| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| | |
|
| |
|
|
|
| |
Tests on Travis-CI fail on Python 3.4. Since this is an intermediary
release to fix some issues for Python 2.7, I keep Python 3.4 as unsupported.
|
| |
|
|
|
|
|
|
|
|
| |
Reject cyphertexts that have been modified by prepending zero bytes, by
checking the cyphertext length against the expected size (given the
decryption key). This resolves CVE-2020-13757.
The same approach is used when verifying a signature.
Thanks Carnil for pointing this out on https://github.com/sybrenstuvel/python-rsa/issues/146
|
| |
|
|
| |
This is a requirement for RSA blinding, but wasn't implemented yet.
|
| | |
|
| |
|
|
| |
This is part of a fix for https://github.com/sybrenstuvel/python-rsa/issues/152
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
- Remove `--ignore-pipfile`. This option makes Pipenv install from the
`Pipfile.lock` only, ignoring the `Pipfile` itself. In a sense this is
good, because it tests with the locked dependencies. However, it
breaks when you lock on Python 3.6 but test on Python 3.4 or 2.7.
We'll have to re-visit this when dropping support for older Pythons.
- pypy 3.6 -> 3.5
- Drop `pypy` from Travis CI testing
We still test with 'pypy3.5'. However, Pipenv has an issue with pypy 2.7.
See https://github.com/pypa/pipenv/issues/2449
- Pypy3.5 seems to want pathlib2 when running on Travis CI
|
| |
|
|
|
|
|
| |
Python 3.7 is not yet supported by Travis CI.
See https://github.com/travis-ci/travis-ci/issues/9815
Also fixed a mistake in the test config.
|
| | |
|
| |
|
|
|
| |
The use of nose for testing was previously removed and replaced by
pytest.
|
| |
|
| |
"if A and B" if mostly A is True then we should judge B at first
|
| | |
|
| |
|
|
|
|
| |
In preparation of removal of Python 2.7 support, I only want to have
compatibility code for Python 2.7 in `_compat.py`, and not other kinds
of 'compatibility'.
|
| |
|
|
|
|
| |
- Added missing test dependencies.
- Updated `.travis.yml` and `tox.ini` to install deps and run with pipenv.
- Added testing on Python 3.7.
|
| | |
|
| |
|
|
|
|
|
|
| |
Slightly speed up builds and reduce load on PyPI servers.
For more information, see:
https://docs.travis-ci.com/user/caching/#pip-cache
|
| |
|
|
|
|
| |
For details on the new PyPI, see the blog post:
https://pythoninsider.blogspot.ca/2018/04/new-pypi-launched-legacy-pypi-shutting.html
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
The wheel package format supports including the license file. This is
done using the [metadata] section in the setup.cfg file. For additional
information on this feature, see:
https://wheel.readthedocs.io/en/stable/index.html#including-the-license-in-the-generated-wheel-file
Helps the project comply with its own license:
> 4. Redistribution. You may reproduce and distribute copies of the Work
> or Derivative Works thereof in any medium, with or without
> modifications, and in Source or Object form, provided that You meet the
> following conditions:
>
> a. You must give any other recipients of the Work or Derivative Works
> a copy of this License; and ...
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
| |
This library is probably not the right place to recommend key sizes
or have discussions about the relation between key sizes and hash
function outputs.
|
| | |
|
| |
|
|
|
|
|
| |
There is no need to specify this list in PKCS1_v2 when it is
already specified in PKCS1. This does rely on the digest_size
attribute being available, but pkcs1.py already depends heavily
on the specific API of hashlib.
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
| |
* Use tox-travis to run tox when using TravisCI
* Always run coveralls after TravisCI
It appears coveralls no longer comments twice
|
| | |
|
| | |
|
| | |
|
| |
|
| |
Add Python 3.6 to the Trove classifiers in `setup.py`.
|
| |
|
|
| |
Implementation of the Mask Generation Function `MGF1` used in the OAEP encoding step.
For more information, the MGF1 specification is at https://tools.ietf.org/html/rfc2437#section-10.2.1
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* Split the hashing out of the sign method
This code change adds support to split the hashing of a message
and the actual signing of the message.
* Updating unit test and documentation
This commit updates the unit test and usage docs. In addition,
This change removes a redundant error check inside rsa.sign().
* Refactore unit tests and code comments
Removed the print statements from the unit test and refactored a
few code comments to improve readability.
* Rename hash function
The new hash function had the same name as a function in the
standard library. This commit changes the name to avoid conflicts.
* Rename hash function to compute_hash()
This commit renames the hash function to compute_hash().
|
| |
|
|
| |
Created as a new function as it will be needed by the new PKCS#1 2.0 implementation. Specifically, for the MGF1 function used in the OAEP encoding/decoding.
This allows us not to have `math` dependencies
|
| | |
|
| |
|
|
|
|
| |
I've not used the name "find_method_hash" suggested in #78, as it's a bit
vague. It's ok-ish for a private function `_find_method_hash`, but I
thought `find_signature_hash` would be more descriptive.
|
| | |
|
| |
|
|
| |
Also worded the use of 'sudo' a bit more carefully.
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
| |
Good catch, thanks!
|
| | |
|
| |
|
| |
It's about time to get this merged, thanks again!
|
