2021-12-20 21:14:30 +00:00
|
|
|
#
|
2023-03-27 05:47:50 +00:00
|
|
|
# spec file for package python-securesystemslib
|
2021-12-20 21:14:30 +00:00
|
|
|
#
|
2025-01-15 07:49:29 +00:00
|
|
|
# Copyright (c) 2025 SUSE LLC
|
2021-12-20 21:14:30 +00:00
|
|
|
#
|
|
|
|
|
# All modifications and additions to the file contributed by third parties
|
|
|
|
|
# remain the property of their copyright owners, unless otherwise agreed
|
|
|
|
|
# upon. The license for this file, and modifications and additions to the
|
|
|
|
|
# file, is the same license as for the pristine package itself (unless the
|
|
|
|
|
# license for the pristine package is not an Open Source License, in which
|
|
|
|
|
# case the license is the MIT License). An "Open Source License" is a
|
|
|
|
|
# license that conforms to the Open Source Definition (Version 1.9)
|
|
|
|
|
# published by the Open Source Initiative.
|
|
|
|
|
|
2023-03-27 05:47:50 +00:00
|
|
|
# Please submit bugfixes or comments via https://bugs.opensuse.org/
|
|
|
|
|
#
|
2021-12-20 21:14:30 +00:00
|
|
|
|
|
|
|
|
|
|
|
|
|
Name: python-securesystemslib
|
2025-02-10 20:37:31 +00:00
|
|
|
Version: 1.2.0
|
2021-12-20 21:14:30 +00:00
|
|
|
Release: 0
|
2023-03-27 05:47:50 +00:00
|
|
|
Summary: Cryptographic and general routines for Secure Systems Lab
|
2025-02-10 20:37:31 +00:00
|
|
|
License: MIT
|
2023-03-27 05:47:50 +00:00
|
|
|
URL: https://github.com/secure-systems-lab/securesystemslib
|
2025-02-10 20:37:31 +00:00
|
|
|
Source: https://files.pythonhosted.org/packages/source/s/securesystemslib/securesystemslib-%{version}.tar.gz
|
Accepting request 1219775 from home:dgarcia:branches:security
- Move not mandatory requirements to Suggests
- Update to version 1.1.0:
* SigstoreSigner: Re-enable compatibility with Sigstore (#781)
- 1.0.0:
Added
* Signer: add public_key attribute to interface (#756)
* VaultSigner: Signer implementation for HashiCorp Vault (#800)
* CryptoSigner: support ecdsa keytype that is no longer in spec (#711)
* CryptoSigner: add private_bytes property (#799)
* CryptoSigner: add "file2" signer uri (#759)
* test: use localstack to test AWSSigner (#777)
Removed
* CryptoSigner: remove "file" signer uri (#759)
* migration script for legacy keys (#770)
* SSlibSigner class and *_securesystemslib_key methods (#771)
* legacy key key*, interface, util and schema modules (#772, #773, #776)
* unused functions in hash, and formats module (#774, #776)
* unused global key constants (#806)
Changed
* SSlibKey: strengthen input validation (#780, #795)
* AWSSigner: support default scheme and add stronger input validation (#724, #778)
* dsse: change Envelope.signatures type to dict (#743)
* vendor: update ed25519 copy (#793)
* docs: improve user and contributor docs (#744, #745, #746, #749, #759, #796)
* test: improve and temporarily disable SigstoreSigner test (#779, #785)
* ci: use dependabot groups, update weekly (#735)
* ci: test macOS and Windows on latest Python only (#797)
* Make securessystemslib.gpg internal (#792)
Fixed
* Fix check-upstream-ed25519 workflow permission (#706)
OBS-URL: https://build.opensuse.org/request/show/1219775
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-securesystemslib?expand=0&rev=6
2024-10-31 07:37:47 +00:00
|
|
|
BuildRequires: %{python_module PyKCS11}
|
2023-03-27 05:47:50 +00:00
|
|
|
BuildRequires: %{python_module asn1crypto}
|
|
|
|
|
BuildRequires: %{python_module cryptography >= 3.3.2}
|
|
|
|
|
BuildRequires: %{python_module hatchling}
|
2021-12-20 21:14:30 +00:00
|
|
|
BuildRequires: %{python_module pip}
|
2023-03-27 05:47:50 +00:00
|
|
|
BuildRequires: %{python_module pytest}
|
2021-12-20 21:14:30 +00:00
|
|
|
BuildRequires: fdupes
|
|
|
|
|
BuildRequires: python-rpm-macros
|
2025-02-10 20:37:31 +00:00
|
|
|
Requires: python-PyKCS11
|
|
|
|
|
Requires: python-asn1crypto
|
|
|
|
|
Requires: python-cryptography
|
2021-12-20 21:14:30 +00:00
|
|
|
BuildArch: noarch
|
|
|
|
|
%python_subpackages
|
|
|
|
|
|
|
|
|
|
%description
|
|
|
|
|
Cryptographic and general-purpose routines for Secure Systems Lab projects at NYU
|
|
|
|
|
|
|
|
|
|
%prep
|
2025-02-10 20:37:31 +00:00
|
|
|
%autosetup -p1 -n securesystemslib-%{version}
|
Accepting request 1219775 from home:dgarcia:branches:security
- Move not mandatory requirements to Suggests
- Update to version 1.1.0:
* SigstoreSigner: Re-enable compatibility with Sigstore (#781)
- 1.0.0:
Added
* Signer: add public_key attribute to interface (#756)
* VaultSigner: Signer implementation for HashiCorp Vault (#800)
* CryptoSigner: support ecdsa keytype that is no longer in spec (#711)
* CryptoSigner: add private_bytes property (#799)
* CryptoSigner: add "file2" signer uri (#759)
* test: use localstack to test AWSSigner (#777)
Removed
* CryptoSigner: remove "file" signer uri (#759)
* migration script for legacy keys (#770)
* SSlibSigner class and *_securesystemslib_key methods (#771)
* legacy key key*, interface, util and schema modules (#772, #773, #776)
* unused functions in hash, and formats module (#774, #776)
* unused global key constants (#806)
Changed
* SSlibKey: strengthen input validation (#780, #795)
* AWSSigner: support default scheme and add stronger input validation (#724, #778)
* dsse: change Envelope.signatures type to dict (#743)
* vendor: update ed25519 copy (#793)
* docs: improve user and contributor docs (#744, #745, #746, #749, #759, #796)
* test: improve and temporarily disable SigstoreSigner test (#779, #785)
* ci: use dependabot groups, update weekly (#735)
* ci: test macOS and Windows on latest Python only (#797)
* Make securessystemslib.gpg internal (#792)
Fixed
* Fix check-upstream-ed25519 workflow permission (#706)
OBS-URL: https://build.opensuse.org/request/show/1219775
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-securesystemslib?expand=0&rev=6
2024-10-31 07:37:47 +00:00
|
|
|
# Remove exec permission from python scripts
|
|
|
|
|
find . -type f -name *.py -exec chmod 0644 {} \;
|
2021-12-20 21:14:30 +00:00
|
|
|
|
|
|
|
|
%build
|
Accepting request 1219775 from home:dgarcia:branches:security
- Move not mandatory requirements to Suggests
- Update to version 1.1.0:
* SigstoreSigner: Re-enable compatibility with Sigstore (#781)
- 1.0.0:
Added
* Signer: add public_key attribute to interface (#756)
* VaultSigner: Signer implementation for HashiCorp Vault (#800)
* CryptoSigner: support ecdsa keytype that is no longer in spec (#711)
* CryptoSigner: add private_bytes property (#799)
* CryptoSigner: add "file2" signer uri (#759)
* test: use localstack to test AWSSigner (#777)
Removed
* CryptoSigner: remove "file" signer uri (#759)
* migration script for legacy keys (#770)
* SSlibSigner class and *_securesystemslib_key methods (#771)
* legacy key key*, interface, util and schema modules (#772, #773, #776)
* unused functions in hash, and formats module (#774, #776)
* unused global key constants (#806)
Changed
* SSlibKey: strengthen input validation (#780, #795)
* AWSSigner: support default scheme and add stronger input validation (#724, #778)
* dsse: change Envelope.signatures type to dict (#743)
* vendor: update ed25519 copy (#793)
* docs: improve user and contributor docs (#744, #745, #746, #749, #759, #796)
* test: improve and temporarily disable SigstoreSigner test (#779, #785)
* ci: use dependabot groups, update weekly (#735)
* ci: test macOS and Windows on latest Python only (#797)
* Make securessystemslib.gpg internal (#792)
Fixed
* Fix check-upstream-ed25519 workflow permission (#706)
OBS-URL: https://build.opensuse.org/request/show/1219775
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-securesystemslib?expand=0&rev=6
2024-10-31 07:37:47 +00:00
|
|
|
%pyproject_wheel
|
2021-12-20 21:14:30 +00:00
|
|
|
|
|
|
|
|
%install
|
Accepting request 1219775 from home:dgarcia:branches:security
- Move not mandatory requirements to Suggests
- Update to version 1.1.0:
* SigstoreSigner: Re-enable compatibility with Sigstore (#781)
- 1.0.0:
Added
* Signer: add public_key attribute to interface (#756)
* VaultSigner: Signer implementation for HashiCorp Vault (#800)
* CryptoSigner: support ecdsa keytype that is no longer in spec (#711)
* CryptoSigner: add private_bytes property (#799)
* CryptoSigner: add "file2" signer uri (#759)
* test: use localstack to test AWSSigner (#777)
Removed
* CryptoSigner: remove "file" signer uri (#759)
* migration script for legacy keys (#770)
* SSlibSigner class and *_securesystemslib_key methods (#771)
* legacy key key*, interface, util and schema modules (#772, #773, #776)
* unused functions in hash, and formats module (#774, #776)
* unused global key constants (#806)
Changed
* SSlibKey: strengthen input validation (#780, #795)
* AWSSigner: support default scheme and add stronger input validation (#724, #778)
* dsse: change Envelope.signatures type to dict (#743)
* vendor: update ed25519 copy (#793)
* docs: improve user and contributor docs (#744, #745, #746, #749, #759, #796)
* test: improve and temporarily disable SigstoreSigner test (#779, #785)
* ci: use dependabot groups, update weekly (#735)
* ci: test macOS and Windows on latest Python only (#797)
* Make securessystemslib.gpg internal (#792)
Fixed
* Fix check-upstream-ed25519 workflow permission (#706)
OBS-URL: https://build.opensuse.org/request/show/1219775
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-securesystemslib?expand=0&rev=6
2024-10-31 07:37:47 +00:00
|
|
|
%pyproject_install
|
|
|
|
|
# Remove not needed files
|
|
|
|
|
%{python_expand #
|
|
|
|
|
rm -rf %{buildroot}%{$python_sitelib}/securesystemslib/_vendor/ed25519/.gitignore
|
|
|
|
|
}
|
2023-03-27 05:47:50 +00:00
|
|
|
%python_expand %fdupes %{buildroot}%{$python_sitelib}
|
|
|
|
|
|
|
|
|
|
%check
|
Accepting request 1219775 from home:dgarcia:branches:security
- Move not mandatory requirements to Suggests
- Update to version 1.1.0:
* SigstoreSigner: Re-enable compatibility with Sigstore (#781)
- 1.0.0:
Added
* Signer: add public_key attribute to interface (#756)
* VaultSigner: Signer implementation for HashiCorp Vault (#800)
* CryptoSigner: support ecdsa keytype that is no longer in spec (#711)
* CryptoSigner: add private_bytes property (#799)
* CryptoSigner: add "file2" signer uri (#759)
* test: use localstack to test AWSSigner (#777)
Removed
* CryptoSigner: remove "file" signer uri (#759)
* migration script for legacy keys (#770)
* SSlibSigner class and *_securesystemslib_key methods (#771)
* legacy key key*, interface, util and schema modules (#772, #773, #776)
* unused functions in hash, and formats module (#774, #776)
* unused global key constants (#806)
Changed
* SSlibKey: strengthen input validation (#780, #795)
* AWSSigner: support default scheme and add stronger input validation (#724, #778)
* dsse: change Envelope.signatures type to dict (#743)
* vendor: update ed25519 copy (#793)
* docs: improve user and contributor docs (#744, #745, #746, #749, #759, #796)
* test: improve and temporarily disable SigstoreSigner test (#779, #785)
* ci: use dependabot groups, update weekly (#735)
* ci: test macOS and Windows on latest Python only (#797)
* Make securessystemslib.gpg internal (#792)
Fixed
* Fix check-upstream-ed25519 workflow permission (#706)
OBS-URL: https://build.opensuse.org/request/show/1219775
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-securesystemslib?expand=0&rev=6
2024-10-31 07:37:47 +00:00
|
|
|
# spinhcs+ key support requires the pyspx library
|
2025-01-15 07:49:29 +00:00
|
|
|
donttest="test_sphincs"
|
|
|
|
|
# remove the ed25519 tests, the module is "Not Recommended For New Applications: Use pynacl Instead"
|
|
|
|
|
rm securesystemslib/_vendor/ed25519/test_ed25519.py
|
Accepting request 1219775 from home:dgarcia:branches:security
- Move not mandatory requirements to Suggests
- Update to version 1.1.0:
* SigstoreSigner: Re-enable compatibility with Sigstore (#781)
- 1.0.0:
Added
* Signer: add public_key attribute to interface (#756)
* VaultSigner: Signer implementation for HashiCorp Vault (#800)
* CryptoSigner: support ecdsa keytype that is no longer in spec (#711)
* CryptoSigner: add private_bytes property (#799)
* CryptoSigner: add "file2" signer uri (#759)
* test: use localstack to test AWSSigner (#777)
Removed
* CryptoSigner: remove "file" signer uri (#759)
* migration script for legacy keys (#770)
* SSlibSigner class and *_securesystemslib_key methods (#771)
* legacy key key*, interface, util and schema modules (#772, #773, #776)
* unused functions in hash, and formats module (#774, #776)
* unused global key constants (#806)
Changed
* SSlibKey: strengthen input validation (#780, #795)
* AWSSigner: support default scheme and add stronger input validation (#724, #778)
* dsse: change Envelope.signatures type to dict (#743)
* vendor: update ed25519 copy (#793)
* docs: improve user and contributor docs (#744, #745, #746, #749, #759, #796)
* test: improve and temporarily disable SigstoreSigner test (#779, #785)
* ci: use dependabot groups, update weekly (#735)
* ci: test macOS and Windows on latest Python only (#797)
* Make securessystemslib.gpg internal (#792)
Fixed
* Fix check-upstream-ed25519 workflow permission (#706)
OBS-URL: https://build.opensuse.org/request/show/1219775
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-securesystemslib?expand=0&rev=6
2024-10-31 07:37:47 +00:00
|
|
|
%pytest -k "not ($donttest)"
|
2021-12-20 21:14:30 +00:00
|
|
|
|
|
|
|
|
%files %{python_files}
|
2023-03-27 05:47:50 +00:00
|
|
|
%{python_sitelib}/securesystemslib
|
|
|
|
|
%{python_sitelib}/securesystemslib-%{version}*info
|
2021-12-20 21:14:30 +00:00
|
|
|
|
2023-03-27 05:47:50 +00:00
|
|
|
%changelog
|
