6c82f9549f
- Update to 1.0.5: * Bump pyca/cryptography dependency upper bound to version 47 * Timestamps are now verified with the timestamp time as reference time like the RFC says: this means that the certificate chain no longer needs to be valid at current time, it is enough for it to have been valid at timestamp time
Steve Kowalik2026-01-27 01:38:24 +00:00
77ee49de01
Accepting request 1287872 from devel:languages:python
Ana Guerrero2025-06-23 13:06:00 +00:00
100019c053
- Update to 1.0.3 * Exposed verify_message in the actual Verify interface, not just the implementation * Fixed a bug where verification performed insufficient signature checks on the timestamp response itself, rather than the response's certificate chain (CVE-2025-52556 / bsc#1245174) - Update to 1.0.2 * Added HashAlgorithm to exports of the base package module * Added verify_message method to Verifier class * Slight refactoring of the tests to ease how to test with multiple TSA * Changed return value of VerifierBuilder.build() from _Verifier to Verifier: This is technically an API change but should have minimal user impact. * Fixed spelling of hash_algorithm parameter in TimestampRequestBuilder class
Markéta Machová2025-06-23 08:12:04 +00:00
2b66fbe630
Accepting request 1269992 from devel:languages:python
Ana Guerrero2025-04-16 18:42:33 +00:00
fde32788c7
- Update to 1.0.1 * The Verifier now enforces that the EKU (Extended Key Usage) explicitly includes the id-kp-timeStamping OID (#120) * The Verifier now searches for the leaf certificate in the Timestamp Response instead of using the first one provided (#121)
Robert Schweikert2025-04-16 11:42:27 +00:00
4cb834b2db
Accepting request 1239298 from devel:languages:python
Ana Guerrero2025-01-21 20:11:16 +00:00
Ana Guerrero
Steve Kowalik
Markéta Machová
Robert Schweikert