delta/python-packages/pyopenssl.git/OpenSSL/test, branch remove-rationale github.com: pyca/pyopenssl.git Initialize a context at instantiation time 2015-02-12T22:45:43+00:00 Stephen Holsapple sholsapp@gmail.com 2015-02-12T22:45:43+00:00 46a092529bdd38313c64bd01d6866ef64477ec81 To maintain a Pythonic API, we need to initialize the store context object at object instantiation time so that it is possible to modify the trust store (a legitable use case) after the object is created. As the store context implementation becomes more featureful, this will become more important. E.g., when we add support for `X509_STORE_CTX_get0_param` and X509_STORE_CTX_set0_param` to change verification parameters, we'll want to do this. This change also adds a very simple `set_store` method mostly to make the initialization and modification changes easier to test. 
To maintain a Pythonic API, we need to initialize the store context
object at object instantiation time so that it is possible to modify the
trust store (a legitable use case) after the object is created.

As the store context implementation becomes more featureful, this will
become more important. E.g., when we add support for
`X509_STORE_CTX_get0_param` and X509_STORE_CTX_set0_param` to change
verification parameters, we'll want to do this.

This change also adds a very simple `set_store` method mostly to make
the initialization and modification changes easier to test.
Refactoring verify_cert 2015-01-31T02:51:11+00:00 Stephen Holsapple sholsapp@gmail.com 2015-01-31T01:18:40+00:00 08ffaa641b8ac19ddaae6472688f5a65844c8473 Apply the changes that we've been talking about in https://github.com/pyca/pyopenssl/pull/155 regarding the placement of verify_cert, viz., moving verify_cert from top level of crypto into X509StoreContext. This makes the pyOpenSSL API slightly different than the OpenSSL API, but the plan will be to add back a verify_cert to the top level that is nice to use. 
Apply the changes that we've been talking about in
https://github.com/pyca/pyopenssl/pull/155 regarding the placement of
verify_cert, viz., moving verify_cert from top level of crypto into
X509StoreContext.

This makes the pyOpenSSL API slightly different than the OpenSSL API,
but the plan will be to add back a verify_cert to the top level that is
nice to use.
Make a more specific assertion about where the failure reason shows up. 2015-01-31T01:49:38+00:00 Jean-Paul Calderone exarkun@twistedmatrix.com 2015-01-18T21:31:27+00:00 4c10a1e73001851754be551f378bac657320698c 






remove unused import
2015-01-31T01:49:38+00:00

Jean-Paul Calderone
exarkun@twistedmatrix.com

2015-01-18T21:28:44+00:00

b4e40fb91c750419bcc29423d40072bb91257ecd












Small test method docstring fixes and fixes for tests of exceptional cases.
2015-01-31T01:49:38+00:00

Jean-Paul Calderone
exarkun@twistedmatrix.com

2015-01-18T20:43:13+00:00

06e01b9d8f8e3ccbfd1820ff3f24fffe001e7b4f












Four space indentation and other whitespace fixes.
2015-01-31T01:49:38+00:00

Jean-Paul Calderone
exarkun@twistedmatrix.com

2015-01-18T20:39:26+00:00

517816ed103e428229508d5eb7ecc43c7a8556a7












Add OpenSSL.crypto.verify_chain method.
2015-01-31T01:49:34+00:00

Stephen Holsapple
sholsapp@gmail.com

2014-08-28T02:36:53+00:00

0d9815fb0a1b24b59f0329e8d623f4a34239399a

This change adds support for verifying a certificate or a certificate
chain. This implementation uses OpenSSL's underlying X509_STORE_CTX_*
class of functions to accomplish this.

This change also adds an intermediate signing certificate/key and a
service certificate/key signed with the intermediate signing
certificate, to make testing the OpenSSL.crypto.verify_chain method
easier to test. I figured I would add it to the top level module so
other people can use an intermediate signing certificate in their own
tests.

Issue: https://github.com/pyca/pyopenssl/issues/154





This change adds support for verifying a certificate or a certificate
chain. This implementation uses OpenSSL's underlying X509_STORE_CTX_*
class of functions to accomplish this.

This change also adds an intermediate signing certificate/key and a
service certificate/key signed with the intermediate signing
certificate, to make testing the OpenSSL.crypto.verify_chain method
easier to test. I figured I would add it to the top level module so
other people can use an intermediate signing certificate in their own
tests.

Issue: https://github.com/pyca/pyopenssl/issues/154







Merge pull request #179 from exarkun/Context.check_privatekey
2015-01-19T12:09:27+00:00

Jean-Paul Calderone
jean-paul@clusterhq.com

2015-01-19T12:09:27+00:00

496f40dca9a47c0f1dfe0cd841256485708c8442

Fix a regression in Context.check_privatekey which caused it to always succeed.




Fix a regression in Context.check_privatekey which caused it to always succeed.






Merge pull request #172 from alex/fix-typos
2015-01-18T23:39:34+00:00

Jean-Paul Calderone
jean-paul@clusterhq.com

2015-01-18T23:39:34+00:00

87e09b0908cddf59e21114e7920f90b174f793c4

Fix several typos.




Fix several typos.






merge master
2015-01-18T23:35:01+00:00

Jean-Paul Calderone
exarkun@twistedmatrix.com

2015-01-18T23:35:01+00:00

25edfd42c515c80d793c7d8a9868cc0d0860ca14