delta/python-packages/cryptography.git/src/_cffi_src, branch 2.3 github.com: pyca/cryptography.git add crl.get_revoked_certificate method (#4331) 2018-07-16T15:19:51+00:00 Paul Kehrer paul.l.kehrer@gmail.com 2018-07-16T15:19:51+00:00 5d187402775bcb7bc8b0da1d972d36bf9ad9dbff * add crl.get_revoked_certificate method * lexicographic is the best ographic * rename 
* add crl.get_revoked_certificate method

* lexicographic is the best ographic

* rename
Make our locking setup function compy with our style guide (#4316) 2018-07-06T15:43:26+00:00 Alex Gaynor alex.gaynor@gmail.com 2018-07-06T15:43:26+00:00 efad55978bd836380e423faa03503c0f537da3c4 And not expose an unprefixed name to anyone who dlopens us. 
And not expose an unprefixed name to anyone who dlopens us.
 set an OPENSSL_API_COMPAT level (#4313) 2018-07-06T12:34:55+00:00 Paul Kehrer paul.l.kehrer@gmail.com 2018-07-06T12:34:55+00:00 000fda7e98cf8b0a8c1fb3b480cff0a5a832ca4f * set an OPENSSL_API_COMPAT level this helps prevent adding deprecated functions and will let us see what we need to/can prune in the distant future when we support only 1.1.0+ * raise the api compat to 1.0.1 (which doesn't matter but is less confusing) 
* set an OPENSSL_API_COMPAT level

this helps prevent adding deprecated functions and will let us see what
we need to/can prune in the distant future when we support only 1.1.0+

* raise the api compat to 1.0.1 (which doesn't matter but is less confusing)
Revert the const bits of #4220. (#4276) 2018-06-29T23:28:33+00:00 David Benjamin davidben@davidben.net 2018-06-29T23:28:33+00:00 8bf42606a35611c804c2204106cd84f436550ccb In #4220, I switched BIO_new to take a const pointer (true in 1.1.0, but not 1.0.2) on grounds that: This also folds in the const bits from 1.1.0, on the assumption that, now that the function pointer check is gone, it will just cause cffi to generate more conservative pointer types that work for 1.0.2 as well. But I got this backwards. If the bindings say BIO_METHOD*, cffi will pass a BIO_METHOD* to BIO_new, which works in both OpenSSL versions. If it says const BIO_METHOD*, cffi will pass const BIO_METHD* to BIO_new, which does not work in 1.0.2. (Although cryptography.io's build ignores all these warnings anyway, so it's kind of moot.) 
In #4220, I switched BIO_new to take a const pointer (true in 1.1.0, but
not 1.0.2) on grounds that:

    This also folds in the const bits from 1.1.0, on the assumption that,
    now that the function pointer check is gone, it will just cause cffi to
    generate more conservative pointer types that work for 1.0.2 as well.

But I got this backwards. If the bindings say BIO_METHOD*, cffi will
pass a BIO_METHOD* to BIO_new, which works in both OpenSSL versions. If
it says const BIO_METHOD*, cffi will pass const BIO_METHD* to BIO_new,
which does not work in 1.0.2.

(Although cryptography.io's build ignores all these warnings anyway, so
it's kind of moot.)
 Exposed OpenSSL prime methods (#4292) 2018-06-22T14:32:47+00:00 Quinten Stokkink goqs@hotmail.com 2018-06-22T14:32:47+00:00 0d9fc8ec6d35ec6c4f834a8873e7ca63e9e769d0 These are required by the Tribler project. 
These are required by the Tribler project.
 Perform an OPENSSL_cleanup before checking the heap in our memleak tests (#4293) 2018-06-20T15:50:33+00:00 Alex Gaynor alex.gaynor@gmail.com 2018-06-20T15:50:33+00:00 58fd9c412ad8e91f1453f86ba1fc16479f5b11d0 * Perform an OPENSSL_cleanup before checking the heap in our memleak tests * Make this binding conditional * typo * need to put this call before we reset the function ptrs 
* Perform an OPENSSL_cleanup before checking the heap in our memleak tests

* Make this binding conditional

* typo

* need to put this call before we reset the function ptrs
LibreSSL 2.7.x support (#4270) 2018-05-31T03:39:12+00:00 Paul Kehrer paul.l.kehrer@gmail.com 2018-05-31T03:39:12+00:00 611fa5a0458a36bb8b13b3e251a5cd359fa34296 * libre 2.7.3 compatibility * add a changelog * actually build against 2.7.3 
* libre 2.7.3 compatibility

* add a changelog

* actually build against 2.7.3
Removes branches in bindings for various OpenSSL 1.1.0 prereleases (#4269) 2018-05-31T02:31:47+00:00 Alex Gaynor alex.gaynor@gmail.com 2018-05-31T02:31:47+00:00 8a64f1f2fbea73f0b7a4725768dc9597d240c661 * Remove defines for openssl 1.1.0 pre * Update bio.py * Update dh.py * Update dsa.py * Update rsa.py * Update x509_vfy.py * Compress branches 
* Remove defines for openssl 1.1.0 pre

* Update bio.py

* Update dh.py

* Update dsa.py

* Update rsa.py

* Update x509_vfy.py

* Compress branches
Fixed build errors on HP-UX. (#4259) 2018-05-22T12:19:02+00:00 dumol dumol@chevah.com 2018-05-22T12:19:02+00:00 0a22d486ec9175926aed29a5f4ea963843ebccfa * Fixed build errors on HP-UX. * PEP 8 style fix. * No return for void function. * PEP 8 style fix, take 2. 
* Fixed build errors on HP-UX.

* PEP 8 style fix.

* No return for void function.

* PEP 8 style fix, take 2.
Cleanup unused err bindings. (#4246) 2018-05-16T01:32:05+00:00 David Benjamin davidben@davidben.net 2018-05-16T01:32:05+00:00 18370510b5ea1cfeec514b7662b61ac7ebfb33d5 This removes: - ERR_get_state which really shouldn't be public API. - A bunch of functions that are really mostly useful within the library to add new errors. NB: I say mostly because they are also useful when trying to register a new error library, as osrandom does, but osrandom is written in C. Python code is more likely to be consuming errors. - All function codes but EVP_F_EVP_ENCRYPTFINAL_EX because tests still reference it. Per PR #3609, function codes are kind of unstable. This finishes that up and cleans up the bindings. - The "line" versions of querying the error queue, just because no one seems to be using them and there's a lot. - Error-printing functions, which make less sense in Python since you'd probably wrap in an exception. Error codes probably could also do with cleaning, but I've left them alone for now. 
This removes:

- ERR_get_state which really shouldn't be public API.

- A bunch of functions that are really mostly useful within the library
  to add new errors. NB: I say mostly because they are also useful when
  trying to register a new error library, as osrandom does, but osrandom
  is written in C. Python code is more likely to be consuming errors.

- All function codes but EVP_F_EVP_ENCRYPTFINAL_EX because tests still
  reference it. Per PR #3609, function codes are kind of unstable. This
  finishes that up and cleans up the bindings.

- The "line" versions of querying the error queue, just because no one
  seems to be using them and there's a lot.

- Error-printing functions, which make less sense in Python since you'd
  probably wrap in an exception.

Error codes probably could also do with cleaning, but I've left them
alone for now.