delta/python-packages/pyopenssl.git/src/OpenSSL/crypto.py, branch dependabot/github_actions/actions/setup-python-2.3.1 github.com: pyca/pyopenssl.git use more functions guaranteed available in cryptography 35.0 (#1060) 2021-11-04T11:35:09+00:00 Paul Kehrer paul.l.kehrer@gmail.com 2021-11-04T11:35:09+00:00 a52d5e3f84bd6471bee0e1b83b71697105adcd14 * use more functions guaranteed available in cryptography 35.0 * these are also guaranteed 
* use more functions guaranteed available in cryptography 35.0

* these are also guaranteed
 py27 going, going, gone (#1047) 2021-10-04T08:22:33+00:00 Paul Kehrer paul.l.kehrer@gmail.com 2021-10-04T08:22:33+00:00 a42ec20880d44150022b8cd9c852fff6cca2dcaa * py27 going, going, gone * black * more black * ok then * forgot to remove pypy2 
* py27 going, going, gone

* black

* more black

* ok then

* forgot to remove pypy2
 use public interfaces for all cryptography<->pyopenssl translations (#1030) 2021-07-25T21:12:36+00:00 Paul Kehrer paul.l.kehrer@gmail.com 2021-07-25T21:12:36+00:00 fe63ad0573f5040c33febb52f05f90e02a56b8a6 






remove CB_ISSUER_CHECK (#982)
2021-02-21T04:05:33+00:00

Rosen Penev
rosenp@gmail.com

2021-02-21T04:05:33+00:00

d290855aab9f12d7cf739c63aad9ca3699d936f7

Deprecated under OpenSSL 1.1

Signed-off-by: Rosen Penev <rosenp@gmail.com>




Deprecated under OpenSSL 1.1

Signed-off-by: Rosen Penev <rosenp@gmail.com>






fix a memleak (#967)
2020-11-27T21:22:30+00:00

Paul Kehrer
paul.l.kehrer@gmail.com

2020-11-27T21:22:30+00:00

09b5d7071846a7abdb8061711ac0d2e561f7260a

* fix a memleak

* black




* fix a memleak

* black






Drop CI for OpenSSL 1.0.2 (#953)
2020-10-27T04:15:17+00:00

Alex Gaynor
alex.gaynor@gmail.com

2020-10-27T04:15:17+00:00

124a0134fdb7decb0136b4b6f7892b87b919e74e

* Drop CI for OpenSSL 1.0.2

* Delete code for coverage reasons

* Bump minimum cryptography version




* Drop CI for OpenSSL 1.0.2

* Delete code for coverage reasons

* Bump minimum cryptography version






Fixing issue #798 (#907)
2020-10-18T15:55:40+00:00

jalberdi004
joseba.alberdi@ehu.eus

2020-10-18T15:55:40+00:00

669dcc3488a4803b2c321218def6554805940c48

* Fixing issue #798, thanks to @reaperhulk; removing undocumented '%s' option and getting the date in a more robust way

Co-authored-by: Joseba Alberdi <j.alberdi@simuneatomistics.com>
Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com>




* Fixing issue #798, thanks to @reaperhulk; removing undocumented '%s' option and getting the date in a more robust way

Co-authored-by: Joseba Alberdi <j.alberdi@simuneatomistics.com>
Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com>






Correct typos in crypto.py (#949)
2020-10-14T19:41:20+00:00

Felix Yan
felixonmars@archlinux.org

2020-10-14T19:41:20+00:00

3db93f1ad0c3e6f0e3dc5773b492a932b4d6e84a












crypto._PassphraseHelper: pass non-callable passphrase using callback (#947)
2020-10-13T04:14:19+00:00

Huw Jones
huw@huwcbjones.co.uk

2020-10-13T04:14:19+00:00

cdd6696025b997646497b85cc0db6b27db12f92b

* crypto._PassphraseHelper: pass non-callable passphrase using callback
Fixes #945

Before this commit, we would pass a bytes passphrase as a null terminated string.
This causes issue when a randomly generated key's first byte is null because
OpenSSL rightly determines the key length is 0.
This commit modifies the passphrase helper to pass the passphrase via the
 callback

* Update changelog to document bug fix




* crypto._PassphraseHelper: pass non-callable passphrase using callback
Fixes #945

Before this commit, we would pass a bytes passphrase as a null terminated string.
This causes issue when a randomly generated key's first byte is null because
OpenSSL rightly determines the key length is 0.
This commit modifies the passphrase helper to pass the passphrase via the
 callback

* Update changelog to document bug fix






Allow using additional untrusted certificates for chain building in X509StoreContext (#948)
2020-10-12T13:42:23+00:00

Sándor Oroszi
oroszisam@gmail.com

2020-10-12T13:42:23+00:00

83ef2306a1481e0cf7f53899c390497256711e29

The additional certificates provided in the new `chain` parameter will be
untrusted but may be used to build the chain.

This makes it easier to validate a certificate against a store which
contains only root ca certificates, and the intermediates come from e.g.
the same untrusted source as the certificate to be verified.

Co-authored-by: Sandor Oroszi <sandor.oroszi@balabit.com>




The additional certificates provided in the new `chain` parameter will be
untrusted but may be used to build the chain.

This makes it easier to validate a certificate against a store which
contains only root ca certificates, and the intermediates come from e.g.
the same untrusted source as the certificate to be verified.

Co-authored-by: Sandor Oroszi <sandor.oroszi@balabit.com>