aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* Remove setup.py branch (#4203)Alex Gaynor2018-04-221-3/+1
|
* add custom extensions functions for openssl >=1.0.2 (#4202)Denis Lila2018-04-212-0/+77
| | | | | | * add custom extensions functions for openssl >=1.0.2 * Fix style problems
* Revert #4195 (#4201)Alex Gaynor2018-04-201-3/+1
| | | Fixes #4196
* Remove CDN purging, the new PyPI does the right thing (#4198)Alex Gaynor2018-04-171-12/+0
|
* Update URLs for new pypi! (#4194)Alex Gaynor2018-04-164-7/+11
| | | | | | | | * Update URLs for new pypi! * trailing slash * grump
* temporarily fix tests (#4195)Alex Gaynor2018-04-151-1/+3
|
* update the NIST keywrap vectors (#4191)Paul Kehrer2018-04-1212-17974/+17974
| | | | NIST has updated the vectors to cover the bug we had. Let's use those vectors. Thanks NIST!
* Remove version number from an error message so that it makes sense (#4188)Alex Gaynor2018-04-091-2/+2
|
* simplify Jenkins test run taking advantage of ↵Matt Bullock2018-04-071-2/+2
| | | | https://github.com/awslabs/aws-encryption-sdk-python/pull/46 (#4185)
* OpenSSL 1.0.2o has switched to winsock2 (#4184)Thierry Bastian2018-04-052-0/+6
| | | So here we need to make sure we don't simply include windows but only the parts that we want
* add X509_NAME_print_ex (#4174)Joshua Crowgey2018-04-041-0/+1
| | | | | | | | * add X509_NAME_print_ex * Addressing code review + removed comment from bindings regarding deprecation of _print_oneline
* Raise ve on bad gt (#4180)Joshua Crowgey2018-04-032-1/+19
| | | | | | | | | | | | | | | * Raise a ValueError when conversion to generalizedtime fails * added test for badasn1time value error * pep8 compliance * Addressing code review + VE now raises with ```{!r}``` formatting + Test now checks that the bad string made it into the VE message * using ValueError.match
* Fixed links to sphinx docs (#4182)Alex Gaynor2018-04-011-1/+1
|
* updated link to sphinx docs (#4181)Alex Gaynor2018-04-011-1/+1
|
* Added badtime.pem vector (#4179)Joshua Crowgey2018-03-302-0/+20
| | | | | | | | * Added badtime.pem vector In connection with forthcoming PR to fix #4158 * shortened line, corrected and->and
* Fix typo (#4178)Tim D. Smith2018-03-291-1/+1
|
* port changelog for 2.2.2 (#4172)Paul Kehrer2018-03-271-0/+8
|
* Add urllib3 to downstream tests (#4165)Paul Kehrer2018-03-201-0/+15
| | | | | | | | * Add urllib3 to downstream tests * empty commit * remove a suffix
* forward port 2.2.1 changelog (#4167)Alex Gaynor2018-03-201-0/+13
|
* fix bug with n % 8 length wrapping on AESKWP (#4160)Paul Kehrer2018-03-202-2/+31
| | | | | | * fix bug with n % 8 length wrapping on AESKWP * review feedback
* Revert "don't allow GeneralNames to be an empty list (#4128)" (#4161)Alex Gaynor2018-03-202-7/+0
| | | | | This breaks the urllib3 tests, as well as several in-the-wild certs This reverts commit 388d1bd3e9cd953fcc948edbc152d5d140c87eb8.
* add botan's AESKWP vectors reformatted for our NIST loader (#4159)Paul Kehrer2018-03-202-0/+652
|
* open master for 2.3 (#4151)Paul Kehrer2018-03-183-2/+9
|
* 2.2 release! (#4150)Paul Kehrer2018-03-183-6/+5
| | | | | | * 2.2 release! * also change versions
* implement AES KW with padding (RFC 5649) (#3880)Paul Kehrer2018-03-184-0/+166
| | | | | | | | | | | | | | | | | | * implement AES KW with padding (RFC 5649) fixes #3791 * oops, 2.2 * make sure this is the right valueerror * more match * make key padding easier to read * review feedback * review feedback
* i hate groovy and i hate hard to test scripts (#4149)Paul Kehrer2018-03-181-11/+11
|
* change our manylinux1 and macos wheel builders to build limited api (#4113)Paul Kehrer2018-03-181-8/+32
| | | | | | | | | | | | | | | * change our manylinux1 and macos wheel builders to build limited api pip does not currently support the--py-limited-api cli flag that wheel uses so we have to switch to downloading and then building via setup.py bdist_wheel for now. However, we can get rid of everything but the py34 builder on mac/linux/linux32, saving us 6 wheels now (and soon 9 with the release of python 3.7) * some newlines * review feedback
* Update authors (#4148)Denis Gladkikh2018-03-181-0/+1
|
* Allow DSA q=224 (#4147)Paul Kehrer2018-03-183-93/+20
| | | | | | | | * load Q=224 vectors * DSA parameters should support 224 for q length * oxford comma
* Brainpool curves (#4129)Paul Kehrer2018-03-154-1/+76
| | | | | | | | | | | | | | | | | | * added brainpool ec-curves key_length >= 256bit * limit brainpool curves to the set that appear required + docs * oops * typos all around me * add brainpool ECDH kex tests * switch to using rfc 7027 vectors * review feedback * empty commits are the best
* brainpool vectors from rfc 7027 (#4143)Paul Kehrer2018-03-153-0/+37
|
* bump travis to latest pypy version (#4134)Paul Kehrer2018-03-051-2/+2
|
* install only the minimum required to build our docs for rtd (#4133)Paul Kehrer2018-03-054-3/+7
| | | | | | | | * install only the minimum required to build our docs for rtd We don't need to install sphinxcontrib-spelling or doc8 in rtd. * move another package
* Check all .so's are noexecstack (#3994) (#4130)Jeremy Lainé2018-03-051-0/+3
| | | | | | | | The ouput of execstack -q is one line per file, either: - starting with a '-' (dash) if the file does not require an executable stack - start with an 'X' if the file *does* require an executable stack We check there are no files which require an executable stack.
* add X509_CRL_dup function (#4127)Dominic Chen2018-03-051-0/+1
|
* remove cms bindings we don't use (#4131)Paul Kehrer2018-03-053-149/+0
|
* Document motivation for a KDF after key-exchange (#4005) (#4124)Jeremy Lainé2018-03-053-5/+64
|
* Remove unused bindings from asn1.py (#4082)David Benjamin2018-03-052-66/+1
| | | | | | | | | | | * Remove unused bindings from asn1.py This also includes a couple removals from x509v3.py which also reference ASN1_ITEM_EXP. * re-add int ASN1_STRING_set_default_mask_asc(char *); * also re-add static const int MBSTRING_UTF8
* don't allow GeneralNames to be an empty list (#4128)Paul Kehrer2018-03-052-0/+7
| | | | | | * don't allow GeneralNames to be an empty list * flake8
* test acme and also josepy as a downstream in jenkins (#4123)Paul Kehrer2018-02-251-0/+15
|
* Add certbot to downstream tests (#3740) (#4120)Jeremy Lainé2018-02-251-0/+16
|
* Expose BN_rand and BN_rand_range (#4118)Tux2018-02-231-0/+3
|
* switch RSA OAEP examples to use SHA256 (#4117)Paul Kehrer2018-02-221-4/+4
|
* Reorder this to reflect Alex's Opinions On What Is Good (#4115)Alex Gaynor2018-02-221-2/+2
|
* add aws-encryption-sdk as a downstream (#4106)Paul Kehrer2018-02-131-0/+15
| | | they're probably important, let's not break them.
* fixed docs with latest sphinx (#4107)Alex Gaynor2018-02-131-2/+1
|
* Add binding for SSL_get_certificate (#4100)Jeremy Lainé2018-02-061-0/+1
| | | | | | | | | | | | | | Currently we only expose SSL_get_peer_certificate, which allows you to retrieve the remote party's certificate. This adds the symetrical binding to retrieve the local party's certificate. The motivation for this additional binding is to make it possible to query the local certificate regardless of the method which was used to load the certificate into the SSL connection (from a file, from an in-memory object). An example where this is useful is when negotiating a DTLS-SRTP connection, the fingerprint of the local certificate needs to be communicated to the remote party out-of-band via SDP. This binding can be exposed in pyopenssl as Connection.get_certificate().
* Add myself to AUTHORS.rst (#4101)Jeremy Lainé2018-02-061-0/+1
|
* Add bindings for SRTP support (#4099)Jeremy Lainé2018-02-061-0/+3
|
* memory leak changelog (#4097)Paul Kehrer2018-02-051-0/+2
|