex Gaynor2015-12-241-13/+8
| | | | No longer allocates a list just to iterate over it.
* Merge pull request #2561 from alex/crl-len-perfPaul Kehrer2015-12-241-10/+12
|\ | | | | Improve the performance of len(crl)
| * coverage fixAlex Gaynor2015-12-241-8/+7
| |
| * Improve the performance of len(crl)Alex Gaynor2015-12-231-3/+6
| |
* | add binding for setting the revocation date of an X509_REVOKEDPaul Kehrer2015-12-231-0/+2
|/
* Merge pull request #2558 from reaperhulk/managing-memory-is-funAlex Gaynor2015-12-231-2/+13
|\ | | | | fix a potential memory issue when retaining revoked certs from a CRL
| * fix a potential memory issue when retaining revoked certs from a CRLPaul Kehrer2015-12-231-2/+13
| |
* | Remove spaces.Cory Benfield2015-12-231-1/+1
| |
* | Add binding for CommonCrypto SecTrustCopyAnchorCertificatesCory Benfield2015-12-232-0/+23
|/
* CRLNumber needs to be a class for reasons.Paul Kehrer2015-12-223-2/+28
|
* add support for parsing AuthorityInfoAccess and IssuerAltName CRL extsPaul Kehrer2015-12-221-0/+4
| | | | Expand the CRL extensions test to check the value
* lowercase the first letter since that's how it's actually declaredPaul Kehrer2015-12-221-1/+1
|
* support parsing CRL extensions in the OpenSSL backendPaul Kehrer2015-12-212-1/+20
|
* add a CRL public_bytes methodPaul Kehrer2015-12-202-0/+19
|
* Merge pull request #2538 from reaperhulk/empty-crls-are-beautiful-tooAlex Gaynor2015-12-201-7/+6
|\ | | | | support CRLs with no revoked certificates
| * support CRLs with no revoked certificatesPaul Kehrer2015-12-201-7/+6
| |
* | Merge pull request #2525 from nbastin/20151112-access-methodPaul Kehrer2015-12-201-8/+3
|\ \ | |/ |/| issue-2524
| * PEP8 fixesNick Bastin2015-12-201-3/+1
| |
| * 4-space indent for this repoNick Bastin2015-12-201-1/+1
| |
| * Allow any OID for access_method, validate OIDs at creation time, fix tests.Nick Bastin2015-12-201-5/+2
| |
* | Merge pull request #2534 from alex/ev-oidPaul Kehrer2015-12-191-0/+13
|\ \ | | | | | | Fixed #2531 -- added missing EV oid
| * | updated the short names of oidsAlex Gaynor2015-12-191-7/+3
| | |
| * | added oid namesAlex Gaynor2015-12-191-0/+11
| | |
| * | added business category oidAlex Gaynor2015-12-191-0/+1
| | |
| * | too many newlinesAlex Gaynor2015-12-191-1/+0
| | |
| * | added two more oidsAlex Gaynor2015-12-191-0/+5
| | |
| * | Fixed #2531 -- added missing EV oidAlex Gaynor2015-12-191-0/+1
| | |
* | | Change password callback to use userdata pointerChristian Heimes2015-12-201-33/+48
| |/ |/| | | | | | | | | | | | | | | Instead of a closure the pem_password_cb now uses the void *userdata argument to exchange data with the callback function. It's a necessary step to port all callbacks to new static callbacks. See: #2477 Signed-off-by: Christian Heimes <christian@python.org>
* | Merge pull request #2530 from nbastin/20151214-oid-valPaul Kehrer2015-12-181-0/+29
|\ \ | |/ |/| OID validation
| * TypoNick Bastin2015-12-171-1/+1
| |
| * Avoid IndexError on too-short OIDs, add test for regressionNick Bastin2015-12-171-0/+5
| |
| * OID validationNick Bastin2015-12-141-0/+24
| |
* | Merge pull request #2532 from reaperhulk/fix-memory-leakAlex Gaynor2015-12-151-2/+2
|\ \ | | | | | | X509_set_subject_name and X509_set_issuer_name copy the object
| * | X509_set_subject_name and X509_set_issuer_name copy the objectPaul Kehrer2015-12-151-2/+2
| | | | | | | | | | | | | | | So we need to register our own copy for gc. This fixes a memory leak reported by Wulf.
* | | Comment lingering SSLv2 symbol.Cory Benfield2015-12-141-0/+4
| | |
* | | Remove SSLv2 bindings.Cory Benfield2015-12-142-22/+1
|/ / | | | | | | | | | | | | | | | | This commit removes bindings that allow users to set SSLv2 handshake methods. These are regarded as unnecessary and out-of-date: see #2527. This commit does leave in a few options that refer to SSLv2 in order to avoid breaking deployments that rely on them, and in order to allow users to continue to request that SSLv2 not be enabled at all in their OpenSSL.
generated by cgit v1.2.3 (git 2.25.1) at 2025-04-06 06:08:50 +0000