From 1a5213a1c67df7828884d29437d6ef4543d236f90d175ab6c3afb0e1c6de4455 Mon Sep 17 00:00:00 2001
From: Nico Krapp <nico.krapp@suse.com>
Date: Fri, 26 Sep 2025 09:31:44 +0000
Subject: [PATCH] - Update to 1.3.0   * Annotate library (#970)   * Deprecate
 hash module (#977)   * Modernize license metadata (#942)   * Refactor signing
 scheme parsing (#981)   * Misc test and ci/cd improvements (#926, #953, #958,
 #965, #966) - Use Python 3.11 on SLE-15 by default

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-securesystemslib?expand=0&rev=14
---
 .gitattributes                  | 23 ++++++++++
 .gitignore                      |  1 +
 python-securesystemslib.changes | 79 +++++++++++++++++++++++++++++++++
 python-securesystemslib.spec    | 70 +++++++++++++++++++++++++++++
 securesystemslib-1.2.0.tar.gz   |  3 ++
 securesystemslib-1.3.0.tar.gz   |  3 ++
 6 files changed, 179 insertions(+)
 create mode 100644 .gitattributes
 create mode 100644 .gitignore
 create mode 100644 python-securesystemslib.changes
 create mode 100644 python-securesystemslib.spec
 create mode 100644 securesystemslib-1.2.0.tar.gz
 create mode 100644 securesystemslib-1.3.0.tar.gz

diff --git a/.gitattributes b/.gitattributes
new file mode 100644
index 0000000..9b03811
--- /dev/null
+++ b/.gitattributes
@@ -0,0 +1,23 @@
+## Default LFS
+*.7z filter=lfs diff=lfs merge=lfs -text
+*.bsp filter=lfs diff=lfs merge=lfs -text
+*.bz2 filter=lfs diff=lfs merge=lfs -text
+*.gem filter=lfs diff=lfs merge=lfs -text
+*.gz filter=lfs diff=lfs merge=lfs -text
+*.jar filter=lfs diff=lfs merge=lfs -text
+*.lz filter=lfs diff=lfs merge=lfs -text
+*.lzma filter=lfs diff=lfs merge=lfs -text
+*.obscpio filter=lfs diff=lfs merge=lfs -text
+*.oxt filter=lfs diff=lfs merge=lfs -text
+*.pdf filter=lfs diff=lfs merge=lfs -text
+*.png filter=lfs diff=lfs merge=lfs -text
+*.rpm filter=lfs diff=lfs merge=lfs -text
+*.tbz filter=lfs diff=lfs merge=lfs -text
+*.tbz2 filter=lfs diff=lfs merge=lfs -text
+*.tgz filter=lfs diff=lfs merge=lfs -text
+*.ttf filter=lfs diff=lfs merge=lfs -text
+*.txz filter=lfs diff=lfs merge=lfs -text
+*.whl filter=lfs diff=lfs merge=lfs -text
+*.xz filter=lfs diff=lfs merge=lfs -text
+*.zip filter=lfs diff=lfs merge=lfs -text
+*.zst filter=lfs diff=lfs merge=lfs -text
diff --git a/.gitignore b/.gitignore
new file mode 100644
index 0000000..57affb6
--- /dev/null
+++ b/.gitignore
@@ -0,0 +1 @@
+.osc
diff --git a/python-securesystemslib.changes b/python-securesystemslib.changes
new file mode 100644
index 0000000..e1aa761
--- /dev/null
+++ b/python-securesystemslib.changes
@@ -0,0 +1,79 @@
+-------------------------------------------------------------------
+Fri Sep 26 08:32:13 UTC 2025 - John Paul Adrian Glaubitz <adrian.glaubitz@suse.com>
+
+- Update to 1.3.0
+  * Annotate library (#970)
+  * Deprecate hash module (#977)
+  * Modernize license metadata (#942)
+  * Refactor signing scheme parsing (#981)
+  * Misc test and ci/cd improvements (#926, #953, #958, #965, #966)
+- Use Python 3.11 on SLE-15 by default
+
+-------------------------------------------------------------------
+Mon Feb 10 20:35:16 UTC 2025 - Dirk Müller <dmueller@suse.com>
+
+- update to 1.2.0:
+  * Small release with mostly internal changes.
+  * SigstoreSigner now has a convenience function for creating a
+    signing identity for GitHub Actions workflow
+  * Linting refactoring, switched to ruff
+  * Modern annotations used in most of the code base
+
+-------------------------------------------------------------------
+Tue Jan 14 17:00:34 UTC 2025 - Markéta Machová <mmachova@suse.com>
+
+- Remove ed25519 tests to avoid that module in Leap
+
+-------------------------------------------------------------------
+Thu Oct 31 07:30:30 UTC 2024 - Daniel Garcia <daniel.garcia@suse.com>
+
+- Remove not needed patch use_python3_interpreter_in_tests.diff
+- Move not mandatory requirements to Suggests
+- Update to version 1.1.0:
+  * SigstoreSigner: Re-enable compatibility with Sigstore (#781)
+- 1.0.0:
+  Added
+  * Signer: add public_key attribute to interface (#756)
+  * VaultSigner: Signer implementation for HashiCorp Vault (#800)
+  * CryptoSigner: support ecdsa keytype that is no longer in spec (#711)
+  * CryptoSigner: add private_bytes property (#799)
+  * CryptoSigner: add "file2" signer uri (#759)
+  * test: use localstack to test AWSSigner (#777)
+  Removed
+  * CryptoSigner: remove "file" signer uri (#759)
+  * migration script for legacy keys (#770)
+  * SSlibSigner class and *_securesystemslib_key methods (#771)
+  * legacy key key*, interface, util and schema modules (#772, #773, #776)
+  * unused functions in hash, and formats module (#774, #776)
+  * unused global key constants (#806)
+  Changed
+  * SSlibKey: strengthen input validation (#780, #795)
+  * AWSSigner: support default scheme and add stronger input validation (#724, #778)
+  * dsse: change Envelope.signatures type to dict (#743)
+  * vendor: update ed25519 copy (#793)
+  * docs: improve user and contributor docs (#744, #745, #746, #749, #759, #796)
+  * test: improve and temporarily disable SigstoreSigner test (#779, #785)
+  * ci: use dependabot groups, update weekly (#735)
+  * ci: test macOS and Windows on latest Python only (#797)
+  * Make securessystemslib.gpg internal (#792)
+  Fixed
+  * Fix check-upstream-ed25519 workflow permission (#706)
+  * SSlibKey: fix default scheme and test for ecdsa nistp384 key (#763 #794)
+[...]
+Other release notes can be found in the CHANGELOG.md file:
+https://github.com/secure-systems-lab/securesystemslib/blob/v1.1.0/CHANGELOG.md
+
+-------------------------------------------------------------------
+Mon Mar 27 05:47:20 UTC 2023 - Steve Kowalik <steven.kowalik@suse.com>
+
+- Add patch use_python3_interpreter_in_tests.diff:
+  * Call python3, not python.
+- Actually run the testsuite.
+- Fix the Summary, and run fdupes to fix the most egregious rpmlint issues.
+- Stop using %{python_sitelib}/*.
+
+-------------------------------------------------------------------
+Fri Dec 10 12:14:29 UTC 2021 - Adrian Schröter <adrian@suse.de>
+
+- initial package of version 0.21.0
+
diff --git a/python-securesystemslib.spec b/python-securesystemslib.spec
new file mode 100644
index 0000000..7995f0c
--- /dev/null
+++ b/python-securesystemslib.spec
@@ -0,0 +1,70 @@
+#
+# spec file for package python-securesystemslib
+#
+# Copyright (c) 2025 SUSE LLC
+#
+# All modifications and additions to the file contributed by third parties
+# remain the property of their copyright owners, unless otherwise agreed
+# upon. The license for this file, and modifications and additions to the
+# file, is the same license as for the pristine package itself (unless the
+# license for the pristine package is not an Open Source License, in which
+# case the license is the MIT License). An "Open Source License" is a
+# license that conforms to the Open Source Definition (Version 1.9)
+# published by the Open Source Initiative.
+
+# Please submit bugfixes or comments via https://bugs.opensuse.org/
+#
+
+%{?sle15_python_module_pythons}
+Name:           python-securesystemslib
+Version:        1.3.0
+Release:        0
+Summary:        Cryptographic and general routines for Secure Systems Lab
+License:        MIT
+URL:            https://github.com/secure-systems-lab/securesystemslib
+Source:         https://files.pythonhosted.org/packages/source/s/securesystemslib/securesystemslib-%{version}.tar.gz
+BuildRequires:  %{python_module PyKCS11}
+BuildRequires:  %{python_module asn1crypto}
+BuildRequires:  %{python_module cryptography >= 3.3.2}
+BuildRequires:  %{python_module hatchling}
+BuildRequires:  %{python_module pip}
+BuildRequires:  %{python_module pytest}
+BuildRequires:  fdupes
+BuildRequires:  python-rpm-macros
+Requires:       python-PyKCS11
+Requires:       python-asn1crypto
+Requires:       python-cryptography
+BuildArch:      noarch
+%python_subpackages
+
+%description
+Cryptographic and general-purpose routines for Secure Systems Lab projects at NYU
+
+%prep
+%autosetup -p1 -n securesystemslib-%{version}
+# Remove exec permission from python scripts
+find . -type f -name *.py -exec chmod 0644 {} \;
+
+%build
+%pyproject_wheel
+
+%install
+%pyproject_install
+# Remove not needed files
+%{python_expand #
+rm -rf %{buildroot}%{$python_sitelib}/securesystemslib/_vendor/ed25519/.gitignore
+}
+%python_expand %fdupes %{buildroot}%{$python_sitelib}
+
+%check
+# spinhcs+ key support requires the pyspx library
+donttest="test_sphincs"
+# remove the ed25519 tests, the module is "Not Recommended For New Applications: Use pynacl Instead"
+rm securesystemslib/_vendor/ed25519/test_ed25519.py
+%pytest -k "not ($donttest)"
+
+%files %{python_files}
+%{python_sitelib}/securesystemslib
+%{python_sitelib}/securesystemslib-%{version}*info
+
+%changelog
diff --git a/securesystemslib-1.2.0.tar.gz b/securesystemslib-1.2.0.tar.gz
new file mode 100644
index 0000000..b1562af
--- /dev/null
+++ b/securesystemslib-1.2.0.tar.gz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:34fa63e3296a0540b122a13bf51722ecd015be00c1d2ed45b23442e718920e76
+size 934472
diff --git a/securesystemslib-1.3.0.tar.gz b/securesystemslib-1.3.0.tar.gz
new file mode 100644
index 0000000..9254ff7
--- /dev/null
+++ b/securesystemslib-1.3.0.tar.gz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:5b53e5989289d97fa42ed7fde1b4bad80985f15dba8c774c043b395a90c908e5
+size 934551