./security/py-service_identity, Service identity verification for pyOpenSSL

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: CURRENT, Version: 24.2.0, Package name: py312-service_identity-24.2.0, Maintainer: pkgsrc-users

service_identity aspires to give you all the tools you need for
verifying whether a certificate is valid for the intended purposes.

In the simplest case, this means host name verification. However,
service_identity implements RFC 6125 fully and plans to add other
relevant RFCs too.


Required to run:
[security/py-OpenSSL] [devel/py-setuptools] [lang/python27] [security/py-asn1-modules] [www/py-idna] [devel/py-characteristic] [devel/py-attrs]

Required to build:
[pkgtools/cwrappers]

Master sites:

Filesize: 38.325 KB

Version history: (Expand)


CVS history: (Expand)


   2024-11-25 13:39:47 by Adam Ciarcinski | Files touched by this commit (2) | Package updated
Log message:
py-service_identity: updated to 24.2.0

24.2.0

Added

- Python 3.13 is now officially supported.

Changed

- pyOpenSSL's identity extraction has been reimplemented using *cryptography*'s \ 
primitives instead of deprecated pyOpenSSL APIs.
 As a result, the oldest supported pyOpenSSL version is now 17.1.0.
   2024-02-09 15:24:20 by Adam Ciarcinski | Files touched by this commit (2) | Package updated
Log message:
py-service_identity: updated to 24.1.0

24.1.0

Changed

- If a certificate doesn't contain any `subjectAltName`s, we now raise \ 
`service_identity.CertificateError` instead of \ 
`service_identity.VerificationError` to make the problem easier to debug.
   2023-10-28 21:57:26 by Thomas Klausner | Files touched by this commit (516) | Package updated
Log message:
python/wheel.mk: simplify a lot, and switch to 'installer' for installation

This follows the recommended bootstrap method (flit_core, build, installer).

However, installer installs different files than pip, so update PLISTs
for all packages using wheel.mk and bump their PKGREVISIONs.
   2023-08-02 01:20:57 by Thomas Klausner | Files touched by this commit (158)
Log message:
*: remove more references to Python 3.7
   2023-07-01 14:20:24 by Thomas Klausner | Files touched by this commit (1)
Log message:
py-service_identity: restore PKGNAME
   2023-07-01 13:29:20 by Thomas Klausner | Files touched by this commit (3) | Package updated
Log message:
service_identity: update to 23.1.0.

## [23.1.0](https://github.com/pyca/service-identity/compare/21.1.0...23.1.0) - \ 
2023-06-14

### Removed

- All Python versions up to and including 3.7 have been dropped.
- Support for `commonName` in certificates has been dropped.
  It has been deprecated since 2017 and isn't supported by any major browser.
- The oldest supported pyOpenSSL version (when using the `pyopenssl` backend) is \ 
now 17.0.0.
  When using such an old pyOpenSSL version, you have to pin *cryptography* \ 
yourself to ensure compatibility between them.
  Please check out \ 
[`contraints/oldest-pyopenssl.txt`](https://github.com/pyca/service-identity/blob/main/tests/constraints/oldest-pyopenssl.txt) \ 
to verify what we are testing against.

### Deprecated

- If you've used `service_identity.(cryptography|pyopenssl).extract_ids()`, \ 
please switch to the new names `extract_patterns()`.
  [#56](https://github.com/pyca/service-identity/pull/56)

### Added

- `service_identity.(cryptography|pyopenssl).extract_patterns()` are now public \ 
APIs (FKA `extract_ids()`).
  You can use them to extract the patterns from a certificate without verifying \ 
anything.
  [#55](https://github.com/pyca/service-identity/pull/55)
- *service-identity* is now fully typed.
  [#57](https://github.com/pyca/service-identity/pull/57)
   2023-05-05 11:02:12 by Thomas Klausner | Files touched by this commit (2) | Package updated
Log message:
py-service_identity: update to 21.1.0.

21.1.0 (2021-05-09)
-------------------

Backward-incompatible changes:
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

- Python 3.4 is not supported anymore.
  It has been unsupported by the Python core team for a while now, its PyPI \ 
downloads are negligible, and our CI provider removed it as a supported option.

  It's very unlikely that ``service-identity`` will break under 3.4 anytime \ 
soon, which is why we do *not* block its installation on Python 3.4.
  But we don't test it anymore and will block it once someone reports breakage.

Changes:
^^^^^^^^

- ``service_identity.exceptions.VerificationError`` can now be pickled and is \ 
overall more well-behaved as an exception.
  This raises the requirement of ``attrs`` to 19.1.0.
   2022-10-19 16:25:20 by Nia Alarie | Files touched by this commit (21)
Log message:
fighting a losing battle against the py-cryptography rustification, part 5

Convert py-OpenSSL users to versioned_dependencies.mk