Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package python-httptools for
openSUSE:Factory checked in at 2022-08-04 13:23:20
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/python-httptools (Old)
and /work/SRC/openSUSE:Factory/.python-httptools.new.1521 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "python-httptools"
Thu Aug 4 13:23:20 2022 rev:3 rq:990438 version:0.4.0
Changes:
--------
--- /work/SRC/openSUSE:Factory/python-httptools/python-httptools.changes
2022-01-10 23:54:37.676858224 +0100
+++
/work/SRC/openSUSE:Factory/.python-httptools.new.1521/python-httptools.changes
2022-08-04 13:23:34.176516728 +0200
@@ -1,0 +2,9 @@
+Mon Jul 18 20:30:01 UTC 2022 - Ben Greiner <c...@bnavigator.de>
+
+- update to version 0.4.0
+ * Bump bundled http-parser to 2.9.4 and llhttp to 6.0.6
+ fixes CVE-2021-22959 & CVE-2021-22960
+ (bsc#1191602 and bsc#1191601)
+- The above was already the case for the rpm package
+
+-------------------------------------------------------------------
Old:
----
httptools-0.3.0.tar.gz
New:
----
httptools-0.4.0.tar.gz
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ python-httptools.spec ++++++
--- /var/tmp/diff_new_pack.6pzdKp/_old 2022-08-04 13:23:34.688518181 +0200
+++ /var/tmp/diff_new_pack.6pzdKp/_new 2022-08-04 13:23:34.700518215 +0200
@@ -16,10 +16,10 @@
#
-%{?!python_module:%define python_module() python-%{**} python3-%{**}}
+%{?!python_module:%define python_module() python3-%{**}}
%define skip_python2 1
Name: python-httptools
-Version: 0.3.0
+Version: 0.4.0
Release: 0
Summary: Python framework independent HTTP protocol utils
License: MIT
@@ -56,14 +56,16 @@
%fdupes %{buildroot}%{$python_sitearch}
}
-%if 0%{?python_version_nodots} > 36
%check
+%if 0%{suse_version} >= 1550
+# pytest on suse <= 15.4 does not support the required pytest importlib import
mode
%pytest_arch -k 'not test_parser_response_1'
%endif
%files %{python_files}
%doc README.md
%license LICENSE
-%{python_sitearch}/*
+%{python_sitearch}/httptools
+%{python_sitearch}/httptools-%{version}*-info
%changelog
++++++ httptools-0.3.0.tar.gz -> httptools-0.4.0.tar.gz ++++++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/httptools-0.3.0/.github/workflows/release.yml
new/httptools-0.4.0/.github/workflows/release.yml
--- old/httptools-0.3.0/.github/workflows/release.yml 2021-08-10
20:09:32.000000000 +0200
+++ new/httptools-0.4.0/.github/workflows/release.yml 2022-02-22
19:41:30.000000000 +0100
@@ -113,7 +113,7 @@
with:
platforms: arm64
- - uses: pypa/cibuildwheel@v2.1.1
+ - uses: pypa/cibuildwheel@v2.2.2
env:
CIBW_BUILD_VERBOSITY: 1
CIBW_BUILD: ${{ matrix.cibw_python }}
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/httptools-0.3.0/.github/workflows/tests.yml
new/httptools-0.4.0/.github/workflows/tests.yml
--- old/httptools-0.3.0/.github/workflows/tests.yml 2021-08-10
20:09:32.000000000 +0200
+++ new/httptools-0.4.0/.github/workflows/tests.yml 2022-02-22
19:41:30.000000000 +0100
@@ -14,7 +14,7 @@
runs-on: ${{ matrix.os }}
strategy:
matrix:
- python-version: [3.5, 3.6, 3.7, 3.8, 3.9, 3.10.0-rc.1]
+ python-version: ["3.5", "3.6", "3.7", "3.8", "3.9", "3.10"]
os: [windows-latest, ubuntu-latest, macos-latest]
exclude:
# Python 3.5 is unable to properly
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/httptools-0.3.0/httptools/_version.py
new/httptools-0.4.0/httptools/_version.py
--- old/httptools-0.3.0/httptools/_version.py 2021-08-10 20:09:32.000000000
+0200
+++ new/httptools-0.4.0/httptools/_version.py 2022-02-22 19:41:30.000000000
+0100
@@ -10,4 +10,4 @@
# supported platforms, publish the packages on PyPI, merge the PR
# to the target branch, create a Git tag pointing to the commit.
-__version__ = '0.3.0'
+__version__ = '0.4.0'
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/httptools-0.3.0/tests/test_parser.py
new/httptools-0.4.0/tests/test_parser.py
--- old/httptools-0.3.0/tests/test_parser.py 2021-08-10 20:09:32.000000000
+0200
+++ new/httptools-0.4.0/tests/test_parser.py 2022-02-22 19:41:30.000000000
+0100
@@ -101,6 +101,9 @@
self.assertFalse(m.on_chunk_header.called)
self.assertFalse(m.on_chunk_complete.called)
+ def test_parser_response_1b(self):
+ p = httptools.HttpResponseParser(None)
+
with self.assertRaisesRegex(
httptools.HttpParserError,
'Expected HTTP/'):
