SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for python-python-gnupg-0.4.4-3.1.noarch.rpm :
Thu Jan 24 13:00:00 2019 Tomáš Chvátal
- Enable tests

Thu Jan 24 13:00:00 2019 Karol Babioch
- Update to 0.4.4:

* Changed how any return value from the ``on_data`` callable is processed. In
earlier versions, the return value was ignored. In this version, if the
return value is ``False``, the data received from ``gpg`` is not buffered.
Otherwise (if the value is ``None`` or ``True``, for example), the data is
buffered as normal. This functionality can be used to do your own
buffering, or to prevent buffering altogether. The ``on_data`` callable is
also called once with an empty byte-string to signal the end of data from
``gpg``.

* Added an additional attribute ``check_fingerprint_collisions`` to
``GPG`` instances, which defaults to ``False``. It seems that ``gpg`` is
happy to have duplicate keys and fingerprints in a keyring, so we can\'t be
too strict. A user can set this attribute of an instance to ``True`` to
trigger a check for collisions.

* With GnuPG 2.2.7 or later, provide the fingerprint of a signing key for a
failed signature verification, if available.

* For verification where multiple signatures are involved, a mapping of
signature_ids to fingerprint, keyid, username, creation date, creation
timestamp and expiry timestamp is provided.

* Added a check to disallow certain control characters (\'\\r\', \'\
\', NUL) in
passphrases (CVE-2019-6690 bsc#1123498)

Tue Dec 4 13:00:00 2018 Matej Cepl
- Remove superfluous devel dependency for noarch package

Wed Jun 13 14:00:00 2018 astiegerAATTsuse.com
- uppate to 0.4.3:

* Add --no-verbose to the gpg command line, in case verbose is
specified is gpg.conf.

* This is mitigation against CVE-2018-12020 boo#1096745
- includes changes from 0.4.2:

* Subkey information is now collected and returned in a
subkey_info dictionary keyed by the subkey\'s ID

* Add expect_passphrase password for use on GnuPG >= 2.1 when
passing passphrase to gpg via pinentry

* Provid a trust_keys method to allow setting the trust level
for keys

* When the gpg executable is not found, note the path used in the
exception message

* Make error messages nor informational

Mon Sep 11 14:00:00 2017 jengelhAATTinai.de
- Ensure description neutrality.

Wed Sep 6 14:00:00 2017 toddrme2178AATTgmail.com
- Initial version


  
ICM