aboutsummaryrefslogtreecommitdiffstats
path: root/src/cryptography/hazmat/backends/openssl
Commit message (Collapse)AuthorAgeFilesLines
...
* | Merge pull request #2076 from alex/more-branch-coveragePaul Kehrer2015-06-271-8/+6
|\ \ | | | | | | More branch coverage improvements. By virtue of reorganization and a new test
| * | More branch coverage improvements. By virtue of reorganization and a new testAlex Gaynor2015-06-271-8/+6
| | |
* | | Reorganized some code to improve branch coverageAlex Gaynor2015-06-271-6/+6
|/ /
* | Fixed #2067 -- raise an error if a CSRbuilder doesn't hav a subjectAlex Gaynor2015-06-271-1/+1
| |
* | do this much more simplyPaul Kehrer2015-06-261-7/+4
| |
* | handle wildcard DNSNames with IDNA.Paul Kehrer2015-06-261-1/+14
|/ | | | fixes #2054
* Use utf8 to encode attribute values instead of asciiIan Cordasco2015-06-241-2/+2
|
* Add tests to the CSR Builder for EC and DSA keysIan Cordasco2015-06-241-1/+12
| | | | | | This skips certain tests on certain versions of differences in how X509_REQ_sign works on those versions. A separate pull request will address those differences.
* Unconditionally encode values to asciiIan Cordasco2015-06-241-5/+2
|
* Update registering pp with ffi.gcIan Cordasco2015-06-241-4/+3
| | | | | This makes it more in-line with existing functions, e.g., L40-L47 of src/cryptography/hazmat/backends/openssl/x509.py @ b0e8ffa
* Update CSR tests and implementationIan Cordasco2015-06-241-1/+2
| | | | | | | | | | - Use keyword arguments for x509.BasicConstraints in tests (missed in b790edbdc8fb9a026353d6fb99994326197705c7). - Place X509_request garbage collection under assertion. - Assert that X509 extensions created are not null. - Don't copy the extensions list in CertificateSigningBuilder. They're never appended to, so copying isn't necessary. - Use RSA key fixtures instead of generating new ones on each test run
* Address code review regarding style and gcIan Cordasco2015-06-241-12/+13
| | | | | | | | | - Use keyword arguments for x509.BasicConstraints in several places - Use SHA256 instead of SHA1 in documented examples - Give function variables meaningful names in _encode_asn1_str - Accept a x509.BasicConstraints object in _encode_basic_constraints - Properly garbage-collect some things - Raise a NotImplementedError instead of a ValueError
* Removes CSR builder version setter.Andre Caron2015-06-241-1/+1
|
* Fixes memory leak,Andre Caron2015-06-241-0/+6
|
* Extends supported range for integer conversion,Andre Caron2015-06-241-2/+9
|
* Removes OID to txt to OID conversion.Andre Caron2015-06-241-10/+3
|
* Cleans up some GC semantics.Andre Caron2015-06-241-3/+16
|
* Renames sign_509_request to create_x509_csr.Andre Caron2015-06-241-1/+1
|
* Fixes memory allocation.Andre Caron2015-06-241-12/+4
|
* Adds CSR builder.Andre Caron2015-06-241-1/+144
|
* fix ec_cdata_to_evp_pkey bugPaul Kehrer2015-06-221-0/+1
| | | | | | We weren't actually returning the object and the tests weren't catching it because we didn't try to use the evp_pkey property in the tests. The added test confirms it actually works.
* Merge pull request #2036 from major/masterAlex Gaynor2015-06-211-0/+3
|\ | | | | Added a repr() method to x509._Certificate
| * Added a repr() method to x509._CertificateMajor Hayden2015-06-211-0/+3
| |
* | Refs #1947 -- add support for IAN to the OpenSSL backendAlex Gaynor2015-06-201-2/+15
| |
* | evp_pkey in openssl asymmetric key constructorsPaul Kehrer2015-06-204-76/+75
| |
* | inhibit any policy extension support for the openssl backendPaul Kehrer2015-06-171-0/+13
| |
* | support OCSPNoCheck in the OpenSSL backendPaul Kehrer2015-06-171-0/+2
|/
* don't double free DSA cdata when verifying thingsPaul Kehrer2015-06-061-4/+1
|
* Add the dual license header to hazmat/backends/openssl/x509.pyEeshan Garg2015-05-241-12/+3
|
* Adds certificate encoding to PEM and DER.Andre Caron2015-05-191-0/+12
|
* Removes PEM text prelude for CSRs.Andre Caron2015-05-181-3/+0
|
* Adds support for writing CSRs.Andre Caron2015-05-181-1/+18
|
* Adds support for CSR extensions.Andre Caron2015-05-171-0/+32
|
* Prepares X509 decoding functions for more CA functionality.Andre Caron2015-05-151-295/+309
| | | | | | | | | Most of the existing `_build_*()` methods will need to be reused for CSR extensions, so it is more convenient to have them as free functinos. Since we will need to add the reverse functions, it is convenient to rename the `_build_*()` methods to `_decode_*()`. The reverse functions will be named `_encode_*()`.
* change approach for parsing CDP reason flagsPaul Kehrer2015-05-131-18/+25
|
* support CRLDistributionPoints in the OpenSSL backendPaul Kehrer2015-05-131-11/+101
|
* support certificate policies in the openssl backendPaul Kehrer2015-05-121-0/+71
|
* refactor asn1string->utf8 conversion into a separate functionPaul Kehrer2015-05-121-8/+12
|
* asn1 integer to python integer helper functionPaul Kehrer2015-05-121-16/+12
|
* extract some duplicate logic into a functionPaul Kehrer2015-05-101-18/+15
|
* add support for authority information access in the openssl backendPaul Kehrer2015-05-041-0/+23
|
* authority key identifier support in the openssl backendPaul Kehrer2015-05-031-0/+41
|
* Extended key usage support for the openssl backendPaul Kehrer2015-05-021-0/+20
|
* Merge pull request #1881 from reaperhulk/san-rfc822nameAlex Gaynor2015-05-021-0/+22
|\ | | | | add support for rfc822name general names
| * error if it's all emptyPaul Kehrer2015-05-021-1/+2
| |
| * u prefixes for everyonePaul Kehrer2015-05-021-1/+1
| |
| * improve if/elif chain, add some commentsPaul Kehrer2015-05-011-6/+11
| |
| * add support for rfc822name general namesPaul Kehrer2015-04-301-0/+16
| |
* | add support for equality testing to x509.CertificatePaul Kehrer2015-04-301-0/+10
|/
* add support for directory name general namesPaul Kehrer2015-04-301-0/+4
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-08 14:42:53 +0000