aboutsummaryrefslogtreecommitdiffstats
path: root/tests/test_x509.py
Commit message (Collapse)AuthorAgeFilesLines
* fix an overindented line. not sure why our linters didn't catch this (#3123)Paul Kehrer2016-08-301-1/+1
|
* Allow passing iterators where collections are expected (#3078)Marti2016-08-261-0/+12
| | | | | | | | | | | | | | Iterators can only be enumerated once, breaking code like this in Python 3 for example: san = SubjectAlternativeName(map(DNSName, lst)) This is also a slight behavior change if the caller modifies the list after passing it to the constructor, because input lists are now copied. Which seems like a good thing. Also: * Name now checks that attributes elements are of type NameAttribute * NoticeReference now allows notice_numbers to be any iterable
* CertificateBuilder accepts aware datetimes for not_valid_after and ↵InvalidInterrupt2016-08-161-0/+50
| | | | | | | | | | | | | | | | | | | not_valid_before (#2920) * CertificateBuilder accepts aware datetimes for not_valid_after and not_valid_before These functions now accept aware datetimes and convert them to UTC * Added pytz to test requirements * Correct pep8 error and improve Changelog wording * Improve tests and clarify changelog message * Trim Changelog line length * Allow RevokedCertificateBuilder and CertificateRevocationListBuilder to accept aware datetimes * Fix accidental changelog entry
* Disallow X509 certificate serial numbers bigger than 159 bits (#3064) (#3067)Коренберг Марк2016-08-021-3/+46
|
* Use a series of constants for OpenSSL version checks (#3037)Alex Gaynor2016-07-111-4/+4
| | | | | | | | | | | | | | | | | | | | | | | | * Use a series of constants for OpenSSL version checks. N.B. I removed several qualifiers that were being used to express beta vs. release in OpenSSL version numbers. Reviewers please look closely! * Convert some python as well, also add the file * flake8 * Simplify code, remove functionality that can be expressed more simply * clean up the tests as well * more constants * wrap long lines * reflect feedback * unused * add this back?
* Add alias for Certificate serial as serial number (#2950)Chelsea Winfree2016-06-021-5/+30
| | | | | | | | * Add alias for Certificate serial as serial number * Adding deprecation to utils * Now with catch warnings and proper vers
* Fixed #2747 -- allow creating x509 exts with unknown extensionsAlex Gaynor2016-03-141-0/+33
|
* support PolicyConstraints in the CertificateBuilderPaul Kehrer2016-03-131-0/+48
|
* Merge pull request #2670 from joernheissler/x509_req_verifyPaul Kehrer2016-03-061-0/+16
|\ | | | | Add verify method on CertificateSigningRequest
| * Change method to propertyJoern Heissler2016-01-181-7/+5
| |
| * Add verify method on CertificateSigningRequestJoern Heissler2016-01-131-1/+19
| |
* | raise ValueError if > 2 byte value for NameAttribute with CN OIDPaul Kehrer2016-03-061-0/+14
|/
* support unrecognized extensions in x509Paul Kehrer2015-12-301-1/+5
|
* move two tests to the openssl backend tests where they belongPaul Kehrer2015-12-261-51/+0
|
* add invaliditydate class for crl entry extensionsPaul Kehrer2015-12-261-3/+3
|
* switch CRLReason to use a classPaul Kehrer2015-12-261-5/+5
|
* start switching the CRL entry extensions to be full-fledged classesPaul Kehrer2015-12-251-7/+6
| | | | first up: CertificateIssuer
* full indexing support + testsgAlex Gaynor2015-12-241-3/+8
|
* tests on indexingAlex Gaynor2015-12-241-1/+12
|
* address review commentsPaul Kehrer2015-12-231-8/+3
|
* add test that fails if CRL references aren't properly retainedPaul Kehrer2015-12-231-0/+19
| | | | | | If the X509_CRL reference is not properly retained then this test will return an openssl error or potentially a crash as it's reading freed memory to obtain the revocation_date and serial_number
* CRLNumber needs to be a class for reasons.Paul Kehrer2015-12-221-1/+1
|
* add support for parsing AuthorityInfoAccess and IssuerAltName CRL extsPaul Kehrer2015-12-221-3/+18
| | | | Expand the CRL extensions test to check the value
* support parsing CRL extensions in the OpenSSL backendPaul Kehrer2015-12-211-5/+17
|
* add test for byte matchingPaul Kehrer2015-12-211-0/+24
|
* add a CRL public_bytes methodPaul Kehrer2015-12-201-0/+42
|
* Merge pull request #2538 from reaperhulk/empty-crls-are-beautiful-tooAlex Gaynor2015-12-201-0/+8
|\ | | | | support CRLs with no revoked certificates
| * support CRLs with no revoked certificatesPaul Kehrer2015-12-201-0/+8
| |
* | Dealing with the pedantry of pep8Nick Bastin2015-12-201-2/+0
| |
* | Test for non-standard AIA support in CertificateBuilderNick Bastin2015-12-201-0/+32
|/
* Merge pull request #2530 from nbastin/20151214-oid-valPaul Kehrer2015-12-181-27/+50
|\ | | | | OID validation
| * Avoid IndexError on too-short OIDs, add test for regressionNick Bastin2015-12-171-0/+4
| |
| * OID validationNick Bastin2015-12-141-27/+46
| |
* | require not_valid_after >= not_valid_beforePaul Kehrer2015-12-131-0/+22
|/
* add some missing skipsPaul Kehrer2015-12-031-0/+2
|
* expose tbs_certrequest_bytes and signature on CertificateSigningRequestPaul Kehrer2015-12-031-0/+132
|
* implement support for encoding name constraintsPaul Kehrer2015-12-021-0/+35
|
* test name fixErik Trauschke2015-11-191-1/+1
|
* add tbsCertList and signature interfaces to CRLsErik Trauschke2015-11-191-0/+38
|
* rename tbs_certificate to tbs_certificate_bytes, add a commentPaul Kehrer2015-11-031-9/+9
|
* skip checkPaul Kehrer2015-11-031-0/+1
|
* add support for Certificate signature and tbs_certificatePaul Kehrer2015-11-031-1/+184
|
* Merge pull request #2435 from reaperhulk/fix-2407Alex Gaynor2015-10-271-0/+41
|\ | | | | encode countryName with PrintableString
| * work on py3Paul Kehrer2015-10-271-2/+2
| |
| * remove unneeded strPaul Kehrer2015-10-271-2/+2
| |
| * switch to using pyasn1_modules for the testPaul Kehrer2015-10-271-12/+14
| |
| * encode countryName with PrintableStringPaul Kehrer2015-10-201-0/+39
| | | | | | | | | | | | | | This commit adds a dependency on asn1crypto for testing purposes to parse the certificate and confirm that countryName is encoded with PrintableString while other fields are UTF8String. This is a test only dep.
* | support encoding certificate policies in CertificateBuilderPaul Kehrer2015-10-241-0/+89
| |
* | typoAlex Gaynor2015-10-241-1/+1
| |
* | Fixed #2444 -- added an __hash__ to x509 NamesAlex Gaynor2015-10-241-0/+17
| |
generated by cgit v1.2.3 (git 2.25.1) at 2024-08-10 22:52:28 +0000