Changelog for
python39-M2Crypto-0.38.0-qubes.5.3.x86_64.rpm :
* Wed Aug 03 2022 Dirk Müller
- update CVE-2020-25657-Bleichenbacher-attack.patch to actually contain the fix rather than just being empty (CVE-2020-25657, bsc#1178829)
* Tue Jul 12 2022 Matej Cepl - Add CVE-2020-25657-Bleichenbacher-attack.patch (CVE-2020-25657, bsc#1178829), which mitigates the Bleichenbacher timing attacks in the RSA decryption API.- Add python-M2Crypto.keyring to verify GPG signature of tarball.
* Thu Apr 07 2022 Matej Cepl - Add missing bug references to this changelog.
* Mon Jun 14 2021 Matej Cepl - Update to 0.38.0: - Remove the last use of setup.py test idiom. - Use m2_PyObject_AsReadBuffer instead of PyObject_AsReadBuffer. - Add support for arm64 big endian - Make support of RSA_SSLV23_PADDING optional (it has been deprecated). - Move project to src/ layout - Allow verify_cb_
* to be called with ok=True - Be prepared if any of constants in x509_vfy.h is not available. - But we do support 3.8 - We DO NOT support Python 2.6.- All patches were upstreamed: - 293_sslv23_padding.patch - no-need-parameterized.patch - python-M2Crypto-Allow-on-UNABLE_TO_VERIFY_LEAF_SIGNATURE.patch
* Thu Apr 22 2021 Matej Cepl - Add no-need-parameterized.patch ... we don\'t need run-time requirement of parameterized package (bsc#1185150).
* Fri Feb 19 2021 Matej Cepl - Add 293_sslv23_padding.patch to avoid using RSA_SSLV23_PADDING (gl#m2crypto/m2crypto#293, gh#openssl/openssl#14216).
* Wed Feb 17 2021 Pedro Monreal - OpenSSL allows the verificaton to continue on UNABLE_TO_VERIFY_LEAF_SIGNATURE
* This unifies the behaviour of a single certificate with an unknown CA certificate with a self-signed certificate.- Add python-M2Crypto-Allow-on-UNABLE_TO_VERIFY_LEAF_SIGNATURE.patch (Thanks for Debian, https://salsa.debian.org/python-team/packages/m2crypto/-/commit/e0e9ad5cfff8)
* Wed Feb 17 2021 Pedro Monreal - Add source signature file
* Wed Jan 13 2021 Matej Cepl - Dr. Strangelove or: How I Learned to Stop Worrying and Love pytest
* Tue Dec 08 2020 Matej Cepl - Update to 0.37.1: - Remove support for CentOS 6 and Python 2.6 (remove tests.vendor module). Python 2.7 is still fully supported. - Remodel CI: - on GitHub switched from Travis-CI to GH Actions - on GitLab-CI: stop testing 2.7 on Fedora, add centos7 - update appveyor.yml - Stop playing with swig in setup.py, we don\'t support swig 1.
* anymore. - Fix dereferencing of pointers (gl#m2crypto/m2crypto#281) - Replace deprecated PyObject_AsReadBuffer with our own shim (thanks to Casey Deccio for saving my bacon there). - Use parametrized to create parametrized tests (new external dependency). - Only use DigestSign() and DigestUpdate() with OpenSSL >= 1.1.1 - Expose all the X509_V_FLAG - Add support for DigestSign
* and DigestVerify
*
* Mon Jul 13 2020 Matej Cepl Update to 0.36.0: - wrap SocketIO in io.Buffered
* for makefile - SSL.Connection.close accepts an argument to force the socket closing - SSL.Connection: make the clientPostConnectionCheck an instance attribute - Fixed bug with usage of unexisting method getreply at SSL_Transport - Add appveyor builds for python 3.7 and 3.8 - Fixed syntax warning on line 44. - Update M2Crypto.six to 1.13.0 - base64.decodestring() was finally removed in Python 3.8. - wrap SocketIO in io.Buffered
* for makefile - NULL is legal argument for key and iv paramters of EVP_CipherInit(3) - Expose X509_V_FLAG_ALLOW_PROXY_CERTS verification flag and X509_STORE_SET_FLAGS function - Stop testing for 2.6 and 3.4 on Travis. Start testing 3.8 - Extend test cert validity to 2049 - Revert using typing module in 2.6. It is just not worthy. - Update Debian/stable SSL as well - Make tests pass again. - Stop using string module, which has been deprecated. - Tiny fixes to make pyls more happy - CI: Rework Fedora CI configuration - Remove upstream merged patch 001-fix-buffering-for-python38.patch.
* Wed Apr 08 2020 Tomáš Chvátal - Do not pull in py2 pkg on doc subpkg
* Mon Mar 09 2020 Marco Strigl - in python3.8 the fp is wrapped in a Buffer. SSL.Connection.makefile returns a socketIO which is no buffer. Added: 001-fix-buffering-for-python38.patch
* Mon Jun 10 2019 Matej Cepl - Update to fix release 0.35.2 ... just fixing the test suite (bsc#1172226).
* Sat Jun 08 2019 Matej Cepl - Replace fix_OpenSSL111c.patch with proper new release 0.35.1 (there is really not much more in it; bsc#1149792).
* Fri Jun 07 2019 Matej Cepl - Add fix_OpenSSL111c.patch patch to ensure compatibility with OpenSSL 1.1.1c. gl#m2crypto/m2crypto#258 and jsc#SLE-9135.
* Thu Jun 06 2019 Ondřej Súkup - Upgrade to 0.34.0- no upstream changelog
* Fri Apr 26 2019 Matej Cepl - Upgrade to 0.33.0 (bsc#1135009): - eb4525c - Stop pretending to support Python 3.4. - 6a89548 - Fix use of urlunsplit (25 hours ago) - 0a5a356 - tests/test_ssl: use -ciphercuites for TLS1.3 cipher in openssl1.1 - 8a0a3e3 - There are apparently multiword CPP variables. Taking that into account.- Remove 0001-tests-test_ssl-use-ciphercuites-for-TLS1.3-cipher-in.patch as it included in the latest release.
* Thu Mar 07 2019 Matej Cepl - Fix for compatibility with OpenSSL 1.1.0h by adding the patch 0001-tests-test_ssl-use-ciphercuites-for-TLS1.3-cipher-in.patch
* Tue Mar 05 2019 Matej Cepl - Update to 0.32.0:
* 471582f - setup.py: use ${CPP} as path to cpp
* efb1580 - Bump pipeline OpenSSL from 1.1.0i to 1.1.0j
* 35bb71b - Stub wchar_t helpers and ignore unused WCHAR defs
* effc7be - Add type comment to setup.py