aboutsummaryrefslogtreecommitdiffstats
path: root/docs/spelling_wordlist.txt
Commit message (Collapse)AuthorAgeFilesLines
* shake128/256 support (#4611)Paul Kehrer2019-01-191-0/+1
| | | | | | | | | | | | | | * shake128/256 support * remove block_size * doc an exception * change how we detect XOF by adding _xof attribute * interface! * review feedback
* add a new SCT vector (#4528)Paul Kehrer2018-10-271-0/+1
| | | | | | * add a new SCT vector * ridiculous
* OCSP request extension parsing (#4464)Paul Kehrer2018-09-091-0/+1
| | | | | | | | | | * add OCSP request parsing support with OCSPNonce * add docs * reprs man * make extensions a cached property
* Fixes #4357 -- document the additional release steps for a security release ↵Alex Gaynor2018-08-301-0/+1
| | | | | | | | | | | | | | (#4429) * Fixes #4357 -- document the additional release steps for a security release * One additional step * Fix a few typos * this is a word * link these
* Document wycheproof revision we're current as of (#4390)Alex Gaynor2018-08-121-0/+1
| | | | | | | | * Document wycheproof revision we're current as of * Wycheproof is a real word! * line length
* switch to py3 on docs job (#4230)Paul Kehrer2018-05-121-0/+1
| | | | | | * switch to py3 on docs job * somehow unicode isn't a word
* brainpool vectors from rfc 7027 (#4143)Paul Kehrer2018-03-151-0/+1
|
* Add a Versioning section to the API stability docs (#4027)David Tucker2018-01-071-0/+1
|
* Add Multifernet.rotate method (#3979)Chris Wolfe2017-10-191-0/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * add rotate method * add some more tests for the failure modes * start adding some documentation for the rotate method * operate on a single token at a time, leave lists to the caller * add versionadded add versionadded, drop rotate from class doctest * give rotate a doctest * single level, not aligned * add changelog for mf.rotate * show that, once rotated, the old fernet instance can no longer decrypt the token * add the instead of just the how * update docs to reflect removal of ttl from rotate * update tests * refactor internal methods so that we can extract the timestamp * implement rotate * update wordlist (case sensitive?) * lints * consistent naming * get_token_data/get_unverified_token_data -> better name * doc changes * use the static method, do not treat as imethod * move up to MultiFernet docs * add to authors * alter wording * monkeypatch time to make it less possible for the test to pass simply due to calls occuring in less than one second * set the time after encryption to make sure that the time is preserved as part of re-encryption
* Update docs and changelog for URI, RFC822Name, and DNSName (#3955)Paul Kehrer2017-10-111-0/+2
| | | | | | | | | | | | | | | | * Update docs and changelog for URI, RFC822Name, and DNSName As of 2.1 we want users to pass A-label strings, but we still accept U-label strings and auto-encode on their behalf (with a deprecation warning). However, we do not return U-label in the value attribute so we are making a backwards incompatible change for users that utilize internationalized domain names. * language updates * add presentational to the word list * the linux dictionary is pathetic
* Add support for AES XTS (#3900)Paul Kehrer2017-10-011-0/+2
| | | | | | | | | | | | | | | | | | | | | | | | * Add support for AES XTS We drop the non-byte aligned test vectors because according to NIST http://csrc.nist.gov/groups/STM/cavp/documents/aes/XTSVS.pdf "An implementation may support a data unit length that is not a multiple of 8 bits." OpenSSL does not support this, so we can't use those test vectors. * fix docs and pep8 * docs fix * the spellchecker is so frustrating * add note about AES 192 for XTS (it's not supported) * docs work * enforce key length on ECB mode in AES as well (thanks XTS) * a few more words about why we exclude some test vectors for XTS
* add test vector with invalid basicconstraints (#3866)Paul Kehrer2017-08-151-0/+1
| | | | | | * add test vector with invalid basicconstraints * sigh
* Begin the deprecation of auto-idna for x509.DNSName (#3830)Alex Gaynor2017-07-301-0/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | * Begin the deprecation of auto-idna for x509.DNSName Refs #3357 * fix warning * py3k fixes * fix docs * sigh * flake8 * these are words * words * tests for coverage * another test * do idna things * more idna things
* changelog entry and a few updates to the new DH params docs (#3718)Paul Kehrer2017-06-241-0/+1
|
* ChaCha20Poly1305 support (#3680)Paul Kehrer2017-06-081-0/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * chacha20poly1305 support * add chacha20poly1305 backend and some fixes * refactor * forgot to remove this * pep8 * review feedback and a lot of type/value checking * review feedback * raise unsupportedalgorithm when creating a ChaCha20Poly1305 object if it's not supported. * switch to ciphertext||tag * typo * remove a branch we don't need * review feedback * decrypts is *also* a word * use reasons
* Fixed #3489 -- document that we don't have wheels for pypy (#3496)Alex Gaynor2017-04-091-0/+1
| | | | | | * Fixed #3489 -- document that we don't have wheels for pypy * homebrew is a word
* Refs #3461 -- added a test vector with SCTs (#3462)Alex Gaynor2017-03-191-0/+1
| | | | | | * Refs #3461 -- added a test vector with SCTs * timestamp is a word
* Scrypt docs code example contradict RFC 7914 (#3302) (#3303)Nick Badger2016-12-101-0/+1
| | | | | | | | | | | | * Scrypt docs code example contradict RFC 7914 (#3302) * More secure example difficulty of parameter n in scrypt docs (#3302) * Change link text to scrypt paper (#3302) * Change link text to scrypt paper, part deux (#3302) * Add "logins" to spelling wordlist
* New osrandom_engine in C (#3229)Christian Heimes2016-12-091-0/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * New osrandom_engine in C Inspired by Python/random.c and the old implementation. Signed-off-by: Christian Heimes <christian@python.org> * osrandom_engine * Fix naming bug caused by search 'n replace mistake * Make it easier to override osrandom auto-detection * Add engine ctrl and backend API to get implementation from ENGINE Signed-off-by: Christian Heimes <christian@python.org> * Better test coverage, documentation, LICENSE Signed-off-by: Christian Heimes <christian@python.org> * Coverage is hard. Signed-off-by: Christian Heimes <christian@python.org> * * enable win32 check * read() returns size_t Signed-off-by: Christian Heimes <christian@python.org> * Add macOS to spelling list. Remove dead code from header file. Signed-off-by: Christian Heimes <christian@python.org> * remove CCRandomGenerateBytes path and update getentropy to work on macOS This change allows us to test all the engines in our CI: * getentropy (tested by macOS sierra) * getrandom (tested on several linux builders) * /dev/urandom (tested on FreeBSD, OS X 10.11 and below, & older linux) * CryptGenRandom (tested on windows builders) I also fixed bugs preventing compilation in the getentropy code * getentropy() returns int and is restricted to 256 bytes on macOS, too. Signed-off-by: Christian Heimes <christian@python.org> * add versionadded * Re-add import of os module * Fixes related to Alex's recent review. Signed-off-by: Christian Heimes <christian@python.org> * Add error reporting and fail for EAGAIN Add error reporting strings for various error cases. This gives us much nicer and understandable error messages. SYS_getrandom() EAGAIN is now an error. Cryptography refuses to initialize its osrandom engine when the Kernel's CPRNG hasn't been seeded yet. Signed-off-by: Christian Heimes <christian@python.org>
* OpenSSL DH backend implementation [Second attempt] (#2914)Aviv Palivoda2016-11-261-0/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Start of OpenSSL DH backend implementation * Supporting DH in MultiBackend * DHBackend has dh_parameters_supported method * Removed DHParametersWithNumbers and DHPrivateKeyWithNumbers from documentation * Removed ExchangeContext. exchange is a method of DHPrivateKeyWithSerialization * PEP8 fixes * Fixed TestDH.test_bad_tls_exchange * Fixed generate_private_key reference in dh documentation * test DH multibackend support * testing DH coversion to serialized * Validating that we receive serialized class in test_generate_dh * Testing DH exchange symmetric key padding * struct DH is now opaqued * PEP8 fixes * Testing load_dh_private_numbers throws ValueError when DH_check fails * Using openssl_assert * Passing keywords arguments in DH key exchange example * test_dh::test_bad_tls_exchange now uses pre calculated parameters * TestDH - Add test that the computed secret is equivalent to the definition by comparing with secret computed in pure python * Add missing generator parameter to DHBackend interface docs. * Include parameter type in DHBackend abc docs. * Add docs for dh.generate_parameters function * Remove the dh Numbers section, and move the DHNumbers class docs to where they are first used. * Add note of big endian byte packing to DH exchange method. * DH documentation updates. Add single sentence overview with wikipedia link. Add paragraph on assembling using Numbers objects. Add link to backend interface docs. First section was all indented, I think by mistake. * Add exchange method to DHPrivateKey abstract base class. * Small tweaks to DH documentation - remove Provider. * Add endian to dictionary * Use utils.int_from_bytes in test_tls_exchange_algorithm * Removed duplicate line * Change dh.rst exchange algorithm from doctest to code-block The example in the Diffie-Hellman exhange algorithm is using 2048 bits key. Generating the parameters of 2048 takes long time. This caused the automated tests to fail. In order to pass the tests we change the example to code-block so it will not run in the doc tests. * Fix dh docs * Document the generator in DHBackend relevant methods * Fix dh tests * use DHparams_dup * Fix key type to unsigned char as expected by DH_compute_key * Validate that DH generator is 2 or 5 * test dh exchange using botan vectors * group all numbers classes * Simplify _DHPrivateKey * Rename test with serialized to numbers * Move bad exchange params to external vector file * update exchange versionadded to 1.7 * Make key_size bit accurate * Change botan link * Added CHANGELOG entry
* add alternate signature OID for RSA with SHA1 + test and vector (#3227)Paul Kehrer2016-11-111-0/+1
| | | | | | * add alternate signature OID for RSA with SHA1 + test and vector * mozilla is a proper noun leave me alone spellchecker
* EC samples for verifying a singature, + serialization (#3076)Alex Railean2016-09-251-0/+1
| | | | | | | | | | | | | | | | | | | | | | | | * first draft of verification and serialization * tweaks in the RST syntax * added example of deserialization * taking into account the returned value, so that doctests pass * adjusted rst syntax and indentation for code samples * removed print call * forgot to actually call splitlines * added missing argument when loading private key * added Deserialization to dictionary * made lines shorter to meet style requirements * applied requested changes in style
* Scrypt Implementation (#3117)Terry Chia2016-09-011-0/+2
| | | | | | | | | | | | | | | | | | | | | | | | * Scrypt implementation. * Docs stuff. * Make example just an example and not a doctest. * Add changelog entry. * Docs cleanup. * Add more tests. * Add multibackend tests. * PEP8. * Add docs about Scrypt parameters. * Docs cleanup. * Add AlreadyFinalized.
* Mention that blake2 is not vulnerable to length-extension attacks (#3118)Alex Gaynor2016-08-291-0/+1
| | | | | | | | * Mention that blake2 is not vulnerable to length-extension attacks * SHA is sort of like a word, in the sense that I want the spellcheck to shut up about it * rephrase
* Attempt to debug wacky failures on the docs build on OS X (#3085)Alex Gaynor2016-08-091-0/+7
| | | | | | | | | | | | | | | | * empty commit * only run this one build * try pinning this * why wasn't this installed? * revert this * english, how does it work? * roll back these changes
* A few small cleanups (#3046)Alex Gaynor2016-07-181-9/+9
|
* Add flag to toggle key length check for HOTP and TOTP. (#3012)Terry Chia2016-07-161-0/+2
| | | | | | | | | | * Add an enforce_key_length parameter to HOTP and TOTP. * Document changes in docs. * Add some words to the wordlist. * Add versionadded to docs.
* Added a wordAlex Gaynor2016-02-191-0/+1
|
* port 1.1.2 changelog to masterPaul Kehrer2015-12-101-0/+1
|
* add 'hostname' to spellcheck dictionaryDominic Chen2015-10-101-0/+1
|
* FIPS is a real word!Cory Benfield2015-10-071-0/+1
|
* add a wordPaul Kehrer2015-10-021-0/+1
|
* Add X963KDF from ANSI X9.63:2001Simo Sorce2015-09-241-0/+1
| | | | | | | | | | The implemention allows the use a Hash function to implement a KDF very similar to ConcatKDFHash, just different enough to require a separate derivation function. Closes #2203 Signed-off-by: Simo Sorce <simo@redhat.com>
* Add bcrypt to word list.Terry Chia2015-08-301-0/+1
|
* Add Django to wordlist.Terry Chia2015-08-291-0/+1
|
* add some documentation around the requirement for xcode cli tools on macPaul Kehrer2015-07-041-0/+1
|
* add wildcard SAN x509 test vectorPaul Kehrer2015-06-231-0/+1
|
* Add the word 'Nonces' to docs/spelling_wordlist.txtEeshan Garg2015-05-201-0/+1
|
* add authority information access classesPaul Kehrer2015-05-021-0/+1
|
* try out some new beta docker travis featuresPaul Kehrer2015-04-131-0/+1
|
* Merge pull request #1727 from public/dh-key-iface-2015Paul Kehrer2015-04-091-0/+1
|\ | | | | DH key interfaces
| * DH key interfacesAlex Stapleton2015-04-051-0/+1
| |
* | Added some more words to our dictionary. These are needed for #1785Alex Gaynor2015-03-301-0/+3
|/
* Merge pull request #1503 from reaperhulk/serialize-some-keysAlex Stapleton2015-03-011-0/+2
|\ | | | | Support for traditional OpenSSL and PKCS8 RSA private key serialization
| * Support for traditional OpenSSL and PKCS8 RSA private key serializationPaul Kehrer2015-02-251-0/+2
| |
* | DH numbersAlex Stapleton2015-02-261-0/+1
|/
* implement signature_hash_algorithm insteadPaul Kehrer2015-02-141-0/+1
|
* make x509.Name iterable and address other review feedbackPaul Kehrer2015-02-131-0/+1
|
* this is a wordAlex Gaynor2014-12-121-0/+1
|
* link datetime better and add naïve to spelling listPaul Kehrer2014-11-241-0/+1
|