cryptography
cryptography copied to clipboard
pyca
cryptography is a package designed to expose cryptographic primitives and recipes to Python developers.
Currently the PKCS7 pem and der loading functions only return the certificate inside the object. Are you planning to add support for extracting the data also? The SignitureBuilder already support...
https://github.com/pyca/cryptography/commit/20c0388086b4eec91fdf1f9fd9535f4c741e4851 makes me happy as perhaps I can get rid of the custom gnutls command line scraping I use for the LVFS. These are the things the LVFS does now:...
Please add support for exposing all information contained in [SSH certificates](https://github.com/openssh/openssh-portable/blob/master/PROTOCOL.certkeys), as well as generating new keys. Currently, the [SSL public key loader](https://github.com/pyca/cryptography/blob/f0b2269f7221f06aacf883b58577ffc9627e7522/src/cryptography/hazmat/primitives/serialization/ssh.py#L648-L690) does load, but then _discard_ certificate information....
Right now we only test against system OpenSSL in aarch64, we should test against the openssl we build in infra.
Two booleans `leaf_cert.is_issued_by(ca_cert)` and `ca_cert.is_issuer_of(leaf_cert)`, mirroring each other, are implemented. The functions return True if the "issuer" field of `leaf_cert` is the same as the "subject" of `ca_cert`, and the...
This PR is the first step in implementing #5116 . Here, we only check the validity of the cryptographic signature. As this method is likely to be used only inside...
This is a Request-For-Comments implementation of verifying X.509 certificate against set of intermediate CA certificates and set of trusted CA certificates. It provides the following API: ``` certificate.verify(intermediates, trusted_roots, check_callback)...
Hello, If I understand correctly, KeySerializationEncryption class allow only 2 kind of modes: - BestAvailableEncryption - NoEncryption The problem is that the "BestAvailableEncryption" might not be the same for all...
Following up on the comment in #1621 I would like to suggest to add the possibility to use `pyca/cryptography` for encrypting ("envelope") S/MIME messages. I have been using [this](https://gitlab.com/rhab/python-smail/-/blob/master/smail/encrypt.py#L111) in...
