summaryrefslogtreecommitdiff
path: root/docs
Commit message (Collapse)AuthorAgeFilesLines
* Build manylinux2014 wheels (#5642)Alex Gaynor2020-12-122-7/+6
|
* we didn't actually commit the final doc fixes for the recover PR (#5614)Paul Kehrer2020-12-091-9/+9
|
* Remove __future__ import from our code (#5610)Alex Gaynor2020-12-099-22/+0
|
* Switch black to py36 as the minimum version (#5608)Alex Gaynor2020-12-081-1/+1
|
* Remove Python2 from CI and code that branched on it (#5607)Alex Gaynor2020-12-082-11/+5
| | | | | | | | | | | | | * Remove Python2 from CI and code that branched on it * Update setup.py Co-authored-by: Hugo van Kemenade <hugovk@users.noreply.github.com> * remove * review feedback Co-authored-by: Hugo van Kemenade <hugovk@users.noreply.github.com>
* Add support for RSA signature recovery (#5573)Zoltan Kelemen2020-12-072-0/+50
| | | | | | | | | | | | | | | | | | * Removed unused argument. * Added support for RSA signature recovery. * Syntatic corrections for passing pep8 tests. * Corrected typo. * Added test of invalid Prehashed parameter to RSA signature recover. * Renamed recover to a more descriptive name. * Extended RSA signature recovery with option to return full data (not only the digest part). * Added missing words to pass spell check.
* Document that PKCS1v1.5 is not constant time (#5600)Alex Gaynor2020-12-062-0/+25
| | | closes #5510
* Document that Firefox doesn't support unencrypted pkcs12 (#5596)Alex Gaynor2020-12-011-0/+6
|
* disallow p less than 512-bit on DH (#5592)Paul Kehrer2020-11-291-0/+2
| | | | | | | | | | | | | | | | * disallow p less than 512-bit on DH OpenSSL 3.0.0 enforces this so we'll go ahead and enforce it everywhere that's practical for us. (Note that we do not enforce on deserializing PKCS1/PKCS8 keys in < 3.0.0, but this PR adds a test so that in the 3.0.0 support branch we can test an error path) * missing test * black * _MIN_MODULUS_SIZE is now a thing * skip on fips
* Reduce granularity of error msging when deserializing keys (#5588)Paul Kehrer2020-11-261-5/+3
| | | | | | | | | | | | * Reduce granularity of error msging when deserializing keys In OpenSSL 3.0 it is no longer possible to determine whether the reason a key failed to deserialize is because of an unsupported cipher. Since we want to be more resilient to OpenSSL error code instability we'll just remove these paths. * black * changelog and update docs
* Polish up the fernet limitations language (#5577)Alex Gaynor2020-11-191-2/+3
|
* Remove two linkcheck ignores (#5570)Alex Gaynor2020-11-131-4/+0
|
* Don't tell people to use PGP, it's not good (#5543)Alex Gaynor2020-11-011-4/+3
|
* updated faq entry (#5541)Paul Kehrer2020-10-311-12/+11
| | | | the error will be opensslv.h these days and we don't need to talk specifically about macOS
* we have abi3 wheels for windows now (#5536)Alex Gaynor2020-10-311-6/+6
| | | | | * we have abi3 wheels for windows now * Update faq.rst
* tense (#5538)Alex Gaynor2020-10-311-1/+1
|
* Rephrase abi3 FAQ so it stays accurate (#5534)Alex Gaynor2020-10-301-3/+3
|
* Update installation docs for 3.5 drop (#5531)Alex Gaynor2020-10-281-1/+1
|
* fix Python 2 CryptographyDeprecationWarning guide (#5529)Thomas Grainger2020-10-281-1/+1
|
* Drop python 3.5 (#5527)Alex Gaynor2020-10-281-1/+1
|
* Delete all the 1.0.2 code (#5511)Alex Gaynor2020-10-254-29/+11
|
* Attempt to mitigate Bleichenbacher attacks on RSA decryption (#5507)Alex Gaynor2020-10-251-0/+1
|
* PKCS7SignatureBuilder now supports new option NoCerts when signing (#5500)frennkie2020-10-251-0/+7
|
* allow additional certificates to be added to a pkcs7 (#5498)Paul Kehrer2020-10-251-0/+8
| | | | | | | * allow additional certificates to be added to a pkcs7 * be more verbose about what these additional certs might be used for * missing test
* PKCS7SignatureBuilder now supports three serializations (#5497)Paul Kehrer2020-10-241-7/+14
| | | | | | | | * PKCS7SignatureBuilder now supports three serializations PEM, DER, and SMIME. SMIME embeds the S/MIME headers and has the detached signature concept. * thanks libre
* migrate smime builder to pkcs7 module and rename (#5496)Paul Kehrer2020-10-243-129/+124
| | | | | * migrate smime builder to pkcs7 module and rename * missed a rename
* Remove bindings docs (#5469)Alex Gaynor2020-09-204-71/+1
|
* smime signer support (#5465)Paul Kehrer2020-09-192-0/+129
| | | | | | | | | | | | | | | | | | | * smime signer support * fix ed25519 check * change some wording * python 2.7... * review feedback * s/secure/signed * do some verification in the tests * review feedback * doc return value
* add RSA 4096-bit self-signed CA for some upcoming tests (#5464)Paul Kehrer2020-09-141-0/+4
|
* allow bytes-like for padding (#5462)Paul Kehrer2020-09-131-1/+2
| | | | this doesn't improve efficiency in any way (copies galore!), but it does make it consistent between a cipher context and a padding context
* Account for Bruce redoing his website or something (#5461)Alex Gaynor2020-09-131-1/+1
|
* Be clear that a lack of authentication often means you don't have secrecy ↵Alex Gaynor2020-09-051-1/+2
| | | | (#5454)
* fixed verify script that couldn't have ever worked (#5443)Alex Gaynor2020-08-291-2/+2
|
* update docs to not use backends (#5404)Paul Kehrer2020-08-2918-162/+56
|
* Break users on OpenSSL 1.0.2 (#5438)Alex Gaynor2020-08-282-1/+15
| | | fixes #5432
* add some words about separating ECDH and ECDSA (#5423)Paul Kehrer2020-08-241-0/+9
| | | | | | * add some words about separating ECDH and ECDSA * Thomas Pornin wrote some good words about why you should try not to mix your ECDH and ECDSA keys.
* Docs testing (#5413)Paul Kehrer2020-08-162-3/+6
| | | | | | | | | | | | | * document we test on aarch64 even odds this angers the spellchecker * Just as my previous commit msg prophesied * Update docs/spelling_wordlist.txt Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com> Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com>
* update submitting patches docs to be a bit more true (#5407)Paul Kehrer2020-08-161-4/+3
| | | For now best practice is that they should be optional.
* HOTP and TOTP should also have optional backends (#5402)Paul Kehrer2020-08-151-6/+6
|
* add changelog and update backend docs for optional change (#5401)Paul Kehrer2020-08-151-3/+6
|
* make backend arg optional for rsa (#5396)Paul Kehrer2020-08-151-6/+6
|
* optional backend for dh, dsa, ec (#5395)Paul Kehrer2020-08-153-26/+26
|
* optional backend for hash, cipher, cmac, hmac, keywrap (#5394)Paul Kehrer2020-08-155-16/+16
|
* make backend optional in serialization (#5392)Paul Kehrer2020-08-151-18/+18
|
* x509 optional backend args (#5390)Paul Kehrer2020-08-151-22/+22
|
* remove KDF backend requirements (#5389)Paul Kehrer2020-08-141-20/+18
|
* Update which PyPy versions we test against (#5377)Alex Gaynor2020-08-051-1/+1
| | | refs #5376
* support PKCS7 certificate parsing (#5371)Paul Kehrer2020-08-041-0/+50
| | | | | | | | | | | | | * support PKCS7 certificate parsing * refcounts are different in 1.0.2 * rename the functions * black * empty commit * review feedback
* add docker builders, migrate travis to focal by default (#5372)Paul Kehrer2020-08-031-1/+1
| | | | | | | * add docker builders, migrate travis to focal by default * get it right * use older versions where necessary
* add basic PKCS7 test vectors (#5370)Paul Kehrer2020-08-021-0/+8
|
View Lorry Controller Status