Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package python-cryptography for
openSUSE:Factory checked in at 2023-08-15 16:38:46
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/python-cryptography (Old)
and /work/SRC/openSUSE:Factory/.python-cryptography.new.11712 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "python-cryptography"
Tue Aug 15 16:38:46 2023 rev:81 rq:1102868 version:41.0.3
Changes:
--------
--- /work/SRC/openSUSE:Factory/python-cryptography/python-cryptography.changes
2023-07-26 13:22:47.915603529 +0200
+++
/work/SRC/openSUSE:Factory/.python-cryptography.new.11712/python-cryptography.changes
2023-08-15 16:38:48.406496239 +0200
@@ -1,0 +2,9 @@
+Tue Aug 8 10:57:22 UTC 2023 - Dirk Müller <[email protected]>
+
+- update to 41.0.3:
+ * Fixed performance regression loading DH public keys.
+ * Fixed a memory leak when using
+ * :class:`~cryptography.hazmat.primitives.ciphers.aead.ChaCha20
+ Poly1305`.
+
+-------------------------------------------------------------------
Old:
----
cryptography-41.0.2.tar.gz
New:
----
cryptography-41.0.3.tar.gz
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ python-cryptography.spec ++++++
--- /var/tmp/diff_new_pack.JoYbx7/_old 2023-08-15 16:38:49.962506851 +0200
+++ /var/tmp/diff_new_pack.JoYbx7/_new 2023-08-15 16:38:49.966506878 +0200
@@ -27,7 +27,7 @@
%endif
%{?sle15_python_module_pythons}
Name: python-cryptography%{psuffix}
-Version: 41.0.2
+Version: 41.0.3
Release: 0
Summary: Python library which exposes cryptographic recipes and
primitives
License: Apache-2.0 OR BSD-3-Clause
++++++ _service ++++++
--- /var/tmp/diff_new_pack.JoYbx7/_old 2023-08-15 16:38:50.018507233 +0200
+++ /var/tmp/diff_new_pack.JoYbx7/_new 2023-08-15 16:38:50.026507288 +0200
@@ -1,7 +1,7 @@
<services>
<service name="download_files" mode="disabled"/>
<service name="cargo_vendor" mode="disabled">
- <param name="srcdir">cryptography-41.0.2/src/rust</param>
+ <param name="srcdir">cryptography-41.0.3/src/rust</param>
<param name="compression">zst</param>
</service>
<service name="cargo_audit" mode="disabled">
++++++ cryptography-41.0.2.tar.gz -> cryptography-41.0.3.tar.gz ++++++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/cryptography-41.0.2/CHANGELOG.rst
new/cryptography-41.0.3/CHANGELOG.rst
--- old/cryptography-41.0.2/CHANGELOG.rst 2023-07-11 05:14:09.000000000
+0200
+++ new/cryptography-41.0.3/CHANGELOG.rst 2023-08-01 22:02:41.000000000
+0200
@@ -1,6 +1,16 @@
Changelog
=========
+.. _v41-0-3:
+
+41.0.3 - 2023-08-01
+~~~~~~~~~~~~~~~~~~~
+
+* Fixed performance regression loading DH public keys.
+* Fixed a memory leak when using
+ :class:`~cryptography.hazmat.primitives.ciphers.aead.ChaCha20Poly1305`.
+* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.1.2.
+
.. _v41-0-2:
41.0.2 - 2023-07-10
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/cryptography-41.0.2/PKG-INFO
new/cryptography-41.0.3/PKG-INFO
--- old/cryptography-41.0.2/PKG-INFO 2023-07-11 05:14:23.262920000 +0200
+++ new/cryptography-41.0.3/PKG-INFO 2023-08-01 22:02:54.736662900 +0200
@@ -1,6 +1,6 @@
Metadata-Version: 2.1
Name: cryptography
-Version: 41.0.2
+Version: 41.0.3
Summary: cryptography is a package which provides cryptographic recipes and
primitives to Python developers.
Author-email: The Python Cryptographic Authority and individual contributors
<[email protected]>
License: Apache-2.0 OR BSD-3-Clause
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/cryptography-41.0.2/pyproject.toml
new/cryptography-41.0.3/pyproject.toml
--- old/cryptography-41.0.2/pyproject.toml 2023-07-11 05:14:09.000000000
+0200
+++ new/cryptography-41.0.3/pyproject.toml 2023-08-01 22:02:41.000000000
+0200
@@ -11,7 +11,7 @@
[project]
name = "cryptography"
-version = "41.0.2"
+version = "41.0.3"
authors = [
{name = "The Python Cryptographic Authority and individual contributors",
email = "[email protected]"}
]
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/cryptography-41.0.2/src/cryptography/__about__.py
new/cryptography-41.0.3/src/cryptography/__about__.py
--- old/cryptography-41.0.2/src/cryptography/__about__.py 2023-07-11
05:14:09.000000000 +0200
+++ new/cryptography-41.0.3/src/cryptography/__about__.py 2023-08-01
22:02:41.000000000 +0200
@@ -10,7 +10,7 @@
"__copyright__",
]
-__version__ = "41.0.2"
+__version__ = "41.0.3"
__author__ = "The Python Cryptographic Authority and individual contributors"
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore'
old/cryptography-41.0.2/src/cryptography.egg-info/PKG-INFO
new/cryptography-41.0.3/src/cryptography.egg-info/PKG-INFO
--- old/cryptography-41.0.2/src/cryptography.egg-info/PKG-INFO 2023-07-11
05:14:23.000000000 +0200
+++ new/cryptography-41.0.3/src/cryptography.egg-info/PKG-INFO 2023-08-01
22:02:54.000000000 +0200
@@ -1,6 +1,6 @@
Metadata-Version: 2.1
Name: cryptography
-Version: 41.0.2
+Version: 41.0.3
Summary: cryptography is a package which provides cryptographic recipes and
primitives to Python developers.
Author-email: The Python Cryptographic Authority and individual contributors
<[email protected]>
License: Apache-2.0 OR BSD-3-Clause
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore'
old/cryptography-41.0.2/src/rust/cryptography-cffi/build.rs
new/cryptography-41.0.3/src/rust/cryptography-cffi/build.rs
--- old/cryptography-41.0.2/src/rust/cryptography-cffi/build.rs 2023-07-11
05:14:09.000000000 +0200
+++ new/cryptography-41.0.3/src/rust/cryptography-cffi/build.rs 2023-08-01
22:02:41.000000000 +0200
@@ -27,6 +27,7 @@
let python = env::var("PYO3_PYTHON").unwrap_or_else(|_|
"python3".to_string());
println!("cargo:rerun-if-env-changed=PYO3_PYTHON");
println!("cargo:rerun-if-changed=../../_cffi_src/");
+ println!("cargo:rerun-if-changed=../../cryptography/__about__.py");
let output = Command::new(&python)
.env("OUT_DIR", &out_dir)
.arg("../../_cffi_src/build_openssl.py")
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/cryptography-41.0.2/src/rust/src/asn1.rs
new/cryptography-41.0.3/src/rust/src/asn1.rs
--- old/cryptography-41.0.2/src/rust/src/asn1.rs 2023-07-11
05:14:09.000000000 +0200
+++ new/cryptography-41.0.3/src/rust/src/asn1.rs 2023-08-01
22:02:41.000000000 +0200
@@ -148,7 +148,7 @@
subject_value_tags: Vec<u8>,
}
-fn parse_name_value_tags(rdns: &mut Name<'_>) -> Vec<u8> {
+fn parse_name_value_tags(rdns: &Name<'_>) -> Vec<u8> {
let mut tags = vec![];
for rdn in rdns.unwrap_read().clone() {
let mut attributes = rdn.collect::<Vec<_>>();
@@ -168,13 +168,13 @@
#[pyo3::prelude::pyfunction]
fn test_parse_certificate(data: &[u8]) -> Result<TestCertificate,
CryptographyError> {
- let mut cert = asn1::parse_single::<Certificate<'_>>(data)?;
+ let cert = asn1::parse_single::<Certificate<'_>>(data)?;
Ok(TestCertificate {
not_before_tag: time_tag(&cert.tbs_cert.validity.not_before),
not_after_tag: time_tag(&cert.tbs_cert.validity.not_after),
- issuer_value_tags: parse_name_value_tags(&mut cert.tbs_cert.issuer),
- subject_value_tags: parse_name_value_tags(&mut cert.tbs_cert.subject),
+ issuer_value_tags: parse_name_value_tags(&cert.tbs_cert.issuer),
+ subject_value_tags: parse_name_value_tags(&cert.tbs_cert.subject),
})
}
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/cryptography-41.0.2/src/rust/src/backend/dh.rs
new/cryptography-41.0.3/src/rust/src/backend/dh.rs
--- old/cryptography-41.0.2/src/rust/src/backend/dh.rs 2023-07-11
05:14:09.000000000 +0200
+++ new/cryptography-41.0.3/src/rust/src/backend/dh.rs 2023-08-01
22:02:41.000000000 +0200
@@ -102,16 +102,7 @@
.transpose()?;
let g = utils::py_int_to_bn(py, numbers.getattr(pyo3::intern!(py, "g"))?)?;
- let dh = openssl::dh::Dh::from_pqg(p, q, g)?;
- if !dh.check_key()? {
- return Err(CryptographyError::from(
- pyo3::exceptions::PyValueError::new_err(
- "DH private numbers did not pass safety checks.",
- ),
- ));
- }
-
- Ok(dh)
+ Ok(openssl::dh::Dh::from_pqg(p, q, g)?)
}
#[pyo3::prelude::pyfunction]
@@ -127,7 +118,16 @@
let pub_key = utils::py_int_to_bn(py,
public_numbers.getattr(pyo3::intern!(py, "y"))?)?;
let priv_key = utils::py_int_to_bn(py, numbers.getattr(pyo3::intern!(py,
"x"))?)?;
- let pkey = openssl::pkey::PKey::from_dh(dh.set_key(pub_key, priv_key)?)?;
+ let dh = dh.set_key(pub_key, priv_key)?;
+ if !dh.check_key()? {
+ return Err(CryptographyError::from(
+ pyo3::exceptions::PyValueError::new_err(
+ "DH private numbers did not pass safety checks.",
+ ),
+ ));
+ }
+
+ let pkey = openssl::pkey::PKey::from_dh(dh)?;
Ok(DHPrivateKey { pkey })
}
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/cryptography-41.0.2/src/rust/src/pool.rs
new/cryptography-41.0.3/src/rust/src/pool.rs
--- old/cryptography-41.0.2/src/rust/src/pool.rs 2023-07-11
05:14:09.000000000 +0200
+++ new/cryptography-41.0.3/src/rust/src/pool.rs 2023-08-01
22:02:41.000000000 +0200
@@ -52,6 +52,11 @@
})
}
}
+
+ fn __traverse__(&self, visit: pyo3::PyVisit<'_>) -> Result<(),
pyo3::PyTraverseError> {
+ visit.call(&self.create_fn)?;
+ Ok(())
+ }
}
#[pyo3::pymethods]
++++++ vendor.tar.zst ++++++
Binary files /var/tmp/diff_new_pack.JoYbx7/_old and
/var/tmp/diff_new_pack.JoYbx7/_new differ
