- 02 Jan, 2025 1 commit
-
-
Vincent Pelletier authored
-
- 31 Dec, 2024 2 commits
-
-
Vincent Pelletier authored
-
Vincent Pelletier authored
Use UTC but timezone-naive datetime everywhere when cryptography does not expose the timezone-aware version of its date attributes. Fixes support for Python 2.7 with cryptography 3.3.2 (at least).
-
- 30 Dec, 2024 9 commits
-
-
Vincent Pelletier authored
This is a BBB codepath.
-
Vincent Pelletier authored
-
Vincent Pelletier authored
This branch is only taken when the test fails, so do not expect it to be present in a successful coverage report - the only type of report which should matter.
-
Vincent Pelletier authored
As of pylint 3.3.1 on CPython 3.12. The only remaining warning is that the cgi module is deprecated, and will disappear in python 3.13 . Fun.
-
Vincent Pelletier authored
-
Vincent Pelletier authored
Fixes errors with Python 3.12, which rejects comparison between aware and naïve datetimes.
-
Vincent Pelletier authored
This is intended to be a timestamp, not a datetime instance, but one such instance was accidentally provided here.
-
Vincent Pelletier authored
Print any ascii characters from its output, substituting those which are not.
-
Vincent Pelletier authored
-
- 05 Dec, 2024 1 commit
-
-
Thomas Gambier authored
-
- 19 May, 2023 1 commit
-
-
Vincent Pelletier authored
-
- 26 Apr, 2023 2 commits
-
-
Vincent Pelletier authored
-
Vincent Pelletier authored
-
- 07 Nov, 2022 3 commits
-
-
Vincent Pelletier authored
-
Vincent Pelletier authored
-
Vincent Pelletier authored
Otherwise, this causes an IOError to be raised in _getPEMTypeDict. So move file existence check inside the loop. Also rely on isdir returning False on non-existent inputs. This may for example happen if openssl-rehash is used on these directories: caucase-updater may delete an expired CA, breaking its symlink, triggering this bug and crashing caucase-updater.
-
- 26 Oct, 2022 1 commit
-
-
Vincent Pelletier authored
Issue certificates and revocation lists a few seconds in the past of the true issuance time, to allow the client to be a bit in the past compared to the server. Otherwise, the client would receive a "not valid yet" certificate or CRL, which could crash it (es: caucase-update). Which normally is intended (so time attacks are noticed), but in this case is counter-productive.
-
- 22 Jul, 2022 1 commit
-
-
Vincent Pelletier authored
-
- 07 Jul, 2022 11 commits
-
-
Vincent Pelletier authored
-
Vincent Pelletier authored
-
Vincent Pelletier authored
Silence the warning about "local" not being POSIX, as many shells implement it. Resolve the other watnings, related to now-useless "x" prefixes in [ arguments.
-
Vincent Pelletier authored
This whole business of parsing openssl command output is so brittle...
-
Vincent Pelletier authored
Work around what should be a test-only issue, where versioneer produces a unicode object for the module's version (by decoding a json object, whose strings become unicode objects). Python 2.7's BaseHttpServer does not encode the response in such case, causing a test failure when writing to wfile, set to be a BytesIO object. I guess some magic encoding happens on a real socket, likely to ascii.
-
Vincent Pelletier authored
Silences pylint warnings.
-
Vincent Pelletier authored
Silences a pylint warning.
-
Vincent Pelletier authored
-
Vincent Pelletier authored
-
Vincent Pelletier authored
-
Vincent Pelletier authored
This was indirectly satisfied by cryptography depending on ipaddress, so no functional change is expected. This is just to be pedantic.
-
- 22 Dec, 2021 4 commits
-
-
Vincent Pelletier authored
Traversal to the root makes is unreasonable. Rely on "shell" directory being a sibling of test.py's container.
-
Vincent Pelletier authored
-
Vincent Pelletier authored
Break requested sleep period into smaller chunks, to try to compensate for extended suspension periods. The chosen values seem to be a reasonable trade-off between accuracy and number of wake-ups.
-
Vincent Pelletier authored
Positional arguments are comparatively a lot harder to understand.
-
- 15 Dec, 2021 1 commit
-
-
Vincent Pelletier authored
caucase.test: Increase the caucased start timeout for test_databaseUpgradeFrom_0_9_8_{with,no}_revoked This step needs to generate certificates, so it may reach the shorter, default timeout.
-
- 09 Nov, 2021 3 commits
-
-
Vincent Pelletier authored
-
Vincent Pelletier authored
If environment points us at a specific python interpreter, use it to run caucased, even if caucased is present reachable from PATH.
-
Vincent Pelletier authored
-