summaryrefslogtreecommitdiff
path: root/docs/development
Commit message (Collapse)AuthorAgeFilesLines
* support parsing bitstring values in DNs (#6629)Paul Kehrer2021-11-281-0/+2
| | | | | | | | | | | * support bitstring values in DNs parsing is limited to x500UniqueIdentifier only * Update src/cryptography/x509/name.py Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com> Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com>
* allow parsing of nonstandard country name and jurisdiction country name (#6641)Paul Kehrer2021-11-211-0/+3
| | | | | | The spec requires both of these to be exactly two characters to correspond with ISO country codes. Reality is sometimes messier, so this allows parsing (but not encoding) of this invalid data. Parsing will raise a UserWarning if incorrect lengths are detected.
* add AES SIV vectors (#6608)Paul Kehrer2021-11-151-0/+2
|
* add AES OCB3 test vectors (#6606)Paul Kehrer2021-11-151-0/+1
|
* Allow parsing CSR extensions with the critical bit having an explicitly ↵Alex Gaynor2021-11-141-0/+2
| | | | | | | encoded default (#6600) * Allow parsing CSR extensions with the critical bit having an explicitly encoded default * Poke for zuul
* allow multiple identical pem blocks (#6551)Paul Kehrer2021-11-051-2/+2
| | | | | this matches our behavior to OpenSSL and allows users to pass a chain to our PEM loaders. To make this a little less magical it is now documented.
* deprecate backend part 4 of n (#6522)Paul Kehrer2021-11-022-5/+1
|
* deprecate backend part 1 of n (#6517)Paul Kehrer2021-11-028-19/+6
| | | | * update all custom vector generation scripts to not use backends * remove references to backends in test-vectors.rst
* add accvraiz1 bmpstring test vector (#6503)Paul Kehrer2021-10-311-0/+2
|
* Add new PKCS12 test vectors (#6383)Felix Fontein2021-10-061-0/+102
| | | | | | | * Add new PKCS12 test vectors for #6348. * Re-create test certs without DSA. * Forgot to adjust the docs.
* Accept combined PEM files with multiple sections (#6365)Maximilian Hils2021-10-031-0/+4
| | | | | * accept combined PEM files with multiple sections * pass error messages into `find_in_pem`
* support legacy PEM headers for certificate and CSR (#6356)Paul Kehrer2021-10-021-0/+5
|
* add new x509 request vector (#6313)Paul Kehrer2021-09-271-0/+3
|
* add several OCSP response vectors (#6298)Paul Kehrer2021-09-231-0/+6
| | | | | * add several OCSP response vectors * fix naming
* Don't internal error on CRL with no nextUpdate value (#6282)Alex Gaynor2021-09-191-0/+2
| | | | | | | * Don't internal error on CRL with no nextUpdate value * Fix typing * docs
* add vector omitting optional ASN.1 SEQUENCE for an empty CRL (#6279)Paul Kehrer2021-09-181-0/+2
|
* Make OAEP test vector generating works on python3 (#6255)match man2021-09-061-20/+20
| | | | | Use always string as output format Co-authored-by: Baofeng Wang <baofeng.wang67@gmail.com>
* Correct the documentation on crl_invalid_time.der (#6191)Alex Gaynor2021-08-081-1/+1
|
* add invalid time CRL vector (#6152)Paul Kehrer2021-07-011-0/+2
| | | | | * add invalid time CRL vector * more words
* modify alternate-rsa-sha1-oid to not contain a negative serial number (#6146)Paul Kehrer2021-06-271-3/+2
|
* separate test vectors (#6145)Paul Kehrer2021-06-271-5/+9
| | | | | * separate test vectors * be correct
* add certificate policies test vector (#6118)Paul Kehrer2021-06-141-1/+6
|
* name constraint vector with invalid IPv4 netmask (#6114)Paul Kehrer2021-06-121-0/+4
|
* add nameconstraints vector with invalid length for IPv6 + netmask (#6112)Paul Kehrer2021-06-121-0/+4
|
* add unrecognized extension CRL vector (#6111)Paul Kehrer2021-06-121-0/+3
| | | | | | | | | * add unrecognized extension CRL vector * sigh * add test * always a linter
* Added more testcases for invalid SCTs (#6103)Alex Gaynor2021-06-091-0/+4
|
* Added a test vector for an OCSP response with an unknown hash algorithm (#6065)Alex Gaynor2021-05-241-0/+2
|
* Added a test vector for duplicate extensions in OCSP requests (#6064)Alex Gaynor2021-05-241-2/+4
|
* Added a test vector for OCSP with an unknown extension (#6063)Alex Gaynor2021-05-231-0/+2
|
* Port OCSP Request extension parsing to Rust (#6005)Alex Gaynor2021-04-241-0/+2
| | | | | | | | | | | * Port OCSP Request extension parsing to Rust * Added test for rando oid * Update src/rust/src/asn1.rs Co-authored-by: Paul Kehrer <paul.l.kehrer@gmail.com> Co-authored-by: Paul Kehrer <paul.l.kehrer@gmail.com>
* removed paragraph in docs that was very out of date (#6003)Alex Gaynor2021-04-231-7/+0
|
* update java sdk download link (#5916)Alex Gaynor2021-03-151-2/+2
|
* Updates for our new main branch (#5818)Alex Gaynor2021-02-111-3/+3
|
* Remove __future__ import from our code (#5610)Alex Gaynor2020-12-097-18/+0
|
* Remove Python2 from CI and code that branched on it (#5607)Alex Gaynor2020-12-081-1/+0
| | | | | | | | | | | | | * Remove Python2 from CI and code that branched on it * Update setup.py Co-authored-by: Hugo van Kemenade <hugovk@users.noreply.github.com> * remove * review feedback Co-authored-by: Hugo van Kemenade <hugovk@users.noreply.github.com>
* disallow p less than 512-bit on DH (#5592)Paul Kehrer2020-11-291-0/+2
| | | | | | | | | | | | | | | | * disallow p less than 512-bit on DH OpenSSL 3.0.0 enforces this so we'll go ahead and enforce it everywhere that's practical for us. (Note that we do not enforce on deserializing PKCS1/PKCS8 keys in < 3.0.0, but this PR adds a test so that in the 3.0.0 support branch we can test an error path) * missing test * black * _MIN_MODULUS_SIZE is now a thing * skip on fips
* Delete all the 1.0.2 code (#5511)Alex Gaynor2020-10-251-2/+2
|
* Remove bindings docs (#5469)Alex Gaynor2020-09-201-1/+1
|
* add RSA 4096-bit self-signed CA for some upcoming tests (#5464)Paul Kehrer2020-09-141-0/+4
|
* Account for Bruce redoing his website or something (#5461)Alex Gaynor2020-09-131-1/+1
|
* fixed verify script that couldn't have ever worked (#5443)Alex Gaynor2020-08-291-2/+2
|
* update submitting patches docs to be a bit more true (#5407)Paul Kehrer2020-08-161-4/+3
| | | For now best practice is that they should be optional.
* add basic PKCS7 test vectors (#5370)Paul Kehrer2020-08-021-0/+8
|
* Tell people to use black in our dev docs (#5328)Alex Gaynor2020-07-201-3/+4
| | | | | * Tell people to use black in our dev docs * For codecov
* Paint it Black by the Rolling Stones (#5324)Alex Gaynor2020-07-2010-98/+97
|
* raise a valueerror on multi-SINGLERESP valued OCSP responses (#5316)Paul Kehrer2020-07-181-0/+2
| | | InternalErrors are bad when we know they're reachable
* support 4096 bit DSA parsing from numbers classes (#5301)Paul Kehrer2020-07-051-0/+2
| | | | | | | | | * support 4096 bit DSA parsing from numbers classes * need to get local linting fixed. * reorder * add a link to more reasons why DSA sucks
* add unstructured name x509 csr attribute vector (#5302)Paul Kehrer2020-07-051-0/+3
| | | | | | | | | * add unstructured name x509 csr attribute vector * Update docs/development/test-vectors.rst Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com> Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com>
* invalid challenge value csr (#5300)Paul Kehrer2020-07-051-0/+3
|
* add SubjectInformationAccess extension support (#5295)Paul Kehrer2020-07-021-0/+3
| | | | | * add SubjectInformationAccess extension support * fixes
View Lorry Controller Status