aboutsummaryrefslogtreecommitdiffstats
path: root/tests/test_x509_ext.py
Commit message (Collapse)AuthorAgeFilesLines
* move x509 tests into a module (#3889)Paul Kehrer2017-09-061-3865/+0
| | | | | | | | | | | * move x509 tests into a module This is just to make grouping things like test_ocsp, etc a bit simpler in the future * fix path * pep8
* deprecate unicode input for RFC822Name (#3836)Paul Kehrer2017-08-011-25/+34
| | | | | | * deprecate unicode input for RFC822Name * pep8...?
* deprecate auto-idna on UniformResourceIdentifier (#3832)Paul Kehrer2017-08-011-143/+182
| | | | | | | | | | * deprecate auto-idna on UniformResourceIdentifier * fix repr test * docs * some updated language
* Begin the deprecation of auto-idna for x509.DNSName (#3830)Alex Gaynor2017-07-301-102/+173
| | | | | | | | | | | | | | | | | | | | | | | | | | | | * Begin the deprecation of auto-idna for x509.DNSName Refs #3357 * fix warning * py3k fixes * fix docs * sigh * flake8 * these are words * words * tests for coverage * another test * do idna things * more idna things
* don't parse SCTs on older openssl (#3749)Paul Kehrer2017-07-041-4/+27
| | | | | | | | * don't parse SCTs on older openssl * use two diff extension parsers because why not * review feedback
* Refs #3461 -- parse SCTs from x.509 extension (#3480)Alex Gaynor2017-06-041-0/+42
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Stub API for SCTs, feedback wanted * grr, flake8 * finish up the __init__ * Initial implementation and tests * write a test. it fails because computer * get the tests passing and fix some TODOs * changelog entry * This can go now * Put a skip in this test * grump * Removed unreachable code * moved changelog to the correct section * Use the deocrator for expressing requirements * This needs f for the right entry_type * coverage * syntax error * tests for coverage * better sct eq tests * docs * technically correct, the most useless kind of correct * typo and more details * bug * drop __eq__
* Enlarge _oid2txt buffer to handle larger OIDs (#3612)Fraser Tweedale2017-05-291-0/+21
| | | | | | | | | The OpenSSL manual recommends a buffer size of 80 for OBJ_oid2txt: https://www.openssl.org/docs/crypto/OBJ_nid2ln.html#return_values. But OIDs longer than this occur in real life (e.g. Active Directory makes some very long OIDs). If the length of the stringified OID exceeds the buffer size, allocate a new buffer that is big enough to hold the stringified OID, and re-do the conversion into the new buffer.
* Don't raise an UnsupportedExtension for critical extensions. (#3550)Alex Gaynor2017-05-201-4/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | * Don't raise an UnsupportedExtension for critical extensions. Fixes #2903 Fixes #2901 Fixes #3325 * Don't link * Revert "Don't link" This reverts commit 4fe847f91d9dd45cdc28a4984c4e44aad62a5de6. * fix * Revert "Revert "Don't link"" This reverts commit 856031b5a1fbad04ac218fa94ebf37dcd402f3ed. * fix * Deprecate this * Better changelog entry
* Remove API deprecated in 1.6, clean up the legacy deprecations (#3468)Alex Gaynor2017-03-211-11/+0
| | | | | | * Remove API deprecated in 1.6, clean up the legacy deprecations * flake8, unused import
* Make DistributionPoint relative_name a set of NameAttribute (#3210)Fraser Tweedale2016-11-071-14/+27
| | | | | | | | | | | * Add RelativeDistinguishedName class * Make relative_name a RelativeDistinguishedName DistributionPoint relative_name is currently a Name but RFC 5280 defines it as RelativeDistinguishedName, i.e. a non-empty SET OF name attributes. Change the DistributionPoint relative_name attribute to be a RelativeDistinguishedName.
* Allow passing iterators where collections are expected (#3078)Marti2016-08-261-11/+97
| | | | | | | | | | | | | | Iterators can only be enumerated once, breaking code like this in Python 3 for example: san = SubjectAlternativeName(map(DNSName, lst)) This is also a slight behavior change if the caller modifies the list after passing it to the constructor, because input lists are now copied. Which seems like a good thing. Also: * Name now checks that attributes elements are of type NameAttribute * NoticeReference now allows notice_numbers to be any iterable
* Add code style settings, new excludes, run 'test_x509_ext (Py3)' (#3041)Marti2016-08-021-0/+44
| | | | | | Fix DNSName wildcard encoding for NameConstraints Previously '.example.com' would get normalised to 'example.com', making it impossible to add wildcard NameConstraints.
* Add AuthorityKeyIdentifier.from_issuer_subject_key_identifierPaul Kehrer2016-03-111-0/+22
|
* added another testAlex Gaynor2016-02-271-3/+15
|
* better name for this testAlex Gaynor2016-02-271-1/+1
|
* whitespaceAlex Gaynor2016-02-271-1/+0
|
* Fixed #2732 -- added support for x.509 policy constraints extensionAlex Gaynor2016-02-271-0/+22
|
* add policy constraints classPaul Kehrer2016-02-261-0/+35
|
* Refs #2578 -- implement __hash__ on InhibitAnyPolicyEeshan Garg2016-02-011-0/+7
|
* Refs #2578 -- implement __hash__ on AccessDescriptionEeshan Garg2016-01-311-0/+16
|
* refactor the init validation of AuthorityKeyIdentifierPaul Kehrer2016-01-051-0/+7
| | | | Fixes #2640
* Merge pull request #2635 from alex/rfc-hashPaul Kehrer2016-01-031-0/+8
|\ | | | | Implement __hash__ on RFC822Name
| * Implement __hash__ on RFC822NameAlex Gaynor2016-01-031-0/+8
| |
* | Implement __hash__ on UniformResourceIdentifierAlex Gaynor2016-01-031-0/+8
|/
* Merge pull request #2607 from reaperhulk/unrecognized-extension-support-reduxAlex Gaynor2015-12-311-3/+19
|\ | | | | support unrecognized extensions in x509
| * support unrecognized extensions in x509Paul Kehrer2015-12-301-3/+19
| |
* | don't allow UnrecognizedExtension with get_extension_for_classPaul Kehrer2015-12-301-0/+5
|/
* py3 repr will be differentPaul Kehrer2015-12-301-4/+10
|
* add UnrecognizedExtension classPaul Kehrer2015-12-301-0/+51
|
* Merge pull request #2598 from reaperhulk/index-cpAlex Gaynor2015-12-271-0/+10
|\ | | | | support indexing in CertificatePolicies
| * support indexing in CertificatePoliciesPaul Kehrer2015-12-271-0/+10
| |
* | Merge pull request #2597 from reaperhulk/index-cdpAlex Gaynor2015-12-271-0/+26
|\ \ | | | | | | support indexing in CDP
| * | support indexing in CDPPaul Kehrer2015-12-271-0/+26
| |/
* / support indexing in AIAPaul Kehrer2015-12-271-0/+26
|/
* Merge pull request #2595 from alex/crl-reason-hashPaul Kehrer2015-12-271-0/+8
|\ | | | | Refs #2578 -- implement __hash__ on CRLReason
| * Refs #2578 -- implement __hash__ on CRLReasonAlex Gaynor2015-12-271-0/+8
| |
* | hash ne testPaul Kehrer2015-12-271-0/+2
| |
* | implement hash on basicconstraintsPaul Kehrer2015-12-271-0/+5
|/
* make CertificateIssuer and IssuerAlternativeName indexablePaul Kehrer2015-12-261-0/+22
|
* A handful of small cleanups and simplificationsAlex Gaynor2015-12-261-9/+3
|
* Merge pull request #2585 from reaperhulk/san-iterableAlex Gaynor2015-12-261-0/+26
|\ | | | | support indexing on GeneralNames and SubjectAlternativeName
| * support indexing on GeneralNames and SubjectAlternativeNamePaul Kehrer2015-12-261-0/+26
| |
* | Merge pull request #2583 from alex/ski-hashPaul Kehrer2015-12-261-0/+14
|\ \ | |/ |/| Refs #2578 -- implement __hash__ on SubjectKeyIdentifier
| * Refs #2578 -- implement __hash__ on SubjectKeyIdentifierAlex Gaynor2015-12-261-0/+14
| |
* | Merge pull request #2581 from reaperhulk/crlentry-invaliditydateAlex Gaynor2015-12-261-0/+31
|\ \ | |/ |/| add invaliditydate class for crl entry extensions
| * ...pep8Paul Kehrer2015-12-261-0/+1
| |
| * add __hash__ to InvalidityDatePaul Kehrer2015-12-261-0/+6
| |
| * add invaliditydate class for crl entry extensionsPaul Kehrer2015-12-261-0/+24
| |
* | Refs #2578 -- implement __hash__ on CRLNumberAlex Gaynor2015-12-261-0/+7
|/
* switch CRLReason to use a classPaul Kehrer2015-12-261-0/+23
|
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-04 20:54:31 +0000