summaryrefslogtreecommitdiff
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
...
* Bump libc from 0.2.122 to 0.2.123 in /src/rust (#7066)dependabot[bot]2022-04-131-2/+2
| | | | | | | | | | | | | | | | Bumps [libc](https://github.com/rust-lang/libc) from 0.2.122 to 0.2.123. - [Release notes](https://github.com/rust-lang/libc/releases) - [Commits](https://github.com/rust-lang/libc/compare/0.2.122...0.2.123) --- updated-dependencies: - dependency-name: libc dependency-type: indirect update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Bump quote from 1.0.17 to 1.0.18 in /src/rust (#7058)dependabot[bot]2022-04-111-2/+2
| | | | | | | | | | | | | | | | Bumps [quote](https://github.com/dtolnay/quote) from 1.0.17 to 1.0.18. - [Release notes](https://github.com/dtolnay/quote/releases) - [Commits](https://github.com/dtolnay/quote/compare/1.0.17...1.0.18) --- updated-dependencies: - dependency-name: quote dependency-type: indirect update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Bump proc-macro2 from 1.0.36 to 1.0.37 in /src/rust (#7046)dependabot[bot]2022-04-061-2/+2
| | | | | | | | | | | | | | | | Bumps [proc-macro2](https://github.com/dtolnay/proc-macro2) from 1.0.36 to 1.0.37. - [Release notes](https://github.com/dtolnay/proc-macro2/releases) - [Commits](https://github.com/dtolnay/proc-macro2/compare/1.0.36...1.0.37) --- updated-dependencies: - dependency-name: proc-macro2 dependency-type: indirect update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Bump libc from 0.2.121 to 0.2.122 in /src/rust (#7048)dependabot[bot]2022-04-071-2/+2
| | | | | | | | | | | | | | | | Bumps [libc](https://github.com/rust-lang/libc) from 0.2.121 to 0.2.122. - [Release notes](https://github.com/rust-lang/libc/releases) - [Commits](https://github.com/rust-lang/libc/compare/0.2.121...0.2.122) --- updated-dependencies: - dependency-name: libc dependency-type: indirect update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Bump syn from 1.0.90 to 1.0.91 in /src/rust (#7045)dependabot[bot]2022-04-061-2/+2
| | | | | | | | | | | | | | | | Bumps [syn](https://github.com/dtolnay/syn) from 1.0.90 to 1.0.91. - [Release notes](https://github.com/dtolnay/syn/releases) - [Commits](https://github.com/dtolnay/syn/compare/1.0.90...1.0.91) --- updated-dependencies: - dependency-name: syn dependency-type: indirect update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Added a non-public API for setting the tag on an attribute (#7038)Alex Gaynor2022-04-052-11/+31
| | | fixes #6973
* fix two compiler warnings (#7036)Paul Kehrer2022-04-042-2/+1
| | | | constify and remove a func we don't use or need that had a wrong return type anyway.
* serialize certs to pkcs7 (#7034)Paul Kehrer2022-04-042-0/+56
| | | | | * serialize certs to pkcs7 * missed assert
* make ExtensionTypeVar covariant (#7033)Mathias Ertl2022-04-031-1/+3
|
* add TLSv1.3 PSKs function bindings (#7002)可可熊2022-04-032-0/+71
| | | | | | | | | * TLSv1.3 PSKs function bindings * add PSK related functions to be conditional * add Cryptography_SSL_SESSION_new to avoid namespace collision Co-authored-by: d00624431 <dongpu1@huawei.com>
* SIV support (#7029)Paul Kehrer2022-04-023-10/+127
| | | | | * SIV support * empty commit to see if codecov sees the 3.0 coverage this time
* small refactors for upcoming SIV support (#7028)Paul Kehrer2022-04-022-15/+17
| | | use f strings (why not) and internally use lists for processing AD
* add new bindings for OpenSSL 3.0.0 cipher fetching/freeing (#7027)Paul Kehrer2022-04-032-0/+14
|
* we documented this as 2**31 - 1, enforce it at the right spot (#7025)Paul Kehrer2022-04-021-8/+8
| | | | | | it was previously enforced by cffi since the underlying CipherUpdate calls use a 32-bit signed integer. We added our own checks in #4322 so that we could test it without using crazy amounts of RAM, but set the wrong limits. Whoops.
* fixes #7005 -- check if public keys are at infinity earlier (#7020)Alex Gaynor2022-04-021-0/+13
| | | to infinity, and beyond!
* Bump redox_syscall from 0.2.12 to 0.2.13 in /src/rust (#7013)dependabot[bot]2022-03-301-2/+2
| | | | | | | | | | | | | | Bumps redox_syscall from 0.2.12 to 0.2.13. --- updated-dependencies: - dependency-name: redox_syscall dependency-type: indirect update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Bump lock_api from 0.4.6 to 0.4.7 in /src/rust (#7014)dependabot[bot]2022-03-301-2/+3
| | | | | | | | | | | | | | | | | Bumps [lock_api](https://github.com/Amanieu/parking_lot) from 0.4.6 to 0.4.7. - [Release notes](https://github.com/Amanieu/parking_lot/releases) - [Changelog](https://github.com/Amanieu/parking_lot/blob/master/CHANGELOG.md) - [Commits](https://github.com/Amanieu/parking_lot/compare/lock_api-0.4.6...lock_api-0.4.7) --- updated-dependencies: - dependency-name: lock_api dependency-type: indirect update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Bump syn from 1.0.89 to 1.0.90 in /src/rust (#7012)dependabot[bot]2022-03-291-2/+2
| | | | | | | | | | | | | | | | Bumps [syn](https://github.com/dtolnay/syn) from 1.0.89 to 1.0.90. - [Release notes](https://github.com/dtolnay/syn/releases) - [Commits](https://github.com/dtolnay/syn/compare/1.0.89...1.0.90) --- updated-dependencies: - dependency-name: syn dependency-type: indirect update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* support 12-15 byte nonce sizes in OCB3 (#7011)Paul Kehrer2022-03-291-2/+2
| | | | | | | | | * support 12-15 byte nonce sizes in OCB3 * Update tests/hazmat/primitives/test_aead.py Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com> Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com>
* Serialize PKCS12 CA alias/friendlyName (#6910)ajoino2022-03-292-4/+31
| | | | | | | | | | | | | | | | | | | | | | | | | | | * PKCS12 serialization wrapper supports PKCS12Certificate cas * Added code from Felix's gist to serialize_key_and_certificate_to_pkcs12. Doesn't break current behaviour/tests, need to write validate new behaviour, write tests, and format code. * Simplified instance check * Tried to write tests, but I cannot figure out how to read the friendlyName from parsed_more_certs. * Fixed test function and renamed it. * Fixed formatting. * Commiting before trying black * Formatted updates to make flake8 and black happy. * Fixed first review comments. * remove forgotten print statement * use backend.openssl_assert instead of if ... * Documented changes. * Updated documentation.
* Bump quote from 1.0.16 to 1.0.17 in /src/rust (#7003)dependabot[bot]2022-03-261-2/+2
| | | | | | | | | | | | | | | | Bumps [quote](https://github.com/dtolnay/quote) from 1.0.16 to 1.0.17. - [Release notes](https://github.com/dtolnay/quote/releases) - [Commits](https://github.com/dtolnay/quote/compare/1.0.16...1.0.17) --- updated-dependencies: - dependency-name: quote dependency-type: indirect update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Bump redox_syscall from 0.2.11 to 0.2.12 in /src/rust (#6999)dependabot[bot]2022-03-251-2/+2
| | | | | | | | | | | | | | Bumps redox_syscall from 0.2.11 to 0.2.12. --- updated-dependencies: - dependency-name: redox_syscall dependency-type: indirect update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Try removing the SSL_library_init call in initialization (#6986)Alex Gaynor2022-03-211-2/+0
| | | I'm reasonably certain it's not required in recent OpenSSL's
* Bump ouroboros from 0.14.2 to 0.15.0 in /src/rust (#6985)dependabot[bot]2022-03-202-5/+5
| | | | | | | | | | | | | | | | Bumps [ouroboros](https://github.com/joshua-maros/ouroboros) from 0.14.2 to 0.15.0. - [Release notes](https://github.com/joshua-maros/ouroboros/releases) - [Commits](https://github.com/joshua-maros/ouroboros/compare/0.14.2...0.15.0) --- updated-dependencies: - dependency-name: ouroboros dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Remove unused bindings (#6984)Alex Gaynor2022-03-204-37/+0
|
* enforce that GeneralSubtrees for NameConstraints must be None or non-empty ↵Alex Gaynor2022-03-201-0/+8
| | | | (#6983)
* Bump libc from 0.2.120 to 0.2.121 in /src/rust (#6979)dependabot[bot]2022-03-191-2/+2
| | | | | | | | | | | | | | | | Bumps [libc](https://github.com/rust-lang/libc) from 0.2.120 to 0.2.121. - [Release notes](https://github.com/rust-lang/libc/releases) - [Commits](https://github.com/rust-lang/libc/compare/0.2.120...0.2.121) --- updated-dependencies: - dependency-name: libc dependency-type: indirect update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Bump quote from 1.0.15 to 1.0.16 in /src/rust (#6974)dependabot[bot]2022-03-181-2/+2
| | | | | | | | | | | | | | | | Bumps [quote](https://github.com/dtolnay/quote) from 1.0.15 to 1.0.16. - [Release notes](https://github.com/dtolnay/quote/releases) - [Commits](https://github.com/dtolnay/quote/compare/1.0.15...1.0.16) --- updated-dependencies: - dependency-name: quote dependency-type: indirect update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Dedicated check for signature hash algorithms (#6931)Christian Heimes2022-03-181-2/+12
| | | | | | | | | | | | | | | | * Dedicated check for signature hash algorithms Move the check for FIPS mode and blocked SHA1 signature algorithm into the backend code. Some distros will block SHA1 for RSA signatures in the near future. The new ``signature_hash_supported()`` method will allow us to flip the switch in one place. Note: The ban of SHA1 signatures does not affect MGF1's inner hash algorithm. Signed-off-by: Christian Heimes <christian@python.org> * Address flake issues * Update src/cryptography/hazmat/backends/openssl/backend.py
* Bump syn from 1.0.88 to 1.0.89 in /src/rust (#6972)dependabot[bot]2022-03-171-2/+2
| | | | | | | | | | | | | | | | Bumps [syn](https://github.com/dtolnay/syn) from 1.0.88 to 1.0.89. - [Release notes](https://github.com/dtolnay/syn/releases) - [Commits](https://github.com/dtolnay/syn/compare/1.0.88...1.0.89) --- updated-dependencies: - dependency-name: syn dependency-type: indirect update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* fixes #6970 -- improve error message when OtherName.value isn't DER (#6971)Alex Gaynor2022-03-171-1/+6
|
* Bump libc from 0.2.119 to 0.2.120 in /src/rust (#6960)dependabot[bot]2022-03-151-2/+2
| | | | | | | | | | | | | | | | Bumps [libc](https://github.com/rust-lang/libc) from 0.2.119 to 0.2.120. - [Release notes](https://github.com/rust-lang/libc/releases) - [Commits](https://github.com/rust-lang/libc/compare/0.2.119...0.2.120) --- updated-dependencies: - dependency-name: libc dependency-type: indirect update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Bump syn from 1.0.87 to 1.0.88 in /src/rust (#6959)dependabot[bot]2022-03-151-2/+2
| | | | | | | | | | | | | | | | Bumps [syn](https://github.com/dtolnay/syn) from 1.0.87 to 1.0.88. - [Release notes](https://github.com/dtolnay/syn/releases) - [Commits](https://github.com/dtolnay/syn/compare/1.0.87...1.0.88) --- updated-dependencies: - dependency-name: syn dependency-type: indirect update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Bump syn from 1.0.86 to 1.0.87 in /src/rust (#6956)dependabot[bot]2022-03-141-2/+2
| | | | | | | | | | | | | | | | Bumps [syn](https://github.com/dtolnay/syn) from 1.0.86 to 1.0.87. - [Release notes](https://github.com/dtolnay/syn/releases) - [Commits](https://github.com/dtolnay/syn/compare/1.0.86...1.0.87) --- updated-dependencies: - dependency-name: syn dependency-type: indirect update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Try using FromPyObject for X.509 extension encoding (#6953)Alex Gaynor2022-03-141-17/+18
|
* Remove initialization call that's not required in 1.1.0+ (#6952)Alex Gaynor2022-03-131-2/+0
|
* remove unused deprecated bindings (#6951)Alex Gaynor2022-03-131-5/+0
|
* Convert some old-style formatting to f strings (#6945)Alex Gaynor2022-03-134-16/+14
|
* Bump once_cell from 1.9.0 to 1.10.0 in /src/rust (#6934)dependabot[bot]2022-03-041-2/+2
| | | | | | | | | | | | | | | | | Bumps [once_cell](https://github.com/matklad/once_cell) from 1.9.0 to 1.10.0. - [Release notes](https://github.com/matklad/once_cell/releases) - [Changelog](https://github.com/matklad/once_cell/blob/master/CHANGELOG.md) - [Commits](https://github.com/matklad/once_cell/compare/v1.9.0...v1.10.0) --- updated-dependencies: - dependency-name: once_cell dependency-type: indirect update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Fixed serialization of keyusage ext with no bits (#6930)Alex Gaynor2022-03-041-6/+11
| | | fixes #6926
* fixes #6927 -- handle negative return values from openssl (#6928)Alex Gaynor2022-03-041-1/+1
|
* Added OID for #6920 (#6925)sanchayanghosh2022-03-031-0/+1
| | | | | | | | | | | * Added OID * Added to docuemntation for IPSec SAs * Update docs/x509/reference.rst to correct the version change. Co-authored-by: Paul Kehrer <paul.l.kehrer@gmail.com> Co-authored-by: Paul Kehrer <paul.l.kehrer@gmail.com>
* fixes #6809 -- deprecate 4 legacy ciphers (#6922)Alex Gaynor2022-03-022-7/+47
|
* Disable DSA tests in FIPS mode (#6916)Christian Heimes2022-03-031-0/+5
| | | | | | | | | | | | | * Disable DSA tests in FIPS mode See: #6880 * ignore coverage for nested FIPS check * Remove if branch * Remove skip modulus branch * Keep tests that don't use the backend
* refactor utils.deprecated to be more mypy friendly (#6923)Alex Gaynor2022-03-031-2/+7
| | | | | * refactor utils.deprecated to be more mypy friendly * Poke for CI
* Support LibreSSL 3.5.0 (#6919)Charlie Li2022-03-024-4/+9
| | | | | | | | | | | | | | | | | | | | | * Add LibreSSL 3.5.0 to CI * Add LibreSSL 3.5.0 guard * Expose FIPS functions in LibreSSL 3.5.0+ * Expose DH API in LibreSSL 3.5.0+ * Expose SSL_get0_verified_chain and SSL_CTX_{set,get}_keylog_callback in LibreSSL 3.5.0+ * Fix SSL_CTX_{set,get}_keylog_callback guard * Add missing CRYPTOGRAPHY_LIBRESSL_LESS_THAN_350 symbol * Fix SSL_CTX_{set,get}_keylog_callback guard again * Condense LibreSSL 3.5.0 defines * Kick CircleCI
* Bump redox_syscall from 0.2.10 to 0.2.11 in /src/rust (#6918)dependabot[bot]2022-03-011-2/+2
| | | | | | | | | | | | | | Bumps redox_syscall from 0.2.10 to 0.2.11. --- updated-dependencies: - dependency-name: redox_syscall dependency-type: indirect update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Begin deprecation process for Python 3.6 (#6913)Alex Gaynor2022-03-011-0/+12
|
* allow ed pk12, better tests (#6865)whiteowl32022-02-271-1/+6
| | | | | * dont block pk12 serialization of ed pairs * mimic test_ec curve skipping to satisfy alpine ci
* Don't explicitly define __ne__ any longer (#6908)Alex Gaynor2022-02-2710-195/+0
| | | At some point it gained a default that was the same as what we were implementing.
View Lorry Controller Status