summaryrefslogtreecommitdiff
path: root/src/cryptography/x509/base.py
Commit message (Collapse)AuthorAgeFilesLines
* add serialization type hinting (#5718)Paul Kehrer2021-01-301-14/+1
| | | | | | | | | * add serialization type hinting * reorganize to prevent circular dependency * review feedback * damn you black
* Apply type annotations to x509 ct and ocsp (#5712)Alex Gaynor2021-01-301-1/+3
|
* Apply type annotations to the core x509 types (#5711)Alex Gaynor2021-01-301-104/+112
|
* Apply type annotations to x509 builders (#5709)Alex Gaynor2021-01-291-31/+64
|
* Complete removal of py2 (#5533)Alex Gaynor2020-12-091-12/+6
| | | | | * Drop Python 2 * Black everything
* Remove utils.int_from_bytes (#5609)Alex Gaynor2020-12-091-2/+1
|
* Remove __future__ import from our code (#5610)Alex Gaynor2020-12-091-1/+0
|
* x509 optional backend args (#5390)Paul Kehrer2020-08-151-10/+21
|
* Paint it Black by the Rolling Stones (#5324)Alex Gaynor2020-07-201-102/+184
|
* test exceptions and properly reject duplicate attributes in csrbuilder (#5319)Paul Kehrer2020-07-181-0/+9
|
* support encoding attributes via CertificateSigningRequestBuilder (#5315)Paul Kehrer2020-07-181-3/+23
| | | | | | | * support encoding attributes via CertificateSigningRequestBuilder * use a constant. now you know what 12 means! * pep8
* support x509 request challenge password parsing (#4944)Paul Kehrer2020-07-051-0/+12
| | | | | | | | | | | | | * support x509 request challenge password parsing * switch to a more generic (but not too generic) attribute parsing * make it raise a valueerror * Update tests/x509/test_x509.py Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com> Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com>
* Finish ed25519 and ed448 support in x509 module (#4972)Marko Kreen2019-09-091-3/+7
| | | | | | | | | | | | | | | | | | * Support ed25519 in csr/crl creation * Tests for ed25519/x509 * Support ed448 in crt/csr/crl creation * Tests for ed448/x509 * Support ed25519/ed448 in OCSPResponseBuilder * Tests for eddsa in OCSPResponseBuilder * Builder check missing in create_x509_csr * Documentation update for ed25519+ed448 in x509
* ed25519 support in x509 certificate builder (#4937)Paul Kehrer2019-07-061-3/+4
| | | | | | | | | | * ed25519 support in x509 certificate builder This adds minimal ed25519 support. More to come. * Apply suggestions from code review Co-Authored-By: Alex Gaynor <alex.gaynor@gmail.com>
* allow asn1 times of 1950-01-01 and later. (#4728)Paul Kehrer2019-01-221-16/+16
| | | | | | | | * allow asn1 times of 1950-01-01 and later. * add a test * pretty up the test
* consolidate the duplicate extension check (#4483)Paul Kehrer2018-10-061-19/+11
|
* Added missing methods from CRL Interface (#4400)Alex Gaynor2018-08-151-0/+18
|
* add crl.get_revoked_certificate method (#4331)Paul Kehrer2018-07-161-0/+7
| | | | | | | | * add crl.get_revoked_certificate method * lexicographic is the best ographic * rename
* Inline calls to bit_length now that it's trivial (#3966)Alex Gaynor2017-10-121-2/+2
| | | | | | | | * Inline calls to bit_length now that it's trivial * unused imports * An comment
* Add is_signature_valid method on CertificateRevocationList (#3849)Vincent Pelletier2017-08-121-0/+6
|
* support random_serial_number in the CertificateBuilder (#3132)Paul Kehrer2016-09-031-0/+5
| | | | | | | | | | * support random_serial_number in the CertificateBuilder * turns out pytest's monkeypatch has an undo * random_serial_number now a function * just certs
* add support for signature_algorithm_oid to cert, CSR, and CRL (#3124)Paul Kehrer2016-08-311-0/+18
| | | | | | * add support for signature_algorithm_oid to cert, CSR, and CRL * refactor _SIG_OIDS_TO_HASH to use ObjectIdentifiers and use that
* CertificateBuilder accepts aware datetimes for not_valid_after and ↵InvalidInterrupt2016-08-161-0/+19
| | | | | | | | | | | | | | | | | | | not_valid_before (#2920) * CertificateBuilder accepts aware datetimes for not_valid_after and not_valid_before These functions now accept aware datetimes and convert them to UTC * Added pytz to test requirements * Correct pep8 error and improve Changelog wording * Improve tests and clarify changelog message * Trim Changelog line length * Allow RevokedCertificateBuilder and CertificateRevocationListBuilder to accept aware datetimes * Fix accidental changelog entry
* Disallow X509 certificate serial numbers bigger than 159 bits (#3064) (#3067)Коренберг Марк2016-08-021-8/+14
|
* small cleanups to the cert.serial warning (#2958)Alex Gaynor2016-06-031-6/+0
|
* Add alias for Certificate serial as serial number (#2950)Chelsea Winfree2016-06-021-0/+6
| | | | | | | | * Add alias for Certificate serial as serial number * Adding deprecation to utils * Now with catch warnings and proper vers
* Change method to propertyJoern Heissler2016-01-181-2/+2
|
* Add verify method on CertificateSigningRequestJoern Heissler2016-01-131-0/+6
|
* support CRL entry extension encoding in the RevokedCertificateBuilderPaul Kehrer2015-12-271-0/+15
|
* support revoked certificates in CertificateRevocationListBuilderPaul Kehrer2015-12-251-0/+13
|
* RevokedCertificateBuilderPaul Kehrer2015-12-251-0/+44
|
* add extension support to the CRLBuilderPaul Kehrer2015-12-251-0/+18
|
* CertificateRevocationListBuilderPaul Kehrer2015-12-241-0/+66
| | | | | RSA keys only. Currently does not support CRL extensions or CRLEntry extensions.
* add a CRL public_bytes methodPaul Kehrer2015-12-201-0/+5
|
* require not_valid_after >= not_valid_beforePaul Kehrer2015-12-131-0/+11
|
* expose tbs_certrequest_bytes and signature on CertificateSigningRequestPaul Kehrer2015-12-031-0/+13
|
* add tbsCertList and signature interfaces to CRLsErik Trauschke2015-11-191-0/+12
|
* rename tbs_certificate to tbs_certificate_bytes, add a commentPaul Kehrer2015-11-031-1/+1
|
* add support for Certificate signature and tbs_certificatePaul Kehrer2015-11-031-0/+12
|
* use X509ExtensionParser for Revoked extensionsErik Trauschke2015-10-141-6/+0
| | | | | | remove revoked_certificates property from RevokedCertificate class CRLExtensions should actually be RevokedExtensions doctest cleanup for RevokedCertificate
* OpenSSL backend code for CRLsErik Trauschke2015-09-241-0/+8
|
* move Extensions, Extension, ExtensionType, GeneralNames, SAN, & IANPaul Kehrer2015-08-111-145/+1
|
* move extension exceptions, NameConstraints, and KeyUsagePaul Kehrer2015-08-111-191/+1
|
* move ExtendedKeyUsage, CertificatePolicies, and InhibitAnyPolicyPaul Kehrer2015-08-111-204/+0
|
* move AuthorityInformationAccess, BasicConstraints, & CRLDistributionPointsPaul Kehrer2015-08-101-232/+1
|
* move AKI, SKIPaul Kehrer2015-08-101-129/+0
|
* namespace the rest of the oidsPaul Kehrer2015-08-091-2/+3
|
* Merge pull request #2244 from reaperhulk/x509-gn-splitAlex Gaynor2015-08-101-250/+1
|\ | | | | split general names
| * remove extra _GENERAL_NAMESPaul Kehrer2015-08-091-12/+0
| |
| * split general namesPaul Kehrer2015-08-091-238/+1
| |
View Lorry Controller Status