aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
* const some more ASN1 (#3100)Paul Kehrer2016-08-241-2/+2
|
* CertificateBuilder accepts aware datetimes for not_valid_after and ↵InvalidInterrupt2016-08-161-0/+19
| | | | | | | | | | | | | | | | | | | not_valid_before (#2920) * CertificateBuilder accepts aware datetimes for not_valid_after and not_valid_before These functions now accept aware datetimes and convert them to UTC * Added pytz to test requirements * Correct pep8 error and improve Changelog wording * Improve tests and clarify changelog message * Trim Changelog line length * Allow RevokedCertificateBuilder and CertificateRevocationListBuilder to accept aware datetimes * Fix accidental changelog entry
* ERR_load_RAND_strings changed function signature in 1.1.0 (#3093)Paul Kehrer2016-08-161-1/+6
| | | | | | | | * ERR_load_RAND_strings changed function signature in 1.1.0 Here is a hack to avoid breaking pyOpenSSL. * not sure how I managed that. I blame vim
* move functions that were const-ified in 1.1.0-pre6 (#3090)Paul Kehrer2016-08-163-19/+33
|
* OPENSSL_no_config is a macro in 1.1.0 (#3091)Paul Kehrer2016-08-161-1/+2
|
* BIO_set has been removed in 1.1.0 (#3092)Paul Kehrer2016-08-161-1/+0
| | | Since we aren't using it bye bye
* Disallow X509 certificate serial numbers bigger than 159 bits (#3064) (#3067)Коренберг Марк2016-08-021-8/+14
|
* Add code style settings, new excludes, run 'test_x509_ext (Py3)' (#3041)Marti2016-08-021-5/+10
| | | | | | Fix DNSName wildcard encoding for NameConstraints Previously '.example.com' would get normalised to 'example.com', making it impossible to add wildcard NameConstraints.
* disable static callbacks on Python 3.5 (refs #2970) (#3063)Maximilian Hils2016-07-291-1/+4
|
* Fixed openssl binding if no-cmac (#3062)Jeffery To2016-07-271-2/+2
|
* Unconditional SecureTransport bindings, round 2. (#3059)Cory Benfield2016-07-232-0/+309
| | | | | | | | | | | | * Add the unconditional SecureTransport bindings * Looks like the PSK cipher suites got removed in 10.8 * Line-length. * Style. * Remove further troublesome bindings.
* Revert "Add the unconditional SecureTransport bindings" (#3058)Alex Gaynor2016-07-232-314/+0
|
* Add the unconditional SecureTransport bindings (#3054)Cory Benfield2016-07-232-0/+314
| | | | | | | | | | * Add the unconditional SecureTransport bindings * Line-length. * Looks like the PSK cipher suites got removed in 10.8 * Style.
* Enforce that p > q to improve OpenSSL compatibility (fixes #2990) (#3010)Dirkjan Ochtman2016-07-191-1/+1
|
* Add flag to toggle key length check for HOTP and TOTP. (#3012)Terry Chia2016-07-162-4/+6
| | | | | | | | | | * Add an enforce_key_length parameter to HOTP and TOTP. * Document changes in docs. * Add some words to the wordlist. * Add versionadded to docs.
* Add OPENSSL_config binding (#2972) (#2974)Anton2016-07-132-0/+24
| | | | | | | >>> lib.EVP_get_digestbyname(b'md_gost94') <cdata 'EVP_MD *' NULL> >>> lib.OPENSSL_config(ffi.NULL) >>> lib.EVP_get_digestbyname(b'md_gost94') <cdata 'EVP_MD *' 0x10adc7440>
* Use a series of constants for OpenSSL version checks (#3037)Alex Gaynor2016-07-1116-57/+99
| | | | | | | | | | | | | | | | | | | | | | | | * Use a series of constants for OpenSSL version checks. N.B. I removed several qualifiers that were being used to express beta vs. release in OpenSSL version numbers. Reviewers please look closely! * Convert some python as well, also add the file * flake8 * Simplify code, remove functionality that can be expressed more simply * clean up the tests as well * more constants * wrap long lines * reflect feedback * unused * add this back?
* disable blowfish in commoncrypto backend for key lengths under 64-bit (#3040)Paul Kehrer2016-07-101-1/+6
| | | | This is due to a bug in CommonCrypto present in 10.11.x. Filed as radar://26636600
* One shot sign/verification ECDSA (#3029)Aviv Palivoda2016-07-022-0/+22
| | | | | | | | | | | | | | * Add sign and verify methods to ECDSA * Documented ECDSA sign/verify methods * Added CHANGELOG entry * Skipping test verify and sign if curve is not supported * Fixed typo in documentation return type * Removed provider language from EllipticCurvePrivateKey and EllipticCurvePublicKey
* Remove a few SSL fields which are unused (#3032)Alex Gaynor2016-06-301-5/+0
|
* One shot sign/verify DSA (#3003)Aviv Palivoda2016-06-302-0/+22
| | | | | | | | * Add sign and verify methods to DSA * Documented DSA sign/verify methods * Added CHANGELOG entry
* Opaque everything else we can of X509 (#3027)Alex Gaynor2016-06-301-11/+1
|
* change X509V3_EXT_nconf function signature (#3024)Paul Kehrer2016-06-301-1/+2
|
* Opaque another OpenSSL struct (#3025)Alex Gaynor2016-06-291-8/+1
|
* Fixed #3008 -- expose calculate max pss salt length (#3014)Alex Gaynor2016-06-272-11/+19
| | | | | | | | | | | | | | * Fixed #3008 -- expose calculate max pss salt length * Fixed a few mistakes in the docs * move all the code around * oops * write a unit test * versionadded + changelog
* AES_ctr128_encrypt needs to be in macros as it's a conditional binding (#3023)Paul Kehrer2016-06-271-4/+4
|
* update RSA opaque getters/setters to latest code from openssl 1.1.0 master ↵Paul Kehrer2016-06-271-22/+20
| | | | | (#3022) constify + a few small changes to the null checks
* update DH opaque getters/setters to latest code from openssl 1.1.0 master ↵Paul Kehrer2016-06-271-14/+10
| | | | | (#3021) constify + a few small changes to the null checks
* update DSA opaque getters/setters to latest code from openssl 1.1.0 master ↵Paul Kehrer2016-06-271-15/+17
| | | | | (#3020) constify + a few small changes to the null checks
* opaque x509 store context (#3019)Paul Kehrer2016-06-271-15/+1
|
* Refs #2826 -- remove a no longer needed DSA binding (#3017)Alex Gaynor2016-06-261-2/+0
|
* Opaquify RSA and DSA structs in OpenSSL (#3016)Alex Gaynor2016-06-262-24/+2
|
* Use `d` instead of `private_exponent` for consistency (#2991)Dirkjan Ochtman2016-06-221-2/+2
| | | | True story: I used `e` instead of `d` because it seemed more closely related to `e`. Should have looked it up, of course... but the docs could be better.
* Use DSAparams_dup in yet another please (#3007)Alex Gaynor2016-06-201-27/+2
|
* Complete the removal of the string '0.9.8' (#3005)Alex Gaynor2016-06-201-15/+13
| | | We have always been at war with OpenSSL 0.9.8
* use DSAparams_dup now that we no longer support 0.9.8 (#3006)Paul Kehrer2016-06-202-35/+4
|
* Rewrite a comment. (#3004)Alex Gaynor2016-06-201-4/+4
| | | d2i_AutoPrivateKey is less useful than we thought
* Added function to access and alter opaque DH struct (#2976)Aviv Palivoda2016-06-201-0/+82
|
* Remove some more 0.9.8isms from the ssl code (#3001)Alex Gaynor2016-06-201-8/+4
|
* More cleanup of the EVP module for 0.9.8isms (#3000)Alex Gaynor2016-06-202-32/+11
|
* first pass removing 0.9.8 things from the ssl bindings (#2986)Paul Kehrer2016-06-202-74/+2
|
* Remove a few 0.9.8isms from the ssl bindings (#2998)Alex Gaynor2016-06-192-33/+0
|
* Remove some 0.9.8 code in x509 extension land (#2999)Alex Gaynor2016-06-192-49/+14
|
* Simplify and remove some 0.9.8 code from the EVP bindings (#2996)Alex Gaynor2016-06-192-14/+8
| | | | | | | | * Simplify and remove some 0.9.8 code from the EVP bindings The Cryptography_ symbol remains because pyOpenSSL uses. There's still other 0.9.8isms in this file. * only eclare this once
* Remove 0.9.8isms from CMS code. (#2997)Alex Gaynor2016-06-192-15/+2
| | | CMS is 'cryptographic message syntax', and not 'centers for medicaid and medicare', fyi
* Removed 0.9.8 specific hmac code (#2995)Alex Gaynor2016-06-192-70/+9
|
* Remove 0.9.8 isms from the DSA and x509 verify bindings (#2993)Alex Gaynor2016-06-193-58/+1
| | | | | | | | * Remove 0.9.8 isms from the DSA and x509 verify bindings * fixed syntax and remove more gunk * remove some obscure flags
* Remove a few more 0.9.8 bindings (#2994)Alex Gaynor2016-06-184-19/+2
|
* Simplify control flow now that the 0.9.8 branches are gone (#2989)Alex Gaynor2016-06-181-10/+0
|
* 0.9.8 error code conditionals no longer required (#2987)Paul Kehrer2016-06-182-67/+9
| | | | | | * 0.9.8 error code conditionals no longer required * move the error codes to be with their brethren
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-09 16:06:59 +0000