| Commit message (Collapse) | Author | Age | Files | Lines |
| |
|
|
|
|
|
|
| |
OpenSSL removes support for it in gh#openssl/openssl#14248.
Fixes #294.
|
|
|
|
| |
Fixes #293.
|
| |
|
| |
|
| |
|
|
|
|
|
| |
With https://github.com/openssl/openssl/commit/2e06150e3928daa06d5ff70c32bffad8088ebe58
OpenSSL allowed verificaton to continue on UNABLE_TO_VERIFY_LEAF_SIGNATURE
|
|
|
|
|
| |
Stop testing 2.7 on Fedora.
Remove .travis.yml, we have Github Actions working
|
|
|
|
|
| |
* Replace unittest.makeSuite with unittest.TestLoader().loadTestsFromTestCase
* import unittest from relative import
|
| |
|
|
|
|
|
|
| |
Support of CentOS 6 ends on 2020-11-30.
Fixes #283
|
| |
|
|
|
|
|
|
|
| |
Add support for DigestSign* and DigestVerify* OpenSSL functions, for use
with ED25519, etc. Allow PKey to support non-digest algorithms, such as
ED25519, but keep default behaviors. Include tests for both digest and
non-digest algorithms.
|
| |
|
| |
|
|
|
|
| |
Fixes #272
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
to make tests pass after 2028
Background:
As part of my work on reproducible builds for openSUSE, I check
that software still gives identical build results in the future.
The usual offset is +15 years, because that is how long I expect
some software will be used in some places.
This showed failing tests in our package build.
See https://reproducible-builds.org/ for why this matters.
Note: I tested that i586 builds still pass tests on 2036-12-01
so this change introduces no year2038 problem.
|
| |
|
|
|
|
|
| |
1. Python 2.6 needs bundled-in typing module
2. Update Windows OpenSSL version.
|
|
|
|
| |
Signed-off-by: Sebastian Andrzej Siewior <sebastian@breakpoint.cc>
|
|
|
|
|
|
| |
sustains it.
Fixes #258
|
| |
|
|
|
|
| |
Fixes #258.
|
|
|
|
|
|
|
|
|
|
|
|
| |
The -cipher can not be used in OpenSSL 1.1.b+ for TLS1.3 cipher since
openssl upstream commit 1c31fe7eb093a ("Ignore cipher suites when
setting cipher list").
Use -ciphersuites for TLS1.3 cipher as documented.
Signed-off-by: Sebastian Andrzej Siewior <sebastian@breakpoint.cc>
Fixes #251
|
| |
|
| |
|
| |
|
| |
|
| |
|
|
|
|
|
|
|
|
| |
Technically speaking we prescribe in the type string that the paramteres
should be str, but users don't like to care about the type of
parameters.
Fixes #228
|
|
|
|
|
|
|
|
|
| |
Linux rounds microseconds in the timeouts up to the HZ kernel parameter.
To avoid checking for rounded values, pick the timeout long enough
so that it is whole number of HZ for any reasonable HZ value.
By doing this, we also do not need to handle separately Windows
rounding microseconds down to milliseconds.
|
| |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
When OpenSSL encounters an error, M2Crypto prints only the "reason string"
(given by ERR_reason_error_string()). This string often contains only very
generic message. For example, for all certificate verification errors, the
string is the same "certificate verify error".
OpenSSL applications (e.g. the command-line utilities from OpenSSL
distribution) additionally show "optional text message" as given by
ERR_get_error_line_data(). This message contains more detailed error
reason, such as for example "certificate revoked".
Added this message (if given by OpenSSL) to the Python error text.
|
| |
|
|
|
|
|
|
|
| |
Specially replace complicated construct with unittest2 to one import to
M2Crypto top module.
Also, Rand.load_file should have first parameter as bytes(), not str().
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
For instance, without this patch no chunk decoding is performed, even
if the HTTP response includes a "Transfer-Encoding: chunked" header
(only affects the python3 code path). To fix this, "recv_into" has to
call http.client.HTTPResponse.readinto, which does the corresponding
transfer decoding.
Thanks to Marco Strigl <mstrigl@suse.com> for reporting and helping
to debug this issue.
|
| |
|
|
|
|
|
|
|
|
|
| |
platform.linux_distribution() has been deprecated for many versions, and
it will be removed in 3.7 (https://bugs.python.org/issue1322).
Also, we actually don’t need it (if we remove one unused SSLv2 test).
Fixes #205
|
|
|
|
|
|
|
|
|
|
| |
Without this change self.m2_ssl_free(self.ssl) is never called,
because m2.bio_noclose is defined as "0". Hence, the if-condition
is always false. This got broken in commit e2f707b172 ("SSL
package: Port to python3").
Note that these testcases rely on the "fact" (or CPython
implementation detail?) that "del s" calls s' __del__ method.
|
| |
|
| |
|
|
|
|
|
| |
Make openssl_in_path into private property
Remove superfluous logging.
|
|
|
|
|
|
|
|
|
|
|
|
| |
Includes (among many other changes):
* Fix BIO.File ... return type of BIO.readline() and close properly.
That is, flush BIO.File() before closing and close also underlying
system file.
* Make BIO.MemoryBuffer a bit cleaner by using call to superclass.
* Make BIO_eof(3) available in m2 object as well.
|
| |
|
| |
|
| |
|
| |
|
|
|
|
| |
And it makes output of testsuite run unreadable.
|