pyopenssl
pyopenssl copied to clipboard
pyca
A Python wrapper around the OpenSSL library
# Scope Fixes #1275 This add the SSL.Connection API added in https://github.com/pyca/cryptography/issues/9969 # Changes Add the API as int, not at boolean. Maybe it should be boolean. Add tests for...
I guess that this should be `OpenSSL.SSL.Connection.session_reused()` It should return the number 1 or 0 to keep it as close a possible to the OpenSSL API. It should not return...
Hi, I'm seeing this error frequently while running my application on ASLR enabled machine Custom-OS built on FreeBSD .. system-libraries-> libffi-3.2.1_3, RUST 1.26.0, python 3.11.5 and openssl 3.0.11 (FIPS enabled)...
Consider the following program: ```python import sys from twisted.internet.protocol import Protocol from twisted.internet.ssl import CertificateOptions, PrivateCertificate from twisted.protocols.loopback import loopbackTCP from twisted.internet.task import react from twisted.internet import reactor class Client(Protocol):...
fixes: https://github.com/pyca/pyopenssl/issues/1238 fixes: https://github.com/pyca/pyopenssl/issues/270 Unsure if it would be preferred to use `65536` instead of `1
Details : Python 3.9.16 openssl version : OpenSSL 1.1.1v 1 Aug 2023 (Library: OpenSSL 1.1.1k FIPS 25 Mar 2021) pyOpenSSL==23.2.0 Info: I am trying to connect to my server using...
### Issue When calling the `crypto.X509Extension` method [`__str__()`](https://github.com/pyca/pyopenssl/blob/b259bfbd660f5680783e1abfab27ed0d5bf91c1a/src/OpenSSL/crypto.py#L870), if the extension type is not supported by OpenSSL, an `exception_type` error is raised: ```python python -c 'from OpenSSL.crypto import X509Extension; print(str(X509Extension(b"1.2.3.4.5.6.7",...
I noticed that changing the order of the two intermediate CAs (when one is irrelevant) results in a different verification result: ```python root_1, chain_1, leaf_1 = generate_chain() # root, intermediate,...
In openssl 1.1.1 docs/man3/EVP_PKEY_set1_RSA.pod (https://github.com/openssl/openssl/blob/OpenSSL_1_1_1/doc/man3/EVP_PKEY_set1_RSA.pod) The EVP_PKEY_set_alias_type(pkey, EVP_PKEY_SM2) API is possible to convert it to using SM2 algorithms After loading an ECC key. Besides, pyca/cryptography support to export `The EVP_PKEY_set_alias_type(pkey,...
https://github.com/pyca/pyopenssl/blob/cac747892be07a06d0315917fc72cfd06d10e471/tests/test_ssl.py#L2390-L2407 This test fails fairly reliably on my physical host. If I space out the commands so the socket is fully setup, then call connect_ex, the test succeeded. Some additional...
