From f4aa7a93bcab1252c46e9bbfce4a2352a868e2f6db6921919bde73425fa83c9f Mon Sep 17 00:00:00 2001 From: Todd R Date: Thu, 30 Jul 2015 06:33:42 +0000 Subject: [PATCH] Accepting request 319463 from Cloud:OpenStack:Master - update to 0.9.3: * Updated Windows wheels to be compiled against OpenSSL 1.0.2d. * Updated Windows wheels to be compiled against OpenSSL 1.0.2c. * **SECURITY ISSUE**: Fixed a double free in the OpenSSL backend when using DSA to verify signatures. Note that this only affects PyPy 2.6.0 and (presently unreleased) CFFI versions greater than 1.1.0. * Removed support for Python 3.2. This version of Python is rarely used and caused support headaches. Users affected by this should upgrade to 3.3+. * Deprecated support for Python 2.6. At the time there is no time table for actually dropping support, however we strongly encourage all users to upgrade their Python, as Python 2.6 no longer receives support from the Python core team. * Add support for the :class:`~cryptography.hazmat.primitives.asymmetric.ec.SECP256K1` elliptic curve. * Fixed compilation when using an OpenSSL which was compiled with the ``no-comp`` (``OPENSSL_NO_COMP``) option. * Support :attr:`~cryptography.hazmat.primitives.serialization.Encoding.DER` serialization of public keys using the ``public_bytes`` method of :class:`~cryptography.hazmat.primitives.asymmetric.rsa.RSAPublicKeyWithSerialization`, :class:`~cryptography.hazmat.primitives.asymmetric.dsa.DSAPublicKeyWithSerialization`, and :class:`~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePublicKeyWithSerialization`. * Support :attr:`~cryptography.hazmat.primitives.serialization.Encoding.DER` serialization of private keys using the ``private_bytes`` method of :class:`~cryptography.hazmat.primitives.asymmetric.rsa.RSAPrivateKeyWithSerialization`, :class:`~cryptography.hazmat.primitives.asymmetric.dsa.DSAPrivateKeyWithSerialization`, and :class:`~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePrivateKeyWithSerialization`. * Add support for parsing X.509 certificate signing requests (CSRs) with OBS-URL: https://build.opensuse.org/request/show/319463 OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-cryptography?expand=0&rev=13 --- cryptography-0.8.2.tar.gz | 3 -- cryptography-0.8.2.tar.gz.asc | 11 ----- cryptography-0.9.3.tar.gz | 3 ++ cryptography-0.9.3.tar.gz.asc | 11 +++++ cryptography_vectors-0.8.2.tar.gz | 3 -- cryptography_vectors-0.8.2.tar.gz.asc | 11 ----- cryptography_vectors-0.9.3.tar.gz | 3 ++ cryptography_vectors-0.9.3.tar.gz.asc | 11 +++++ python-cryptography.changes | 58 +++++++++++++++++++++++++++ python-cryptography.spec | 7 +++- 10 files changed, 92 insertions(+), 29 deletions(-) delete mode 100644 cryptography-0.8.2.tar.gz delete mode 100644 cryptography-0.8.2.tar.gz.asc create mode 100644 cryptography-0.9.3.tar.gz create mode 100644 cryptography-0.9.3.tar.gz.asc delete mode 100644 cryptography_vectors-0.8.2.tar.gz delete mode 100644 cryptography_vectors-0.8.2.tar.gz.asc create mode 100644 cryptography_vectors-0.9.3.tar.gz create mode 100644 cryptography_vectors-0.9.3.tar.gz.asc diff --git a/cryptography-0.8.2.tar.gz b/cryptography-0.8.2.tar.gz deleted file mode 100644 index f064cb2..0000000 --- a/cryptography-0.8.2.tar.gz +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:1c9a022ab3decaf152093e2ef2d5ee4258c72c7d429446c86bd68ff8c0929db6 -size 268288 diff --git a/cryptography-0.8.2.tar.gz.asc b/cryptography-0.8.2.tar.gz.asc deleted file mode 100644 index c9f567a..0000000 --- a/cryptography-0.8.2.tar.gz.asc +++ /dev/null @@ -1,11 +0,0 @@ ------BEGIN PGP SIGNATURE----- -Version: GnuPG v1 - -iQEcBAABAgAGBQJVKH6CAAoJECNa5fEp+e2YBCEH/2qdX6Fuh8eTgcj6bX4rSV3S -lypvlchToWQ/rwnBNjbs2ZG+fJeIWCg/2j8ZQ35o/FulvS3dfjN6uCz8gouNUVgd -FLVCvE5ybUcV50AhYyo5n6KHJ9OLv0cbCzpv/Ojgfp/OPCgPji6Xm4gptnES6EML -u0Nc/Vpvh2XxE8hP81sOgWRyUh3FQRJ5mVg9lyX7GyJIbEA+rujILT2EPjJpwfM6 -x2uF6mnLB7sy4qdohwkPLdGCK0o/QxfWMZW0qpQvNvFUlKKZdHaG/1q+BXe795G1 -eZUo9iwkIEbXZgUhijzJnkyjlrZfVQl3kuTJKQWLQQdrucAHxbNql+TCqPwNunw= -=QDsc ------END PGP SIGNATURE----- diff --git a/cryptography-0.9.3.tar.gz b/cryptography-0.9.3.tar.gz new file mode 100644 index 0000000..092f650 --- /dev/null +++ b/cryptography-0.9.3.tar.gz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:aed022f738dd9adb840d92960b0464ea1fbb222ba118938858eb93fe25151c2d +size 303075 diff --git a/cryptography-0.9.3.tar.gz.asc b/cryptography-0.9.3.tar.gz.asc new file mode 100644 index 0000000..bc03875 --- /dev/null +++ b/cryptography-0.9.3.tar.gz.asc @@ -0,0 +1,11 @@ +-----BEGIN PGP SIGNATURE----- +Version: GnuPG v1 + +iQEcBAABAgAGBQJVnogtAAoJECNa5fEp+e2YImEIAJ+IALc8iVF9YQDXWXtipIgi ++BLw+RtygFFwnTLTarPtafN9geHUyuQrL51p2otLGWeI9XcxHJi/2CKHAI7Oqh9n +4IukumfC6AYzqFbn0FidD15tbom25hZieZb/FnyGMuDhXRVHJ4wpll+6zQVX/6yT ++roqKck9jSMqSNtmFSh6VjSnbuA/u4p8PKz2ZhYLIaopSrGyEmc8OP+BVLebMqPy +M2VA48xTA5oNor34Rjf86xj/Ll3GUl0pVExQgcxnZa1hznBWAYlunTKSBHNDGS6V +s+QJjAYdvyqGYIwobYhmoSwWm0IXwkj++WfBrqBByiM/xXt86MFKyUEiIHn4Ufw= +=yqSB +-----END PGP SIGNATURE----- diff --git a/cryptography_vectors-0.8.2.tar.gz b/cryptography_vectors-0.8.2.tar.gz deleted file mode 100644 index 7d401bf..0000000 --- a/cryptography_vectors-0.8.2.tar.gz +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:6e7c2c2761a210ae8af34c6797c291ef2b01cff787b08e433570ca4915973c06 -size 21396554 diff --git a/cryptography_vectors-0.8.2.tar.gz.asc b/cryptography_vectors-0.8.2.tar.gz.asc deleted file mode 100644 index ad65fbe..0000000 --- a/cryptography_vectors-0.8.2.tar.gz.asc +++ /dev/null @@ -1,11 +0,0 @@ ------BEGIN PGP SIGNATURE----- -Version: GnuPG v1 - -iQEcBAABAgAGBQJVKH8mAAoJECNa5fEp+e2Y6pkIAJzh1xKL6r5Qn0iw8bHzx/C6 -yJmdnbZEOxcqQiNUCObbTpMpNIfjaHNM5YF1Msw3A2fTSytPX3nYM4xY7II4GIr0 -kv7+mQaGqgjZNrXFlBkpwJw3dTAzTygA2xQ3HSoFbqNFBu1FdBTMgHoncz5s9QMV -qGv4aBkaDbyc3M3Ofx5yrHYQhoYpup5SHrgViKiVCm6L6D0brrajmfRmcUQEikHi -ayysALD6lH8LC7m5VbtXrn+G9J6iKvEzJNQwKmdgouT2GaXRelY2uROPH/jagVPl -i+0wPpQxXzHsqQpj14K5uOCOjFJPgDD6ZmKPBCTg6yP/W+SSmgb3ozVu/HT5t3g= -=iYtF ------END PGP SIGNATURE----- diff --git a/cryptography_vectors-0.9.3.tar.gz b/cryptography_vectors-0.9.3.tar.gz new file mode 100644 index 0000000..3714618 --- /dev/null +++ b/cryptography_vectors-0.9.3.tar.gz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:aa3949852323aebb5d33e6a461caa25190f05a042ceb63b20c2810f83f855e43 +size 24986101 diff --git a/cryptography_vectors-0.9.3.tar.gz.asc b/cryptography_vectors-0.9.3.tar.gz.asc new file mode 100644 index 0000000..f30b0c0 --- /dev/null +++ b/cryptography_vectors-0.9.3.tar.gz.asc @@ -0,0 +1,11 @@ +-----BEGIN PGP SIGNATURE----- +Version: GnuPG v1 + +iQEcBAABAgAGBQJVnohZAAoJECNa5fEp+e2YgvwH/RSSFDe2uxJqbp+qWo5xwqOg +KMh82rU8gD54smXTAkyy8bHB0WSVSdPqvLMV2/7n2RPGDAWU3PeHCSL10CaoA50p +dojCZ41AY2vaAP1cFjNqUesqVG3QPVU4YfdBhR9dITT8eHQT2oiepfHK4v1UEqPj +kkXb5ZDDbglisVkT6iRll/zqay9tDiTNfcJKEx8gwVGneuVScojtt4EeavWAD4oU +pcf4L6UjPn5KliewlcAifg8xw1W65GOAMmdmLOiw1ZvND0BxAFeUXFJt9gUrTcB/ +xU6mGLjvv9B0AAHLd/o0288BXgrFK1d3EQuRIra+b13IYRU756kEkxzx5s+7LvA= +=EZD3 +-----END PGP SIGNATURE----- diff --git a/python-cryptography.changes b/python-cryptography.changes index 20b9889..f837b61 100644 --- a/python-cryptography.changes +++ b/python-cryptography.changes @@ -1,3 +1,61 @@ +------------------------------------------------------------------- +Wed Jul 29 18:05:55 UTC 2015 - tbechtold@suse.com + +- update to 0.9.3: + * Updated Windows wheels to be compiled against OpenSSL 1.0.2d. + * Updated Windows wheels to be compiled against OpenSSL 1.0.2c. + * **SECURITY ISSUE**: Fixed a double free in the OpenSSL backend when using DSA + to verify signatures. Note that this only affects PyPy 2.6.0 and (presently + unreleased) CFFI versions greater than 1.1.0. + * Removed support for Python 3.2. This version of Python is rarely used + and caused support headaches. Users affected by this should upgrade to 3.3+. + * Deprecated support for Python 2.6. At the time there is no time table for + actually dropping support, however we strongly encourage all users to upgrade + their Python, as Python 2.6 no longer receives support from the Python core + team. + * Add support for the + :class:`~cryptography.hazmat.primitives.asymmetric.ec.SECP256K1` elliptic + curve. + * Fixed compilation when using an OpenSSL which was compiled with the + ``no-comp`` (``OPENSSL_NO_COMP``) option. + * Support :attr:`~cryptography.hazmat.primitives.serialization.Encoding.DER` + serialization of public keys using the ``public_bytes`` method of + :class:`~cryptography.hazmat.primitives.asymmetric.rsa.RSAPublicKeyWithSerialization`, + :class:`~cryptography.hazmat.primitives.asymmetric.dsa.DSAPublicKeyWithSerialization`, + and + :class:`~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePublicKeyWithSerialization`. + * Support :attr:`~cryptography.hazmat.primitives.serialization.Encoding.DER` + serialization of private keys using the ``private_bytes`` method of + :class:`~cryptography.hazmat.primitives.asymmetric.rsa.RSAPrivateKeyWithSerialization`, + :class:`~cryptography.hazmat.primitives.asymmetric.dsa.DSAPrivateKeyWithSerialization`, + and + :class:`~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePrivateKeyWithSerialization`. + * Add support for parsing X.509 certificate signing requests (CSRs) with + :func:`~cryptography.x509.load_pem_x509_csr` and + :func:`~cryptography.x509.load_der_x509_csr`. + * Moved ``cryptography.exceptions.InvalidToken`` to + :class:`cryptography.hazmat.primitives.twofactor.InvalidToken` and deprecated + the old location. This was moved to minimize confusion between this exception + and :class:`cryptography.fernet.InvalidToken`. + * Added support for X.509 extensions in :class:`~cryptography.x509.Certificate` + objects. The following extensions are supported as of this release: + + * :class:`~cryptography.x509.BasicConstraints` + * :class:`~cryptography.x509.AuthorityKeyIdentifier` + * :class:`~cryptography.x509.SubjectKeyIdentifier` + * :class:`~cryptography.x509.KeyUsage` + * :class:`~cryptography.x509.SubjectAlternativeName` + * :class:`~cryptography.x509.ExtendedKeyUsage` + * :class:`~cryptography.x509.CRLDistributionPoints` + * :class:`~cryptography.x509.AuthorityInformationAccess` + * :class:`~cryptography.x509.CertificatePolicies` + + Note that unsupported extensions with the critical flag raise + :class:`~cryptography.x509.UnsupportedExtension` while unsupported extensions + set to non-critical are silently ignored. Read the + :doc:`X.509 documentation` for more information. +- add python-pyasn1, python-ipaddress and python-idna as Requires/BuildRequires + ------------------------------------------------------------------- Thu Apr 23 06:38:42 UTC 2015 - mcihar@suse.cz diff --git a/python-cryptography.spec b/python-cryptography.spec index 87710f0..0d5a982 100644 --- a/python-cryptography.spec +++ b/python-cryptography.spec @@ -17,7 +17,7 @@ Name: python-cryptography -Version: 0.8.2 +Version: 0.9.3 Release: 0 Summary: Python library which exposes cryptographic recipes and primitives License: Apache-2.0 @@ -32,6 +32,8 @@ BuildRequires: libopenssl-devel BuildRequires: python-cffi >= 0.8 BuildRequires: python-devel BuildRequires: python-enum34 +BuildRequires: python-idna +BuildRequires: python-ipaddress BuildRequires: python-setuptools BuildRequires: python-six >= 1.4.1 BuildRequires: pkgconfig(libffi) @@ -43,6 +45,9 @@ BuildRequires: python-pytest BuildRequires: python-virtualenv Requires: python-cffi >= 0.8 Requires: python-enum34 +Requires: python-idna +Requires: python-ipaddress +Requires: python-pyasn1 Requires: python-six >= 1.4.1 BuildRoot: %{_tmppath}/%{name}-%{version}-build