[gentoo-commits] repo/gentoo:master commit in: dev-python/pysaml2/files/
commit: 7ef77620eb59ce6c47f264c0ae9c93994396b7fe Author: Michael Mair-Keimberger gmail com> AuthorDate: Sat Dec 19 17:35:23 2020 + Commit: Bernard Cafarelli gentoo org> CommitDate: Sun Dec 20 18:25:51 2020 + URL:https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=7ef77620 dev-python/pysaml2: remove unused patch(es) Package-Manager: Portage-3.0.12, Repoman-3.0.2 Signed-off-by: Michael Mair-Keimberger gmail.com> Signed-off-by: Bernard Cafarelli gentoo.org> dev-python/pysaml2/files/cve-2020-5390.patch | 189 --- 1 file changed, 189 deletions(-) diff --git a/dev-python/pysaml2/files/cve-2020-5390.patch b/dev-python/pysaml2/files/cve-2020-5390.patch deleted file mode 100644 index bef46808d92..000 --- a/dev-python/pysaml2/files/cve-2020-5390.patch +++ /dev/null @@ -1,189 +0,0 @@ -From 5e9d5acbcd8ae45c4e736ac521fd2df5b1c62e25 Mon Sep 17 00:00:00 2001 -From: Ivan Kanakarakis -Date: Sat, 4 Jan 2020 00:39:47 +0200 -Subject: [PATCH] Fix XML Signature Wrapping (XSW) vulnerabilities - -PySAML2 did not check that the signature in a SAML document is enveloped and thus -XML signature wrapping (XSW) was effective. - -The signature information and the node/object that is signed can be in different places -and thus the signature verification will succeed, but the wrong data will be used. This -specifically affects the verification of assertions that have been signed. - -This was assigned CVE-2020-5390 - -Thanks to Alexey Sintsov and Yuri Goltsev from HERE Technologies to report this. - -+ + + + + + + + - -In more detail: - -libxml2 follows the xmldsig-core specification. The xmldsig specification is way too -general. saml-core reuses the xmldsig specification, but constrains it to use of -specific facilities. The implementation of the SAML specification is responsible to -enforce those constraints. libxml2/xmlsec1 are not aware of those constraints and thus -process the document based on the full/general xmldsig rules. - -What is happening is the following: - -- xmldsig-core allows the signature-information and the data that was signed to be in - different places. This works by setting the URI attribute of the Reference element. - The URI attribute contains an optional identifier of the object being signed. (see - "4.4.3 The Reference Element" -- https://www.w3.org/TR/xmldsig-core1/#sec-Reference) - This identifier is actually a pointer that can be defined in many different ways; from - XPath expressions that need to be executed(!), to a full URL that should be fetched(!) - in order to recalculate the signature. - -- saml-core section "5.4 XML Signature Profile" defines constrains on the xmldsig-core - facilities. It explicitly dictates that enveloped signatures are the only signatures - allowed. This mean that: - * Assertion/RequestType/ResponseType elements must have an ID attribute - * signatures must have a single Reference element - * the Reference element must have a URI attribute - * the URI attribute contains an anchor - * the anchor points to the enclosing element's ID attribute - -xmlsec1 does the right thing - it follows the reference URI pointer and validates the -assertion. But, the pointer points to an assertion in another part of the document; not -the assertion in which the signature is embedded/enveloped. SAML processing thinks that -the signature is fine (that's what xmlsec1 said), and gets the assertion data from the -assertion that contains the signature - but that assertion was never validated. The -issue is that pysaml2 does not enforce the constrains on the signature validation -facilities of xmldsig-core, that the saml-core spec defines. - -The solution is simple; all we need is to make sure that assertions with signatures (1) -contain one reference element that (2) has a URI attribute (3) that is an anchor that -(4) points to the assertion in which the signature is embedded. If those conditions are -met then we're good, otherwise we should fail the verification. - -Signed-off-by: Ivan Kanakarakis - src/saml2/sigver.py | 49 - tests/saml2_response_xsw.xml | 6 + - tests/test_xsw.py| 44 - 3 files changed, 99 insertions(+) - create mode 100644 tests/saml2_response_xsw.xml - create mode 100644 tests/test_xsw.py - -diff --git a/src/saml2/sigver.py b/src/saml2/sigver.py -index cbeca41f..c3d298a9 100644 a/src/saml2/sigver.py -+++ b/src/saml2/sigver.py -@@ -1476,6 +1476,55 @@ def _check_signature(self, decoded_xml, item, node_name=NODE_NAME, origdoc=None, - if not certs: - raise MissingKey(_issuer) - -+# saml-core section "5.4 XML Signature Profile" defines constrains on the -+# xmldsig-core facilities. It explicitly dictates that enveloped signatures -+# are the only signatures allowed. This mean that: -+# *
[gentoo-commits] repo/gentoo:master commit in: dev-python/pysaml2/
commit: 40bf517b4d510c8bc797714c0429be55ffcdbb48 Author: Michał Górny gentoo org> AuthorDate: Fri Nov 27 16:13:54 2020 + Commit: Michał Górny gentoo org> CommitDate: Fri Nov 27 16:18:27 2020 + URL:https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=40bf517b dev-python/pysaml2: Remove old Signed-off-by: Michał Górny gentoo.org> dev-python/pysaml2/Manifest| 1 - dev-python/pysaml2/pysaml2-4.6.5-r1.ebuild | 42 -- 2 files changed, 43 deletions(-) diff --git a/dev-python/pysaml2/Manifest b/dev-python/pysaml2/Manifest index 70d8cff9845..0123be1ab9c 100644 --- a/dev-python/pysaml2/Manifest +++ b/dev-python/pysaml2/Manifest @@ -1,2 +1 @@ -DIST pysaml2-4.6.5.tar.gz 319131 BLAKE2B d2b78d00cc5e65717bae267fbe88c781d4583996025eb4a9602030215f842a29b625ba41905e867d887e4564bbacdb1251170af46e5f00cc0f9d202c7741418d SHA512 da9cd23f9bef37da1079bba539f91df6a79190fcf8ab20b4c025fd8eae9b147799623dcc1376acfb6ff06c8566a58d478f8da7765195fe058d54007a2ebe79bb DIST pysaml2-6.1.0.tar.gz 325101 BLAKE2B 254d1c57e03f13346db89ee18a885d03ce55ed6eec5649d5c764ed6bf97ff20e2a0715e5678409125737acf8fda464c331a17ebe422cc96518bdd3825cf8db05 SHA512 4b3f942a352e6e9ad8df9d3c41269d00dda9f4a71286a4030556d35e5e3946c214fa5c2942f529b1f1ee4dfc30a4d388dffa204f6bdc7614f65b8a3a37ea5ff9 diff --git a/dev-python/pysaml2/pysaml2-4.6.5-r1.ebuild b/dev-python/pysaml2/pysaml2-4.6.5-r1.ebuild deleted file mode 100644 index 9d807ccf40e..000 --- a/dev-python/pysaml2/pysaml2-4.6.5-r1.ebuild +++ /dev/null @@ -1,42 +0,0 @@ -# Copyright 1999-2020 Gentoo Authors -# Distributed under the terms of the GNU General Public License v2 - -EAPI=7 -PYTHON_COMPAT=( python3_{6,7} ) - -inherit distutils-r1 - -DESCRIPTION="Python implementation of SAML Version 2 to be used in a WSGI environment" -HOMEPAGE="https://github.com/rohe/pysaml2; -SRC_URI="mirror://pypi/${PN:0:1}/${PN}/${P}.tar.gz" - -LICENSE="Apache-2.0" -SLOT="0" -KEYWORDS="amd64 ~arm64 x86" -IUSE="" - -PATCHES=( -) - -DEPEND="dev-python/setuptools[${PYTHON_USEDEP}]" -RDEPEND=">=dev-python/cryptography-1.4[${PYTHON_USEDEP}] - dev-python/defusedxml[${PYTHON_USEDEP}] - dev-python/future[${PYTHON_USEDEP}] - dev-python/pyopenssl[${PYTHON_USEDEP}] - dev-python/python-dateutil[${PYTHON_USEDEP}] - dev-python/pytz[${PYTHON_USEDEP}] - >=dev-python/requests-1.0.0[${PYTHON_USEDEP}] - dev-python/six[${PYTHON_USEDEP}]" - -PATCHES=( "${FILESDIR}/cve-2020-5390.patch" ) - -python_prepare_all() { - # Work-around for bug 675824 - # With older setuptools, version = file:... is not supported, see Note 1 in: - # https://setuptools.readthedocs.io/en/latest/setuptools.html#metadata - # In such cases, hardcode the version - has_version ">=dev-python/setuptools-39.2.0" || \ - sed --in-place "s/^version = file:.*\$/version = ${PV}/" setup.cfg - ## - distutils-r1_python_prepare_all -}
[gentoo-commits] repo/gentoo:master commit in: dev-python/pysaml2/
commit: e539e64d0d5667a73d26e163c6e9ea28b64ff610 Author: Michał Górny gentoo org> AuthorDate: Wed Nov 25 09:35:47 2020 + Commit: Michał Górny gentoo org> CommitDate: Wed Nov 25 09:46:15 2020 + URL:https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=e539e64d dev-python/pysaml2: Mark ALLARCHES Signed-off-by: Michał Górny gentoo.org> dev-python/pysaml2/metadata.xml | 1 + 1 file changed, 1 insertion(+) diff --git a/dev-python/pysaml2/metadata.xml b/dev-python/pysaml2/metadata.xml index 34133f9748f..594322f094d 100644 --- a/dev-python/pysaml2/metadata.xml +++ b/dev-python/pysaml2/metadata.xml @@ -12,6 +12,7 @@ PySAML2 is a pure python implementation of SAML Version 2 Standard. It contains all necessary pieces for building a SAML2 service provider or an identity provider. The distribution contains examples of both. Originally written to work in a WSGI environment there are extensions that allow you to use it with other frameworks. + pysaml2 rohe/pysaml2
[gentoo-commits] repo/gentoo:master commit in: dev-python/pysaml2/
commit: 12a67c9621b22facaa542083029c85356b7bff15 Author: Matthew Thode gentoo org> AuthorDate: Sat Oct 17 21:30:34 2020 + Commit: Matthew Thode gentoo org> CommitDate: Sat Oct 17 21:53:45 2020 + URL:https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=12a67c96 dev-python/pysaml2: 6.1.0 bump Package-Manager: Portage-3.0.8, Repoman-3.0.1 Signed-off-by: Matthew Thode gentoo.org> dev-python/pysaml2/Manifest | 1 + dev-python/pysaml2/pysaml2-6.1.0.ebuild | 26 ++ 2 files changed, 27 insertions(+) diff --git a/dev-python/pysaml2/Manifest b/dev-python/pysaml2/Manifest index afe789cd593..70d8cff9845 100644 --- a/dev-python/pysaml2/Manifest +++ b/dev-python/pysaml2/Manifest @@ -1 +1,2 @@ DIST pysaml2-4.6.5.tar.gz 319131 BLAKE2B d2b78d00cc5e65717bae267fbe88c781d4583996025eb4a9602030215f842a29b625ba41905e867d887e4564bbacdb1251170af46e5f00cc0f9d202c7741418d SHA512 da9cd23f9bef37da1079bba539f91df6a79190fcf8ab20b4c025fd8eae9b147799623dcc1376acfb6ff06c8566a58d478f8da7765195fe058d54007a2ebe79bb +DIST pysaml2-6.1.0.tar.gz 325101 BLAKE2B 254d1c57e03f13346db89ee18a885d03ce55ed6eec5649d5c764ed6bf97ff20e2a0715e5678409125737acf8fda464c331a17ebe422cc96518bdd3825cf8db05 SHA512 4b3f942a352e6e9ad8df9d3c41269d00dda9f4a71286a4030556d35e5e3946c214fa5c2942f529b1f1ee4dfc30a4d388dffa204f6bdc7614f65b8a3a37ea5ff9 diff --git a/dev-python/pysaml2/pysaml2-6.1.0.ebuild b/dev-python/pysaml2/pysaml2-6.1.0.ebuild new file mode 100644 index 000..3be144be98e --- /dev/null +++ b/dev-python/pysaml2/pysaml2-6.1.0.ebuild @@ -0,0 +1,26 @@ +# Copyright 1999-2020 Gentoo Authors +# Distributed under the terms of the GNU General Public License v2 + +EAPI=7 +PYTHON_COMPAT=( python3_{7,8} ) +DISTUTILS_USE_SETUPTOOLS=bdepend + +inherit distutils-r1 + +DESCRIPTION="Python implementation of SAML Version 2 to be used in a WSGI environment" +HOMEPAGE="https://github.com/rohe/pysaml2; +SRC_URI="mirror://pypi/${PN:0:1}/${PN}/${P}.tar.gz" + +LICENSE="Apache-2.0" +SLOT="0" +KEYWORDS="~amd64 ~arm64 ~x86" + +RDEPEND=" + >=dev-python/cryptography-1.4[${PYTHON_USEDEP}] + dev-python/defusedxml[${PYTHON_USEDEP}] + dev-python/pyopenssl[${PYTHON_USEDEP}] + dev-python/python-dateutil[${PYTHON_USEDEP}] + dev-python/pytz[${PYTHON_USEDEP}] + >=dev-python/requests-1.0.0[${PYTHON_USEDEP}] + dev-python/six[${PYTHON_USEDEP}] +"
[gentoo-commits] repo/gentoo:master commit in: dev-python/pysaml2/, dev-python/pysaml2/files/
commit: e7a247aadc5e35bf5aed61f78f7e8b0d9ed21dfb Author: Matthew Thode gentoo org> AuthorDate: Fri Feb 28 16:28:00 2020 + Commit: Matthew Thode gentoo org> CommitDate: Fri Feb 28 16:29:44 2020 + URL:https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=e7a247aa dev-python/pysaml2: 4.6.5-r1 added fast stable for CVE-2020-5390 Bug: https://bugs.gentoo.org/710732 Package-Manager: Portage-2.3.84, Repoman-2.3.20 RepoMan-Options: --force Signed-off-by: Matthew Thode gentoo.org> dev-python/pysaml2/files/cve-2020-5390.patch | 189 +++ dev-python/pysaml2/metadata.xml | 2 +- dev-python/pysaml2/pysaml2-4.6.5-r1.ebuild | 42 ++ 3 files changed, 232 insertions(+), 1 deletion(-) diff --git a/dev-python/pysaml2/files/cve-2020-5390.patch b/dev-python/pysaml2/files/cve-2020-5390.patch new file mode 100644 index 000..bef46808d92 --- /dev/null +++ b/dev-python/pysaml2/files/cve-2020-5390.patch @@ -0,0 +1,189 @@ +From 5e9d5acbcd8ae45c4e736ac521fd2df5b1c62e25 Mon Sep 17 00:00:00 2001 +From: Ivan Kanakarakis +Date: Sat, 4 Jan 2020 00:39:47 +0200 +Subject: [PATCH] Fix XML Signature Wrapping (XSW) vulnerabilities + +PySAML2 did not check that the signature in a SAML document is enveloped and thus +XML signature wrapping (XSW) was effective. + +The signature information and the node/object that is signed can be in different places +and thus the signature verification will succeed, but the wrong data will be used. This +specifically affects the verification of assertions that have been signed. + +This was assigned CVE-2020-5390 + +Thanks to Alexey Sintsov and Yuri Goltsev from HERE Technologies to report this. + ++ + + + + + + + + +In more detail: + +libxml2 follows the xmldsig-core specification. The xmldsig specification is way too +general. saml-core reuses the xmldsig specification, but constrains it to use of +specific facilities. The implementation of the SAML specification is responsible to +enforce those constraints. libxml2/xmlsec1 are not aware of those constraints and thus +process the document based on the full/general xmldsig rules. + +What is happening is the following: + +- xmldsig-core allows the signature-information and the data that was signed to be in + different places. This works by setting the URI attribute of the Reference element. + The URI attribute contains an optional identifier of the object being signed. (see + "4.4.3 The Reference Element" -- https://www.w3.org/TR/xmldsig-core1/#sec-Reference) + This identifier is actually a pointer that can be defined in many different ways; from + XPath expressions that need to be executed(!), to a full URL that should be fetched(!) + in order to recalculate the signature. + +- saml-core section "5.4 XML Signature Profile" defines constrains on the xmldsig-core + facilities. It explicitly dictates that enveloped signatures are the only signatures + allowed. This mean that: + * Assertion/RequestType/ResponseType elements must have an ID attribute + * signatures must have a single Reference element + * the Reference element must have a URI attribute + * the URI attribute contains an anchor + * the anchor points to the enclosing element's ID attribute + +xmlsec1 does the right thing - it follows the reference URI pointer and validates the +assertion. But, the pointer points to an assertion in another part of the document; not +the assertion in which the signature is embedded/enveloped. SAML processing thinks that +the signature is fine (that's what xmlsec1 said), and gets the assertion data from the +assertion that contains the signature - but that assertion was never validated. The +issue is that pysaml2 does not enforce the constrains on the signature validation +facilities of xmldsig-core, that the saml-core spec defines. + +The solution is simple; all we need is to make sure that assertions with signatures (1) +contain one reference element that (2) has a URI attribute (3) that is an anchor that +(4) points to the assertion in which the signature is embedded. If those conditions are +met then we're good, otherwise we should fail the verification. + +Signed-off-by: Ivan Kanakarakis +--- + src/saml2/sigver.py | 49 + tests/saml2_response_xsw.xml | 6 + + tests/test_xsw.py| 44 + 3 files changed, 99 insertions(+) + create mode 100644 tests/saml2_response_xsw.xml + create mode 100644 tests/test_xsw.py + +diff --git a/src/saml2/sigver.py b/src/saml2/sigver.py +index cbeca41f..c3d298a9 100644 +--- a/src/saml2/sigver.py b/src/saml2/sigver.py +@@ -1476,6 +1476,55 @@ def _check_signature(self, decoded_xml, item, node_name=NODE_NAME, origdoc=None, + if not certs: + raise MissingKey(_issuer) + ++# saml-core section "5.4 XML Signature Profile" defines constrains on the ++# xmldsig-core facilities. It explicitly
[gentoo-commits] repo/gentoo:master commit in: dev-python/pysaml2/
commit: fb6782d4bdfaedc803fd0e70791f5af297210c59 Author: Matthew Thode gentoo org> AuthorDate: Fri Feb 28 16:29:16 2020 + Commit: Matthew Thode gentoo org> CommitDate: Fri Feb 28 16:29:46 2020 + URL:https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=fb6782d4 dev-python/pysaml2: cleanup Bug: https://bugs.gentoo.org/710732 Package-Manager: Portage-2.3.84, Repoman-2.3.20 Signed-off-by: Matthew Thode gentoo.org> dev-python/pysaml2/Manifest| 1 - dev-python/pysaml2/pysaml2-4.6.3-r1.ebuild | 40 -- dev-python/pysaml2/pysaml2-4.6.3.ebuild| 29 -- dev-python/pysaml2/pysaml2-4.6.5.ebuild| 40 -- 4 files changed, 110 deletions(-) diff --git a/dev-python/pysaml2/Manifest b/dev-python/pysaml2/Manifest index c89d751ca28..afe789cd593 100644 --- a/dev-python/pysaml2/Manifest +++ b/dev-python/pysaml2/Manifest @@ -1,2 +1 @@ -DIST pysaml2-4.6.3.tar.gz 316979 BLAKE2B cf393075903269ce93dd219bd23479949ce8e39383d8150f8ee30185733569fe79c7421b87b3439b95e707f17d5f513abfa2610be76441b8f18d8f75a5a9fdd3 SHA512 259f7395afad44caac32453a03bbdaf8c464adeeb856b78786b665281dbe75b37e8054efaf945a7d10333c0b09d9f516d606e95b157aed34c1cd0821b7255b9d DIST pysaml2-4.6.5.tar.gz 319131 BLAKE2B d2b78d00cc5e65717bae267fbe88c781d4583996025eb4a9602030215f842a29b625ba41905e867d887e4564bbacdb1251170af46e5f00cc0f9d202c7741418d SHA512 da9cd23f9bef37da1079bba539f91df6a79190fcf8ab20b4c025fd8eae9b147799623dcc1376acfb6ff06c8566a58d478f8da7765195fe058d54007a2ebe79bb diff --git a/dev-python/pysaml2/pysaml2-4.6.3-r1.ebuild b/dev-python/pysaml2/pysaml2-4.6.3-r1.ebuild deleted file mode 100644 index 4a56f65c6b8..000 --- a/dev-python/pysaml2/pysaml2-4.6.3-r1.ebuild +++ /dev/null @@ -1,40 +0,0 @@ -# Copyright 1999-2020 Gentoo Authors -# Distributed under the terms of the GNU General Public License v2 - -EAPI=6 -PYTHON_COMPAT=( python3_6 ) - -inherit distutils-r1 - -DESCRIPTION="Python implementation of SAML Version 2 to be used in a WSGI environment" -HOMEPAGE="https://github.com/rohe/pysaml2; -SRC_URI="mirror://pypi/${PN:0:1}/${PN}/${P}.tar.gz" - -LICENSE="Apache-2.0" -SLOT="0" -KEYWORDS="~amd64 ~arm64 ~x86" -IUSE="" - -PATCHES=( -) - -DEPEND="dev-python/setuptools[${PYTHON_USEDEP}]" -RDEPEND=">=dev-python/cryptography-1.4[${PYTHON_USEDEP}] - dev-python/defusedxml[${PYTHON_USEDEP}] - dev-python/future[${PYTHON_USEDEP}] - dev-python/pyopenssl[${PYTHON_USEDEP}] - dev-python/python-dateutil[${PYTHON_USEDEP}] - dev-python/pytz[${PYTHON_USEDEP}] - >=dev-python/requests-1.0.0[${PYTHON_USEDEP}] - dev-python/six[${PYTHON_USEDEP}]" - -python_prepare_all() { - # Work-around for bug 675824 - # With older setuptools, version = file:... is not supported, see Note 1 in: - # https://setuptools.readthedocs.io/en/latest/setuptools.html#metadata - # In such cases, hardcode the version - has_version ">=dev-python/setuptools-39.2.0" || \ - sed --in-place "s/^version = file:.*\$/version = ${PV}/" setup.cfg - ## - distutils-r1_python_prepare_all -} diff --git a/dev-python/pysaml2/pysaml2-4.6.3.ebuild b/dev-python/pysaml2/pysaml2-4.6.3.ebuild deleted file mode 100644 index 2ebbc1fd51b..000 --- a/dev-python/pysaml2/pysaml2-4.6.3.ebuild +++ /dev/null @@ -1,29 +0,0 @@ -# Copyright 1999-2020 Gentoo Authors -# Distributed under the terms of the GNU General Public License v2 - -EAPI=6 -PYTHON_COMPAT=( python3_6 ) - -inherit distutils-r1 - -DESCRIPTION="Python implementation of SAML Version 2 to be used in a WSGI environment" -HOMEPAGE="https://github.com/rohe/pysaml2; -SRC_URI="mirror://pypi/${PN:0:1}/${PN}/${P}.tar.gz" - -LICENSE="Apache-2.0" -SLOT="0" -KEYWORDS="amd64 ~arm64 x86" -IUSE="" - -PATCHES=( -) - -DEPEND="dev-python/setuptools[${PYTHON_USEDEP}]" -RDEPEND=">=dev-python/cryptography-1.4[${PYTHON_USEDEP}] - dev-python/defusedxml[${PYTHON_USEDEP}] - dev-python/future[${PYTHON_USEDEP}] - dev-python/pyopenssl[${PYTHON_USEDEP}] - dev-python/python-dateutil[${PYTHON_USEDEP}] - dev-python/pytz[${PYTHON_USEDEP}] - >=dev-python/requests-1.0.0[${PYTHON_USEDEP}] - dev-python/six[${PYTHON_USEDEP}]" diff --git a/dev-python/pysaml2/pysaml2-4.6.5.ebuild b/dev-python/pysaml2/pysaml2-4.6.5.ebuild deleted file mode 100644 index a3f675d0b81..000 --- a/dev-python/pysaml2/pysaml2-4.6.5.ebuild +++ /dev/null @@ -1,40 +0,0 @@ -# Copyright 1999-2020 Gentoo Authors -# Distributed under the terms of the GNU General Public License v2 - -EAPI=7 -PYTHON_COMPAT=( python3_{6,7} ) - -inherit distutils-r1 - -DESCRIPTION="Python implementation of SAML Version 2 to be used in a WSGI environment" -HOMEPAGE="https://github.com/rohe/pysaml2; -SRC_URI="mirror://pypi/${PN:0:1}/${PN}/${P}.tar.gz" - -LICENSE="Apache-2.0" -SLOT="0" -KEYWORDS="amd64 ~arm64 x86" -IUSE="" - -PATCHES=( -) -
[gentoo-commits] repo/gentoo:master commit in: dev-python/pysaml2/files/
commit: 2fd4c9dcd2f329f676a0621fe164d56de31ea1c8 Author: Michael Mair-Keimberger gmail com> AuthorDate: Mon Apr 22 07:44:00 2019 + Commit: David Seifert gentoo org> CommitDate: Tue Apr 23 09:54:23 2019 + URL:https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=2fd4c9dc dev-python/pysaml2: remove unused patch(es) Closes: https://github.com/gentoo/gentoo/pull/11774 Signed-off-by: Michael Mair-Keimberger gmail.com> Signed-off-by: David Seifert gentoo.org> .../files/pysaml-4.0.2_CVE-2017-1000433.patch | 33 --- dev-python/pysaml2/files/xxe-4.0.2.patch | 305 - 2 files changed, 338 deletions(-) diff --git a/dev-python/pysaml2/files/pysaml-4.0.2_CVE-2017-1000433.patch b/dev-python/pysaml2/files/pysaml-4.0.2_CVE-2017-1000433.patch deleted file mode 100644 index 7abc765c298..000 --- a/dev-python/pysaml2/files/pysaml-4.0.2_CVE-2017-1000433.patch +++ /dev/null @@ -1,33 +0,0 @@ -From 6312a41e037954850867f29d329e5007df1424a5 Mon Sep 17 00:00:00 2001 -From: Ioannis Kakavas -Date: Tue, 12 Sep 2017 12:22:47 +0300 -Subject: [PATCH] Quick fix for the authentication bypass due to optimizations - #451 - - src/saml2/authn.py | 5 +++-- - 1 file changed, 3 insertions(+), 2 deletions(-) - -diff --git a/src/saml2/authn.py b/src/saml2/authn.py -index 1f2d02cf..1e1a220b 100644 a/src/saml2/authn.py -+++ b/src/saml2/authn.py -@@ -146,7 +146,8 @@ def __call__(self, cookie=None, policy_url=None, logo_url=None, - return resp - - def _verify(self, pwd, user): --assert is_equal(pwd, self.passwd[user]) -+if not is_equal(pwd, self.passwd[user]): -+raise ValueError("Wrong password") - - def verify(self, request, **kwargs): - """ -@@ -176,7 +177,7 @@ def verify(self, request, **kwargs): - return_to = create_return_url(self.return_to, _dict["query"][0], - **{self.query_param: "true"}) - resp = Redirect(return_to, headers=[cookie]) --except (AssertionError, KeyError): -+except (ValueError, KeyError): - resp = Unauthorized("Unknown user or wrong password") - - return resp diff --git a/dev-python/pysaml2/files/xxe-4.0.2.patch b/dev-python/pysaml2/files/xxe-4.0.2.patch deleted file mode 100644 index 8e1a2ef53cc..000 --- a/dev-python/pysaml2/files/xxe-4.0.2.patch +++ /dev/null @@ -1,305 +0,0 @@ -diff -Naur pysaml2/setup.py pysaml2.new/setup.py pysaml2/setup.py 2015-12-06 00:46:33.0 -0600 -+++ pysaml2.new/setup.py 2017-01-10 20:31:43.387413477 -0600 -@@ -17,6 +17,7 @@ - 'pytz', - 'pyOpenSSL', - 'python-dateutil', -+'defusedxml', - 'six' - ] - -diff -Naur pysaml2/src/saml2/__init__.py pysaml2.new/src/saml2/__init__.py pysaml2/src/saml2/__init__.py 2016-01-07 05:53:57.0 -0600 -+++ pysaml2.new/src/saml2/__init__.py 2017-01-10 20:34:04.171641116 -0600 -@@ -35,6 +35,7 @@ - import cElementTree as ElementTree - except ImportError: - from elementtree import ElementTree -+import defusedxml.ElementTree - - root_logger = logging.getLogger(__name__) - root_logger.level = logging.NOTSET -@@ -86,7 +87,7 @@ - """ - if not isinstance(xml_string, six.binary_type): - xml_string = xml_string.encode('utf-8') --tree = ElementTree.fromstring(xml_string) -+tree = defusedxml.ElementTree.fromstring(xml_string) - return create_class_from_element_tree(target_class, tree) - - -@@ -268,7 +269,7 @@ - - - def extension_element_from_string(xml_string): --element_tree = ElementTree.fromstring(xml_string) -+element_tree = defusedxml.ElementTree.fromstring(xml_string) - return _extension_element_from_element_tree(element_tree) - - -diff -Naur pysaml2/src/saml2/pack.py pysaml2.new/src/saml2/pack.py pysaml2/src/saml2/pack.py 2015-12-11 07:31:39.0 -0600 -+++ pysaml2.new/src/saml2/pack.py 2017-01-10 20:35:35.382435020 -0600 -@@ -37,6 +37,7 @@ - import cElementTree as ElementTree - except ImportError: - from elementtree import ElementTree -+import defusedxml.ElementTree - - NAMESPACE = "http://schemas.xmlsoap.org/soap/envelope/; - FORM_SPEC = """ -@@ -235,7 +236,7 @@ - :param text: The SOAP object as XML - :return: header parts and body as saml.samlbase instances - """ --envelope = ElementTree.fromstring(text) -+envelope = defusedxml.ElementTree.fromstring(text) - assert envelope.tag == '{%s}Envelope' % NAMESPACE - - # print(len(envelope)) -diff -Naur pysaml2/src/saml2/soap.py pysaml2.new/src/saml2/soap.py pysaml2/src/saml2/soap.py 2015-05-18 02:54:05.0 -0500 -+++ pysaml2.new/src/saml2/soap.py 2017-01-10 20:36:16.163808770 -0600 -@@ -19,6 +19,7 @@ - except ImportError: - #noinspection PyUnresolvedReferences - from elementtree import ElementTree -+import defusedxml.ElementTree - - - logger =
[gentoo-commits] repo/gentoo:master commit in: dev-python/pysaml2/
commit: 818d4cea619a2616e8ea576787c52b19a51884e1 Author: Matthew Thode gentoo org> AuthorDate: Sun Apr 14 07:06:42 2019 + Commit: Matthew Thode gentoo org> CommitDate: Sun Apr 14 07:06:57 2019 + URL:https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=818d4cea dev-python/pysaml2: cleanup for CVE Bug: https://bugs.gentoo.org/639774 Package-Manager: Portage-2.3.62, Repoman-2.3.12 Signed-off-by: Matthew Thode gentoo.org> dev-python/pysaml2/Manifest| 1 - dev-python/pysaml2/pysaml2-4.0.2-r3.ebuild | 39 -- 2 files changed, 40 deletions(-) diff --git a/dev-python/pysaml2/Manifest b/dev-python/pysaml2/Manifest index aeadbb803e1..c89d751ca28 100644 --- a/dev-python/pysaml2/Manifest +++ b/dev-python/pysaml2/Manifest @@ -1,3 +1,2 @@ -DIST pysaml2-4.0.2.tar.gz 13657558 BLAKE2B 35cb9dff897caf9f7fc39a70466dabce88098b6bbe0337a2ae47c733e4fd5de3bd80ddf73f27b6ff67e6f571b1f647d9856bbed58c8b19fe6547a35254dc2019 SHA512 debe23c2b193ca9f937bdb4fc9e8f308fa012c18e50e40183f7e531434af52b6e4d36608be3e9b0321190930cdfd9eb24555ed1805083e32db8de0f57e5afb14 DIST pysaml2-4.6.3.tar.gz 316979 BLAKE2B cf393075903269ce93dd219bd23479949ce8e39383d8150f8ee30185733569fe79c7421b87b3439b95e707f17d5f513abfa2610be76441b8f18d8f75a5a9fdd3 SHA512 259f7395afad44caac32453a03bbdaf8c464adeeb856b78786b665281dbe75b37e8054efaf945a7d10333c0b09d9f516d606e95b157aed34c1cd0821b7255b9d DIST pysaml2-4.6.5.tar.gz 319131 BLAKE2B d2b78d00cc5e65717bae267fbe88c781d4583996025eb4a9602030215f842a29b625ba41905e867d887e4564bbacdb1251170af46e5f00cc0f9d202c7741418d SHA512 da9cd23f9bef37da1079bba539f91df6a79190fcf8ab20b4c025fd8eae9b147799623dcc1376acfb6ff06c8566a58d478f8da7765195fe058d54007a2ebe79bb diff --git a/dev-python/pysaml2/pysaml2-4.0.2-r3.ebuild b/dev-python/pysaml2/pysaml2-4.0.2-r3.ebuild deleted file mode 100644 index 5c16ff2cf00..000 --- a/dev-python/pysaml2/pysaml2-4.0.2-r3.ebuild +++ /dev/null @@ -1,39 +0,0 @@ -# Copyright 1999-2018 Gentoo Foundation -# Distributed under the terms of the GNU General Public License v2 - -EAPI=6 -PYTHON_COMPAT=( python2_7 python3_{4,5,6} ) - -inherit distutils-r1 - -DESCRIPTION="Python implementation of SAML Version 2 to be used in a WSGI environment" -HOMEPAGE="https://github.com/rohe/pysaml2; -SRC_URI="mirror://pypi/${PN:0:1}/${PN}/${P}.tar.gz" - -LICENSE="Apache-2.0" -SLOT="0" -KEYWORDS="amd64 ~arm64 x86" -IUSE="" - -PATCHES=( - "${FILESDIR}/xxe-4.0.2.patch" - "${FILESDIR}/pysaml-4.0.2_CVE-2017-1000433.patch" -) - -DEPEND=" - dev-python/setuptools[${PYTHON_USEDEP}] -" -RDEPEND=" - dev-python/decorator[${PYTHON_USEDEP}] - >=dev-python/requests-1.0.0[${PYTHON_USEDEP}] - dev-python/future[${PYTHON_USEDEP}] - dev-python/paste[${PYTHON_USEDEP}] - dev-python/zope-interface[${PYTHON_USEDEP}] - dev-python/repoze-who[${PYTHON_USEDEP}] - >=dev-python/pycrypto-2.5[${PYTHON_USEDEP}] - dev-python/pytz[${PYTHON_USEDEP}] - dev-python/pyopenssl[${PYTHON_USEDEP}] - dev-python/python-dateutil[${PYTHON_USEDEP}] - dev-python/six[${PYTHON_USEDEP}] - dev-python/defusedxml[${PYTHON_USEDEP}] -"
[gentoo-commits] repo/gentoo:master commit in: dev-python/pysaml2/
commit: 7224a8e6b99fccf64f176acfc16b6fa0d3c6732f Author: Matthew Thode gentoo org> AuthorDate: Tue Apr 9 06:46:54 2019 + Commit: Matthew Thode gentoo org> CommitDate: Tue Apr 9 07:05:37 2019 + URL:https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=7224a8e6 dev-python/pysaml2: 4.6.5 add py37 support Package-Manager: Portage-2.3.62, Repoman-2.3.12 Signed-off-by: Matthew Thode gentoo.org> dev-python/pysaml2/pysaml2-4.6.5.ebuild | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/dev-python/pysaml2/pysaml2-4.6.5.ebuild b/dev-python/pysaml2/pysaml2-4.6.5.ebuild index 141820786e1..067dd1d761a 100644 --- a/dev-python/pysaml2/pysaml2-4.6.5.ebuild +++ b/dev-python/pysaml2/pysaml2-4.6.5.ebuild @@ -1,8 +1,8 @@ # Copyright 1999-2019 Gentoo Authors # Distributed under the terms of the GNU General Public License v2 -EAPI=6 -PYTHON_COMPAT=( python2_7 python3_{4,5,6} ) +EAPI=7 +PYTHON_COMPAT=( python2_7 python3_{4,5,6,7} ) inherit distutils-r1
[gentoo-commits] repo/gentoo:master commit in: dev-python/pysaml2/
commit: 5753e2cddfd46760faa3ae5d93aaa450824dd6bc Author: Matthew Thode gentoo org> AuthorDate: Mon Jan 21 08:48:51 2019 + Commit: Matthew Thode gentoo org> CommitDate: Mon Jan 21 08:48:51 2019 + URL:https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=5753e2cd dev-python/pysaml2: fix setup.config metadata Fixes: https://bugs.gentoo.org/675824 Package-Manager: Portage-2.3.51, Repoman-2.3.12 Signed-off-by: Matthew Thode gentoo.org> dev-python/pysaml2/pysaml2-4.6.3-r1.ebuild | 40 ++ 1 file changed, 40 insertions(+) diff --git a/dev-python/pysaml2/pysaml2-4.6.3-r1.ebuild b/dev-python/pysaml2/pysaml2-4.6.3-r1.ebuild new file mode 100644 index 000..141820786e1 --- /dev/null +++ b/dev-python/pysaml2/pysaml2-4.6.3-r1.ebuild @@ -0,0 +1,40 @@ +# Copyright 1999-2019 Gentoo Authors +# Distributed under the terms of the GNU General Public License v2 + +EAPI=6 +PYTHON_COMPAT=( python2_7 python3_{4,5,6} ) + +inherit distutils-r1 + +DESCRIPTION="Python implementation of SAML Version 2 to be used in a WSGI environment" +HOMEPAGE="https://github.com/rohe/pysaml2; +SRC_URI="mirror://pypi/${PN:0:1}/${PN}/${P}.tar.gz" + +LICENSE="Apache-2.0" +SLOT="0" +KEYWORDS="~amd64 ~arm64 ~x86" +IUSE="" + +PATCHES=( +) + +DEPEND="dev-python/setuptools[${PYTHON_USEDEP}]" +RDEPEND=">=dev-python/cryptography-1.4[${PYTHON_USEDEP}] + dev-python/defusedxml[${PYTHON_USEDEP}] + dev-python/future[${PYTHON_USEDEP}] + dev-python/pyopenssl[${PYTHON_USEDEP}] + dev-python/python-dateutil[${PYTHON_USEDEP}] + dev-python/pytz[${PYTHON_USEDEP}] + >=dev-python/requests-1.0.0[${PYTHON_USEDEP}] + dev-python/six[${PYTHON_USEDEP}]" + +python_prepare_all() { + # Work-around for bug 675824 + # With older setuptools, version = file:... is not supported, see Note 1 in: + # https://setuptools.readthedocs.io/en/latest/setuptools.html#metadata + # In such cases, hardcode the version + has_version ">=dev-python/setuptools-39.2.0" || \ + sed --in-place "s/^version = file:.*\$/version = ${PV}/" setup.cfg + ## + distutils-r1_python_prepare_all +}
[gentoo-commits] repo/gentoo:master commit in: dev-python/pysaml2/
commit: 79a8035babb9a0420cba5539d742992b39ca4ce0 Author: Matthew Thode gentoo org> AuthorDate: Thu Dec 13 17:08:33 2018 + Commit: Matthew Thode gentoo org> CommitDate: Thu Dec 13 17:08:33 2018 + URL:https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=79a8035b dev-python/pysaml2: cleanup 4.5.0 Package-Manager: Portage-2.3.51, Repoman-2.3.12 Signed-off-by: Matthew Thode gentoo.org> dev-python/pysaml2/Manifest | 1 - dev-python/pysaml2/pysaml2-4.5.0.ebuild | 34 - 2 files changed, 35 deletions(-) diff --git a/dev-python/pysaml2/Manifest b/dev-python/pysaml2/Manifest index 966d4494d33..a296c163864 100644 --- a/dev-python/pysaml2/Manifest +++ b/dev-python/pysaml2/Manifest @@ -1,3 +1,2 @@ DIST pysaml2-4.0.2.tar.gz 13657558 BLAKE2B 35cb9dff897caf9f7fc39a70466dabce88098b6bbe0337a2ae47c733e4fd5de3bd80ddf73f27b6ff67e6f571b1f647d9856bbed58c8b19fe6547a35254dc2019 SHA512 debe23c2b193ca9f937bdb4fc9e8f308fa012c18e50e40183f7e531434af52b6e4d36608be3e9b0321190930cdfd9eb24555ed1805083e32db8de0f57e5afb14 -DIST pysaml2-4.5.0.tar.gz 20030696 BLAKE2B 547465c2c4191a26de6bf1bab55bd9c36ed7e477c620a4155b7a463c98dbf314a8067d45263055a05ec8ed696177fcbd1443dd856113871f2941b572b9df0628 SHA512 163dfc2acfa0f242bc97d3ec334aec98e993ef9265b2240223205e496f86df5518ca613620b371eabcca0c4070a0bf7bb72a2216f517e19e3b2ff0f20e30a0c7 DIST pysaml2-4.6.3.tar.gz 316979 BLAKE2B cf393075903269ce93dd219bd23479949ce8e39383d8150f8ee30185733569fe79c7421b87b3439b95e707f17d5f513abfa2610be76441b8f18d8f75a5a9fdd3 SHA512 259f7395afad44caac32453a03bbdaf8c464adeeb856b78786b665281dbe75b37e8054efaf945a7d10333c0b09d9f516d606e95b157aed34c1cd0821b7255b9d diff --git a/dev-python/pysaml2/pysaml2-4.5.0.ebuild b/dev-python/pysaml2/pysaml2-4.5.0.ebuild deleted file mode 100644 index 1f49c06382a..000 --- a/dev-python/pysaml2/pysaml2-4.5.0.ebuild +++ /dev/null @@ -1,34 +0,0 @@ -# Copyright 1999-2018 Gentoo Foundation -# Distributed under the terms of the GNU General Public License v2 - -EAPI=6 -PYTHON_COMPAT=( python2_7 python3_{4,5,6} ) - -inherit distutils-r1 - -DESCRIPTION="Python implementation of SAML Version 2 to be used in a WSGI environment" -HOMEPAGE="https://github.com/rohe/pysaml2; -SRC_URI="mirror://pypi/${PN:0:1}/${PN}/${P}.tar.gz" - -LICENSE="Apache-2.0" -SLOT="0" -KEYWORDS="amd64 ~arm64 x86" -IUSE="" - -PATCHES=( - -) - -DEPEND=" - dev-python/setuptools[${PYTHON_USEDEP}] -" -RDEPEND=" - >=dev-python/requests-1.0.0[${PYTHON_USEDEP}] - dev-python/future[${PYTHON_USEDEP}] - dev-python/cryptography[${PYTHON_USEDEP}] - dev-python/pytz[${PYTHON_USEDEP}] - dev-python/pyopenssl[${PYTHON_USEDEP}] - dev-python/python-dateutil[${PYTHON_USEDEP}] - dev-python/six[${PYTHON_USEDEP}] - dev-python/defusedxml[${PYTHON_USEDEP}] -"
[gentoo-commits] repo/gentoo:master commit in: dev-python/pysaml2/
commit: d3e77a674caae97b73a2ee007735cf5c1076050c Author: Matthew Thode gentoo org> AuthorDate: Thu Dec 13 17:06:56 2018 + Commit: Matthew Thode gentoo org> CommitDate: Thu Dec 13 17:06:56 2018 + URL:https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=d3e77a67 dev-python/pysaml2: 4.6.3 stable amd64 and x86 Package-Manager: Portage-2.3.51, Repoman-2.3.12 Signed-off-by: Matthew Thode gentoo.org> dev-python/pysaml2/pysaml2-4.6.3.ebuild | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/dev-python/pysaml2/pysaml2-4.6.3.ebuild b/dev-python/pysaml2/pysaml2-4.6.3.ebuild index 3733d423cc4..c4b4968ff42 100644 --- a/dev-python/pysaml2/pysaml2-4.6.3.ebuild +++ b/dev-python/pysaml2/pysaml2-4.6.3.ebuild @@ -12,7 +12,7 @@ SRC_URI="mirror://pypi/${PN:0:1}/${PN}/${P}.tar.gz" LICENSE="Apache-2.0" SLOT="0" -KEYWORDS="~amd64 ~arm64 ~x86" +KEYWORDS="amd64 ~arm64 x86" IUSE="" PATCHES=(
[gentoo-commits] repo/gentoo:master commit in: dev-python/pysaml2/
commit: 4d91e3e3bdca477791bd7ead9da3e55da167b579 Author: Matthew Thode gentoo org> AuthorDate: Wed Nov 14 11:17:19 2018 + Commit: Matthew Thode gentoo org> CommitDate: Wed Nov 14 11:17:19 2018 + URL:https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=4d91e3e3 dev-python/pysaml2: 4.6.3 bump Closes: https://bugs.gentoo.org/670716 Package-Manager: Portage-2.3.51, Repoman-2.3.12 Signed-off-by: Matthew Thode gentoo.org> dev-python/pysaml2/Manifest | 1 + dev-python/pysaml2/pysaml2-4.6.3.ebuild | 29 + 2 files changed, 30 insertions(+) diff --git a/dev-python/pysaml2/Manifest b/dev-python/pysaml2/Manifest index 27c774bbfb7..966d4494d33 100644 --- a/dev-python/pysaml2/Manifest +++ b/dev-python/pysaml2/Manifest @@ -1,2 +1,3 @@ DIST pysaml2-4.0.2.tar.gz 13657558 BLAKE2B 35cb9dff897caf9f7fc39a70466dabce88098b6bbe0337a2ae47c733e4fd5de3bd80ddf73f27b6ff67e6f571b1f647d9856bbed58c8b19fe6547a35254dc2019 SHA512 debe23c2b193ca9f937bdb4fc9e8f308fa012c18e50e40183f7e531434af52b6e4d36608be3e9b0321190930cdfd9eb24555ed1805083e32db8de0f57e5afb14 DIST pysaml2-4.5.0.tar.gz 20030696 BLAKE2B 547465c2c4191a26de6bf1bab55bd9c36ed7e477c620a4155b7a463c98dbf314a8067d45263055a05ec8ed696177fcbd1443dd856113871f2941b572b9df0628 SHA512 163dfc2acfa0f242bc97d3ec334aec98e993ef9265b2240223205e496f86df5518ca613620b371eabcca0c4070a0bf7bb72a2216f517e19e3b2ff0f20e30a0c7 +DIST pysaml2-4.6.3.tar.gz 316979 BLAKE2B cf393075903269ce93dd219bd23479949ce8e39383d8150f8ee30185733569fe79c7421b87b3439b95e707f17d5f513abfa2610be76441b8f18d8f75a5a9fdd3 SHA512 259f7395afad44caac32453a03bbdaf8c464adeeb856b78786b665281dbe75b37e8054efaf945a7d10333c0b09d9f516d606e95b157aed34c1cd0821b7255b9d diff --git a/dev-python/pysaml2/pysaml2-4.6.3.ebuild b/dev-python/pysaml2/pysaml2-4.6.3.ebuild new file mode 100644 index 000..3733d423cc4 --- /dev/null +++ b/dev-python/pysaml2/pysaml2-4.6.3.ebuild @@ -0,0 +1,29 @@ +# Copyright 1999-2018 Gentoo Authors +# Distributed under the terms of the GNU General Public License v2 + +EAPI=6 +PYTHON_COMPAT=( python2_7 python3_{4,5,6} ) + +inherit distutils-r1 + +DESCRIPTION="Python implementation of SAML Version 2 to be used in a WSGI environment" +HOMEPAGE="https://github.com/rohe/pysaml2; +SRC_URI="mirror://pypi/${PN:0:1}/${PN}/${P}.tar.gz" + +LICENSE="Apache-2.0" +SLOT="0" +KEYWORDS="~amd64 ~arm64 ~x86" +IUSE="" + +PATCHES=( +) + +DEPEND="dev-python/setuptools[${PYTHON_USEDEP}]" +RDEPEND=">=dev-python/cryptography-1.4[${PYTHON_USEDEP}] + dev-python/defusedxml[${PYTHON_USEDEP}] + dev-python/future[${PYTHON_USEDEP}] + dev-python/pyopenssl[${PYTHON_USEDEP}] + dev-python/python-dateutil[${PYTHON_USEDEP}] + dev-python/pytz[${PYTHON_USEDEP}] + >=dev-python/requests-1.0.0[${PYTHON_USEDEP}] + dev-python/six[${PYTHON_USEDEP}]"
[gentoo-commits] repo/gentoo:master commit in: dev-python/pysaml2/
commit: 26ef976425da356a5b62ed487a6af3f70878182b Author: Pacho Ramos gentoo org> AuthorDate: Tue Jun 26 20:05:43 2018 + Commit: Pacho Ramos gentoo org> CommitDate: Tue Jun 26 20:28:58 2018 + URL:https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=26ef9764 dev-python/pysaml2: Support python3.6 Package-Manager: Portage-2.3.40, Repoman-2.3.9 dev-python/pysaml2/pysaml2-4.0.2-r3.ebuild | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/dev-python/pysaml2/pysaml2-4.0.2-r3.ebuild b/dev-python/pysaml2/pysaml2-4.0.2-r3.ebuild index 34f2bf41ef1..5c16ff2cf00 100644 --- a/dev-python/pysaml2/pysaml2-4.0.2-r3.ebuild +++ b/dev-python/pysaml2/pysaml2-4.0.2-r3.ebuild @@ -2,7 +2,7 @@ # Distributed under the terms of the GNU General Public License v2 EAPI=6 -PYTHON_COMPAT=( python2_7 python3_4 python3_5 ) +PYTHON_COMPAT=( python2_7 python3_{4,5,6} ) inherit distutils-r1
[gentoo-commits] repo/gentoo:master commit in: dev-python/pysaml2/
commit: 88d214f06f5b355304f9db29cede681333442946 Author: Pacho Ramos gentoo org> AuthorDate: Sun Jun 24 17:10:16 2018 + Commit: Pacho Ramos gentoo org> CommitDate: Sun Jun 24 17:24:22 2018 + URL:https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=88d214f0 dev-python/pysaml2: Support python3.6 Package-Manager: Portage-2.3.40, Repoman-2.3.9 dev-python/pysaml2/pysaml2-4.5.0.ebuild | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/dev-python/pysaml2/pysaml2-4.5.0.ebuild b/dev-python/pysaml2/pysaml2-4.5.0.ebuild index 943b2e79e6d..1f49c06382a 100644 --- a/dev-python/pysaml2/pysaml2-4.5.0.ebuild +++ b/dev-python/pysaml2/pysaml2-4.5.0.ebuild @@ -1,8 +1,8 @@ -# Copyright 1999-2017 Gentoo Foundation +# Copyright 1999-2018 Gentoo Foundation # Distributed under the terms of the GNU General Public License v2 EAPI=6 -PYTHON_COMPAT=( python2_7 python3_4 python3_5 ) +PYTHON_COMPAT=( python2_7 python3_{4,5,6} ) inherit distutils-r1
[gentoo-commits] repo/gentoo:master commit in: dev-python/pysaml2/
commit: c231e1c889d275151b0d9eb28fb0c5dce7aa239a Author: Matthew Thode gentoo org> AuthorDate: Sun Jan 14 17:50:42 2018 + Commit: Matt Thode gentoo org> CommitDate: Sun Jan 14 17:50:42 2018 + URL:https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=c231e1c8 dev-python/pysaml2: cleanup for bug 644016 Package-Manager: Portage-2.3.14, Repoman-2.3.6 dev-python/pysaml2/pysaml2-4.0.2-r1.ebuild | 36 -- 1 file changed, 36 deletions(-) diff --git a/dev-python/pysaml2/pysaml2-4.0.2-r1.ebuild b/dev-python/pysaml2/pysaml2-4.0.2-r1.ebuild deleted file mode 100644 index f6c60886769..000 --- a/dev-python/pysaml2/pysaml2-4.0.2-r1.ebuild +++ /dev/null @@ -1,36 +0,0 @@ -# Copyright 1999-2017 Gentoo Foundation -# Distributed under the terms of the GNU General Public License v2 - -EAPI=6 -PYTHON_COMPAT=( python2_7 python3_4 python3_5 ) - -inherit distutils-r1 - -DESCRIPTION="Python implementation of SAML Version 2 to be used in a WSGI environment" -HOMEPAGE="https://github.com/rohe/pysaml2; -SRC_URI="mirror://pypi/${PN:0:1}/${PN}/${P}.tar.gz" - -LICENSE="Apache-2.0" -SLOT="0" -KEYWORDS="amd64 ~arm64 x86" -IUSE="" - -PATCHES=( "${FILESDIR}/xxe-4.0.2.patch" ) - -DEPEND=" - dev-python/setuptools[${PYTHON_USEDEP}] -" -RDEPEND=" - dev-python/decorator[${PYTHON_USEDEP}] - >=dev-python/requests-1.0.0[${PYTHON_USEDEP}] - dev-python/future[${PYTHON_USEDEP}] - dev-python/paste[${PYTHON_USEDEP}] - dev-python/zope-interface[${PYTHON_USEDEP}] - dev-python/repoze-who[${PYTHON_USEDEP}] - >=dev-python/pycrypto-2.5[${PYTHON_USEDEP}] - dev-python/pytz[${PYTHON_USEDEP}] - dev-python/pyopenssl[${PYTHON_USEDEP}] - dev-python/python-dateutil[${PYTHON_USEDEP}] - dev-python/six[${PYTHON_USEDEP}] - dev-python/defusedxml[${PYTHON_USEDEP}] -"
[gentoo-commits] repo/gentoo:master commit in: dev-python/pysaml2/
commit: 2cdc08de8550d177fbebf1a5b9b55177f4edf2b3 Author: Agostino Sarubbo gentoo org> AuthorDate: Sun Jan 14 15:29:23 2018 + Commit: Agostino Sarubbo gentoo org> CommitDate: Sun Jan 14 15:29:23 2018 + URL:https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=2cdc08de dev-python/pysaml2: amd64 stable wrt bug #644016 Package-Manager: Portage-2.3.13, Repoman-2.3.3 RepoMan-Options: --include-arches="amd64" Signed-off-by: Agostino Sarubbo gentoo.org> dev-python/pysaml2/pysaml2-4.0.2-r3.ebuild | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/dev-python/pysaml2/pysaml2-4.0.2-r3.ebuild b/dev-python/pysaml2/pysaml2-4.0.2-r3.ebuild index 8b3dded83c0..34f2bf41ef1 100644 --- a/dev-python/pysaml2/pysaml2-4.0.2-r3.ebuild +++ b/dev-python/pysaml2/pysaml2-4.0.2-r3.ebuild @@ -12,7 +12,7 @@ SRC_URI="mirror://pypi/${PN:0:1}/${PN}/${P}.tar.gz" LICENSE="Apache-2.0" SLOT="0" -KEYWORDS="~amd64 ~arm64 x86" +KEYWORDS="amd64 ~arm64 x86" IUSE="" PATCHES=(
[gentoo-commits] repo/gentoo:master commit in: dev-python/pysaml2/
commit: 56e17e588296fd1522b5f468d9a35c920e3910a9 Author: Thomas Deutschmann gentoo org> AuthorDate: Fri Jan 12 19:34:01 2018 + Commit: Thomas Deutschmann gentoo org> CommitDate: Fri Jan 12 19:34:01 2018 + URL:https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=56e17e58 dev-python/pysaml2: x86 stable Bug: https://bugs.gentoo.org/644016 Package-Manager: Portage-2.3.19, Repoman-2.3.6 dev-python/pysaml2/pysaml2-4.0.2-r3.ebuild | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/dev-python/pysaml2/pysaml2-4.0.2-r3.ebuild b/dev-python/pysaml2/pysaml2-4.0.2-r3.ebuild index 34cc46c5c0d..8b3dded83c0 100644 --- a/dev-python/pysaml2/pysaml2-4.0.2-r3.ebuild +++ b/dev-python/pysaml2/pysaml2-4.0.2-r3.ebuild @@ -12,7 +12,7 @@ SRC_URI="mirror://pypi/${PN:0:1}/${PN}/${P}.tar.gz" LICENSE="Apache-2.0" SLOT="0" -KEYWORDS="~amd64 ~arm64 ~x86" +KEYWORDS="~amd64 ~arm64 x86" IUSE="" PATCHES=(
[gentoo-commits] repo/gentoo:master commit in: dev-python/pysaml2/, dev-python/pysaml2/files/
commit: 9aa9a0f4330a09c7fba77e116058d5488f083de8 Author: Matthew Thode gentoo org> AuthorDate: Fri Jan 12 00:06:23 2018 + Commit: Matt Thode gentoo org> CommitDate: Fri Jan 12 00:07:06 2018 + URL:https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=9aa9a0f4 dev-python/pysaml2: really fix bug 644016 Package-Manager: Portage-2.3.14, Repoman-2.3.6 .../files/pysaml-4.0.2_CVE-2017-1000433.patch | 29 ++ ...ml2-4.0.2-r2.ebuild => pysaml2-4.0.2-r3.ebuild} | 0 2 files changed, 24 insertions(+), 5 deletions(-) diff --git a/dev-python/pysaml2/files/pysaml-4.0.2_CVE-2017-1000433.patch b/dev-python/pysaml2/files/pysaml-4.0.2_CVE-2017-1000433.patch index e745263d236..7abc765c298 100644 --- a/dev-python/pysaml2/files/pysaml-4.0.2_CVE-2017-1000433.patch +++ b/dev-python/pysaml2/files/pysaml-4.0.2_CVE-2017-1000433.patch @@ -1,7 +1,18 @@ -diff -Naur pysaml2/src/saml2/authn.py pysaml2.new/src/saml2/authn.py 1/src/saml2/authn.py 2018-01-11 17:23:27.198775074 -0600 -+++ 2/src/saml2/authn.py 2018-01-11 17:22:57.909567278 -0600 -@@ -147,7 +147,8 @@ +From 6312a41e037954850867f29d329e5007df1424a5 Mon Sep 17 00:00:00 2001 +From: Ioannis Kakavas+Date: Tue, 12 Sep 2017 12:22:47 +0300 +Subject: [PATCH] Quick fix for the authentication bypass due to optimizations + #451 + +--- + src/saml2/authn.py | 5 +++-- + 1 file changed, 3 insertions(+), 2 deletions(-) + +diff --git a/src/saml2/authn.py b/src/saml2/authn.py +index 1f2d02cf..1e1a220b 100644 +--- a/src/saml2/authn.py b/src/saml2/authn.py +@@ -146,7 +146,8 @@ def __call__(self, cookie=None, policy_url=None, logo_url=None, return resp def _verify(self, pwd, user): @@ -11,4 +22,12 @@ diff -Naur pysaml2/src/saml2/authn.py pysaml2.new/src/saml2/authn.py def verify(self, request, **kwargs): """ - +@@ -176,7 +177,7 @@ def verify(self, request, **kwargs): + return_to = create_return_url(self.return_to, _dict["query"][0], + **{self.query_param: "true"}) + resp = Redirect(return_to, headers=[cookie]) +-except (AssertionError, KeyError): ++except (ValueError, KeyError): + resp = Unauthorized("Unknown user or wrong password") + + return resp diff --git a/dev-python/pysaml2/pysaml2-4.0.2-r2.ebuild b/dev-python/pysaml2/pysaml2-4.0.2-r3.ebuild similarity index 100% rename from dev-python/pysaml2/pysaml2-4.0.2-r2.ebuild rename to dev-python/pysaml2/pysaml2-4.0.2-r3.ebuild
[gentoo-commits] repo/gentoo:master commit in: dev-python/pysaml2/files/, dev-python/pysaml2/
commit: 8c31196d00e344da82cf4facf4f6f5d2826c692a Author: Matthew Thode gentoo org> AuthorDate: Thu Jan 11 23:29:34 2018 + Commit: Matt Thode gentoo org> CommitDate: Thu Jan 11 23:29:50 2018 + URL:https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=8c31196d dev-python/pysaml2: fix bug 644016 CVE-2017-1000433 Package-Manager: Portage-2.3.14, Repoman-2.3.6 .../files/pysaml-4.0.2_CVE-2017-1000433.patch | 14 dev-python/pysaml2/pysaml2-4.0.2-r2.ebuild | 39 ++ 2 files changed, 53 insertions(+) diff --git a/dev-python/pysaml2/files/pysaml-4.0.2_CVE-2017-1000433.patch b/dev-python/pysaml2/files/pysaml-4.0.2_CVE-2017-1000433.patch new file mode 100644 index 000..e745263d236 --- /dev/null +++ b/dev-python/pysaml2/files/pysaml-4.0.2_CVE-2017-1000433.patch @@ -0,0 +1,14 @@ +diff -Naur pysaml2/src/saml2/authn.py pysaml2.new/src/saml2/authn.py +--- 1/src/saml2/authn.py 2018-01-11 17:23:27.198775074 -0600 2/src/saml2/authn.py 2018-01-11 17:22:57.909567278 -0600 +@@ -147,7 +147,8 @@ + return resp + + def _verify(self, pwd, user): +-assert is_equal(pwd, self.passwd[user]) ++if not is_equal(pwd, self.passwd[user]): ++raise ValueError("Wrong password") + + def verify(self, request, **kwargs): + """ + diff --git a/dev-python/pysaml2/pysaml2-4.0.2-r2.ebuild b/dev-python/pysaml2/pysaml2-4.0.2-r2.ebuild new file mode 100644 index 000..34cc46c5c0d --- /dev/null +++ b/dev-python/pysaml2/pysaml2-4.0.2-r2.ebuild @@ -0,0 +1,39 @@ +# Copyright 1999-2018 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 + +EAPI=6 +PYTHON_COMPAT=( python2_7 python3_4 python3_5 ) + +inherit distutils-r1 + +DESCRIPTION="Python implementation of SAML Version 2 to be used in a WSGI environment" +HOMEPAGE="https://github.com/rohe/pysaml2; +SRC_URI="mirror://pypi/${PN:0:1}/${PN}/${P}.tar.gz" + +LICENSE="Apache-2.0" +SLOT="0" +KEYWORDS="~amd64 ~arm64 ~x86" +IUSE="" + +PATCHES=( + "${FILESDIR}/xxe-4.0.2.patch" + "${FILESDIR}/pysaml-4.0.2_CVE-2017-1000433.patch" +) + +DEPEND=" + dev-python/setuptools[${PYTHON_USEDEP}] +" +RDEPEND=" + dev-python/decorator[${PYTHON_USEDEP}] + >=dev-python/requests-1.0.0[${PYTHON_USEDEP}] + dev-python/future[${PYTHON_USEDEP}] + dev-python/paste[${PYTHON_USEDEP}] + dev-python/zope-interface[${PYTHON_USEDEP}] + dev-python/repoze-who[${PYTHON_USEDEP}] + >=dev-python/pycrypto-2.5[${PYTHON_USEDEP}] + dev-python/pytz[${PYTHON_USEDEP}] + dev-python/pyopenssl[${PYTHON_USEDEP}] + dev-python/python-dateutil[${PYTHON_USEDEP}] + dev-python/six[${PYTHON_USEDEP}] + dev-python/defusedxml[${PYTHON_USEDEP}] +"
[gentoo-commits] repo/gentoo:master commit in: dev-python/pysaml2/
commit: 0a3e8bd2daedea7a6ede249f874ba73da2e10270 Author: Matthew Thode gentoo org> AuthorDate: Tue Dec 19 01:05:19 2017 + Commit: Matt Thode gentoo org> CommitDate: Tue Dec 19 01:08:24 2017 + URL:https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=0a3e8bd2 dev-python/pysaml2: 4.5.0 bup Package-Manager: Portage-2.3.14, Repoman-2.3.6 dev-python/pysaml2/pysaml2-4.5.0.ebuild | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/dev-python/pysaml2/pysaml2-4.5.0.ebuild b/dev-python/pysaml2/pysaml2-4.5.0.ebuild index 651a17f3ded..943b2e79e6d 100644 --- a/dev-python/pysaml2/pysaml2-4.5.0.ebuild +++ b/dev-python/pysaml2/pysaml2-4.5.0.ebuild @@ -12,7 +12,7 @@ SRC_URI="mirror://pypi/${PN:0:1}/${PN}/${P}.tar.gz" LICENSE="Apache-2.0" SLOT="0" -KEYWORDS="~amd64 ~arm64 ~x86" +KEYWORDS="amd64 ~arm64 x86" IUSE="" PATCHES=(
[gentoo-commits] repo/gentoo:master commit in: dev-python/pysaml2/
commit: f155efca3b34d69ca0fccfcee198055d3caca26d Author: Matthew Thode gentoo org> AuthorDate: Sat Nov 18 22:14:27 2017 + Commit: Matt Thode gentoo org> CommitDate: Sat Nov 18 22:23:01 2017 + URL:https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=f155efca dev-python/pysaml2: bup to 4.5.0 Package-Manager: Portage-2.3.14, Repoman-2.3.6 dev-python/pysaml2/Manifest | 1 + dev-python/pysaml2/pysaml2-4.5.0.ebuild | 34 + 2 files changed, 35 insertions(+) diff --git a/dev-python/pysaml2/Manifest b/dev-python/pysaml2/Manifest index 9d9179a7a77..f448a757b75 100644 --- a/dev-python/pysaml2/Manifest +++ b/dev-python/pysaml2/Manifest @@ -1 +1,2 @@ DIST pysaml2-4.0.2.tar.gz 13657558 SHA256 24cec8dbc20a7772854563ffc9a19297afcc38c4c7558c063b4c8c302f8a958b SHA512 debe23c2b193ca9f937bdb4fc9e8f308fa012c18e50e40183f7e531434af52b6e4d36608be3e9b0321190930cdfd9eb24555ed1805083e32db8de0f57e5afb14 WHIRLPOOL 303217ea7408986435a31ac97deae3d2b14393674d360d30cbdacf1c673d265b21505af1dea8c536c4698dc6861058f6e57421aaa5bb411daa68d5d02c1ba2c2 +DIST pysaml2-4.5.0.tar.gz 20030696 SHA256 59f82ee82390482640b298045a792455dae6cae580d8c0a3c935f0038f878133 SHA512 163dfc2acfa0f242bc97d3ec334aec98e993ef9265b2240223205e496f86df5518ca613620b371eabcca0c4070a0bf7bb72a2216f517e19e3b2ff0f20e30a0c7 WHIRLPOOL f01b77c2867023847f4276f9fc7f065d84796ed39ac7bbcba5ce9d6a9d9641486da90bcd11eb284fa679c8e699c8fabbfd5f52a0b9b7a7c29f446193d4142746 diff --git a/dev-python/pysaml2/pysaml2-4.5.0.ebuild b/dev-python/pysaml2/pysaml2-4.5.0.ebuild new file mode 100644 index 000..651a17f3ded --- /dev/null +++ b/dev-python/pysaml2/pysaml2-4.5.0.ebuild @@ -0,0 +1,34 @@ +# Copyright 1999-2017 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 + +EAPI=6 +PYTHON_COMPAT=( python2_7 python3_4 python3_5 ) + +inherit distutils-r1 + +DESCRIPTION="Python implementation of SAML Version 2 to be used in a WSGI environment" +HOMEPAGE="https://github.com/rohe/pysaml2; +SRC_URI="mirror://pypi/${PN:0:1}/${PN}/${P}.tar.gz" + +LICENSE="Apache-2.0" +SLOT="0" +KEYWORDS="~amd64 ~arm64 ~x86" +IUSE="" + +PATCHES=( + +) + +DEPEND=" + dev-python/setuptools[${PYTHON_USEDEP}] +" +RDEPEND=" + >=dev-python/requests-1.0.0[${PYTHON_USEDEP}] + dev-python/future[${PYTHON_USEDEP}] + dev-python/cryptography[${PYTHON_USEDEP}] + dev-python/pytz[${PYTHON_USEDEP}] + dev-python/pyopenssl[${PYTHON_USEDEP}] + dev-python/python-dateutil[${PYTHON_USEDEP}] + dev-python/six[${PYTHON_USEDEP}] + dev-python/defusedxml[${PYTHON_USEDEP}] +"
[gentoo-commits] repo/gentoo:master commit in: dev-python/pysaml2/
commit: f4e12975921904723c88f684ab51a9064b3f4edf Author: Matthew Thode gentoo org> AuthorDate: Fri Jan 13 16:24:33 2017 + Commit: Matt Thode gentoo org> CommitDate: Fri Jan 13 16:25:07 2017 + URL:https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=f4e12975 dev-python/pysaml2: clean up for bug 605324 CVE-2016-10127 Package-Manager: portage-2.3.0 dev-python/pysaml2/Manifest | 1 - dev-python/pysaml2/pysaml2-3.0.0.ebuild | 33 dev-python/pysaml2/pysaml2-4.0.2.ebuild | 34 - 3 files changed, 68 deletions(-) diff --git a/dev-python/pysaml2/Manifest b/dev-python/pysaml2/Manifest index f17591e..9d9179a 100644 --- a/dev-python/pysaml2/Manifest +++ b/dev-python/pysaml2/Manifest @@ -1,2 +1 @@ -DIST pysaml2-3.0.0.tar.gz 13051759 SHA256 22aec520b3324f1f33cad58862f03ec3e000b2abc36880a5202615ba9fda5cc0 SHA512 a16281888e8604dbabcec1501d3d2ef6374ad63225f60664a663f2aad6dd2ffe9d8e77f7f1fc18fefc12a4ba44d183ed04c201774ad9e174fd604b91bb78 WHIRLPOOL 7814d31852144c6bf9de8581e7cbc1d7d11bb337d53b828022a5a956615acdd1f3ad4ee79dbb8632a0a80c17dc6119ea31f54734ed5afd254f77eb05ea2ab63d DIST pysaml2-4.0.2.tar.gz 13657558 SHA256 24cec8dbc20a7772854563ffc9a19297afcc38c4c7558c063b4c8c302f8a958b SHA512 debe23c2b193ca9f937bdb4fc9e8f308fa012c18e50e40183f7e531434af52b6e4d36608be3e9b0321190930cdfd9eb24555ed1805083e32db8de0f57e5afb14 WHIRLPOOL 303217ea7408986435a31ac97deae3d2b14393674d360d30cbdacf1c673d265b21505af1dea8c536c4698dc6861058f6e57421aaa5bb411daa68d5d02c1ba2c2 diff --git a/dev-python/pysaml2/pysaml2-3.0.0.ebuild b/dev-python/pysaml2/pysaml2-3.0.0.ebuild deleted file mode 100644 index 31628b1.. --- a/dev-python/pysaml2/pysaml2-3.0.0.ebuild +++ /dev/null @@ -1,33 +0,0 @@ -# Copyright 1999-2015 Gentoo Foundation -# Distributed under the terms of the GNU General Public License v2 -# $Id$ - -EAPI=5 -PYTHON_COMPAT=( python2_7 python3_4 python3_5 ) - -inherit distutils-r1 - -DESCRIPTION="Python implementation of SAML Version 2 to be used in a WSGI environment" -HOMEPAGE="https://github.com/rohe/pysaml2; -SRC_URI="mirror://pypi/${PN:0:1}/${PN}/${P}.tar.gz" - -LICENSE="Apache-2.0" -SLOT="0" -KEYWORDS="amd64 ~arm64 x86" -IUSE="" - -DEPEND=" - dev-python/setuptools[${PYTHON_USEDEP}] -" -RDEPEND=" - dev-python/decorator[${PYTHON_USEDEP}] - >=dev-python/requests-1.0.0[${PYTHON_USEDEP}] - dev-python/paste[${PYTHON_USEDEP}] - dev-python/zope-interface[${PYTHON_USEDEP}] - dev-python/repoze-who[${PYTHON_USEDEP}] - >=dev-python/pycrypto-2.5[${PYTHON_USEDEP}] - dev-python/pytz[${PYTHON_USEDEP}] - dev-python/pyopenssl[${PYTHON_USEDEP}] - dev-python/python-dateutil[${PYTHON_USEDEP}] - dev-python/six[${PYTHON_USEDEP}] -" diff --git a/dev-python/pysaml2/pysaml2-4.0.2.ebuild b/dev-python/pysaml2/pysaml2-4.0.2.ebuild deleted file mode 100644 index 1abb696.. --- a/dev-python/pysaml2/pysaml2-4.0.2.ebuild +++ /dev/null @@ -1,34 +0,0 @@ -# Copyright 1999-2016 Gentoo Foundation -# Distributed under the terms of the GNU General Public License v2 -# $Id$ - -EAPI=5 -PYTHON_COMPAT=( python2_7 python3_4 python3_5 ) - -inherit distutils-r1 - -DESCRIPTION="Python implementation of SAML Version 2 to be used in a WSGI environment" -HOMEPAGE="https://github.com/rohe/pysaml2; -SRC_URI="mirror://pypi/${PN:0:1}/${PN}/${P}.tar.gz" - -LICENSE="Apache-2.0" -SLOT="0" -KEYWORDS="amd64 ~arm64 x86" -IUSE="" - -DEPEND=" - dev-python/setuptools[${PYTHON_USEDEP}] -" -RDEPEND=" - dev-python/decorator[${PYTHON_USEDEP}] - >=dev-python/requests-1.0.0[${PYTHON_USEDEP}] - dev-python/future[${PYTHON_USEDEP}] - dev-python/paste[${PYTHON_USEDEP}] - dev-python/zope-interface[${PYTHON_USEDEP}] - dev-python/repoze-who[${PYTHON_USEDEP}] - >=dev-python/pycrypto-2.5[${PYTHON_USEDEP}] - dev-python/pytz[${PYTHON_USEDEP}] - dev-python/pyopenssl[${PYTHON_USEDEP}] - dev-python/python-dateutil[${PYTHON_USEDEP}] - dev-python/six[${PYTHON_USEDEP}] -"
[gentoo-commits] repo/gentoo:master commit in: dev-python/pysaml2/
commit: adf245d51bb140cafe6b99e88a18ed94a8faceed Author: Aaron Bauman gentoo org> AuthorDate: Wed Jan 11 10:46:56 2017 + Commit: Aaron Bauman gentoo org> CommitDate: Wed Jan 11 10:46:56 2017 + URL:https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=adf245d5 dev-python/pysaml2: amd64 stable Package-Manager: portage-2.3.0 dev-python/pysaml2/pysaml2-4.0.2-r1.ebuild | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/dev-python/pysaml2/pysaml2-4.0.2-r1.ebuild b/dev-python/pysaml2/pysaml2-4.0.2-r1.ebuild index 69aac4c..2cfd6a8 100644 --- a/dev-python/pysaml2/pysaml2-4.0.2-r1.ebuild +++ b/dev-python/pysaml2/pysaml2-4.0.2-r1.ebuild @@ -13,7 +13,7 @@ SRC_URI="mirror://pypi/${PN:0:1}/${PN}/${P}.tar.gz" LICENSE="Apache-2.0" SLOT="0" -KEYWORDS="~amd64 ~arm64 ~x86" +KEYWORDS="amd64 ~arm64 ~x86" IUSE="" PATCHES=( "${FILESDIR}/xxe-4.0.2.patch" )
[gentoo-commits] repo/gentoo:master commit in: dev-python/pysaml2/files/, dev-python/pysaml2/
commit: 908a711df2180e3cbcdf8ec873bbe7bf809135db Author: Matthew Thode gentoo org> AuthorDate: Wed Jan 11 03:00:40 2017 + Commit: Matt Thode gentoo org> CommitDate: Wed Jan 11 03:01:03 2017 + URL:https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=908a711d dev-python/pysaml2: fix xxe in pysaml2 Package-Manager: portage-2.3.0 dev-python/pysaml2/files/xxe-4.0.2.patch | 305 + dev-python/pysaml2/pysaml2-4.0.2-r1.ebuild | 37 2 files changed, 342 insertions(+) diff --git a/dev-python/pysaml2/files/xxe-4.0.2.patch b/dev-python/pysaml2/files/xxe-4.0.2.patch new file mode 100644 index ..8e1a2ef --- /dev/null +++ b/dev-python/pysaml2/files/xxe-4.0.2.patch @@ -0,0 +1,305 @@ +diff -Naur pysaml2/setup.py pysaml2.new/setup.py +--- pysaml2/setup.py 2015-12-06 00:46:33.0 -0600 pysaml2.new/setup.py 2017-01-10 20:31:43.387413477 -0600 +@@ -17,6 +17,7 @@ + 'pytz', + 'pyOpenSSL', + 'python-dateutil', ++'defusedxml', + 'six' + ] + +diff -Naur pysaml2/src/saml2/__init__.py pysaml2.new/src/saml2/__init__.py +--- pysaml2/src/saml2/__init__.py 2016-01-07 05:53:57.0 -0600 pysaml2.new/src/saml2/__init__.py 2017-01-10 20:34:04.171641116 -0600 +@@ -35,6 +35,7 @@ + import cElementTree as ElementTree + except ImportError: + from elementtree import ElementTree ++import defusedxml.ElementTree + + root_logger = logging.getLogger(__name__) + root_logger.level = logging.NOTSET +@@ -86,7 +87,7 @@ + """ + if not isinstance(xml_string, six.binary_type): + xml_string = xml_string.encode('utf-8') +-tree = ElementTree.fromstring(xml_string) ++tree = defusedxml.ElementTree.fromstring(xml_string) + return create_class_from_element_tree(target_class, tree) + + +@@ -268,7 +269,7 @@ + + + def extension_element_from_string(xml_string): +-element_tree = ElementTree.fromstring(xml_string) ++element_tree = defusedxml.ElementTree.fromstring(xml_string) + return _extension_element_from_element_tree(element_tree) + + +diff -Naur pysaml2/src/saml2/pack.py pysaml2.new/src/saml2/pack.py +--- pysaml2/src/saml2/pack.py 2015-12-11 07:31:39.0 -0600 pysaml2.new/src/saml2/pack.py 2017-01-10 20:35:35.382435020 -0600 +@@ -37,6 +37,7 @@ + import cElementTree as ElementTree + except ImportError: + from elementtree import ElementTree ++import defusedxml.ElementTree + + NAMESPACE = "http://schemas.xmlsoap.org/soap/envelope/; + FORM_SPEC = """ +@@ -235,7 +236,7 @@ + :param text: The SOAP object as XML + :return: header parts and body as saml.samlbase instances + """ +-envelope = ElementTree.fromstring(text) ++envelope = defusedxml.ElementTree.fromstring(text) + assert envelope.tag == '{%s}Envelope' % NAMESPACE + + # print(len(envelope)) +diff -Naur pysaml2/src/saml2/soap.py pysaml2.new/src/saml2/soap.py +--- pysaml2/src/saml2/soap.py 2015-05-18 02:54:05.0 -0500 pysaml2.new/src/saml2/soap.py 2017-01-10 20:36:16.163808770 -0600 +@@ -19,6 +19,7 @@ + except ImportError: + #noinspection PyUnresolvedReferences + from elementtree import ElementTree ++import defusedxml.ElementTree + + + logger = logging.getLogger(__name__) +@@ -133,7 +134,7 @@ + :param expected_tags: What the tag of the SAML thingy is expected to be. + :return: SAML thingy as a string + """ +-envelope = ElementTree.fromstring(text) ++envelope = defusedxml.ElementTree.fromstring(text) + + # Make sure it's a SOAP message + assert envelope.tag == '{%s}Envelope' % soapenv.NAMESPACE +@@ -183,7 +184,7 @@ + :return: The body and headers as class instances + """ + try: +-envelope = ElementTree.fromstring(text) ++envelope = defusedxml.ElementTree.fromstring(text) + except Exception as exc: + raise XmlParseError("%s" % exc) + +@@ -209,7 +210,7 @@ + :return: dictionary with two keys "body"/"header" + """ + try: +-envelope = ElementTree.fromstring(text) ++envelope = defusedxml.ElementTree.fromstring(text) + except Exception as exc: + raise XmlParseError("%s" % exc) + +diff -Naur pysaml2/tests/test_03_saml2.py pysaml2.new/tests/test_03_saml2.py +--- pysaml2/tests/test_03_saml2.py 2015-06-06 02:15:20.0 -0500 pysaml2.new/tests/test_03_saml2.py 2017-01-10 20:38:32.541728380 -0600 +@@ -17,6 +17,7 @@ + import cElementTree as ElementTree + except ImportError: + from elementtree import ElementTree ++from defusedxml.common import EntitiesForbidden + + ITEMS = { + NameID: [""" +@@ -27,7 +28,7 @@ + + """, """ + https://foo.example.com/sp; ++ SPNameQualifier="https://foo.example.com/sp; + Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_1632879f09d08ea5ede2dc667cbed7e429ebc4335c + """, """ + + http://192.168.0.10/saml/sp; />""", +
[gentoo-commits] repo/gentoo:master commit in: dev-python/pysaml2/
commit: 0a6a5d112600857be907e3910c9a39fc3f9bf2b3 Author: Matthew Thode gentoo org> AuthorDate: Fri Mar 25 05:28:24 2016 + Commit: Matt Thode gentoo org> CommitDate: Fri Mar 25 05:28:24 2016 + URL:https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=0a6a5d11 dev-python/pysaml2: adding py35 Package-Manager: portage-2.2.26 dev-python/pysaml2/pysaml2-3.0.0.ebuild | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/dev-python/pysaml2/pysaml2-3.0.0.ebuild b/dev-python/pysaml2/pysaml2-3.0.0.ebuild index c9ccb9a..c323b3a 100644 --- a/dev-python/pysaml2/pysaml2-3.0.0.ebuild +++ b/dev-python/pysaml2/pysaml2-3.0.0.ebuild @@ -3,7 +3,7 @@ # $Id$ EAPI=5 -PYTHON_COMPAT=( python2_7 python3_4 ) +PYTHON_COMPAT=( python2_7 python3_3 python3_4 python3_5 ) inherit distutils-r1
[gentoo-commits] repo/gentoo:master commit in: dev-python/pysaml2/
commit: 7adfe4cc8c3e79ff06180e677d95a028e1313eef Author: Matthew Thode gentoo org> AuthorDate: Sun Feb 28 06:15:44 2016 + Commit: Matt Thode gentoo org> CommitDate: Sun Feb 28 06:40:05 2016 + URL:https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=7adfe4cc dev-python/pysaml2: keywording arm64 merged on X-C1 Package-Manager: portage-2.2.26 dev-python/pysaml2/pysaml2-3.0.0.ebuild | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/dev-python/pysaml2/pysaml2-3.0.0.ebuild b/dev-python/pysaml2/pysaml2-3.0.0.ebuild index d2d88e8..c9ccb9a 100644 --- a/dev-python/pysaml2/pysaml2-3.0.0.ebuild +++ b/dev-python/pysaml2/pysaml2-3.0.0.ebuild @@ -13,7 +13,7 @@ SRC_URI="mirror://pypi/${PN:0:1}/${PN}/${P}.tar.gz" LICENSE="Apache-2.0" SLOT="0" -KEYWORDS="amd64 x86" +KEYWORDS="amd64 ~arm64 x86" IUSE="" DEPEND="
[gentoo-commits] repo/gentoo:master commit in: dev-python/pysaml2/
commit: 057c0caa6a96c6205ff5e79cb5c562ceaa1e5f7a Author: Agostino Sarubbo gentoo org> AuthorDate: Mon Nov 16 16:12:42 2015 + Commit: Agostino Sarubbo gentoo org> CommitDate: Mon Nov 16 16:12:42 2015 + URL:https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=057c0caa dev-python/pysaml2: amd64 stable wrt bug #565742 Package-Manager: portage-2.2.20.1 RepoMan-Options: --include-arches="amd64" dev-python/pysaml2/pysaml2-3.0.0.ebuild | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/dev-python/pysaml2/pysaml2-3.0.0.ebuild b/dev-python/pysaml2/pysaml2-3.0.0.ebuild index 8d050f7..ce12fb3 100644 --- a/dev-python/pysaml2/pysaml2-3.0.0.ebuild +++ b/dev-python/pysaml2/pysaml2-3.0.0.ebuild @@ -13,7 +13,7 @@ SRC_URI="mirror://pypi/${PN:0:1}/${PN}/${P}.tar.gz" LICENSE="Apache-2.0" SLOT="0" -KEYWORDS="~amd64 ~x86" +KEYWORDS="amd64 ~x86" IUSE="" DEPEND="
[gentoo-commits] repo/gentoo:master commit in: dev-python/pysaml2/
commit: c94dc2f42a071b96b0b3bf585e344fa91d817dd2 Author: Agostino Sarubbo gentoo org> AuthorDate: Mon Nov 16 16:24:20 2015 + Commit: Agostino Sarubbo gentoo org> CommitDate: Mon Nov 16 16:24:20 2015 + URL:https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=c94dc2f4 dev-python/pysaml2: x86 stable wrt bug #565742 Package-Manager: portage-2.2.20.1 RepoMan-Options: --include-arches="x86" dev-python/pysaml2/pysaml2-3.0.0.ebuild | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/dev-python/pysaml2/pysaml2-3.0.0.ebuild b/dev-python/pysaml2/pysaml2-3.0.0.ebuild index ce12fb3..d2d88e8 100644 --- a/dev-python/pysaml2/pysaml2-3.0.0.ebuild +++ b/dev-python/pysaml2/pysaml2-3.0.0.ebuild @@ -13,7 +13,7 @@ SRC_URI="mirror://pypi/${PN:0:1}/${PN}/${P}.tar.gz" LICENSE="Apache-2.0" SLOT="0" -KEYWORDS="amd64 ~x86" +KEYWORDS="amd64 x86" IUSE="" DEPEND="
[gentoo-commits] repo/gentoo:master commit in: dev-python/pysaml2/
commit: 55a9a24b014bd812b07c0ee80009e25518608910 Author: Matthew Thode gentoo org> AuthorDate: Thu Oct 15 04:56:18 2015 + Commit: Matt Thode gentoo org> CommitDate: Thu Oct 15 04:56:18 2015 + URL:https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=55a9a24b dev-python/pysaml2: bup with py34 support Package-Manager: portage-2.2.20.1 dev-python/pysaml2/Manifest | 1 + dev-python/pysaml2/pysaml2-3.0.0.ebuild | 33 + 2 files changed, 34 insertions(+) diff --git a/dev-python/pysaml2/Manifest b/dev-python/pysaml2/Manifest index 36740ed..b69cb6e 100644 --- a/dev-python/pysaml2/Manifest +++ b/dev-python/pysaml2/Manifest @@ -1 +1,2 @@ DIST pysaml2-2.1.0.tar.gz 12697706 SHA256 0843cbe784fd3b8b798d8b476fe871d48f0f2aab2bd95036a6e50eda99860340 SHA512 ba2076bd81465f3bbaeac11e9a6908f1ab899aa301c909b6bc67a681e94a7260ab214bad949dc937b4673bbed2aa550bf196ee8b055939fce62c628056df18ac WHIRLPOOL beee7908e4bec5512c3a7c11fb94dfdbf2dfe284bffd86ec487100f81129928e1dc1512aed054939eedcb79205e32690b21f3fd50d768cef1ad4decfd00ba75b +DIST pysaml2-3.0.0.tar.gz 13051759 SHA256 22aec520b3324f1f33cad58862f03ec3e000b2abc36880a5202615ba9fda5cc0 SHA512 a16281888e8604dbabcec1501d3d2ef6374ad63225f60664a663f2aad6dd2ffe9d8e77f7f1fc18fefc12a4ba44d183ed04c201774ad9e174fd604b91bb78 WHIRLPOOL 7814d31852144c6bf9de8581e7cbc1d7d11bb337d53b828022a5a956615acdd1f3ad4ee79dbb8632a0a80c17dc6119ea31f54734ed5afd254f77eb05ea2ab63d diff --git a/dev-python/pysaml2/pysaml2-3.0.0.ebuild b/dev-python/pysaml2/pysaml2-3.0.0.ebuild new file mode 100644 index 000..8d050f7 --- /dev/null +++ b/dev-python/pysaml2/pysaml2-3.0.0.ebuild @@ -0,0 +1,33 @@ +# Copyright 1999-2015 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Id$ + +EAPI=5 +PYTHON_COMPAT=( python2_7 python3_4 ) + +inherit distutils-r1 + +DESCRIPTION="Python implementation of SAML Version 2 to be used in a WSGI environment" +HOMEPAGE="https://github.com/rohe/pysaml2; +SRC_URI="mirror://pypi/${PN:0:1}/${PN}/${P}.tar.gz" + +LICENSE="Apache-2.0" +SLOT="0" +KEYWORDS="~amd64 ~x86" +IUSE="" + +DEPEND=" + dev-python/setuptools[${PYTHON_USEDEP}] +" +RDEPEND=" + dev-python/decorator[${PYTHON_USEDEP}] + >=dev-python/requests-1.0.0[${PYTHON_USEDEP}] + dev-python/paste[${PYTHON_USEDEP}] + dev-python/zope-interface[${PYTHON_USEDEP}] + dev-python/repoze-who[${PYTHON_USEDEP}] + >=dev-python/pycrypto-2.5[${PYTHON_USEDEP}] + dev-python/pytz[${PYTHON_USEDEP}] + dev-python/pyopenssl[${PYTHON_USEDEP}] + dev-python/python-dateutil[${PYTHON_USEDEP}] + dev-python/six[${PYTHON_USEDEP}] +"