pool/python-cryptography
SHA256
17
0
Fork 3
Code Issues Pull Requests Activity

Compare commits

base: pool:factory
Branches Tags
pool:factory pool:slfo-1.2 pool:slfo-main python:main
..
compare: python:main
Branches Tags
python:main pool:factory pool:slfo-1.2 pool:slfo-main

21 Commits
factory ... main

Author SHA256 Message Date
Matej Cepl
a8875585c3 - Add Make-unsafe-subinterpreter-support-available-via-cfg.patch 
to allow ceph-mgr to load modules (boo#1248987)

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-cryptography?expand=0&rev=252
 2025-09-02 16:25:01 +00:00
Dirk Mueller
05aa83f87a OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-cryptography?expand=0&rev=250 2025-07-12 11:36:31 +00:00
Dirk Mueller
f7b5d3406b - update to 45.0.5: 
* Updated Windows, macOS, and Linux wheels to be compiled with
    OpenSSL 3.5.1.
  * Fixed decrypting PKCS#8 files encrypted with SHA1-RC4. (This
    is not considered secure, and is supported only for backwards
    compatibility.)
  * Fixed decrypting PKCS#8 files encrypted with long salts (this
    impacts keys encrypted by Bouncy Castle).
  * Fixed decrypting PKCS#8 files encrypted with DES-CBC-MD5.
    While wildly insecure, this remains prevalent.
  * Fixed using mypy with cryptography on older versions of
    Python.
  * Updated Windows, macOS, and Linux wheels to be compiled with
    OpenSSL 3.5.0.
  * Support for Python 3.7 is deprecated and will be removed in
    the next cryptography release.
  * Updated the minimum supported Rust version (MSRV) to 1.74.0,
    from 1.65.0.
  * Added support for serialization of PKCS#12 Java truststores
    in :func:`~cryptography.hazmat.primitives.serialization.pkcs1
    2.serialize_java_truststore`
  * Added :meth:`~cryptography.hazmat.primitives.kdf.argon2.Argon
    2id.derive_phc_encoded` and :meth:`~cryptography.hazmat.primi
    tives.kdf.argon2.Argon2id.verify_phc_encoded` methods to
    support password hashing in the PHC string format
  * Added support for PKCS7 decryption and encryption using
    AES-256 as the content algorithm, in addition to AES-128.
  * BACKWARDS INCOMPATIBLE: Made SSH private key loading more
    consistent with other private key loading: :func:`~cryptograp
    hy.hazmat.primitives.serialization.load_ssh_private_key` now

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-cryptography?expand=0&rev=249
 2025-07-12 08:36:35 +00:00
Matej Cepl
8cc389ca91 Accepting request 1275322 from home:nkrapp:branches:devel:languages:python 
- Update to 44.0.3
  * Fixed compilation when using LibreSSL 4.1.0.

OBS-URL: https://build.opensuse.org/request/show/1275322
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-cryptography?expand=0&rev=247
 2025-05-12 06:29:50 +00:00
Dirk Mueller
86212cb275 OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-cryptography?expand=0&rev=245 2025-03-24 07:17:45 +00:00
Dirk Mueller
49c2af7efe - update to 44.0.2: 
* We now build wheels for PyPy 3.11.

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-cryptography?expand=0&rev=244
 2025-03-23 21:41:51 +00:00
Dirk Mueller
f9cfc76a25 - update to 44.0.1: 
* Updated Windows, macOS, and Linux wheels to be compiled with
    OpenSSL 3.4.1.
  * We now build armv7l manylinux wheels and publish them to
    PyPI.
  * We now build manylinux_2_34 wheels and publish them to PyPI.

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-cryptography?expand=0&rev=242
 2025-02-26 09:41:33 +00:00
Dirk Mueller
97ea33263f OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-cryptography?expand=0&rev=240 2025-02-03 08:32:36 +00:00
Dirk Mueller
d16ebd39b1 OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-cryptography?expand=0&rev=239 2025-01-29 08:54:07 +00:00
Dirk Mueller
f5ba922d03 Accepting request 1240357 from home:uncomfyhalomacro:branches:devel:languages:python 
- Update to version 44.0.0:
  * BACKWARDS INCOMPATIBLE: Dropped support for LibreSSL < 3.9.
  * Deprecated Python 3.7 support. Python 3.7 is no longer supported by
    the Python core team. Support for Python 3.7 will be removed in a future
    cryptography release.
  * Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.4.0.
  * macOS wheels are now built against the macOS 10.13 SDK. Users on older
    versions of macOS should upgrade, or they will need to build cryptography
    themselves.
  * Enforce the RFC 5280 requirement that extended key usage extensions must not be empty.
  * Added support for timestamp extraction to the :class:`~cryptography.fernet.MultiFernet` class.
  * Relax the Authority Key Identifier requirements on root CA certificates
    during X.509 verification to allow fields permitted by RFC 5280 but
    forbidden by the CA/Browser BRs.
  * Added support for
    :class:`~cryptography.hazmat.primitives.kdf.argon2.Argon2id` when using
    OpenSSL 3.2.0+.
  * Added support for the :class:`~cryptography.x509.Admissions` certificate extension.
  * Added basic support for PKCS7 decryption (including S/MIME 3.2) via 
    :func:`~cryptography.hazmat.primitives.serialization.pkcs7.pkcs7_decrypt_der`, 
    :func:`~cryptography.hazmat.primitives.serialization.pkcs7.pkcs7_decrypt_pem`,
    and :func:`~cryptography.hazmat.primitives.serialization.pkcs7.pkcs7_decrypt_smime`.
- Update specfile to accommodate new project structure at version 44.0.0
- Update no-pytest_benchmark.patch

OBS-URL: https://build.opensuse.org/request/show/1240357
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-cryptography?expand=0&rev=238
 2025-01-29 08:34:20 +00:00
Matej Cepl
a23a32b0fc Accepting request 1222713 from home:bnavigator:branches:devel:languages:python 
- Fix requires_eq replacement for distributions which do not have
  python3-cffi installed (such as SLE15 python module pythons)
  * gh#openSUSE/python-rpm-macros#185
- Remove outdated section in description

OBS-URL: https://build.opensuse.org/request/show/1222713
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-cryptography?expand=0&rev=236
 2024-11-08 15:01:32 +00:00
Markéta Machová
dc005f9428 Accepting request 1221332 from home:dimstar:Factory 
- Avoid using requires_eq, which after the last modifications
  conflicts with python singlespec (order of expansion).

OBS-URL: https://build.opensuse.org/request/show/1221332
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-cryptography?expand=0&rev=234
 2024-11-05 11:51:09 +00:00
Dirk Mueller
ab085b0ccb - update to 43.0.3: 
* Fixed release metadata for cryptography-vectors
  * Fixed compilation when using LibreSSL 4.0.0.

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-cryptography?expand=0&rev=232
 2024-10-22 13:26:27 +00:00
Dirk Mueller
d0f3a45356 - update to 43.0.1: 
* Updated Windows, macOS, and Linux wheels to be compiled with
    OpenSSL 3.3.2.

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-cryptography?expand=0&rev=230
 2024-09-28 19:46:03 +00:00
Markéta Machová
f7ba2ec349 Accepting request 1201230 from home:gladiac:mailman 
- Fix building on SLE based distributions

OBS-URL: https://build.opensuse.org/request/show/1201230
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-cryptography?expand=0&rev=228
 2024-09-16 11:21:15 +00:00
Matej Cepl
ee194dc64a Use %cargo_build macro instead of plain call to cargo. 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-cryptography?expand=0&rev=226
 2024-08-12 22:30:46 +00:00
Matej Cepl
62822ccf47 Fix variable 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-cryptography?expand=0&rev=225
 2024-08-12 20:37:07 +00:00
Matej Cepl
753c1564b0 - Fix building optimized binaries with debuginfo. 
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-cryptography?expand=0&rev=224
 2024-08-12 20:36:26 +00:00
Matej Cepl
b64cb99724 - Update building of Rust modules to use modern cargo_vendor 
service
- Remove unneeded use-offline-build.patch

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-cryptography?expand=0&rev=223
 2024-07-31 21:48:34 +00:00
Dirk Mueller
ce9d9d4489 OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-cryptography?expand=0&rev=221 2024-07-26 13:27:22 +00:00
Dirk Mueller
09f5cf4053 - update to 43.0.0: 
* BACKWARDS INCOMPATIBLE: Support for OpenSSL less than 1.1.1e
    has been removed.  Users on older version of OpenSSL will
    need to upgrade.
  * BACKWARDS INCOMPATIBLE: Dropped support for LibreSSL < 3.8.
  * Updated Windows, macOS, and Linux wheels to be compiled with
    OpenSSL 3.3.1.
  * Updated the minimum supported Rust version (MSRV) to 1.65.0,
    from 1.63.0.
  * :func:`~cryptography.hazmat.primitives.asymmetric.rsa.generat
    e_private_key` now enforces a minimum RSA key size of
    1024-bit. Note that 1024-bit is still considered insecure,
    users should generally use a key size of 2048-bits.
  * :func:`~cryptography.hazmat.primitives.serialization.pkcs7.se
    rialize_certificates` now emits ASN.1 that more closely
    follows the recommendations in RFC 2315.
  * Added new :doc:`/hazmat/decrepit/index` module which contains
    outdated and insecure cryptographic primitives. :class:`~cryp
    tography.hazmat.primitives.ciphers.algorithms.CAST5`, :class:
    `~cryptography.hazmat.primitives.ciphers.algorithms.SEED`, :c
    lass:`~cryptography.hazmat.primitives.ciphers.algorithms.IDEA
    `, and :class:`~cryptography.hazmat.primitives.ciphers.algori
    thms.Blowfish`, which were deprecated in 37.0.0, have been
    added to this module. They will be removed from the cipher
    module in 45.0.0.
  * Moved :class:`~cryptography.hazmat.primitives.ciphers.algorit
    hms.TripleDES` and :class:`~cryptography.hazmat.primitives.ci
    phers.algorithms.ARC4` into :doc:`/hazmat/decrepit/index` and
    deprecated them in the cipher module. They will be removed
    from the cipher module in 48.0.0.

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-cryptography?expand=0&rev=220
 2024-07-26 10:51:57 +00:00
7 changed files with 34 additions and 46 deletions
Expand all files Collapse all files

20
Make-unsafe-subinterpreter-support-available-via-cfg.patch
View File

@@ -7,10 +7,8 @@ Subject: [PATCH] Make unsafe subinterpreter support available via cfg flag
src/impl_/pymodule.rs | 2 +- src/impl_/pymodule.rs | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-) 1 file changed, 1 insertion(+), 1 deletion(-)
Index: cryptography-45.0.7/vendor/pyo3-0.25.1/src/impl_/pymodule.rs --- a/vendor/pyo3-0.25.1/src/impl_/pymodule.rs
=================================================================== +++ b/vendor/pyo3-0.25.1/src/impl_/pymodule.rs
--- cryptography-45.0.7.orig/vendor/pyo3-0.25.1/src/impl_/pymodule.rs
+++ cryptography-45.0.7/vendor/pyo3-0.25.1/src/impl_/pymodule.rs
@@ -100,7 +100,7 @@ impl ModuleDef { @@ -100,7 +100,7 @@ impl ModuleDef {
// that static data is not reused across interpreters. // that static data is not reused across interpreters.
// //
@@ -20,10 +18,8 @@ Index: cryptography-45.0.7/vendor/pyo3-0.25.1/src/impl_/pymodule.rs
{ {
// PyInterpreterState_Get is only available on 3.9 and later, but is missing // PyInterpreterState_Get is only available on 3.9 and later, but is missing
// from python3.dll for Windows stable API on 3.9 // from python3.dll for Windows stable API on 3.9
Index: cryptography-45.0.7/Cargo.toml --- a/Cargo.toml
=================================================================== +++ b/Cargo.toml
--- cryptography-45.0.7.orig/Cargo.toml
+++ cryptography-45.0.7/Cargo.toml
@@ -29,3 +29,6 @@ openssl-sys = "0.9.108" @@ -29,3 +29,6 @@ openssl-sys = "0.9.108"
[profile.release] [profile.release]
@@ -31,11 +27,9 @@ Index: cryptography-45.0.7/Cargo.toml
+ +
+[patch.crates-io] +[patch.crates-io]
+pyo3 = { path="vendor/pyo3-0.25.1" } +pyo3 = { path="vendor/pyo3-0.25.1" }
Index: cryptography-45.0.7/Cargo.lock --- a/Cargo.lock
=================================================================== +++ b/Cargo.lock
--- cryptography-45.0.7.orig/Cargo.lock @@ -269,8 +269,6 @@ dependencies = [
+++ cryptography-45.0.7/Cargo.lock
@@ -276,8 +276,6 @@ dependencies = [
[[package]] [[package]]
name = "pyo3" name = "pyo3"
version = "0.25.1" version = "0.25.1"

3
cryptography-45.0.5.tar.gz Normal file
View File

@@ -0,0 +1,3 @@
version https://git-lfs.github.com/spec/v1
oid sha256:72e76caa004ab63accdf26023fccd1d087f6d90ec6048ff33ad0445abf7f605a
size 744903

3
cryptography-45.0.7.tar.gz
View File

@@ -1,3 +0,0 @@
version https://git-lfs.github.com/spec/v1
oid sha256:4b1654dfc64ea479c242508eb8c724044f1e964a47d1d1cacc5132292d851971
size 744980

38
no-pytest_benchmark.patch
View File

@@ -1,10 +1,10 @@
Index: cryptography-45.0.7/pyproject.toml Index: cryptography-45.0.5/pyproject.toml
=================================================================== ===================================================================
--- cryptography-45.0.7.orig/pyproject.toml --- cryptography-45.0.5.orig/pyproject.toml
+++ cryptography-45.0.7/pyproject.toml +++ cryptography-45.0.5/pyproject.toml
@@ -67,8 +67,6 @@ nox = ["nox >=2024.04.15", "nox[uv] >=20 @@ -67,8 +67,6 @@ nox = ["nox >=2024.04.15", "nox[uv] >=20
test = [ test = [
"cryptography_vectors==45.0.7", "cryptography_vectors==45.0.5",
"pytest >=7.4.0", "pytest >=7.4.0",
- "pytest-benchmark >=4.0", - "pytest-benchmark >=4.0",
- "pytest-cov >=2.10.1", - "pytest-cov >=2.10.1",
@@ -51,10 +51,10 @@ Index: cryptography-45.0.7/pyproject.toml
[tool.ruff] [tool.ruff]
line-length = 79 line-length = 79
Index: cryptography-45.0.7/tests/bench/test_aead.py Index: cryptography-45.0.5/tests/bench/test_aead.py
=================================================================== ===================================================================
--- cryptography-45.0.7.orig/tests/bench/test_aead.py --- cryptography-45.0.5.orig/tests/bench/test_aead.py
+++ cryptography-45.0.7/tests/bench/test_aead.py +++ cryptography-45.0.5/tests/bench/test_aead.py
@@ -26,84 +26,84 @@ def _aead_supported(cls): @@ -26,84 +26,84 @@ def _aead_supported(cls):
not _aead_supported(ChaCha20Poly1305), not _aead_supported(ChaCha20Poly1305),
reason="Requires OpenSSL with ChaCha20Poly1305 support", reason="Requires OpenSSL with ChaCha20Poly1305 support",
@@ -160,10 +160,10 @@ Index: cryptography-45.0.7/tests/bench/test_aead.py
ct = aes.encrypt(b"\x00" * 12, b"hello world plaintext", None) ct = aes.encrypt(b"\x00" * 12, b"hello world plaintext", None)
- benchmark(aes.decrypt, b"\x00" * 12, ct, None) - benchmark(aes.decrypt, b"\x00" * 12, ct, None)
+ aes.decrypt(b"\x00" * 12, ct, None) + aes.decrypt(b"\x00" * 12, ct, None)
Index: cryptography-45.0.7/tests/bench/test_ec_load.py Index: cryptography-45.0.5/tests/bench/test_ec_load.py
=================================================================== ===================================================================
--- cryptography-45.0.7.orig/tests/bench/test_ec_load.py --- cryptography-45.0.5.orig/tests/bench/test_ec_load.py
+++ cryptography-45.0.7/tests/bench/test_ec_load.py +++ cryptography-45.0.5/tests/bench/test_ec_load.py
@@ -5,9 +5,9 @@ @@ -5,9 +5,9 @@
from ..hazmat.primitives.fixtures_ec import EC_KEY_SECP256R1 from ..hazmat.primitives.fixtures_ec import EC_KEY_SECP256R1
@@ -178,10 +178,10 @@ Index: cryptography-45.0.7/tests/bench/test_ec_load.py
- benchmark(EC_KEY_SECP256R1.private_key) - benchmark(EC_KEY_SECP256R1.private_key)
+def test_load_ec_private_numbers(): +def test_load_ec_private_numbers():
+ EC_KEY_SECP256R1.private_key() + EC_KEY_SECP256R1.private_key()
Index: cryptography-45.0.7/tests/bench/test_hashes.py Index: cryptography-45.0.5/tests/bench/test_hashes.py
=================================================================== ===================================================================
--- cryptography-45.0.7.orig/tests/bench/test_hashes.py --- cryptography-45.0.5.orig/tests/bench/test_hashes.py
+++ cryptography-45.0.7/tests/bench/test_hashes.py +++ cryptography-45.0.5/tests/bench/test_hashes.py
@@ -5,10 +5,10 @@ @@ -5,10 +5,10 @@
from cryptography.hazmat.primitives import hashes from cryptography.hazmat.primitives import hashes
@@ -195,10 +195,10 @@ Index: cryptography-45.0.7/tests/bench/test_hashes.py
- benchmark(bench) - benchmark(bench)
+ bench() + bench()
Index: cryptography-45.0.7/tests/bench/test_hmac.py Index: cryptography-45.0.5/tests/bench/test_hmac.py
=================================================================== ===================================================================
--- cryptography-45.0.7.orig/tests/bench/test_hmac.py --- cryptography-45.0.5.orig/tests/bench/test_hmac.py
+++ cryptography-45.0.7/tests/bench/test_hmac.py +++ cryptography-45.0.5/tests/bench/test_hmac.py
@@ -5,10 +5,10 @@ @@ -5,10 +5,10 @@
from cryptography.hazmat.primitives import hashes, hmac from cryptography.hazmat.primitives import hashes, hmac
@@ -212,10 +212,10 @@ Index: cryptography-45.0.7/tests/bench/test_hmac.py
- benchmark(bench) - benchmark(bench)
+ bench() + bench()
Index: cryptography-45.0.7/tests/bench/test_x509.py Index: cryptography-45.0.5/tests/bench/test_x509.py
=================================================================== ===================================================================
--- cryptography-45.0.7.orig/tests/bench/test_x509.py --- cryptography-45.0.5.orig/tests/bench/test_x509.py
+++ cryptography-45.0.7/tests/bench/test_x509.py +++ cryptography-45.0.5/tests/bench/test_x509.py
@@ -13,40 +13,40 @@ from cryptography import x509 @@ -13,40 +13,40 @@ from cryptography import x509
from ..utils import load_vectors_from_file from ..utils import load_vectors_from_file

10
python-cryptography.changes
View File

@@ -1,9 +1,3 @@
-------------------------------------------------------------------
Sun Sep 14 20:45:39 UTC 2025 - Dirk Müller <dmueller@suse.com>
- update to 45.0.7:
* Added a function to support an upcoming pyOpenSSL release.
------------------------------------------------------------------- -------------------------------------------------------------------
Mon Sep 1 14:46:55 UTC 2025 - James Oakley <jfunk@opensuse.org> Mon Sep 1 14:46:55 UTC 2025 - James Oakley <jfunk@opensuse.org>
@@ -173,8 +167,8 @@ Sun Jan 26 10:59:13 UTC 2025 - Soc Virnyl Estela <uncomfyhalomacro@opensuse.org>
:class:`~cryptography.hazmat.primitives.kdf.argon2.Argon2id` when using :class:`~cryptography.hazmat.primitives.kdf.argon2.Argon2id` when using
OpenSSL 3.2.0+. OpenSSL 3.2.0+.
* Added support for the :class:`~cryptography.x509.Admissions` certificate extension. * Added support for the :class:`~cryptography.x509.Admissions` certificate extension.
* Added basic support for PKCS7 decryption (including S/MIME 3.2) via * Added basic support for PKCS7 decryption (including S/MIME 3.2) via
:func:`~cryptography.hazmat.primitives.serialization.pkcs7.pkcs7_decrypt_der`, :func:`~cryptography.hazmat.primitives.serialization.pkcs7.pkcs7_decrypt_der`,
:func:`~cryptography.hazmat.primitives.serialization.pkcs7.pkcs7_decrypt_pem`, :func:`~cryptography.hazmat.primitives.serialization.pkcs7.pkcs7_decrypt_pem`,
and :func:`~cryptography.hazmat.primitives.serialization.pkcs7.pkcs7_decrypt_smime`. and :func:`~cryptography.hazmat.primitives.serialization.pkcs7.pkcs7_decrypt_smime`.
- Update specfile to accommodate new project structure at version 44.0.0 - Update specfile to accommodate new project structure at version 44.0.0

2
python-cryptography.spec
View File

@@ -28,7 +28,7 @@
%{?sle15_python_module_pythons} %{?sle15_python_module_pythons}
Name: python-cryptography%{psuffix} Name: python-cryptography%{psuffix}
# ALWAYS KEEP IN SYNC WITH python-cryptography-vectors! # ALWAYS KEEP IN SYNC WITH python-cryptography-vectors!
Version: 45.0.7 Version: 45.0.5
Release: 0 Release: 0
Summary: Python library which exposes cryptographic recipes and primitives Summary: Python library which exposes cryptographic recipes and primitives
License: Apache-2.0 OR BSD-3-Clause License: Apache-2.0 OR BSD-3-Clause

4
vendor.tar.zst
View File

@@ -1,3 +1,3 @@
version https://git-lfs.github.com/spec/v1 version https://git-lfs.github.com/spec/v1
oid sha256:bf99c9e48b00d21870a3579e7c84eb32889dee6c82848be97e0b2408091194a7 oid sha256:66027fde33c455f0cb3d01f7daba90d0e8a87378f1b48bcc5cb23bc2fb9c98bb
size 2652902 size 2651262