[meta-python,04/10] python3-pyopenssl: Upgrade 19.1.0 -> 20.0.1

Submitted by Leon Anavi on Jan. 13, 2021, 2:26 p.m. | Patch ID: 179160

Details

Message ID 20210113142626.27599-4-leon.anavi@konsulko.com
State Accepted
Commit 43c16133c45455dab9cd215ab5e521cd32213166
Headers show

Commit Message

Leon Anavi Jan. 13, 2021, 2:26 p.m.
Upgrade to release 20.0.1:

- Fixed compatibility with OpenSSL 1.1.0
- Added a new optional chain parameter to
  OpenSSL.crypto.X509StoreContext() where additional untrusted
  certificates can be specified to help chain building.
- Added OpenSSL.crypto.X509Store.load_locations to set trusted
  certificate file bundles and/or directories for verification.
- Added Context.set_keylog_callback to log key material.
- Added OpenSSL.SSL.Connection.get_verified_chain to retrieve
  the verified certificate chain of the peer.
- Make verification callback optional in Context.set_verify. If
  omitted, OpenSSL’s default verification is used.
- Fixed a bug that could truncate or cause a zero-length key
  error due to a null byte in private key passphrase in
  OpenSSL.crypto.load_privatekey and OpenSSL.crypto.dump_privatekey.
- Deprecated OpenSSL.crypto.loads_pkcs7 and
  OpenSSL.crypto.loads_pkcs12.
- The minimum cryptography version is now 3.2.
- Remove deprecated OpenSSL.tsafe module.
- Removed deprecated OpenSSL.SSL.Context.set_npn_advertise_callback,
  OpenSSL.SSL.Context.set_npn_select_callback, and
  OpenSSL.SSL.Connection.get_next_proto_negotiated.
- Drop support for Python 3.4
- Drop support for OpenSSL 1.0.1 and 1.0.2

Signed-off-by: Leon Anavi <leon.anavi@konsulko.com>
---
 ...python3-pyopenssl_19.1.0.bb => python3-pyopenssl_20.0.1.bb} | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)
 rename meta-python/recipes-devtools/python/{python3-pyopenssl_19.1.0.bb => python3-pyopenssl_20.0.1.bb} (80%)

Patch hide | download patch | download mbox

diff --git a/meta-python/recipes-devtools/python/python3-pyopenssl_19.1.0.bb b/meta-python/recipes-devtools/python/python3-pyopenssl_20.0.1.bb
similarity index 80%
rename from meta-python/recipes-devtools/python/python3-pyopenssl_19.1.0.bb
rename to meta-python/recipes-devtools/python/python3-pyopenssl_20.0.1.bb
index da783ea29..e121ef844 100644
--- a/meta-python/recipes-devtools/python/python3-pyopenssl_19.1.0.bb
+++ b/meta-python/recipes-devtools/python/python3-pyopenssl_20.0.1.bb
@@ -5,8 +5,7 @@  LIC_FILES_CHKSUM = "file://LICENSE;md5=3b83ef96387f14655fc854ddc3c6bd57"
 
 DEPENDS += "openssl ${PYTHON_PN}-cryptography"
 
-SRC_URI[md5sum] = "d9804fedbd1eb0c7d9243397b1fbf972"
-SRC_URI[sha256sum] = "9a24494b2602aaf402be5c9e30a0b82d4a5c67528fe8fb475e3f3bc00dd69507"
+SRC_URI[sha256sum] = "4c231c759543ba02560fcd2480c48dcec4dae34c9da7d3747c508227e0624b51"
 
 PYPI_PACKAGE = "pyOpenSSL"
 inherit pypi setuptools3

Comments

Trevor Gamblin Jan. 14, 2021, 6:44 p.m.
On 2021-01-13 9:26 a.m., Leon Anavi wrote:
> Upgrade to release 20.0.1:
>
> - Fixed compatibility with OpenSSL 1.1.0
> - Added a new optional chain parameter to
>    OpenSSL.crypto.X509StoreContext() where additional untrusted
>    certificates can be specified to help chain building.
> - Added OpenSSL.crypto.X509Store.load_locations to set trusted
>    certificate file bundles and/or directories for verification.
> - Added Context.set_keylog_callback to log key material.
> - Added OpenSSL.SSL.Connection.get_verified_chain to retrieve
>    the verified certificate chain of the peer.
> - Make verification callback optional in Context.set_verify. If
>    omitted, OpenSSL’s default verification is used.
> - Fixed a bug that could truncate or cause a zero-length key
>    error due to a null byte in private key passphrase in
>    OpenSSL.crypto.load_privatekey and OpenSSL.crypto.dump_privatekey.
> - Deprecated OpenSSL.crypto.loads_pkcs7 and
>    OpenSSL.crypto.loads_pkcs12.
> - The minimum cryptography version is now 3.2.
> - Remove deprecated OpenSSL.tsafe module.
> - Removed deprecated OpenSSL.SSL.Context.set_npn_advertise_callback,
>    OpenSSL.SSL.Context.set_npn_select_callback, and
>    OpenSSL.SSL.Connection.get_next_proto_negotiated.
> - Drop support for Python 3.4
> - Drop support for OpenSSL 1.0.1 and 1.0.2
>
> Signed-off-by: Leon Anavi <leon.anavi@konsulko.com>
Acked-by: Trevor Gamblin <trevor.gamblin@windriver.com>
> ---
>   ...python3-pyopenssl_19.1.0.bb => python3-pyopenssl_20.0.1.bb} | 3 +--
>   1 file changed, 1 insertion(+), 2 deletions(-)
>   rename meta-python/recipes-devtools/python/{python3-pyopenssl_19.1.0.bb => python3-pyopenssl_20.0.1.bb} (80%)
>
> diff --git a/meta-python/recipes-devtools/python/python3-pyopenssl_19.1.0.bb b/meta-python/recipes-devtools/python/python3-pyopenssl_20.0.1.bb
> similarity index 80%
> rename from meta-python/recipes-devtools/python/python3-pyopenssl_19.1.0.bb
> rename to meta-python/recipes-devtools/python/python3-pyopenssl_20.0.1.bb
> index da783ea29..e121ef844 100644
> --- a/meta-python/recipes-devtools/python/python3-pyopenssl_19.1.0.bb
> +++ b/meta-python/recipes-devtools/python/python3-pyopenssl_20.0.1.bb
> @@ -5,8 +5,7 @@ LIC_FILES_CHKSUM = "file://LICENSE;md5=3b83ef96387f14655fc854ddc3c6bd57"
>   
>   DEPENDS += "openssl ${PYTHON_PN}-cryptography"
>   
> -SRC_URI[md5sum] = "d9804fedbd1eb0c7d9243397b1fbf972"
> -SRC_URI[sha256sum] = "9a24494b2602aaf402be5c9e30a0b82d4a5c67528fe8fb475e3f3bc00dd69507"
> +SRC_URI[sha256sum] = "4c231c759543ba02560fcd2480c48dcec4dae34c9da7d3747c508227e0624b51"
>   
>   PYPI_PACKAGE = "pyOpenSSL"
>   inherit pypi setuptools3
>
> 
>
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#88770): https://lists.openembedded.org/g/openembedded-devel/message/88770
Mute This Topic: https://lists.openembedded.org/mt/79651511/3617530
Group Owner: openembedded-devel+owner@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub [oe-patchwork@oe-patch.openembedded.org]
-=-=-=-=-=-=-=-=-=-=-=-