summaryrefslogtreecommitdiff
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
...
* allow additional certificates to be added to a pkcs7 (#5498)Paul Kehrer2020-10-252-2/+20
| | | | | | | * allow additional certificates to be added to a pkcs7 * be more verbose about what these additional certs might be used for * missing test
* PKCS7SignatureBuilder now supports three serializations (#5497)Paul Kehrer2020-10-244-9/+20
| | | | | | | | * PKCS7SignatureBuilder now supports three serializations PEM, DER, and SMIME. SMIME embeds the S/MIME headers and has the detached signature concept. * thanks libre
* migrate smime builder to pkcs7 module and rename (#5496)Paul Kehrer2020-10-243-117/+110
| | | | | * migrate smime builder to pkcs7 module and rename * missed a rename
* smime signer support (#5465)Paul Kehrer2020-09-193-1/+171
| | | | | | | | | | | | | | | | | | | * smime signer support * fix ed25519 check * change some wording * python 2.7... * review feedback * s/secure/signed * do some verification in the tests * review feedback * doc return value
* add pkcs7/smime bindings (#5458)Paul Kehrer2020-09-131-0/+12
| | | | | | | | | | | | | * add pkcs7/smime bindings * Update src/_cffi_src/openssl/pkcs7.py Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com> * Update src/_cffi_src/openssl/pkcs7.py Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com> Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com>
* allow bytes-like for padding (#5462)Paul Kehrer2020-09-131-4/+4
| | | | this doesn't improve efficiency in any way (copies galore!), but it does make it consistent between a cipher context and a padding context
* re-add a few engine bindings for advanced users (#5449)Paul Kehrer2020-09-012-0/+19
| | | | | | | | | * re-add a few engine bindings for advanced users For users who are capable of compiling cryptography against custom openssl and properly using these functions this hopefully allows PKCS11 usage through OpenSSL engines. * forgot to save my buffer
* Add a missing space to py35 deprecation warning (#5448)Sviatoslav Sydorenko2020-09-011-1/+1
| | | This fixes a typo that's been introduced in #5387.
* Break users on OpenSSL 1.0.2 (#5438)Alex Gaynor2020-08-281-6/+14
| | | fixes #5432
* bump version for 3.2 dev (#5431)Paul Kehrer2020-08-271-1/+1
|
* 3.1 release (#5430)3.1Paul Kehrer2020-08-271-1/+1
|
* new black, actually slightly different than the old black (#5429)Paul Kehrer2020-08-266-27/+30
|
* chunked update_into (#5419)Paul Kehrer2020-08-241-13/+21
| | | | | | | * chunked update_into * all pointer arithmetic all the time * review feedback
* use _get_backend everywhere (#5408)Paul Kehrer2020-08-164-12/+13
| | | | | * use _get_backend everywhere * black
* move encoders into backend as well (#5406)Paul Kehrer2020-08-151-6/+22
| | | this will be useful later, i swear
* move the x509 parsers into the backend object (#5405)Paul Kehrer2020-08-154-118/+103
| | | | | | | | | * move the parser into the backend object This allows us to generate the list of supported extensions when instantiating the backend object rather than building multiple parsers and picking the right one at runtime when parsing the extensions themselves. * sigh
* clean up error stack in p7 (#5403)Alex Gaynor2020-08-151-0/+2
|
* HOTP and TOTP should also have optional backends (#5402)Paul Kehrer2020-08-152-2/+6
|
* Improve debugability of this internal error (#5399)Alex Gaynor2020-08-153-5/+8
|
* fixes #4706 -- don't internal error on corrupt private key (#5307)Alex Gaynor2020-08-151-0/+5
| | | | | * fixes #4706 -- don't internal error on corrupt private key * Temporary disable paramiko
* make backend arg optional for rsa (#5396)Paul Kehrer2020-08-151-3/+7
|
* optional backend for dh, dsa, ec (#5395)Paul Kehrer2020-08-153-13/+29
|
* optional backend for hash, cipher, cmac, hmac, keywrap (#5394)Paul Kehrer2020-08-155-8/+21
|
* make backend optional in serialization (#5392)Paul Kehrer2020-08-153-11/+21
|
* x509 optional backend args (#5390)Paul Kehrer2020-08-152-11/+24
|
* remove KDF backend requirements (#5389)Paul Kehrer2020-08-147-8/+29
|
* deprecate support for python 3.5 (#5387)Paul Kehrer2020-08-141-0/+7
|
* return from void function cannot compile on solaris studio (#5385)stphnlyd2020-08-111-1/+1
|
* define SYS_getrandom on linux arm64 (#5378)Alex Gaynor2020-08-051-1/+3
|
* support PKCS7 certificate parsing (#5371)Paul Kehrer2020-08-043-0/+64
| | | | | | | | | | | | | * support PKCS7 certificate parsing * refcounts are different in 1.0.2 * rename the functions * black * empty commit * review feedback
* check if a value is null before we gc (#5369)Paul Kehrer2020-08-021-1/+1
|
* Commit to dropping OpenSSL 1.0.2 (#5363)Alex Gaynor2020-07-301-1/+1
|
* handle unnamed-but-really-named curves in 1.0.2u (#5362)Paul Kehrer2020-07-303-7/+16
| | | | | | | | | * handle unnamed-but-really-named curves in 1.0.2u * handle openssl 1.0.2 not supporting better install commands on make * do what openssl didn't feel was necessary in 1.0.2t/u I didn't bind the named curve constant, fight me.
* remove some more constants we don't need (#5361)Paul Kehrer2020-07-301-4/+0
| | | these are gone in 3.0 anyway and were removed in that draft PR
* Remove unused code (#5360)Alex Gaynor2020-07-281-6/+0
|
* shrink bindings more (#5356)Paul Kehrer2020-07-2711-91/+0
| | | | | | | * shrink bindings more * readd a binding we do need * readd two more bindings we need
* remove every error we don't use in cryptography or pyopenssl (#5355)Paul Kehrer2020-07-271-108/+7
| | | | | | | | | | * remove every error we don't use in cryptography or pyopenssl sorry external consumers, carrying things we don't use and don't have downstream tests for has become too much of a burden * re-add a constant we need for tests for now * pyopenssl needs these three
* more error simplification (#5354)Paul Kehrer2020-07-272-35/+11
| | | | | | | X509 signing for RSA keys that are too small. Let's just say signing failed and attach the more specific problem as the error stack. A bit uglier, but far more generic and stable to OpenSSL/LibreSSL/BoringSSL Also be a bit more generic for OCSP signing
* simplify more errors (#5353)Paul Kehrer2020-07-263-57/+10
| | | the quest to stop using unstable openssl error codes continues
* start trying to make our error handling a bit more generic (#5352)Paul Kehrer2020-07-265-75/+34
| | | | | | | | | * start trying to make our error handling a bit more generic * remove more and black * attach error stack to memorylimit error * blaaack
* remove idna support finally (#5351)Paul Kehrer2020-07-261-76/+6
| | | | | * remove idna support finally * remove unused import
* fixes #5113 - Making some SRTP related symbols conditional on ↵omnigrok2020-07-262-0/+19
| | | | | | | | | | | OPENSSL_NO_SRTP (#5338) * fixes #5113 - Making some SRTP related symbols conditional on OPENSSL_NO_SRTP. * don't remove one symbol, test with no-srtp * test against a no-srtp build Co-authored-by: Paul Kehrer <paul.l.kehrer@gmail.com>
* Emit the deprecation one level up the stack (#5348)Sviatoslav Sydorenko2020-07-251-0/+1
| | | Ref: https://github.com/pyca/cryptography/issues/5335#issuecomment-661880248
* remove 4 OCSP bindings we don't use (#5344)Paul Kehrer2020-07-251-4/+0
|
* Refs #5113 -- build against openssl with no ct (#5343)Alex Gaynor2020-07-243-4/+9
|
* fixes #5321 -- deprecate support for OpenSSL 1.0.2 (#5333)Alex Gaynor2020-07-202-0/+17
|
* Delete several unused bindings (#5331)Alex Gaynor2020-07-203-34/+0
|
* 3.1 time (#5330)Paul Kehrer2020-07-201-1/+1
|
* prep 3.0 for release (#5327)3.0Paul Kehrer2020-07-201-1/+1
| | | | | * prep 3.0 for release * okay then
* Paint it Black by the Rolling Stones (#5324)Alex Gaynor2020-07-2073-1385/+1847
|
View Lorry Controller Status