summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* Bump for 22.1.0 release (#1148)22.1.0Alex Gaynor2022-09-251-2/+2
|
* disallow latest sphinx release because it doesn't work with sphinx_rtd_theme ↵Alex Gaynor2022-09-252-1/+3
| | | | | | | | | (#1147) * disallow latest sphinx release because it doesn't work with sphinx_rtd_theme * Update test_ssl.py * black
* add `Connection.use_(certificate|privatekey)` (#1121)Maximilian Hils2022-09-165-44/+107
| | | | | | | | | | | * add `Connection.use_(certificate|privatekey)` * bump minimum cryptography version * deduplicate tests * black! * max line length
* fixes #1143 -- pin cryptography max version to prevent future pain (#1145)Alex Gaynor2022-09-161-1/+1
|
* Move away from the SSLEAY name (#1144)Alex Gaynor2022-09-163-17/+35
|
* Switch to the new utils.deprecation spelling (#1140)David Benjamin2022-08-131-2/+4
| | | | | | | | | | | | * Switch to the new utils.deprecation spelling The new spelling was introduced in https://github.com/pyca/cryptography/pull/6923 and is more friendly to type checkers. Version-wise, that PR appears to be in cryptography 37.0.0, which is now beyond the minimum version for pyOpenSSL. * reformat
* Don't test that invalid RSA keys can be imported (#1139)David Benjamin2022-08-121-4/+6
| | | | | | | | | | | | | | * Don't test that invalid RSA keys can be imported test_check_pr_897 asserts that an invalid key is correctly detected as invalid. However, in doing so, it also asserts that the invalid key is considered *valid* at parse time. Ideally, the underlying cryptography library would just call RSA_check_key during parsing, but it would then fail this test. Make the test more tolerant by allow either parsing or checking to throw an error. * Review comments, and also update the other test
* Fix docs in `SSL.Context.get_alpn_proto_negotiated` (#1137)Nikita Sobolev2022-07-231-1/+1
|
* Make `X509StoreContextError`'s message friendlier (#1133)William Woodruff2022-07-073-16/+23
| | | | | | | | | | | | | | | | | | | * OpenSSL/crypto: make X509StoreContextError's message friendlier Closes #1132. Signed-off-by: William Woodruff <william@trailofbits.com> * tests: update exception tests Signed-off-by: William Woodruff <william@trailofbits.com> * OpenSSL/crypto: blacken Signed-off-by: William Woodruff <william@trailofbits.com> * CHANGELOG: record changes Signed-off-by: William Woodruff <william@trailofbits.com>
* Fix incorrect documentation on X509Req.set_version #1130 (#1131)Amir Omidi2022-06-281-1/+1
|
* Expose SSL_OP_IGNORE_UNEXPECTED_EOF (#1127)dreid2022-06-091-0/+6
| | | This was added to pyca/cryptography at https://github.com/pyca/cryptography/commit/0fe4583d40b0a99feecc1dc33f96fa15002b443f
* Bump actions/setup-python from 3 to 4 (#1126)dependabot[bot]2022-06-091-1/+1
| | | | | | | | | | | | | | | | Bumps [actions/setup-python](https://github.com/actions/setup-python) from 3 to 4. - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](https://github.com/actions/setup-python/compare/v3...v4) --- updated-dependencies: - dependency-name: actions/setup-python dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* add explicit permissions to lock workflow (#1125)Paul Kehrer2022-05-271-0/+3
|
* Update bdist_rpm option build_requires (#1013)陳傑夫2022-05-200-0/+0
|
* Add inline type annotations (#1089)lovetox2022-05-207-203/+319
| | | | | | | | | | | | | | | | | * crypto: Add type annotations * Don’t redefine var mypy complains about the redefinition * _util: Add type annotations * rand: Add type annotations * Prepare package & CI for running mypy * fix toxenv name Co-authored-by: Maximilian Hils <github@maximilianhils.com>
* Handle no expire date in X509.has_expire() (#1083)lovetox2022-05-132-1/+12
| | | | | | get_notAfter() can return None. Instead of raising a NoneType error, raise a ValueError which tells us why it failed.
* add `Connection.set_verify`, fix #255 (#1073)Maximilian Hils2022-05-133-0/+79
| | | | | | | | | | | * add `Connection.set_verify`, fix #255 * show that it works with cryptography main * Revert "show that it works with cryptography main" This reverts commit fb0136a8e5aa5d2c6e0c16f8f4ecee2f3c72a16b. * make it black
* Fix X.509 version handling. (#1123)David Benjamin2022-05-122-9/+16
| | | | | | | | | | | | | | | | | Certificate versions go up to v3 (numeric value 2), CRLs go up to v2 (numeric value 1), and CSRs go up to v1 (numeric value 0). This CL fixes the following issues: - Add a missing check to the return value of X509_set_version - Fix crlDataUnsupportedExtension which had an invalid CRL version. - Switch TestX509.test_version to test valid versions, so it doesn't prevent OpenSSL or an OpenSSL derivative from checking for invalid versions. - Make TestX509Req.test_version tolerate set_version(1) failing on CSRs. Since there's nothing useful to test otherwise, I've made the test work for either possible backend behavior.
* Update README for new IRC channel (#1115)Alex Gaynor2022-05-121-1/+1
|
* repair CI (#1116)Paul Kehrer2022-05-117-30/+56
| | | | | | | | | | | | | | | | | | | | | * repair CI * more fixes * pypy39 requires latest cryptography * Apply suggestions from code review Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com> * use constant * bump minimum version * remove unneeded try * fix Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com>
* Remove SSL_library_init call (#1110)Alex Gaynor2022-03-211-5/+0
| | | | a) It's already called by initializing the Bindings in cryptography b) I'm pretty sure it's not actually necessary at all
* Implement Context constructor in terms of new OpenSSL APIs (#1109)Alex Gaynor2022-03-143-25/+17
|
* remove more global initialization that isn't required on modern openssl (#1108)Alex Gaynor2022-03-131-16/+0
|
* Remove call that hasn't been required since OpenSSL 1.1.0 (#1107)Alex Gaynor2022-03-131-5/+0
|
* Changed load_crl doc comment return to CRL (#1105)Oscar Mattsson2022-03-031-1/+1
|
* Bump actions/checkout from 2.4.0 to 3 (#1104)dependabot[bot]2022-03-021-2/+2
| | | | | | | | | | | | | | | | | Bumps [actions/checkout](https://github.com/actions/checkout) from 2.4.0 to 3. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v2.4.0...v3) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* flake8-import-order (#1099)whiteowl32022-03-0210-131/+140
| | | | | | | | | | | * flake8-import-order * make sure bad import orders fail * flake8-import-order * add application name to flake8 section * correct import order for openssl as application
* Bump actions/setup-python from 2.3.2 to 3 (#1101)dependabot[bot]2022-03-011-1/+1
| | | | | | | | | | | | | | | | Bumps [actions/setup-python](https://github.com/actions/setup-python) from 2.3.2 to 3. - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](https://github.com/actions/setup-python/compare/v2.3.2...v3) --- updated-dependencies: - dependency-name: actions/setup-python dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* specify pypy versions more precisely (#1102)Alex Gaynor2022-03-021-3/+6
|
* add GitHub URL for PyPi (#1100)Andrii Oriekhov2022-02-281-0/+3
| | | | | * add GitHub URL for PyPi * fix formatting
* don't block ec/ed keys from_cryptography_key() (#1096)whiteowl32022-02-262-17/+51
| | | | | | | * don't block ec/ed keys from_cryptography_key() * clean up test comments * properly describe test
* Remove py2 tag from wheel (#1095)Hugo van Kemenade2022-02-211-4/+0
|
* Stop passing backend to cryptography (#1094)Alex Gaynor2022-02-133-47/+15
|
* Use a non-deprecated OpeNSSL function (#1093)Alex Gaynor2022-02-131-4/+4
|
* Bump actions/setup-python from 2.3.1 to 2.3.2 (#1092)dependabot[bot]2022-02-071-1/+1
| | | | | | | | | | | | | | | | Bumps [actions/setup-python](https://github.com/actions/setup-python) from 2.3.1 to 2.3.2. - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](https://github.com/actions/setup-python/compare/v2.3.1...v2.3.2) --- updated-dependencies: - dependency-name: actions/setup-python dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* X509Name: Raise AttributeError correctly (#1088)lovetox2022-01-301-1/+1
| | | | | | | X509Name does only inherit from object, which has no __getattr__() method. By accident this also raised an AttributeError but the error message is confusing. This commit now raises the AttributeError with a descriptive message.
* X509Name: Use functools.totalordering for comparisons (#1086)lovetox2022-01-302-16/+23
| | | | | | | | | | | * X509Name: Use functools.totalordering for comparisons - Reduce the magic - Make it more readable - Make it easier to add type annotations in the future * Correctly return NotImplemented * Add new comparison test case
* Don’t inherit from object (#1084)lovetox2022-01-307-61/+61
| | | In python3 all classes inherit by default from object
* Remove superfluous isinstance() call (#1087)lovetox2022-01-301-3/+2
| | | | - hex() returns always str - don’t redefine variable
* latest black (#1082)Paul Kehrer2022-01-293-11/+11
|
* bump to 22.1.0.dev (#1080)Paul Kehrer2022-01-292-1/+13
|
* bump for 22.0.0 release (#1079)22.0.0Paul Kehrer2022-01-292-2/+2
|
* Docs: Fix param type for methods where digest is used (#1078)lovetox2022-01-291-5/+5
|
* Reduce MD5 and SHA1 dependency in tests (#1074)David Benjamin2022-01-101-23/+23
| | | | | | | | * Reduce MD5 and SHA1 dependency in tests Most of the tests aren't specifically testing MD5 or SHA1. Switch those to a modern hash. * Fix line length
* Update variable name, there are now many linuxes (#1070)Alex Gaynor2021-12-242-8/+8
|
* Rename path_string to path_bytes since that's what it actually does (#1067)Alex Gaynor2021-12-203-17/+17
|
* Remove native, it's behavior is confusing (#1069)Alex Gaynor2021-12-203-34/+13
| | | Instead just decode stuff at the call-sites -- 100% of which were passing bytes
* Remove dead code (#1068)Alex Gaynor2021-12-201-7/+0
|
* Accept pathlib.Path as a valid path (#1027)Salvo 'LtWorf' Tomaselli2021-12-191-7/+8
| | | | | And also whatever supports the protocol. Way more pythonic now!
* Remove call to init_static_locks (#1066)Alex Gaynor2021-12-151-1/+0
| | | It has been a no-op (when called from an _instance_ of Binding) since 3.3
View Lorry Controller Status