| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
| |
* Fix weak linking of getentropy when compiling on older macOS
We use weak linking in macOS to determine if the getentropy symbol is
available. However, to do that we need to have a declaration that states
the function is __attribute((weak_import)) at compile time. On macOS
10.12 this is provided in sys/random.h, but on older macOS the
declaration doesn't exist at all, so we need to forward declare it
ourselves.
* update a comment and a style nit
|
| |
|
|
|
|
|
|
| |
* Blacklist pytest 3.2.0 because it breaks us (#3835)
See upstream: https://github.com/pytest-dev/pytest/issues/2644
* fix for latest flake8 (#3829)
|
| |
|
|
|
|
| |
* changelog and version bump for 2.0.2
* diff language
|
| |
|
|
|
| |
When linking the static lib we want the symbols to not be exported. To
convince gcc to do this you must pass -Wl,--exclude-libs,ALL in CFLAGS
More info at https://stackoverflow.com/questions/2222162
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
|
| |
* update wheel builder script for static linking on linux (#3811)
We don't need to do an LD_LIBRARY_PATH when calling auditwheel because
we're now statically linking OpenSSL.
* Fixed #3801 -- don't create py33 wheels (#3802)
|
| |
|
|
|
|
|
|
| |
* Refs #3646 -- Don't use shell globbing in our release script (#3809)
* fix wheel building with parameters (#3808)
* Refs #3646 -- invoke twine correctly (#3789)
|
| |
|
|
| |
the getentropy fallback is only possible on macOS, wrap it in a define
to remove it entirely on the BSDs.
|
| |
|
|
|
|
| |
* 2.0 version bump and changelog
* dates are just an illusion
|
| | |
|
| |
|
|
|
|
| |
* Remove DH generator size constraint
* Check that g > 1
|
| |
|
|
|
|
|
|
| |
* add AESGCM AEAD support
* remove stray newline
* move AESGCM docs above CCM
|
| |
|
|
|
|
| |
* move tag_length to the AESCCM constructor
* review feedback
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
|
|
| |
* allow p % 24 == 23 when generator == 2 in DH_check
* short url
* update and expand comments
* even better language!
|
| |
|
|
|
|
|
|
| |
* use an instance in aead_cipher_supported
* test for chacha20poly1305 compatibility via init exception
* pep8
|
| |
|
|
|
|
|
|
|
|
| |
* Fixed #3747 -- cache extensions on x.509 objects
* be kind to cpython, save a dict lookup
* flake8
* changelog
|
| |
|
|
|
|
|
|
|
|
|
| |
* remove egd
* oops
* keep Cryptography_HAS_EGD for compat just in case
This shouldn't really be necessary but maybe we can fully remove it in
2018 or 2019...
|
| |
|
|
|
|
| |
* remove cryptodev
* oops
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
really use (#3763)
* Attempt to use coverage to quantify how many of the CONDITIONAL_NAMES we really use
* rewrite file to improve coverage
* Write it this way so we can use line coverage
* lost this one :-(
* fix comment and flake8
* update the docs as well
* flake8
|
| | |
|
| |
|
|
|
|
|
|
| |
* Remove conditionals we never use.
Refs #3763
* put this back
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
* explicitly pull the latest docker image in jenkins
Right now we don't need to do this since the same jenkins instance that
builds the images and tags them also pushes them, so it is guaranteed to
always have the latest. However, if we want to add another docker
builder that is no longer true, so let's always pull
* mos(t) def
* also this one
|
| |
|
|
|
|
| |
* we added flaky to the pyopenssl test deps...
* we can just use the test extra now
|
| | |
|
| | |
|
| |
|
|
|
|
| |
* update static wheel install docs
* parentheses
|
| |
|
|
|
|
|
|
| |
* don't parse SCTs on older openssl
* use two diff extension parsers because why not
* review feedback
|
| | |
|
| |
|
|
|
|
|
|
|
|
| |
* Fixes #3745 -- add the any EKU EKU
* docs
* whitespace
* versionadded
|
| | |
|
| |
|
|
|
|
| |
* update linux install docs and release instructions
* rhel/centos is so bad they don't even have python3
|
| |
|
|
|
|
| |
* add manylinux1 wheel building to the wheel builder
* add changelog
|
| |
|
|
|
|
| |
* require a version of twine that uses pypi.org
* computer
|
| |
|
|
|
|
|
|
|
|
|
|
| |
* disallow MD5 in CertificateBuilder and CertificateSigningRequestBuilder
* only error on ECDSA and DSA
lots of duplication in tests here, bleh
* remove changelog entry, also handle this for CRLBuilder
* pep8
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
| |
* don't use long keys because they can be confusing wrt bits/bytes
* make sure we say bytes everywhere
* shorten the scrypt output to 32 bytes as well
|
| |
|
|
|
|
|
|
|
|
| |
* Test for leaking memory in EllipticCurvePublicNumbers.public_key()
* Fix the memory leak
As far as I can tell, from spelunking in the OpenSSL source (as you do), EC_KEY_set_public_key_affine_coordinates doesn't take ownership of "x" or "y". https://github.com/openssl/openssl/blob/master/crypto/ec/ecp_smpl.c#L362-L420 is the place in the source I found that actually uses "x" and "y".
* Unused imports
|
| |
|
|
|
|
|
|
| |
* No more FUNCS/MACROS distinction
* change the docs to not talk about MACROS since they're gone
* remove out of date comment
|
| | |
|
