Accepting request 1137284 from devel:languages:python

- update to 1.1.5: * Use dns.resolver.resolve instead of dns.resolver.query due to deprecation * Treat dns.resolver.NoNameservers like NXDOMAIN (not an error) * Confine errors from dnspython to dnsplug and use dkim errors, since dkim.__init__.py doesn't import dns and needs dkim errors * Catch nacl.exceptions.ValueError and raise KeyFormatError, similar to how RSA key errors are treated * Create ed25519 key files with secure permissions to avoid risk of insecure chmode call/race condition * Properly cleanup temporary directories in tests * Verify correct AMS header is used for ARC seal verification (André Cruz) * Document dropping of Python 2 support * Fix traceback when attempting to verify an unsigned message using async verify * Add domain validity check for ascii domains (no specials) * Add option to specify index number of signature to verify to dkimverify * Correct signature indexing error introduced in 1.0.0 that prevents verification of multiple signatures in a single message * Correct dkim.verify processing to avoid errors when verifying messages with no DKIM signatures * Update dnsplug for DNS Python (dns) 2.0 compatibility * Provide more specific error message when ed25519 private key is invalid OBS-URL: https://build.opensuse.org/request/show/1137284 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/python-dkimpy?expand=0&rev=6
2024-01-06 18:38:04 +00:00
parent 397d89fdd6 e11d0aed9a
commit f20f8217e3
5 changed files with 67 additions and 13 deletions
--- a/dkimpy-1.0.5.tar.gz
+++ b/dkimpy-1.0.5.tar.gz
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:9a2420bf09af686736773153fca32a02ae11ecbe24b540c26104628959f91121
-size 59799
--- a/dkimpy-1.1.5.tar.gz
+++ b/dkimpy-1.1.5.tar.gz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:9a667f8664b72eb9f8aa1250b0757cc3982ab68f70c48af39317b58cf62f2d75
+size 67064
--- a/no-optional.patch
+++ b/no-optional.patch
@@ -1,14 +1,14 @@
-Index: dkimpy-1.0.3/dkim/__init__.py
+Index: dkimpy-1.1.5/dkim/__init__.py
 ===================================================================
--- dkimpy-1.0.3.orig/dkim/__init__.py
-+++ dkimpy-1.0.3/dkim/__init__.py
-@@ -40,18 +40,9 @@ import sys
- import time
- import binascii
+--- dkimpy-1.1.5.orig/dkim/__init__.py
+++ dkimpy-1.1.5/dkim/__init__.py
+@@ -43,18 +43,9 @@ import binascii
+ # Set to False to not use async functions even though aiodns is installed.
+ USE_ASYNC = True
 
 -# only needed for arc
 -try:
-    from authres import AuthenticationResultsHeader
+-    import authres
 -except ImportError:
 -    pass
 -
@@ -18,9 +18,18 @@ Index: dkimpy-1.0.3/dkim/__init__.py
 -    import nacl.encoding
 -except ImportError:
 -    pass
-+from authres import AuthenticationResultsHeader
+import authres
 +import nacl.signing
 +import nacl.encoding
 
 from dkim.canonicalization import (
     CanonicalizationPolicy,
+@@ -1181,7 +1172,7 @@ class ARC(DomainSigner):
+     if chain_validation_status == CV_Fail:
+       self.headers.reverse()
+     if b'h' in as_fields:
+-        raise ValidationError("h= tag not permitted in ARC-Seal header field")    
+        raise ValidationError("h= tag not permitted in ARC-Seal header field")
+     res = self.gen_header(as_fields, as_include_headers, canon_policy,
+                            b"ARC-Seal", pk, standardize)
+ 
--- a/python-dkimpy.changes
+++ b/python-dkimpy.changes
@@ -1,3 +1,47 @@
+-------------------------------------------------------------------
+Sat Jan  6 18:02:16 UTC 2024 - Dirk Müller <dmueller@suse.com>
+
+- update to 1.1.5:
+  * Use dns.resolver.resolve instead of dns.resolver.query
+    due to deprecation
+  * Treat dns.resolver.NoNameservers like NXDOMAIN (not an
+    error)
+  * Confine errors from dnspython to dnsplug and use dkim
+    errors, since dkim.__init__.py doesn't import dns and
+    needs dkim errors
+  * Catch nacl.exceptions.ValueError and raise
+    KeyFormatError, similar to how RSA key errors are treated
+  * Create ed25519 key files with secure permissions to
+    avoid risk of insecure chmode call/race condition
+  * Properly cleanup temporary directories in tests
+  * Verify correct AMS header is used for ARC seal
+    verification (André Cruz)
+  * Document dropping of Python 2 support
+  * Fix traceback when attempting to verify an unsigned
+    message using async verify
+  * Add domain validity check for ascii domains (no
+    specials)
+  * Add option to specify index number of signature to
+    verify to dkimverify
+  * Correct signature indexing error introduced in 1.0.0
+    that prevents verification of multiple signatures in a
+    single message
+  * Correct dkim.verify processing to avoid errors when
+    verifying messages with no DKIM signatures
+  * Update dnsplug for DNS Python (dns) 2.0 compatibility
+  * Provide more specific error message when ed25519
+    private key is invalid
+  * Add support for PKCS#8 for private keys, openssl 3
+    default
+  * Add limitations section to README to document current
+    IDN status
+  * Add USE_ASYNC flag to allow async to be disabled when
+    aiodns is installed (LP: #1954331)
+  * Add new dkim.DnsTimeoutError class to report queried
+    domain and selector along with timeout error from dnspython
+  * Invalid Authentication-Results header fields are
+    ignored for ARC signing
+
 -------------------------------------------------------------------
 Sun Jun 18 15:52:47 UTC 2023 - Andreas Schneider <asn@cryptomilk.org>

--- a/python-dkimpy.spec
+++ b/python-dkimpy.spec
@@ -1,7 +1,7 @@
 #
 # spec file for package python-dkimpy
 #
-# Copyright (c) 2023 SUSE LLC
+# Copyright (c) 2024 SUSE LLC
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -19,7 +19,7 @@
 %{?sle15_python_module_pythons}
 %define commands arcsign arcverify dkimsign dkimverify dknewkey
 Name:           python-dkimpy
-Version:        1.0.5
+Version:        1.1.5
 Release:        0
 Summary:        DKIM (DomainKeys Identified Mail)
 License:        BSD-2-Clause
@@ -28,6 +28,7 @@ Source:         https://files.pythonhosted.org/packages/source/d/dkimpy/dkimpy-%
 Patch0:         no-optional.patch
 BuildRequires:  %{python_module setuptools}
 BuildRequires:  fdupes
+BuildRequires:  openssl
 BuildRequires:  python-rpm-macros
 Requires:       python-PyNaCl
 Requires:       python-authres