delta/python-packages/cryptography.git/src/_cffi_src/openssl/ssl.py, branch macos github.com: pyca/cryptography.git add one more engine binding (#6599) 2021-11-13T02:22:22+00:00 Paul Kehrer paul.l.kehrer@gmail.com 2021-11-13T02:22:22+00:00 105400786a9d812241334effe7a7fd41b89aa76c we don't support these but advanced users may make use of them 
we don't support these but advanced users may make use of them
 Begin building with BoringSSL in our CI, no tests yet (#6554) 2021-11-06T21:14:12+00:00 Alex Gaynor alex.gaynor@gmail.com 2021-11-06T21:14:12+00:00 3e0ab39756b05b2b7170e3a2c8b339f27fe56627 * Attempt to build against BoringSSL in CI * Check for BoringSSL in the SSL bindings * Check for BoringSSL in the err bindings * Check for BoringSSL in the pkcs7 bindings * Check for BoringSSL in the bignum bindings * Check for BoringSSL in the EVP bindings * Check for BoringSSL in the X.509 verify bindings 
* Attempt to build against BoringSSL in CI

* Check for BoringSSL in the SSL bindings

* Check for BoringSSL in the err bindings

* Check for BoringSSL in the pkcs7 bindings

* Check for BoringSSL in the bignum bindings

* Check for BoringSSL in the EVP bindings

* Check for BoringSSL in the X.509 verify bindings
 Check for BoringSSL in the SSL bindings (#6553) 2021-11-05T23:02:11+00:00 Alex Gaynor alex.gaynor@gmail.com 2021-11-05T23:02:11+00:00 ba9f5e5b4aa79de31bbfa29ba8d5587b186e564d 






Added an additional check for boringssl in the ssl bindings (#6547)
2021-11-04T20:21:38+00:00

Alex Gaynor
alex.gaynor@gmail.com

2021-11-04T20:21:38+00:00

eb4ed0529198ad63834fa9e3fa23a62d6ff08aea












Check for BoringSSL in ssl.py (#6507)
2021-10-31T22:50:06+00:00

Alex Gaynor
alex.gaynor@gmail.com

2021-10-31T22:50:06+00:00

44b6b324f654d22003df3013f4b9756f07becdec












Remove unused SSL bindings (#6473)
2021-10-25T01:09:49+00:00

Alex Gaynor
alex.gaynor@gmail.com

2021-10-25T01:09:49+00:00

3f515a1524109ee8d4a814c4cd65066198cf52ea












remove family of unused bindings (#6408)
2021-10-12T00:16:22+00:00

Alex Gaynor
alex.gaynor@gmail.com

2021-10-12T00:16:22+00:00

138ce0ceb8ca11d132c8e890952f9fd901ef8f68












Support LibreSSL 3.4.0 (#6360)
2021-10-03T04:20:31+00:00

Charlie Li
vishwin@users.noreply.github.com

2021-10-03T04:20:31+00:00

5c2fe56875eae822cd4f75436a7204efaae82ba5

* Add LibreSSL 3.4.0 to CI

* Add a LibreSSL 3.4.0 guard

Since LibreSSL 3.4.0 makes most of the TLSv1.3 API available, redefine CRYPTOGRAPHY_OPENSSL_LESS_THAN_111 to LibreSSL versions below 3.4.0.

* DTLS_get_data_mtu does not exist in LibreSSL

* Only EVP_Digest{Sign,Verify} exist in LibreSSL 3.4.0+

* SSL_CTX_{set,get}_keylog_callback does not exist in LibreSSL

* Do not pollute CRYPTOGRAPHY_OPENSSL_LESS_THAN_111 with LibreSSL

While LibreSSL 3.4.0 supports more of TLSv1.3 API, the guard redefinition caused the X448 tests to run when not intended.




* Add LibreSSL 3.4.0 to CI

* Add a LibreSSL 3.4.0 guard

Since LibreSSL 3.4.0 makes most of the TLSv1.3 API available, redefine CRYPTOGRAPHY_OPENSSL_LESS_THAN_111 to LibreSSL versions below 3.4.0.

* DTLS_get_data_mtu does not exist in LibreSSL

* Only EVP_Digest{Sign,Verify} exist in LibreSSL 3.4.0+

* SSL_CTX_{set,get}_keylog_callback does not exist in LibreSSL

* Do not pollute CRYPTOGRAPHY_OPENSSL_LESS_THAN_111 with LibreSSL

While LibreSSL 3.4.0 supports more of TLSv1.3 API, the guard redefinition caused the X448 tests to run when not intended.






Expose a few more OpenSSL functions that are useful for DTLS support (#6138)
2021-06-30T18:25:39+00:00

Nathaniel J. Smith
njs@pobox.com

2021-06-30T18:25:39+00:00

1b281ba52517572af0dc0c81388f8d9189914b98

* Expose a few more OpenSSL functions that are useful for DTLS support

* Move BIO_ADDR gunk to proper place

* const correct

* Throw more #ifdefs at the wall and see if they stick

* njsmith used "think about what he's doing"

it's probably not very effective

* LibreSSL is not my favorite library

* Attempt to hide my new undefined symbols

* deflake

* Give up on trying to check function pointers for NULLness

AFAICT it works fine in CFFI's ABI mode, but I can't figure out how to
do it in the API mode.




* Expose a few more OpenSSL functions that are useful for DTLS support

* Move BIO_ADDR gunk to proper place

* const correct

* Throw more #ifdefs at the wall and see if they stick

* njsmith used "think about what he's doing"

it's probably not very effective

* LibreSSL is not my favorite library

* Attempt to hide my new undefined symbols

* deflake

* Give up on trying to check function pointers for NULLness

AFAICT it works fine in CFFI's ABI mode, but I can't figure out how to
do it in the API mode.






Fix build with LibreSSL 3.3.2 (#5988)
2021-04-19T22:38:38+00:00

Charlie Li
vishwin@users.noreply.github.com

2021-04-19T22:38:38+00:00

94590a9aecc9e5ef6fc8eda52bae43643a4c44bd

* LibreSSL 3.3.2 supports SSL_OP_NO_DTLS*

While here, bump CI

* Fix preprocessor guards for LibreSSL's SSL_OP_NO_DTLS*

DTLS_set_link_mtu and DTLS_get_link_min_mtu are not part of 3.3.2

* Switch to LESS_THAN context for LibreSSL 3.3.2

While here, fix indents

* Remove extra C variable declaration

The variable is not actually used from Python




* LibreSSL 3.3.2 supports SSL_OP_NO_DTLS*

While here, bump CI

* Fix preprocessor guards for LibreSSL's SSL_OP_NO_DTLS*

DTLS_set_link_mtu and DTLS_get_link_min_mtu are not part of 3.3.2

* Switch to LESS_THAN context for LibreSSL 3.3.2

While here, fix indents

* Remove extra C variable declaration

The variable is not actually used from Python