* Use dns.resolver.resolve instead of dns.resolver.query
due to deprecation
* Treat dns.resolver.NoNameservers like NXDOMAIN (not an
error)
* Confine errors from dnspython to dnsplug and use dkim
errors, since dkim.__init__.py doesn't import dns and
needs dkim errors
* Catch nacl.exceptions.ValueError and raise
KeyFormatError, similar to how RSA key errors are treated
* Create ed25519 key files with secure permissions to
avoid risk of insecure chmode call/race condition
* Properly cleanup temporary directories in tests
* Verify correct AMS header is used for ARC seal
verification (André Cruz)
* Document dropping of Python 2 support
* Fix traceback when attempting to verify an unsigned
message using async verify
* Add domain validity check for ascii domains (no
specials)
* Add option to specify index number of signature to
verify to dkimverify
* Correct signature indexing error introduced in 1.0.0
that prevents verification of multiple signatures in a
single message
* Correct dkim.verify processing to avoid errors when
verifying messages with no DKIM signatures
* Update dnsplug for DNS Python (dns) 2.0 compatibility
* Provide more specific error message when ed25519
private key is invalid
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-dkimpy?expand=0&rev=11
- update to 1.0.3
* dknewkey: On posix operating systems set file permissions to 600 for
ed25519 private key files (as is already done for RSA) (LP: #1857827)
* Set minimum dnspython version to 1.16 because previous versions can not
support the timeout parameter (LP: #1856546)
* Follow CNAMES when looking up key records when using DNS (pydns)
* Add support for RFC 8460 tlsrpt DKIM signature processing (LP: #1847020)
* Add async support with aiodns for DKIM verification (ARC not supported)
* Add new timeout parameter to enable DNS lookup timeouts to be adjusted
* Add new DKIM.present function to allow applications to test if a DKIM
signature is present without doing validation (LP: #1851141)
* Support signature verification with RSAPublicKey formatted keys
since, although rare, they are RFC 6376 specified (LP: #1851862)
* Drop usage of pymilter Milter.dns in dnsplug since it doesn't support
having a timeout passed to it
* Catch binascii related key format errors (LP: #1854477)
* Ignore unknown service types in key records (LP: #1847020)
* Add LICENSE to MANIFEST.in so it is included in the tarball
- Drop shipped LICENSE file
- Reapplied patch no-optional.patch
OBS-URL: https://build.opensuse.org/request/show/791121
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-dkimpy?expand=0&rev=3
