saymrwulf/cryptography
1
0
Fork 0
mirror of https://github.com/saymrwulf/cryptography.git synced 2026-05-14 20:37:55 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
7993 commits 40 branches 135 tags 60 MiB
Commit graph

7993 commits

This branch
This branch
All branches
Author SHA1 Message Date
dependabot[bot]
08a97cca71
Bump actions/upload-artifact from v1 to v2.2.0 (#5502) 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from v1 to v2.2.0.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/v1...27bce4eee761b5bc643f46a8dfb41b430c8d05f6)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2020-10-25 11:46:21 -04:00
Alex Gaynor
52a0e44e97
Add a dependabot configuration to bump our github actions (#5501) 2020-10-25 07:55:27 -07:00
frennkie
611c4a340f
PKCS7SignatureBuilder now supports new option NoCerts when signing (#5500) 2020-10-25 07:50:18 -07:00
Paul Kehrer
836a92a28f
chunking didn't actually work (#5499) 2020-10-25 09:15:18 -04:00
Paul Kehrer
085d1e44c6
allow additional certificates to be added to a pkcs7 (#5498) 
* allow additional certificates to be added to a pkcs7

* be more verbose about what these additional certs might be used for

* missing test
 2020-10-25 09:11:48 -04:00
Paul Kehrer
95c4f68c1b
PKCS7SignatureBuilder now supports three serializations (#5497) 
* PKCS7SignatureBuilder now supports three serializations

PEM, DER, and SMIME. SMIME embeds the S/MIME headers and has the
detached signature concept.

* thanks libre
 2020-10-24 21:17:06 -04:00
Paul Kehrer
5edf5b828a
migrate smime builder to pkcs7 module and rename (#5496) 
* migrate smime builder to pkcs7 module and rename

* missed a rename
 2020-10-24 20:10:25 -04:00
Alex Gaynor
ca622468f7
bumped to latest libressl (#5491) 2020-10-19 09:28:09 -05:00
Alex Gaynor
27026d37ff
fixed twisted tests (#5489) 2020-10-17 18:49:36 -05:00
Alex Gaynor
e74895bffc
Update CI for 3.9 release (#5480) 2020-10-07 08:26:05 -05:00
Alex Gaynor
cd6f6b0296
Update wheel builder for new GHA syntax (#5478) 
* Update wheel builder for new GHA syntax

* Update wheel-builder.yml

* Update wheel-builder.yml
 2020-10-02 22:47:49 -05:00
Alex Gaynor
9daa295d83
Update windows CI for new GHA syntax (#5477) 
* Update windows CI for new GHA syntax

* Update ci.yml

* Update ci.yml

* Update ci.yml

* Update ci.yml
 2020-10-02 10:05:33 -05:00
Alex Gaynor
3268a91c64
Forward-port 3.1.1 changelog (#5476) 2020-09-22 13:05:02 -05:00
Paul Kehrer
e11ed9bfa9
test against 1.1.1h (#5474) 2020-09-22 12:03:01 -04:00
Alex Gaynor
d473130a64
bump to latest libressl point release (#5470) 2020-09-20 21:19:53 -05:00
Alex Gaynor
0b35c5d701
Remove bindings docs (#5469) 2020-09-20 16:49:09 -05:00
Paul Kehrer
20c0388086
smime signer support (#5465) 
* smime signer support

* fix ed25519 check

* change some wording

* python 2.7...

* review feedback

* s/secure/signed

* do some verification in the tests

* review feedback

* doc return value
 2020-09-19 19:07:26 -04:00
Paul Kehrer
c61f24bb4d
add prelim python 3.9 CI (#5466) 
* add prelim python 3.9 CI

* do we need v2?
 2020-09-15 00:05:14 -04:00
Paul Kehrer
00ba159220
add RSA 4096-bit self-signed CA for some upcoming tests (#5464) 2020-09-14 19:40:05 -04:00
Paul Kehrer
6d3644f4e5
add pkcs7/smime bindings (#5458) 
* add pkcs7/smime bindings

* Update src/_cffi_src/openssl/pkcs7.py

Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com>

* Update src/_cffi_src/openssl/pkcs7.py

Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com>

Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com>
 2020-09-13 20:20:09 -04:00
Paul Kehrer
1a9e2e1ad7
allow bytes-like for padding (#5462) 
this doesn't improve efficiency in any way (copies galore!), but it does
make it consistent between a cipher context and a padding context
 2020-09-13 20:04:18 -04:00
Alex Gaynor
bfe7b455c5
Account for Bruce redoing his website or something (#5461) 2020-09-13 19:03:36 -05:00
Alex Gaynor
3367c18bf2
Be clear that a lack of authentication often means you don't have secrecy (#5454) 2020-09-05 10:46:34 -05:00
Paul Kehrer
ad05ebbb32
re-add a few engine bindings for advanced users (#5449) 
* re-add a few engine bindings for advanced users

For users who are capable of compiling cryptography against custom
openssl and properly using these functions this hopefully allows
PKCS11 usage through OpenSSL engines.

* forgot to save my buffer
 2020-09-01 16:21:13 -04:00
Sviatoslav Sydorenko
d9f182d8c0
Add a missing space to py35 deprecation warning (#5448) 
This fixes a typo that's been introduced in #5387.
 2020-09-01 11:34:24 -05:00
Alex Gaynor
63dfc57fca
fixed verify script that couldn't have ever worked (#5443) 2020-08-29 09:39:31 -05:00
Paul Kehrer
31a5da73f8
update docs to not use backends (#5404) 2020-08-29 09:28:32 -04:00
Alex Gaynor
8bc6920444
Break users on OpenSSL 1.0.2 (#5438) 
fixes #5432
 2020-08-28 09:55:41 -05:00
Alex Gaynor
1fd7cacdb8
Removed urllib3 downstream test (#5442) 2020-08-28 08:29:04 -05:00
Alex Gaynor
b31ecb0ff9
try running paramiko downstream tests on py3 (#5437) 2020-08-27 18:11:37 -05:00
Alex Gaynor
761e9aa990
re-enable paramiko downstream testing (#5436) 2020-08-27 16:32:38 -05:00
Paul Kehrer
c2624de7ee
bump version for 3.2 dev (#5431) 2020-08-27 01:54:03 -04:00
Paul Kehrer
ba2c0e5e3e
3.1 release (#5430) 2020-08-27 00:00:17 -04:00
Ian Wienand
c63106c46b
Build manylinux wheels with Zuul (#5386) 
This adds the Zuul playbooks and role to build manylinux wheels for
aarch64 and x86_64 (while aarch64 is the primary goal; it's good for
the overall code to keep it flexible).

It first builds an sdist from the checkout and then builds the wheels
in the appropriate containers.

Note this adds the jobs in the gate pipeline, which currently responds
to Pull Requests, and the release pipeline, which responds to pushes
to refs/tags/.* (see [1]).  Note for results of jobs run against tags
you will need to find the job directly from

 https://zuul.opendev.org/t/pyca/builds

because there is nowhere to report the results as such (it could be
configured to send an email).

The wheels are published to the wheelhouse/ directory in the Zuul
logs, which is also listed as an artifact on the build results page.

[1] https://review.opendev.org/748323
 2020-08-26 22:21:59 -05:00
Paul Kehrer
bda138768a
new black, actually slightly different than the old black (#5429) 2020-08-26 22:59:43 -04:00
Paul Kehrer
0b2435940e
remove keywords with side effects hack in setup.py (#5426) 2020-08-25 11:28:08 -04:00
Alex Gaynor
1394edb83a
rephrase changelog entry (#5422) 
* rephrase changelog entry

* Update CHANGELOG.rst
 2020-08-24 18:43:58 -05:00
Paul Kehrer
b9d26d2608
add some words about separating ECDH and ECDSA (#5423) 
* add some words about separating ECDH and ECDSA

* Thomas Pornin wrote some good words about why you should try not to mix
your ECDH and ECDSA keys.
 2020-08-24 14:01:45 -04:00
Alex Gaynor
ed3ded47e7
bump libressl 3.1.x (#5421) 2020-08-24 08:11:22 -05:00
Paul Kehrer
b6c51be988
document that we auto-chunk on symmetric cipher contexts now (#5420) 2020-08-24 08:22:47 -04:00
Paul Kehrer
f90ba1808e
chunked update_into (#5419) 
* chunked update_into

* all pointer arithmetic all the time

* review feedback
 2020-08-24 00:41:33 -04:00
Alex Gaynor
bc4b956f75
Run AWS SDK tests on Python 3.7 (#5414) 
* Run AWS SDK tests on Python 3.8

* switch to 37

* Update aws-encryption-sdk.sh

* Update dynamodb-encryption-sdk.sh
 2020-08-17 08:23:36 -05:00
Paul Kehrer
b2c5ac8919
Docs testing (#5413) 
* document we test on aarch64

even odds this angers the spellchecker

* Just as my previous commit msg prophesied

* Update docs/spelling_wordlist.txt

Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com>

Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com>
 2020-08-16 21:10:47 -04:00
Paul Kehrer
7081923cb7
refactor wheel builder to use workflows and download/build separately (#5412) 
* refactor wheel builder to use workflows and download/build separately

* Update .github/workflows/wheel-builder.yml

Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com>

Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com>
 2020-08-16 18:50:38 -04:00
Alex Gaynor
ad17c03784
Attempt to drop the user switch in docker (#5411) 2020-08-16 17:24:35 -05:00
Paul Kehrer
0ed8d66246
use _get_backend everywhere (#5408) 
* use _get_backend everywhere

* black
 2020-08-16 18:04:10 -04:00
Paul Kehrer
42ad3b0cd8
be consistent in our testing (#5409) 
* be consistent in our testing

we don't use default_backend this way in our tests

* more black
 2020-08-16 16:49:01 -04:00
Paul Kehrer
872835ea0d
update submitting patches docs to be a bit more true (#5407) 
For now best practice is that they should be optional.
 2020-08-16 15:23:02 -04:00
Paul Kehrer
4a581a9e70
move encoders into backend as well (#5406) 
this will be useful later, i swear
 2020-08-15 19:40:22 -04:00
Paul Kehrer
9a55f775e5
move the x509 parsers into the backend object (#5405) 
* move the parser into the backend object

This allows us to generate the list of supported extensions when
instantiating the backend object rather than building multiple parsers
and picking the right one at runtime when parsing the extensions themselves.

* sigh
 2020-08-15 19:05:46 -04:00