delta/python-packages/cryptography.git/src/_cffi_src/openssl/cryptography.py, branch macos github.com: pyca/cryptography.git Remove branches that were no longer useful (#6664) 2021-11-28T00:56:15+00:00 Alex Gaynor alex.gaynor@gmail.com 2021-11-28T00:56:15+00:00 ed55745b8b1b1d85940740468cbf23636b2b4a7d 






Drop supported for older LibreSSL (#6660)
2021-11-26T23:05:04+00:00

Alex Gaynor
alex.gaynor@gmail.com

2021-11-26T23:05:04+00:00

31dd9e0fca16acc4d870143f0e13f4032ba58240

* Drop supported for older LibreSSL

3.1 covers the oldest version used by versions of Alpine and OpenBSD that are supported by their upstreams.

* Remove tests that are now unused

* Update CHANGELOG.rst

Co-authored-by: Paul Kehrer <paul.l.kehrer@gmail.com>

Co-authored-by: Paul Kehrer <paul.l.kehrer@gmail.com>




* Drop supported for older LibreSSL

3.1 covers the oldest version used by versions of Alpine and OpenBSD that are supported by their upstreams.

* Remove tests that are now unused

* Update CHANGELOG.rst

Co-authored-by: Paul Kehrer <paul.l.kehrer@gmail.com>

Co-authored-by: Paul Kehrer <paul.l.kehrer@gmail.com>






LibreSSL added support for this X.509 flag in 3.2.2 (#6659)
2021-11-26T21:51:28+00:00

Alex Gaynor
alex.gaynor@gmail.com

2021-11-26T21:51:28+00:00

7306515b5ee45b91f4e84bca1fe6663cf5d713f1












LibreSSL added support for the required RSA functions in 3.1.0 (#6658)
2021-11-26T21:50:59+00:00

Alex Gaynor
alex.gaynor@gmail.com

2021-11-26T21:50:59+00:00

2d6ae5f1793cf3869a926013bcb48ca2852b5d27












Add a constant for when we're compiling on BoringSSL (#6505)
2021-10-31T21:43:09+00:00

Alex Gaynor
alex.gaynor@gmail.com

2021-10-31T21:43:09+00:00

8572a9d82e254d348aa674d37d1c19fee8831b19












order defines consistently (#6361)
2021-10-03T04:43:44+00:00

Alex Gaynor
alex.gaynor@gmail.com

2021-10-03T04:43:44+00:00

c45b6466db9e64d603d567f6a333f30cdd912bd6












Support LibreSSL 3.4.0 (#6360)
2021-10-03T04:20:31+00:00

Charlie Li
vishwin@users.noreply.github.com

2021-10-03T04:20:31+00:00

5c2fe56875eae822cd4f75436a7204efaae82ba5

* Add LibreSSL 3.4.0 to CI

* Add a LibreSSL 3.4.0 guard

Since LibreSSL 3.4.0 makes most of the TLSv1.3 API available, redefine CRYPTOGRAPHY_OPENSSL_LESS_THAN_111 to LibreSSL versions below 3.4.0.

* DTLS_get_data_mtu does not exist in LibreSSL

* Only EVP_Digest{Sign,Verify} exist in LibreSSL 3.4.0+

* SSL_CTX_{set,get}_keylog_callback does not exist in LibreSSL

* Do not pollute CRYPTOGRAPHY_OPENSSL_LESS_THAN_111 with LibreSSL

While LibreSSL 3.4.0 supports more of TLSv1.3 API, the guard redefinition caused the X448 tests to run when not intended.




* Add LibreSSL 3.4.0 to CI

* Add a LibreSSL 3.4.0 guard

Since LibreSSL 3.4.0 makes most of the TLSv1.3 API available, redefine CRYPTOGRAPHY_OPENSSL_LESS_THAN_111 to LibreSSL versions below 3.4.0.

* DTLS_get_data_mtu does not exist in LibreSSL

* Only EVP_Digest{Sign,Verify} exist in LibreSSL 3.4.0+

* SSL_CTX_{set,get}_keylog_callback does not exist in LibreSSL

* Do not pollute CRYPTOGRAPHY_OPENSSL_LESS_THAN_111 with LibreSSL

While LibreSSL 3.4.0 supports more of TLSv1.3 API, the guard redefinition caused the X448 tests to run when not intended.






cffi: check openssl version is less than 1.1.0 (#6266)
2021-09-12T22:20:14+00:00

match man
ppucoder@gmail.com

2021-09-12T22:20:14+00:00

11939664bcb1221278f90fb33a3f2a626665b6dd

Issue an #error directive if it is

Signed-off-by: Baofeng Wang <baofeng.wang67@gmail.com>

Co-authored-by: Baofeng Wang <baofeng.wang67@gmail.com>




Issue an #error directive if it is

Signed-off-by: Baofeng Wang <baofeng.wang67@gmail.com>

Co-authored-by: Baofeng Wang <baofeng.wang67@gmail.com>






Added handling for OpenSSL "xts duplicated keys" error. (#6085)
2021-06-09T11:41:36+00:00

Angus Gratton
gus@projectgus.com

2021-06-09T11:41:36+00:00

f0715b835ed5d71cf0b38f165ac6d28e003b4bb5

* Added handling for OpenSSL "xts duplicated keys" error.

Closes #5998

This error value was added pre-OpenSSL 1.1.1d here:
https://github.com/openssl/openssl/commit/2a5f63c9a61be7582620c4b5da202bb3fd7e4138

and refined to only cover encryption shortly after:
https://github.com/openssl/openssl/commit/58ae5a47da1e4843b0cd1846eb297b341d0e7201

* test_aes: Remove unnecessary assignment

* xts: Update duplicated keys check for OpenSSL 3 providers

Also, change the exception message slightly:

- Now matches the tense used by openssl
- Turns out decryption *is* checked for duplicate keys by
  OpenSSL 3 when in FIPS mode




* Added handling for OpenSSL "xts duplicated keys" error.

Closes #5998

This error value was added pre-OpenSSL 1.1.1d here:
https://github.com/openssl/openssl/commit/2a5f63c9a61be7582620c4b5da202bb3fd7e4138

and refined to only cover encryption shortly after:
https://github.com/openssl/openssl/commit/58ae5a47da1e4843b0cd1846eb297b341d0e7201

* test_aes: Remove unnecessary assignment

* xts: Update duplicated keys check for OpenSSL 3 providers

Also, change the exception message slightly:

- Now matches the tense used by openssl
- Turns out decryption *is* checked for duplicate keys by
  OpenSSL 3 when in FIPS mode






[WIP] 3.0.0 support (#5250)
2021-04-23T00:16:38+00:00

Paul Kehrer
paul.l.kehrer@gmail.com

2021-04-23T00:16:38+00:00

f08a7de651f9e6475c8c0a67d2a61ed8b669ddf6

* 3.0.0 support

* almost...there...

* make mypy happy




* 3.0.0 support

* almost...there...

* make mypy happy