Hello community, here is the log from the commit of package python3-Twisted for openSUSE:Factory checked in at 2016-09-26 12:33:39 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/python3-Twisted (Old) and /work/SRC/openSUSE:Factory/.python3-Twisted.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "python3-Twisted" Changes: -------- --- /work/SRC/openSUSE:Factory/python3-Twisted/python3-Twisted.changes 2016-09-11 00:52:49.000000000 +0200 +++ /work/SRC/openSUSE:Factory/.python3-Twisted.new/python3-Twisted.changes 2016-09-26 12:33:40.000000000 +0200 @@ -1,0 +2,16 @@ +Sun Sep 18 15:49:14 UTC 2016 - a...@gmx.de + +- update to version 16.4.1: + * Twisted Core + + Client and server TLS connections made via the client TLS + endpoint and the server SSL endpoint, as well as any other code + that uses twisted.internet.ssl.CertificateOptions, now support + ChaCha20 ciphers when available from the OpenSSL on the + system. (#8760) + + Client and server TLS connections made via the client TLS + endpoint and the server SSL endpoint, as well as any other code + that uses twisted.internet.ssl.CertificateOptions, no longer + accept 3DES- based cipher suites by default, to defend against + SWEET32. (#8781) + +------------------------------------------------------------------- Old: ---- Twisted-16.4.0.tar.bz2 New: ---- Twisted-16.4.1.tar.bz2 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ python3-Twisted.spec ++++++ --- /var/tmp/diff_new_pack.7SGwSg/_old 2016-09-26 12:33:41.000000000 +0200 +++ /var/tmp/diff_new_pack.7SGwSg/_new 2016-09-26 12:33:41.000000000 +0200 @@ -17,7 +17,7 @@ Name: python3-Twisted -Version: 16.4.0 +Version: 16.4.1 Release: 0 Url: http://twistedmatrix.com/ Summary: An asynchronous networking framework written in Python ++++++ Twisted-16.4.0.tar.bz2 -> Twisted-16.4.1.tar.bz2 ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/Twisted-16.4.0/NEWS new/Twisted-16.4.1/NEWS --- old/Twisted-16.4.0/NEWS 2016-08-26 20:13:25.000000000 +0200 +++ new/Twisted-16.4.1/NEWS 2016-09-14 18:48:38.000000000 +0200 @@ -1,6 +1,72 @@ Ticket numbers in this file can be looked up by visiting http://twistedmatrix.com/trac/ticket/<number> +Twisted Core 16.4.1 (2016-09-07) +================================ + +Features +-------- + - Client and server TLS connections made via the client TLS endpoint + and the server SSL endpoint, as well as any other code that uses + twisted.internet.ssl.CertificateOptions, now support ChaCha20 + ciphers when available from the OpenSSL on the system. (#8760) + +Bugfixes +-------- + - Client and server TLS connections made via the client TLS endpoint + and the server SSL endpoint, as well as any other code that uses + twisted.internet.ssl.CertificateOptions, no longer accept 3DES- + based cipher suites by default, to defend against SWEET32. (#8781) + + +Twisted Conch 16.4.1 (2016-09-07) +================================= + +No significant changes have been made for this release. + + +Twisted Mail 16.4.1 (2016-09-07) +================================ + +No significant changes have been made for this release. + + +Twisted Names 16.4.1 (2016-09-07) +================================= + +No significant changes have been made for this release. + + +Twisted News 16.4.1 (2016-09-07) +================================ + +No significant changes have been made for this release. + + +Twisted Pair 16.4.1 (2016-09-07) +================================ + +No significant changes have been made for this release. + + +Twisted Runner 16.4.1 (2016-09-07) +================================== + +No significant changes have been made for this release. + + +Twisted Web 16.4.1 (2016-09-07) +=============================== + +No significant changes have been made for this release. + + +Twisted Words 16.4.1 (2016-09-07) +================================= + +No significant changes have been made for this release. + + Twisted Core 16.4.0 (2016-08-25) ================================ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/Twisted-16.4.0/PKG-INFO new/Twisted-16.4.1/PKG-INFO --- old/Twisted-16.4.0/PKG-INFO 2016-08-28 02:43:39.000000000 +0200 +++ new/Twisted-16.4.1/PKG-INFO 2016-09-14 18:50:18.000000000 +0200 @@ -1,6 +1,6 @@ Metadata-Version: 1.1 Name: Twisted -Version: 16.4.0 +Version: 16.4.1 Summary: An asynchronous networking framework written in Python Home-page: http://twistedmatrix.com/ Author: Glyph Lefkowitz diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/Twisted-16.4.0/README.rst new/Twisted-16.4.1/README.rst --- old/Twisted-16.4.0/README.rst 2016-08-27 21:26:57.000000000 +0200 +++ new/Twisted-16.4.1/README.rst 2016-09-14 18:48:38.000000000 +0200 @@ -1,4 +1,4 @@ -Twisted 16.4.0 +Twisted 16.4.1 ============== |pypi| @@ -15,7 +15,7 @@ * idnar flips the "days since glyph has bought a vanity domain name" counter back over to zero -For information on what's new in Twisted 16.4.0, see the `NEWS <NEWS>`_ file that comes with the distribution. +For information on what's new in Twisted 16.4.1, see the `NEWS <NEWS>`_ file that comes with the distribution. What is this? diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/Twisted-16.4.0/Twisted.egg-info/PKG-INFO new/Twisted-16.4.1/Twisted.egg-info/PKG-INFO --- old/Twisted-16.4.0/Twisted.egg-info/PKG-INFO 2016-08-28 02:43:35.000000000 +0200 +++ new/Twisted-16.4.1/Twisted.egg-info/PKG-INFO 2016-09-14 18:50:15.000000000 +0200 @@ -1,6 +1,6 @@ Metadata-Version: 1.1 Name: Twisted -Version: 16.4.0 +Version: 16.4.1 Summary: An asynchronous networking framework written in Python Home-page: http://twistedmatrix.com/ Author: Glyph Lefkowitz diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/Twisted-16.4.0/twisted/_version.py new/Twisted-16.4.1/twisted/_version.py --- old/Twisted-16.4.0/twisted/_version.py 2016-08-26 20:13:25.000000000 +0200 +++ new/Twisted-16.4.1/twisted/_version.py 2016-09-14 18:48:38.000000000 +0200 @@ -8,4 +8,4 @@ """ from twisted.python import versions -version = versions.Version('twisted', 16, 4, 0) +version = versions.Version('twisted', 16, 4, 1) diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/Twisted-16.4.0/twisted/internet/_sslverify.py new/Twisted-16.4.1/twisted/internet/_sslverify.py --- old/Twisted-16.4.0/twisted/internet/_sslverify.py 2016-08-26 20:13:25.000000000 +0200 +++ new/Twisted-16.4.1/twisted/internet/_sslverify.py 2016-09-14 18:48:38.000000000 +0200 @@ -1853,13 +1853,15 @@ # The general intent is: # - Prefer cipher suites that offer perfect forward secrecy (DHE/ECDHE), # - prefer ECDHE over DHE for better performance, -# - prefer any AES-GCM over any AES-CBC for better performance and security, -# - use 3DES as fallback which is secure but slow, +# - prefer any AES-GCM and ChaCha20 over any AES-CBC for better performance and +# security, +# - prefer AES-GCM to ChaCha20 because AES hardware support is common, # - disable NULL authentication, MD5 MACs and DSS for security reasons. # defaultCiphers = OpenSSLAcceptableCiphers.fromOpenSSLCipherString( - "ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:" - "DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS" + "ECDH+AESGCM:ECDH+CHACHA20:DH+AESGCM:DH+CHACHA20:ECDH+AES256:DH+AES256:" + "ECDH+AES128:DH+AES:RSA+AESGCM:RSA+AES:" + "!aNULL:!MD5:!DSS" ) _defaultCurveName = u"prime256v1"
