python/python-cryptography
SHA256
14
0
Fork 0
forked from pool/python-cryptography
Code Pull Requests Activity

Accepting request 623674 from home:stroeder:branches:devel:languages:python

Browse Source 
- update to 2.3:
  * SECURITY ISSUE: finalize_with_tag() allowed tag truncation by default 
    which can allow tag forgery in some cases. The method now enforces the 
    min_tag_length provided to the GCM constructor.
  * Added support for Python 3.7.
  * Added extract_timestamp() to get the authenticated timestamp of a Fernet token.
  * Support for Python 2.7.x without hmac.compare_digest has been deprecated. 
    We will require Python 2.7.7 or higher (or 2.7.6 on Ubuntu) in the next 
    cryptography release.
  * Fixed multiple issues preventing cryptography from compiling
    against LibreSSL 2.7.x.
  * Added get_revoked_certificate_by_serial_number for quick
    serial number searches in CRLs.
  * The RelativeDistinguishedName class now preserves the order of attributes.
    Duplicate attributes now raise an error instead of silently discarding duplicates.
  * aes_key_unwrap() and aes_key_unwrap_with_padding() now raise InvalidUnwrap
    if the wrapped key is an invalid length, instead of ValueError.

OBS-URL: https://build.opensuse.org/request/show/623674
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-cryptography?expand=0&rev=100
This commit is contained in:
Tomáš Chvátal
2018-07-18 14:32:41 +00:00
committed by Git OBS Bridge
parent e832d4dbf8
commit 615f36f655
8 changed files with 39 additions and 18 deletions
Download Patch File Download Diff File Expand all files Collapse all files

21
python-cryptography.changes
View File

@@ -1,3 +1,24 @@
-------------------------------------------------------------------
Wed Jul 18 13:20:58 UTC 2018 - michael@stroeder.com
- update to 2.3:
* SECURITY ISSUE: finalize_with_tag() allowed tag truncation by default
which can allow tag forgery in some cases. The method now enforces the
min_tag_length provided to the GCM constructor.
* Added support for Python 3.7.
* Added extract_timestamp() to get the authenticated timestamp of a Fernet token.
* Support for Python 2.7.x without hmac.compare_digest has been deprecated.
We will require Python 2.7.7 or higher (or 2.7.6 on Ubuntu) in the next
cryptography release.
* Fixed multiple issues preventing cryptography from compiling
against LibreSSL 2.7.x.
* Added get_revoked_certificate_by_serial_number for quick
serial number searches in CRLs.
* The RelativeDistinguishedName class now preserves the order of attributes.
Duplicate attributes now raise an error instead of silently discarding duplicates.
* aes_key_unwrap() and aes_key_unwrap_with_padding() now raise InvalidUnwrap
if the wrapped key is an invalid length, instead of ValueError.
-------------------------------------------------------------------
Tue Jun 12 07:24:12 UTC 2018 - mimi.vx@gmail.com