./security/py-OpenSSL, Python interface to the OpenSSL library

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: CURRENT, Version: 17.5.0, Package name: py27-OpenSSL-17.5.0, Maintainer: pkgsrc-users

pyOpenSSL is a Python module that is a rather thin wrapper around (a
subset of) the OpenSSL library. A lot of the object methods do
nothing more than call a corresponding function in the OpenSSL
library.


Required to run:
[devel/py-setuptools] [lang/python27] [lang/py-six] [security/py-cryptography]

Required to build:
[devel/py-test] [devel/py-pretend] [pkgtools/cwrappers] [devel/py-flaky]

Master sites:

SHA1: 77bb6a9f5f20834bd9ba5d1bdc4bd82d6b6208be
RMD160: 2b46a05a02bd5b276abb0afc14e9e3cc900ca8c8
Filesize: 166.865 KB

Version history: (Expand)


CVS history: (Expand)


   2017-12-01 09:53:17 by Adam Ciarcinski | Files touched by this commit (2) | Package updated
Log message:
pyOpenSSL: updated to 17.5.0

17.5.0:
Backward-incompatible changes:
* The minimum cryptography version is now 2.1.4.

Changes:
* Fixed a potential use-after-free in the verify callback and resolved a memory \ 
leak when loading PKCS12 files with cacerts.
* Added Connection.export_keying_material for RFC 5705 compatible export of \ 
keying material.
   2017-11-23 11:12:33 by Adam Ciarcinski | Files touched by this commit (3) | Package updated
Log message:
py-OpenSSL: updated to 17.4.0

17.4.0:
Re-added a subset of the OpenSSL.rand module. This subset allows conscientious \ 
users to reseed the OpenSSL CSPRNG after fork.
Corrected a use-after-free when reusing an issuer or subject from an X509 object \ 
after the underlying object has been mutated.
   2017-09-16 08:47:52 by Adam Ciarcinski | Files touched by this commit (3) | Package updated
Log message:
py-OpenSSL: update to 17.3.0

17.3.0
Backward-incompatible changes:
* Dropped support for Python 3.3.
* Removed the deprecated OpenSSL.rand module. This is being done ahead of our \ 
normal deprecation schedule due to its lack of use and the fact that it was \ 
becoming a maintenance burden. os.urandom() should be used instead.

Deprecations:
* Deprecated OpenSSL.tsafe.

Changes:
* Fixed a memory leak in OpenSSL.crypto.CRL.
* Fixed a memory leak when verifying certificates with \ 
OpenSSL.crypto.X509StoreContext.
   2017-07-20 18:52:16 by Adam Ciarcinski | Files touched by this commit (2)
Log message:
17.2.0:

Deprecations:
- Deprecated ``OpenSSL.rand`` - callers should use ``os.urandom()`` instead.

Changes:
- Fixed a bug causing ``Context.set_default_verify_paths()`` to not work with \ 
cryptography ``manylinux1`` wheels on Python 3.x.
- Fixed a crash with (EC)DSA signatures in some cases.
   2017-07-03 23:37:29 by Thomas Klausner | Files touched by this commit (1)
Log message:
Simplify testing part. Ok adam@
   2017-07-03 22:56:04 by Thomas Klausner | Files touched by this commit (1) | Package updated
Log message:
Add missing py-pretend test dependency.
Update upstream bug report URLs.
   2017-07-03 22:25:05 by Adam Ciarcinski | Files touched by this commit (1)
Log message:
Restored bug-report comments
   2017-07-03 21:37:52 by Adam Ciarcinski | Files touched by this commit (3) | Package updated
Log message:
17.1.0:

Backward-incompatible changes:
- Removed the deprecated OpenSSL.rand.egd() function.
  Applications should prefer os.urandom() for random number generation.
- Removed the deprecated default digest argument to OpenSSL.crypto.CRL.export().
  Callers must now always pass an explicit digest.
- Fixed a bug with ASN1_TIME casting in X509.set_notBefore(),
  X509.set_notAfter(), Revoked.set_rev_date(), Revoked.set_nextUpdate(),
  and Revoked.set_lastUpdate(). You must now pass times in the form
  YYYYMMDDhhmmssZ. YYYYMMDDhhmmss+hhmm and YYYYMMDDhhmmss-hhmm
  will no longer work.

Deprecations:
- Deprecated the legacy "Type" aliases: ContextType, ConnectionType, \ 
PKeyType, X509NameType, X509ExtensionType, X509ReqType, X509Type, X509StoreType, \ 
CRLType, PKCS7Type, PKCS12Type, NetscapeSPKIType.
  The names without the "Type"-suffix should be used instead.

Changes:
- Added OpenSSL.crypto.X509.from_cryptography() and \ 
OpenSSL.crypto.X509.to_cryptography() for converting X.509 certificate to and \ 
from pyca/cryptography objects.
- Added OpenSSL.crypto.X509Req.from_cryptography(), \ 
OpenSSL.crypto.X509Req.to_cryptography(), \ 
OpenSSL.crypto.CRL.from_cryptography(), and OpenSSL.crypto.CRL.to_cryptography() \ 
for converting X.509 CSRs and CRLs to and from pyca/cryptography objects.
- Added OpenSSL.debug that allows to get an overview of used library versions \ 
(including linked OpenSSL) and other useful runtime information using python -m \ 
OpenSSL.debug.
- Added a fallback path to Context.set_default_verify_paths() to accommodate the \ 
upcoming release of cryptography manylinux1 wheels.