Path to this page:
Subject: CVS commit: pkgsrc/security/py-OpenSSL
From: Adam Ciarcinski
Date: 2017-07-03 21:37:52
Message id: 20170703193752.54410FAE8@cvs.NetBSD.org
Log Message:
17.1.0:
Backward-incompatible changes:
- Removed the deprecated OpenSSL.rand.egd() function.
Applications should prefer os.urandom() for random number generation.
- Removed the deprecated default digest argument to OpenSSL.crypto.CRL.export().
Callers must now always pass an explicit digest.
- Fixed a bug with ASN1_TIME casting in X509.set_notBefore(),
X509.set_notAfter(), Revoked.set_rev_date(), Revoked.set_nextUpdate(),
and Revoked.set_lastUpdate(). You must now pass times in the form
YYYYMMDDhhmmssZ. YYYYMMDDhhmmss+hhmm and YYYYMMDDhhmmss-hhmm
will no longer work.
Deprecations:
- Deprecated the legacy "Type" aliases: ContextType, ConnectionType, \
PKeyType, X509NameType, X509ExtensionType, X509ReqType, X509Type, X509StoreType, \
CRLType, PKCS7Type, PKCS12Type, NetscapeSPKIType.
The names without the "Type"-suffix should be used instead.
Changes:
- Added OpenSSL.crypto.X509.from_cryptography() and \
OpenSSL.crypto.X509.to_cryptography() for converting X.509 certificate to and \
from pyca/cryptography objects.
- Added OpenSSL.crypto.X509Req.from_cryptography(), \
OpenSSL.crypto.X509Req.to_cryptography(), \
OpenSSL.crypto.CRL.from_cryptography(), and OpenSSL.crypto.CRL.to_cryptography() \
for converting X.509 CSRs and CRLs to and from pyca/cryptography objects.
- Added OpenSSL.debug that allows to get an overview of used library versions \
(including linked OpenSSL) and other useful runtime information using python -m \
OpenSSL.debug.
- Added a fallback path to Context.set_default_verify_paths() to accommodate the \
upcoming release of cryptography manylinux1 wheels.
Files: