- update to 24.1.0:
* If a certificate doesn't contain any `subjectAltName`s, we
now raise `service_identity.CertificateError` instead of
`service_identity.VerificationError` to make the problem
easier to debug.
- Since Chrome 58 and Firefox 48 both don’t accept certificates
that contain only a Common Name, its usage is hereby
deprecated in service_identity too. We have been raising
a warning since 16.0.0 and the support will be removed in
- When service_identity.SubjectAltNameWarning is raised, the
- Wildcards (*) are now only allowed if they are the leftmost
label in a certificate. This is common practice by all major
OBS-URL: https://build.opensuse.org/request/show/1140210
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/python-service_identity?expand=0&rev=15
* If a certificate doesn't contain any `subjectAltName`s, we
now raise `service_identity.CertificateError` instead of
`service_identity.VerificationError` to make the problem
easier to debug.
- Since Chrome 58 and Firefox 48 both don’t accept certificates
that contain only a Common Name, its usage is hereby
deprecated in service_identity too. We have been raising
a warning since 16.0.0 and the support will be removed in
- When service_identity.SubjectAltNameWarning is raised, the
- Wildcards (*) are now only allowed if they are the leftmost
label in a certificate. This is common practice by all major
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-service_identity?expand=0&rev=34
- Update to 23.1.0
* Removed
- All Python versions up to and including 3.7 have been dropped.
- Support for commonName in certificates has been dropped.
It has been deprecated since 2017 and isn't supported by any
major browser.
- The oldest supported pyOpenSSL version (when using the
pyopenssl backend) is now 17.0.0.
When using such an old pyOpenSSL version, you have to pin
cryptography yourself to ensure compatibility between them.
Please check out contraints/oldest-pyopenssl.txt to verify
what we are testing against.
* Deprecated
- If you've used service_identity.(cryptography|pyopenssl).extract_ids(),
please switch to the new names extract_patterns(). #56
* Added
- service_identity.(cryptography|pyopenssl).extract_patterns()
are now public APIs (FKA extract_ids()).
You can use them to extract the patterns from a certificate
without verifying anything. #55
- service-identity is now fully typed. #57
OBS-URL: https://build.opensuse.org/request/show/1094381
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-service_identity?expand=0&rev=30
- Update to 21.1.0:
- Python 3.4 is not supported anymore. It has been unsupported
by the Python core team for a while now, its PyPI downloads
are negligible, and our CI provider removed it as a supported
option.
- It's very unlikely that service-identity will break under 3.4
anytime soon, which is why we do not block its installation
on Python 3.4. But we don't test it anymore and will block it
once someone reports breakage.
- service_identity.exceptions.VerificationError can now be
pickled and is overall more well-behaved as an exception.
This raises the requirement of attrs to 19.1.0.
- This package actually truly requires six (it is expected to
work with Python 2.7 as well).
OBS-URL: https://build.opensuse.org/request/show/952143
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/python-service_identity?expand=0&rev=10
- Python 3.4 is not supported anymore. It has been unsupported
by the Python core team for a while now, its PyPI downloads
are negligible, and our CI provider removed it as a supported
option.
- It's very unlikely that service-identity will break under 3.4
anytime soon, which is why we do not block its installation
on Python 3.4. But we don't test it anymore and will block it
once someone reports breakage.
- service_identity.exceptions.VerificationError can now be
pickled and is overall more well-behaved as an exception.
This raises the requirement of attrs to 19.1.0.
- This package actually truly requires six (it is expected to
work with Python 2.7 as well).
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-service_identity?expand=0&rev=25
- update to 18.1.0
- drop fetch-intersphinx-inventories.sh
- drop local-intersphinx-inventories.patch
- cleanup spec + enable tests
* pyOpenSSL is optional now if you use service_identity.cryptography.* only.
* Added support for iPAddress subjectAltNames.
- add fetch-intersphinx-inventories.sh to the sources
- add local-intersphinx-inventories.patch for generating the docs
correctly
- add fetch-intersphinx-inventories.sh to fetch the inventories
OBS-URL: https://build.opensuse.org/request/show/680512
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/python-service_identity?expand=0&rev=7
- Drop some SLE11 code that is quite useless today
- Update to 17.0.0:
* Deprecations:
- Since Chrome 58 and Firefox 48 both don’t accept certificates
that contain only a Common Name, its usage is hereby
deprecated in service_identity too. We have been raising
a warning since 16.0.0 and the support will be removed in
mid-2018 for good.
* Changes:
- When service_identity.SubjectAltNameWarning is raised, the
Common Name of the certificate is now included in the warning
message. #17
- Added cryptography.x509 backend for verifying certificates.
#18
- Wildcards (*) are now only allowed if they are the leftmost
label in a certificate. This is common practice by all major
browsers. #19
OBS-URL: https://build.opensuse.org/request/show/638027
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/python-service_identity?expand=0&rev=4
- Update to 17.0.0:
* Deprecations:
- Since Chrome 58 and Firefox 48 both don’t accept certificates
that contain only a Common Name, its usage is hereby
deprecated in service_identity too. We have been raising
a warning since 16.0.0 and the support will be removed in
mid-2018 for good.
* Changes:
- When service_identity.SubjectAltNameWarning is raised, the
Common Name of the certificate is now included in the warning
message. #17
- Added cryptography.x509 backend for verifying certificates.
#18
- Wildcards (*) are now only allowed if they are the leftmost
label in a certificate. This is common practice by all major
browsers. #19
OBS-URL: https://build.opensuse.org/request/show/638015
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-service_identity?expand=0&rev=9
