summaryrefslogtreecommitdiffhomepage
AgeCommit message (Collapse)Author
2014-04-15Show Travis status in website sidebarJeff Forcier
2014-04-14Merge branch '1.13'Jeff Forcier
Conflicts: sites/www/changelog.rst
2014-04-14Merge pull request #310 from offbyone/fix-sporadic-test-failuresJeff Forcier
Revert a regression in DSS key generation
2014-04-14Revert a regression in DSS key generationChris Rose
A change in f0017b833098 caused a random regression in DSS key signing due to moving the padding on the integers generated by DSA from the left to the right. So, for example, if signing the test case string "jerri blank", the random number might be generated as: k=703745698612177278239572677252380378525350342103 If so, the signature parts will be: r=184615963997659989901526712385095827509599268253 s=2682547683721156713440053885014828604195555319 Note the s being shorter. Prior to f0017b833098, s would be right-padded with zeros: s=268254768372115671344005388501482860419555531900 After, it would be left-padded: s=002682547683721156713440053885014828604195555319 When converting back to a long, that loses the padding. This change restores the behaviour. Fixes #308
2014-04-14Note changelog location in contribution docsJeff Forcier
2014-04-14Changelog, closes #299Jeff Forcier
2014-04-14Merge branch 'master' into ecdsa-deterministicAlex Gaynor
Conflicts: paramiko/ecdsakey.py
2014-04-14Changelog, closes #297Jeff Forcier
2014-04-14Merge branch 'master' into ecdsa-deterministicAlex Gaynor
Conflicts: paramiko/ecdsakey.py
2014-04-14Merge branch 'master' into use-urandomAlex Gaynor
Conflicts: paramiko/dsskey.py paramiko/ecdsakey.py paramiko/hostkeys.py paramiko/kex_gex.py paramiko/kex_group1.py paramiko/pkey.py paramiko/primes.py paramiko/rsakey.py tests/test_pkey.py
2014-04-14Merge pull request #296 from alex/remove-unusedJeff Forcier
Remove unused function
2014-04-14DerpJeff Forcier
2014-04-14Merge branch '295-int'Jeff Forcier
2014-04-14Changelog, closes #295Jeff Forcier
2014-04-14Errything uses intersphinx to PythonJeff Forcier
2014-04-14Merge remote-tracking branch 'alex/hashlib-hashes' into 295-intJeff Forcier
2014-04-14Merge pull request #232 from alex/patch-1Jeff Forcier
Removed an unused import.
2014-04-06Nuke Fab-oriented link color overrideJeff Forcier
2014-04-06Wow. Just wow.Jeff Forcier
2014-04-06Put blog into a branchJeff Forcier
2014-04-06Use newer alabaster w/ showhidden in sidebar TOCJeff Forcier
Lets us not have 2x TOCs on landing page
2014-04-06FormattingJeff Forcier
2014-04-01Merge branch '1.12' into 1.13Jeff Forcier
2014-04-01Merge branch '1.13'Jeff Forcier
2014-04-01Merge branch '1.11' into 1.12Jeff Forcier
2014-04-01Merge branch '1.10' into 1.11Jeff Forcier
2014-04-01This setting no longer needed & causes warnings if left inJeff Forcier
2014-04-01Fix broken tag-tree links in changelogJeff Forcier
2014-04-01Merge branch '1.12' into 1.13Jeff Forcier
2014-04-01Merge branch '1.11' into 1.12Jeff Forcier
2014-04-01Merge branch '1.10' into 1.11Jeff Forcier
2014-04-01Merge branch '1.13'Jeff Forcier
2014-04-01Minor site cleanupJeff Forcier
2014-04-01Use deterministic signatures for ECDSA keys.Alex Gaynor
This is now considered the preffered approach across the board for ECDSA. This is because with the traditional, random "k" parameter for ECDSA, any entropy problems at all, even a single bit, about "k", results in a complete compromise (see https://en.wikipedia.org/wiki/ECDSA#Security). The deterministic algorithm doesn't have this downside.
2014-03-31Merge branch '1.12' into 1.13Jeff Forcier
2014-03-31Merge branch '1.11' into 1.12Jeff Forcier
2014-03-31Merge branch '1.10' into 1.11Jeff Forcier
2014-03-31Merge branch '1.13'Jeff Forcier
2014-03-31Link back to WWW in docs sidebarJeff Forcier
2014-03-31The ecdsa module already defaults to using urandom.Alex Gaynor
2014-03-29Switch from using PyCrypto's Random to using os.urandom.Alex Gaynor
There's several reasons for this change: 1) It's faster for reads up to 1024 bytes (nearly 10x faster for 16 byte reads) 2) It receives considerably more security review since it's in the kernel. 3) It's yet another step towards running on PyPy. 4) Using userspace CSPRNGs is considered something of an anti-pattern. See: http://sockpuppet.org/blog/2014/02/25/safely-generate-random-numbers/ http://webcache.googleusercontent.com/search?q=cache:2nTvpCgKZXIJ:www.2uo.de/myths-about-urandom/+&cd=3&hl=en&ct=clnk&gl=us
2014-03-29Remove unused functionAlex Gaynor
2014-03-29Switched hash functions from PyCrypto to hashlib.Alex Gaynor
There's a few advantages to this: 1) It's probably fast, OpenSSL, which typically backs hashlib, receives far more attention for optimizaitons than PyCrypto. 2) It's the first step to supporting PyPy, where PyCrypto doesn't run.
2014-03-27Forgot to explicitly note python 2.5 drop in changelog for py3Jeff Forcier
2014-03-22Merge branch '1.13'Jeff Forcier
2014-03-22Fixes #275 -- upload wheels as a part of the release processAlex Gaynor
Requires teh latest version of invocations from git
2014-03-22Merge branch 'master' of github.com:paramiko/paramikoJeff Forcier
2014-03-22Merge branch '1.13'Jeff Forcier
2014-03-22Expand changelog to include #292Jeff Forcier
2014-03-22Merge branch '1.13'Jeff Forcier