./security/py-cryptography, Cryptographic recipes and primitives for Python

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: CURRENT, Version: 2.1.1, Package name: py27-cryptography-2.1.1, Maintainer: pkgsrc-users

cryptography is a package designed to expose cryptographic recipes
and primitives to Python developers. Our goal is for it to be your
"cryptographic standard library".

cryptography includes both high level recipes, and low level
interfaces to common cryptographic algorithms such as symmetric
ciphers, message digests and key derivation functions.


Required to run:
[devel/py-setuptools] [lang/python27] [devel/py-cffi] [devel/py-cparser] [lang/py-six] [devel/py-enum34] [www/py-idna] [net/py-ipaddress] [security/py-asn1crypto]

Required to build:
[time/py-pytz] [devel/py-test] [time/py-iso8601] [devel/py-pretend] [pkgtools/cwrappers] [security/py-cryptography_vectors]

Master sites:

SHA1: 1eba5ae017443f0e49264dda44f0421cce56ac92
RMD160: 3da88a7d1dc467f48be67de71f91ff4233e4306b
Filesize: 431.13 KB

Version history: (Expand)


CVS history: (Expand)


   2017-10-12 10:28:40 by Adam Ciarcinski | Files touched by this commit (6) | Package updated
Log message:
py-cryptography[_vectors]: update to 2.1.1

2.1:
FINAL DEPRECATION Python 2.6 support is deprecated, and will be removed in the \ 
next release of cryptography.
BACKWARDS INCOMPATIBLE: Whirlpool, RIPEMD160, and UnsupportedExtension have been \ 
removed in accordance with our :doc:`/api-stability` policy.
BACKWARDS INCOMPATIBLE: :attr:`~cryptography.x509.DNSName.value`, \ 
:attr:`~cryptography.x509.RFC822Name.value`, and \ 
:attr:`~cryptography.x509.UniformResourceIdentifier.value` will now return an \ 
:term:`A-label` string when parsing a certificate containing an \ 
internationalized domain name (IDN) or if the caller passed a :term:`U-label` to \ 
the constructor. See below for additional deprecations related to this change.
Installing cryptography now requires pip 6 or newer.
Deprecated passing :term:`U-label` strings to the \ 
:class:`~cryptography.x509.DNSName`, \ 
:class:`~cryptography.x509.UniformResourceIdentifier`, and \ 
:class:`~cryptography.x509.RFC822Name` constructors. Instead, users should pass \ 
values as :term:`A-label` strings with idna encoding if necessary. This change \ 
will not affect anyone who is not processing internationalized domains.
Added support for \ 
:class:`~cryptography.hazmat.primitives.ciphers.algorithms.ChaCha20`. In most \ 
cases users should choose \ 
:class:`~cryptography.hazmat.primitives.ciphers.aead.ChaCha20Poly1305` rather \ 
than using this unauthenticated form.
Added :meth:`~cryptography.x509.CertificateRevocationList.is_signature_valid` to \ 
:class:`~cryptography.x509.CertificateRevocationList`.
Support :class:`~cryptography.hazmat.primitives.hashes.BLAKE2b` and \ 
:class:`~cryptography.hazmat.primitives.hashes.BLAKE2s` with \ 
:class:`~cryptography.hazmat.primitives.hmac.HMAC`.
Added support for :class:`~cryptography.hazmat.primitives.ciphers.modes.XTS` \ 
mode for AES.
Added support for using labels with \ 
:class:`~cryptography.hazmat.primitives.asymmetric.padding.OAEP` when using \ 
OpenSSL 1.0.2 or greater.
Improved compatibility with NSS when issuing certificates from an issuer that \ 
has a subject with non-UTF8String string types.
Add support for the :class:`~cryptography.x509.DeltaCRLIndicator` extension.
Add support for the :class:`~cryptography.x509.TLSFeature` extension. This is \ 
commonly used for enabling OCSP Must-Staple in certificates.
Add support for the :class:`~cryptography.x509.FreshestCRL` extension.
   2017-08-04 07:31:12 by Adam Ciarcinski | Files touched by this commit (4)
Log message:
2.0.3:
Fixed an issue with weak linking symbols when compiling on macOS versions older \ 
than 10.12.
   2017-07-27 20:39:27 by Adam Ciarcinski | Files touched by this commit (4)
Log message:
2.0.2:
Marked all symbols as hidden in the manylinux1 wheel to avoid a bug with symbol \ 
resolution in certain scenarios.

2.0.1:
Fixed a compilation bug affecting OpenBSD.
Altered the manylinux1 wheels to statically link OpenSSL instead of dynamically \ 
linking and bundling the shared object. This should resolve crashes seen when \ 
using uwsgi or other binaries that link against OpenSSL independently.
Fixed the stack level for the signer and verifier warnings.
   2017-07-18 15:58:25 by Adam Ciarcinski | Files touched by this commit (3)
Log message:
2.0:

BACKWARDS INCOMPATIBLE: Support for Python 3.3 has been dropped.
We now ship manylinux1 wheels linked against OpenSSL 1.1.0f. These wheels will \ 
be automatically used with most Linux distributions if you are running the \ 
latest pip.
Deprecated the use of signer on \ 
:class:`~cryptography.hazmat.primitives.asymmetric.rsa.RSAPrivateKey`, \ 
:class:`~cryptography.hazmat.primitives.asymmetric.dsa.DSAPrivateKey`, and \ 
:class:`~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePrivateKey` \ 
in favor of sign.
Deprecated the use of verifier on \ 
:class:`~cryptography.hazmat.primitives.asymmetric.rsa.RSAPublicKey`, \ 
:class:`~cryptography.hazmat.primitives.asymmetric.dsa.DSAPublicKey`, and \ 
:class:`~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePublicKey` in \ 
favor of verify.
Added support for parsing \ 
:class:`~cryptography.x509.certificate_transparency.SignedCertificateTimestamp` \ 
objects from X.509 certificate extensions.
Added support for \ 
:class:`~cryptography.hazmat.primitives.ciphers.aead.ChaCha20Poly1305`.
Added support for :class:`~cryptography.hazmat.primitives.ciphers.aead.AESCCM`.
Added :class:`~cryptography.hazmat.primitives.ciphers.aead.AESGCM`, a "one \ 
shot" API for AES GCM encryption.
Added support for :doc:`/hazmat/primitives/asymmetric/x25519`.
Added support for serializing and deserializing Diffie-Hellman parameters with \ 
:func:`~cryptography.hazmat.primitives.serialization.load_pem_parameters`, \ 
:func:`~cryptography.hazmat.primitives.serialization.load_der_parameters`, and \ 
:meth:`~cryptography.hazmat.primitives.asymmetric.dh.DHParameters.parameter_bytes` \ 
.
The extensions attribute on :class:`~cryptography.x509.Certificate`, \ 
:class:`~cryptography.x509.CertificateSigningRequest`, \ 
:class:`~cryptography.x509.CertificateRevocationList`, and \ 
:class:`~cryptography.x509.RevokedCertificate` now caches the computed \ 
Extensions object. There should be no performance change, just a performance \ 
improvement for programs accessing the extensions attribute multiple times.
   2017-06-21 19:42:00 by Adam Ciarcinski | Files touched by this commit (1)
Log message:
PLIST.Darwin is not needed any more
   2017-06-19 23:03:19 by Thomas Klausner | Files touched by this commit (3) | Package updated
Log message:
Updated py-cryptography to 1.9.

1.9 - 2017-05-29
~~~~~~~~~~~~~~~~

* **BACKWARDS INCOMPATIBLE:** Elliptic Curve signature verification no longer
  returns ``True`` on success. This brings it in line with the interface's
  documentation, and our intent. The correct way to use
  :meth:`~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePublicKey.verify`
  has always been to check whether or not
  :class:`~cryptography.exceptions.InvalidSignature` was raised.
* **BACKWARDS INCOMPATIBLE:** Dropped support for macOS 10.7 and 10.8.
* **BACKWARDS INCOMPATIBLE:** The minimum supported PyPy version is now 5.3.
* Python 3.3 support has been deprecated, and will be removed in the next
  ``cryptography`` release.
* Add support for providing ``tag`` during
  :class:`~cryptography.hazmat.primitives.ciphers.modes.GCM` finalization via
  \ 
:meth:`~cryptography.hazmat.primitives.ciphers.AEADDecryptionContext.finalize_wi \ 
th_tag`.
* Fixed an issue preventing ``cryptography`` from compiling against
  LibreSSL 2.5.x.
* Added
  \ 
:meth:`~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePublicKey.key_ \ 
size`
  and
  \ 
:meth:`~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePrivateKey.key \ 
_size`
  as convenience methods for determining the bit size of a secret scalar for
  the curve.
* Accessing an unrecognized extension marked critical on an X.509 object will
  no longer raise an ``UnsupportedExtension`` exception, instead an
  :class:`~cryptography.x509.UnrecognizedExtension` object will be returned.
  This behavior was based on a poor reading of the RFC, unknown critical
  extensions only need to be rejected on certificate verification.
* The CommonCrypto backend has been removed.
* MultiBackend has been removed.
* ``Whirlpool`` and ``RIPEMD160`` have been deprecated.
   2017-05-29 15:22:31 by Thomas Klausner | Files touched by this commit (1)
Log message:
Comment out py-requests test dependency to fix cyclic dependency
with py-requests-2.16.x.
   2017-05-29 14:07:01 by Thomas Klausner | Files touched by this commit (2) | Package updated
Log message:
Updated py-cryptography to 1.8.2.

1.8.2 - 2017-05-26
~~~~~~~~~~~~~~~~~~

* Fixed a compilation bug affecting OpenSSL 1.1.0f.
* Updated Windows and macOS wheels to be compiled against OpenSSL 1.1.0f.