pyca-boringbot[bot]
314dd53422
Bump BoringSSL and/or OpenSSL in CI ( #10262 )
...
Co-authored-by: pyca-boringbot[bot] <pyca-boringbot[bot]+106132319@users.noreply.github.com>
2024-01-25 19:16:33 -05:00
Paul Kehrer
3da3a3703b
support bytes-like consistently across our asym sign/verify APIs ( #10260 )
...
and update our docs to show it as well
2024-01-25 21:09:27 +00:00
Paul Kehrer
08b24d87a6
explicitly support bytes-like for signature/data in RSA sign/verify ( #10259 )
...
this was never documented but previously worked in <42. we now also
document that this is supported to confuse ourselves less.
2024-01-25 19:51:59 +00:00
dependabot[bot]
646c0c4b56
Bump cryptography from 42.0.0 to 42.0.1 in /.github/requirements ( #10257 )
...
* Bump cryptography from 42.0.0 to 42.0.1 in /.github/requirements
Bumps [cryptography](https://github.com/pyca/cryptography ) from 42.0.0 to 42.0.1.
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst )
- [Commits](https://github.com/pyca/cryptography/compare/42.0.0...42.0.1 )
---
updated-dependencies:
- dependency-name: cryptography
dependency-type: indirect
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
* Update publish-requirements.txt
---------
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com>
2024-01-25 06:06:32 -08:00
dependabot[bot]
e49a9361bb
Bump pluggy from 1.3.0 to 1.4.0 ( #10258 )
...
Bumps [pluggy](https://github.com/pytest-dev/pluggy ) from 1.3.0 to 1.4.0.
- [Changelog](https://github.com/pytest-dev/pluggy/blob/main/CHANGELOG.rst )
- [Commits](https://github.com/pytest-dev/pluggy/compare/1.3.0...1.4.0 )
---
updated-dependencies:
- dependency-name: pluggy
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-25 12:01:30 +00:00
Paul Kehrer
1bb43b0d9e
port 42.0.1 changelog to main ( #10253 )
2024-01-24 21:48:17 -05:00
Paul Kehrer
075925fd55
allow SPKI RSA keys to be parsed even if they have an incorrect delimiter ( #10248 )
...
* allow SPKI RSA keys to be parsed even if they have an incorrect delimiter
This allows RSA SPKI keys (typically delimited with PUBLIC KEY) to be parsed
even if they are using the RSA PUBLIC KEY delimiter.
* formatting
* use original error if nothing parses, don't let it parse non-RSA
2024-01-25 01:54:23 +00:00
pyca-boringbot[bot]
bee35f0d4b
Bump x509-limbo and/or wycheproof in CI ( #10250 )
...
Co-authored-by: pyca-boringbot[bot] <pyca-boringbot[bot]+106132319@users.noreply.github.com>
2024-01-25 00:30:50 +00:00
pyca-boringbot[bot]
72d94030fc
Bump BoringSSL and/or OpenSSL in CI ( #10249 )
...
Co-authored-by: pyca-boringbot[bot] <pyca-boringbot[bot]+106132319@users.noreply.github.com>
2024-01-25 00:22:02 +00:00
dependabot[bot]
050839f4dd
Bump argcomplete from 3.2.1 to 3.2.2 ( #10245 )
...
Bumps [argcomplete](https://github.com/kislyuk/argcomplete ) from 3.2.1 to 3.2.2.
- [Release notes](https://github.com/kislyuk/argcomplete/releases )
- [Changelog](https://github.com/kislyuk/argcomplete/blob/develop/Changes.rst )
- [Commits](https://github.com/kislyuk/argcomplete/compare/v3.2.1...v3.2.2 )
---
updated-dependencies:
- dependency-name: argcomplete
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-24 06:52:30 -05:00
pyca-boringbot[bot]
97eb48eee0
Bump x509-limbo and/or wycheproof in CI ( #10243 )
...
Co-authored-by: pyca-boringbot[bot] <pyca-boringbot[bot]+106132319@users.noreply.github.com>
2024-01-23 19:53:49 -05:00
dependabot[bot]
f9a0b3d67e
Bump cryptography from 41.0.7 to 42.0.0 in /.github/requirements ( #10241 )
...
* Bump cryptography from 41.0.7 to 42.0.0 in /.github/requirements
Bumps [cryptography](https://github.com/pyca/cryptography ) from 41.0.7 to 42.0.0.
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst )
- [Commits](https://github.com/pyca/cryptography/compare/41.0.7...42.0.0 )
---
updated-dependencies:
- dependency-name: cryptography
dependency-type: indirect
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
* Update publish-requirements.txt
---------
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com>
2024-01-23 07:08:18 -06:00
dependabot[bot]
bbbf1de73a
Bump pyopenssl from 23.3.0 to 24.0.0 in /.github/requirements ( #10238 )
...
* Bump pyopenssl from 23.3.0 to 24.0.0 in /.github/requirements
Bumps [pyopenssl](https://github.com/pyca/pyopenssl ) from 23.3.0 to 24.0.0.
- [Changelog](https://github.com/pyca/pyopenssl/blob/main/CHANGELOG.rst )
- [Commits](https://github.com/pyca/pyopenssl/compare/23.3.0...24.0.0 )
---
updated-dependencies:
- dependency-name: pyopenssl
dependency-type: indirect
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
* Update publish-requirements.txt
---------
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com>
2024-01-23 06:34:25 -06:00
Alex Gaynor
317985423b
fixes #10237 -- correct EC sign parameter name ( #10239 )
2024-01-23 06:32:38 -06:00
Paul Kehrer
c8f732eb27
fix the release script ( #10233 )
...
we removed version as an arg, but didn't remove it from the click decorator
2024-01-22 21:51:02 -05:00
Paul Kehrer
71cd1c43a9
reopen main for 43 dev ( #10234 )
2024-01-22 21:50:49 -05:00
Paul Kehrer
4e64baf360
42.0.0 version bump ( #10232 )
2024-01-22 20:05:18 -05:00
Paul Kehrer
7cb13a3bc9
we'll ship 3.2.0 for 42 ( #9951 )
...
* we'll ship 3.2.0 for 42
* invalidate the caches, sigh
2024-01-23 00:45:02 +00:00
pyca-boringbot[bot]
605c74e41c
Bump x509-limbo and/or wycheproof in CI ( #10231 )
...
Co-authored-by: pyca-boringbot[bot] <pyca-boringbot[bot]+106132319@users.noreply.github.com>
2024-01-23 00:31:24 +00:00
pyca-boringbot[bot]
97578b98ff
Bump BoringSSL and/or OpenSSL in CI ( #10230 )
...
Co-authored-by: pyca-boringbot[bot] <pyca-boringbot[bot]+106132319@users.noreply.github.com>
2024-01-23 00:17:25 +00:00
William Woodruff
972a7b5896
verification: add test_verify_tz_aware ( #10229 )
...
* verification: add test_verify_tz_aware
Signed-off-by: William Woodruff <william@trailofbits.com>
* py_to_datetime handles tzinfo, add test
Signed-off-by: William Woodruff <william@trailofbits.com>
* Update src/rust/src/x509/common.rs
Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com>
* x509/common: coverage for the coverage god
Signed-off-by: William Woodruff <william@trailofbits.com>
---------
Signed-off-by: William Woodruff <william@trailofbits.com>
Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com>
2024-01-22 22:14:50 +00:00
Facundo Tuesca
41daf2d86d
Migrate PKCS7 backend to Rust ( #10228 )
...
* Migrate PKCS7 backend to Rust
* Disable PKCS7 functions under BoringSSL
* Misc PKCS7 fixes
2024-01-22 21:22:05 +00:00
Alex Gaynor
d54093e62e
Remove some skips in tests that aren't needed anymore ( #10223 )
2024-01-22 07:07:53 -06:00
Alex Gaynor
71929bd91f
Remove binding that's not used anymore ( #10224 )
2024-01-22 07:01:37 -06:00
Alex Gaynor
7ea4b89cea
fixed formatting in changelog ( #10225 )
2024-01-22 07:01:14 -06:00
Alex Gaynor
410f4a1ee4
Allow brainpool on libressl ( #10222 )
2024-01-21 15:25:00 -03:00
Alex Gaynor
6b4a4de78a
Migrate SPKI parsing from OpenSSL to Rust ( #10121 )
2024-01-21 15:11:17 -03:00
Alex Gaynor
2c56719281
Reduce the amount of data that needs to be hashed to check if a cert is in a trust store ( #10218 )
2024-01-21 07:45:27 -03:00
Alex Gaynor
8d3b4b57bf
Avoid allocating a Vec -- directly create a list ( #10217 )
2024-01-21 07:40:11 -03:00
Alex Gaynor
39e3011170
Remove unused test utility ( #10216 )
2024-01-21 07:39:18 -03:00
Alex Gaynor
742267b159
bump bitflags ( #10219 )
2024-01-21 07:38:30 -03:00
dependabot[bot]
aaad6cbd33
Bump dnspython from 2.4.2 to 2.5.0 in /.github/requirements ( #10221 )
...
Bumps [dnspython](https://github.com/rthalley/dnspython ) from 2.4.2 to 2.5.0.
- [Release notes](https://github.com/rthalley/dnspython/releases )
- [Changelog](https://github.com/rthalley/dnspython/blob/master/doc/whatsnew.rst )
- [Commits](https://github.com/rthalley/dnspython/compare/v2.4.2...v2.5.0 )
---
updated-dependencies:
- dependency-name: dnspython
dependency-type: indirect
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-20 23:44:12 -05:00
dependabot[bot]
75d81bb882
Bump proc-macro2 from 1.0.76 to 1.0.78 in /src/rust ( #10220 )
...
Bumps [proc-macro2](https://github.com/dtolnay/proc-macro2 ) from 1.0.76 to 1.0.78.
- [Release notes](https://github.com/dtolnay/proc-macro2/releases )
- [Commits](https://github.com/dtolnay/proc-macro2/compare/1.0.76...1.0.78 )
---
updated-dependencies:
- dependency-name: proc-macro2
dependency-type: indirect
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-21 04:34:55 +00:00
dependabot[bot]
d6ddd41dcf
Bump openssl from 0.10.62 to 0.10.63 in /src/rust ( #10215 )
...
Bumps [openssl](https://github.com/sfackler/rust-openssl ) from 0.10.62 to 0.10.63.
- [Release notes](https://github.com/sfackler/rust-openssl/releases )
- [Commits](https://github.com/sfackler/rust-openssl/compare/openssl-v0.10.62...openssl-v0.10.63 )
---
updated-dependencies:
- dependency-name: openssl
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-20 00:19:59 +00:00
pyca-boringbot[bot]
663492e4f0
Bump BoringSSL and/or OpenSSL in CI ( #10214 )
...
Co-authored-by: pyca-boringbot[bot] <pyca-boringbot[bot]+106132319@users.noreply.github.com>
2024-01-20 00:15:19 +00:00
dependabot[bot]
a5973d1453
Bump openssl-sys from 0.9.98 to 0.9.99 in /src/rust ( #10213 )
...
Bumps [openssl-sys](https://github.com/sfackler/rust-openssl ) from 0.9.98 to 0.9.99.
- [Release notes](https://github.com/sfackler/rust-openssl/releases )
- [Commits](https://github.com/sfackler/rust-openssl/compare/openssl-sys-v0.9.98...openssl-sys-v0.9.99 )
---
updated-dependencies:
- dependency-name: openssl-sys
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-20 00:10:22 +00:00
dependabot[bot]
35dedf46d9
Bump ruff from 0.1.13 to 0.1.14 ( #10212 )
...
Bumps [ruff](https://github.com/astral-sh/ruff ) from 0.1.13 to 0.1.14.
- [Release notes](https://github.com/astral-sh/ruff/releases )
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md )
- [Commits](https://github.com/astral-sh/ruff/compare/v0.1.13...v0.1.14 )
---
updated-dependencies:
- dependency-name: ruff
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-19 23:09:31 +00:00
dependabot[bot]
74273aba09
Bump markupsafe from 2.1.3 to 2.1.4 ( #10211 )
...
Bumps [markupsafe](https://github.com/pallets/markupsafe ) from 2.1.3 to 2.1.4.
- [Release notes](https://github.com/pallets/markupsafe/releases )
- [Changelog](https://github.com/pallets/markupsafe/blob/2.1.4/CHANGES.rst )
- [Commits](https://github.com/pallets/markupsafe/compare/2.1.3...2.1.4 )
---
updated-dependencies:
- dependency-name: markupsafe
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-19 23:07:17 +00:00
dependabot[bot]
23acc7f8df
Bump smallvec from 1.13.0 to 1.13.1 in /src/rust ( #10210 )
...
Bumps [smallvec](https://github.com/servo/rust-smallvec ) from 1.13.0 to 1.13.1.
- [Release notes](https://github.com/servo/rust-smallvec/releases )
- [Commits](https://github.com/servo/rust-smallvec/compare/v1.13.0...v1.13.1 )
---
updated-dependencies:
- dependency-name: smallvec
dependency-type: indirect
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-19 23:04:44 +00:00
dependabot[bot]
a65879560e
Bump smallvec from 1.12.0 to 1.13.0 in /src/rust ( #10206 )
...
Bumps [smallvec](https://github.com/servo/rust-smallvec ) from 1.12.0 to 1.13.0.
- [Release notes](https://github.com/servo/rust-smallvec/releases )
- [Commits](https://github.com/servo/rust-smallvec/compare/v1.12.0...v1.13.0 )
---
updated-dependencies:
- dependency-name: smallvec
dependency-type: indirect
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-19 08:57:04 -03:00
pyca-boringbot[bot]
17404b61fc
Bump BoringSSL and/or OpenSSL in CI ( #10205 )
...
Co-authored-by: pyca-boringbot[bot] <pyca-boringbot[bot]+106132319@users.noreply.github.com>
2024-01-19 01:26:57 +00:00
Hacksawfred3232
bd0a0648a8
Added warning about SHA1 being used for response signing in ocsp.rst ( #10204 )
...
* Update ocsp.rst
Added warning about SHA1 being used for sign()
* Update ocsp.rst
Fixed spelling issues, at least according to en-GB dictionary.
* Update ocsp.rst
Spell checker didn't catch "algorithim" somehow.
* Update ocsp.rst
Attempting to rephrase the warning.
* Update ocsp.rst
Removing rouge space.
2024-01-19 01:26:45 +00:00
dependabot[bot]
82f715cfb0
Bump pkg-config from 0.3.28 to 0.3.29 in /src/rust ( #10202 )
...
Bumps [pkg-config](https://github.com/rust-lang/pkg-config-rs ) from 0.3.28 to 0.3.29.
- [Changelog](https://github.com/rust-lang/pkg-config-rs/blob/master/CHANGELOG.md )
- [Commits](https://github.com/rust-lang/pkg-config-rs/compare/0.3.28...0.3.29 )
---
updated-dependencies:
- dependency-name: pkg-config
dependency-type: indirect
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-19 01:26:33 +00:00
pyca-boringbot[bot]
1bf2d29b40
Bump x509-limbo and/or wycheproof in CI ( #10201 )
...
Co-authored-by: pyca-boringbot[bot] <pyca-boringbot[bot]+106132319@users.noreply.github.com>
2024-01-18 00:35:02 +00:00
pyca-boringbot[bot]
dcd964abbf
Bump BoringSSL and/or OpenSSL in CI ( #10200 )
...
Co-authored-by: pyca-boringbot[bot] <pyca-boringbot[bot]+106132319@users.noreply.github.com>
2024-01-17 19:20:41 -05:00
William Woodruff
406b771ff0
fetch-vectors: change repo for x509-limbo ( #10199 )
...
* fetch-vectors: change repo for x509-limbo
Signed-off-by: William Woodruff <william@trailofbits.com>
* workflows: trailofbits -> C2SP
Signed-off-by: William Woodruff <william@trailofbits.com>
---------
Signed-off-by: William Woodruff <william@trailofbits.com>
2024-01-17 19:42:12 +00:00
Alex Gaynor
895cddf591
Consistently use EllipticCurve instances in various places ( #10189 )
2024-01-17 13:03:56 -03:00
Alex Gaynor
376a266cef
Special-case installation of vectors in local nox ( #10190 )
...
This saves roughly a second, but makes getting feedback much more responsive.
2024-01-17 12:52:07 -03:00
dependabot[bot]
1f8fbed124
Bump actions/cache from 3.3.3 to 4.0.0 ( #10197 )
...
Bumps [actions/cache](https://github.com/actions/cache ) from 3.3.3 to 4.0.0.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](e12d46a63a...13aacd865c
2024-01-17 07:34:04 -05:00
pyca-boringbot[bot]
b740f5a198
Bump x509-limbo and/or wycheproof in CI ( #10195 )
...
Co-authored-by: pyca-boringbot[bot] <pyca-boringbot[bot]+106132319@users.noreply.github.com>
2024-01-17 00:31:05 +00:00
