| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | fix to handle malformed certificates without hostname | Dominic Chen | 2015-10-10 | 1 | -2/+7 |
| | | |||||
| * | Introduce Key Exchange Agreements interface | Simo Sorce | 2015-10-07 | 1 | -0/+18 |
| | | | | | Signed-off-by: Simo Sorce <simo@redhat.com> | ||||
| * | Change '!=' to 'is not' | Manoel Domingues Junior | 2015-10-01 | 1 | -1/+1 |
| | | |||||
| * | Handling path_length when ca is True | Manoel Domingues Junior | 2015-10-01 | 1 | -1/+1 |
| | | | | | | | Using CertificateBuilder: builder = builder.add_extension(x509.BasicConstraints(ca=True,path_length=None), critical=True) return TypeError in line 792 because None can't be converted to hex. In https://tools.ietf.org/html/rfc5280.html#section-4.2.1.9: CAs MUST NOT include the pathLenConstraint field unless the cA boolean is asserted and the key usage extension asserts the keyCertSign bit. | ||||
| * | flake8 | Alex Gaynor | 2015-09-29 | 1 | -0/+1 |
| | | |||||
| * | sigh, fix | Alex Gaynor | 2015-09-29 | 1 | -1/+1 |
| | | |||||
| * | use signature so stuff works on 3.6 -- fixes #2382 | Alex Gaynor | 2015-09-29 | 1 | -3/+8 |
| | | |||||
| * | unused import | Alex Gaynor | 2015-09-26 | 1 | -3/+1 |
| | | |||||
| * | Use InternalError for stuff | Alex Gaynor | 2015-09-26 | 6 | -41/+21 |
| | | |||||
| * | fix the tests | Alex Gaynor | 2015-09-26 | 1 | -4/+4 |
| | | |||||
| * | flake8 it | Alex Gaynor | 2015-09-26 | 1 | -6/+4 |
| | | |||||
| * | Convert asserts in bindings as well | Alex Gaynor | 2015-09-26 | 2 | -36/+49 |
| | | |||||
| * | converted a few more asserts | Alex Gaynor | 2015-09-26 | 3 | -3/+3 |
| | | |||||
| * | move two asserts much closer to call site | Paul Kehrer | 2015-09-25 | 1 | -2/+2 |
| | | |||||
| * | convert the rest of the openssl backend to using openssl_assert | Paul Kehrer | 2015-09-25 | 8 | -87/+90 |
| | | |||||
| * | remove unnecessary check | Paul Kehrer | 2015-09-25 | 1 | -1/+0 |
| | | |||||
| * | change some asserts back since they're not openssl specific | Paul Kehrer | 2015-09-25 | 1 | -18/+19 |
| | | | | | plus bonus better exception msg | ||||
| * | start converting asserts to a function call | Paul Kehrer | 2015-09-25 | 1 | -166/+185 |
| | | | | | | This prevents situations where asserts are bypassed when running python with -O. | ||||
| * | Add X963KDF from ANSI X9.63:2001 | Simo Sorce | 2015-09-24 | 1 | -0/+70 |
| | | | | | | | | | | | The implemention allows the use a Hash function to implement a KDF very similar to ConcatKDFHash, just different enough to require a separate derivation function. Closes #2203 Signed-off-by: Simo Sorce <simo@redhat.com> | ||||
| * | should have _asn1_* utility functions in a common place | Erik Trauschke | 2015-09-24 | 2 | -73/+63 |
| | | |||||
| * | Made import order alphabetical. | Predrag Gruevski | 2015-09-23 | 1 | -1/+1 |
| | | |||||
| * | SubjectKeyIdentifier equality now uses constant-time digest comparison. | Predrag Gruevski | 2015-09-23 | 1 | -4/+2 |
| | | |||||
| * | Merge branch 'master' into add_name_to_oids | Brendan McCollam | 2015-09-07 | 5 | -11/+46 |
| |\ | |||||
| | * | Merge branch 'master' into static-linking-osx | Paul Kehrer | 2015-09-04 | 2 | -7/+6 |
| | |\ | |||||
| | | * | Resolve an unusual test bug related to initializing the bindings | Paul Kehrer | 2015-08-29 | 2 | -7/+6 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | To make calls against the "SSL" parts of OpenSSL you need to call SSL_library_init. There are multiple ways this can be called: * If you're using the same OpenSSL in cryptography as you are in your Python then Python will call it for you. * If you import the openssl backend. These tests need SSL_library_init to be called. When run in our CI SSL_library_init is called because during the parametrization step the OpenSSL backend is imported (thus triggering it). However, you can also run tests directly via py.test and without this change py.test tests/hazmat/bindings/test_openssl.py would crash if you had cryptography linked against a different OpenSSL than your Python used. | ||||
| | * | | rename env var to CRYPTOGRAPHY_OSX_NO_LINK_FLAGS | Paul Kehrer | 2015-08-31 | 1 | -1/+1 |
| | | | | |||||
| | * | | no need for None | Paul Kehrer | 2015-08-29 | 1 | -1/+1 |
| | | | | |||||
| | * | | add support for static linking of the openssl backend on OS X | Paul Kehrer | 2015-08-29 | 1 | -3/+16 |
| | |/ | |||||
| | * | Removed SSL_renegotiate_abbreviated binding | kjav | 2015-08-28 | 1 | -1/+0 |
| | | | | | | | As this is not supported in OpenSSL < 1.01 | ||||
| | * | Added bindings for SSL_renegotiate_<pending/abbreviated> | kjav | 2015-08-28 | 1 | -0/+2 |
| | | | |||||
| | * | Add SSL_renegotiate binding. | Terry Chia | 2015-08-28 | 1 | -0/+1 |
| | | | |||||
| | * | add conditional removal for SET_CERT_CB | Paul Kehrer | 2015-08-25 | 1 | -1/+5 |
| | | | |||||
| | * | add set_cert_cb | Maximilian Hils | 2015-08-25 | 1 | -0/+17 |
| | | | |||||
| * | | Adds _name property to ObjectIdentifier | Brendan McCollam | 2015-09-06 | 1 | -1/+5 |
| |/ | |||||
| * | set the default stringmask to utf8 | Paul Kehrer | 2015-08-22 | 1 | -0/+6 |
| | | | | | | This corrects a problem where older OpenSSL versions don't do this by default. fixes #2291 | ||||
| * | libre doesn't have these fields (and might only be used in sslv2 anyway) | Paul Kehrer | 2015-08-19 | 1 | -2/+0 |
| | | |||||
| * | compilation fix | Paul Kehrer | 2015-08-19 | 1 | -2/+4 |
| | | |||||
| * | style fix + remove some elements of the struct that aren't in 0.9.8 | Paul Kehrer | 2015-08-18 | 1 | -5/+2 |
| | | |||||
| * | added attribs to SSL_SESSION, SSL_SESSION_print. CIPHER_description | MiWCryptAnalytics | 2015-08-18 | 1 | -0/+11 |
| | | | | For a project I am working on I need some session reflection directly from python. This change adds the required openssl SSL_SESSION struct attributes and functions within OpenSSL API | ||||
| * | Move signature type checks | Stanisław Pitucha | 2015-08-14 | 3 | -8/+9 |
| | | | | | Move the point of checking signatures, as suggested by alex in PR 2262. | ||||
| * | Merge pull request #2262 from viraptor/non-bytes-signatures | Paul Kehrer | 2015-08-12 | 3 | -0/+8 |
| |\ | | | | | Ensure early exeption on non-bytes signature | ||||
| | * | Enforce signature type in ECDSA and add tests | Stanisław Pitucha | 2015-08-12 | 1 | -0/+2 |
| | | | | | | | | | | | Ensure that ECDSA signatures are bytes to match RSA/DSA and add tests for all three. | ||||
| | * | Ensure early exeption on non-bytes signature | Stanisław Pitucha | 2015-08-11 | 2 | -0/+6 |
| | | | | | | | | | | | Signature must be in bytes. If the check is skipped, verify() can explode later in cffi call in _verify_pkey_ctx() for example. | ||||
| * | | Merge pull request #2267 from queenp/iss2255 | Paul Kehrer | 2015-08-12 | 1 | -0/+9 |
| |\ \ | | | | | | | added get_extension_for_class #2255 | ||||
| | * | | added test to raise error | Phoebe Queen | 2015-08-12 | 1 | -1/+1 |
| | | | | |||||
| | * | | fixing pep8 errors #2255 | Phoebe Queen | 2015-08-12 | 1 | -1/+3 |
| | | | | |||||
| | * | | Corrected class checking #2255 | Phoebe Queen | 2015-08-12 | 1 | -1/+1 |
| | | | | |||||
| | * | | Merge remote-tracking branch 'upstream/master' into iss2255 | Phoebe Queen | 2015-08-12 | 3 | -206/+206 |
| | |\ \ | | | | | | | | | | | | | | | | | | | | | | | | | Class Extensions was moved while I was adding function. Fixed now. Conflicts: src/cryptography/x509/base.py | ||||
| | * | | | added get_extension_for_class #2255 | Phoebe Queen | 2015-08-12 | 1 | -0/+7 |
| | | | | | |||||
| * | | | | reopen master for eleventh release | Paul Kehrer | 2015-08-12 | 1 | -1/+1 |
| | | | | | |||||
 |
index : cloud-email/cryptography | |
| python cryptography | James |
| aboutsummaryrefslogtreecommitdiffstats |