diff options
author | V3n3RiX <venerix@redcorelinux.org> | 2019-11-18 10:15:03 +0000 |
---|---|---|
committer | V3n3RiX <venerix@redcorelinux.org> | 2019-11-18 10:15:03 +0000 |
commit | b284a3168fa91a038925d2ecf5e4791011ea5e7d (patch) | |
tree | 16fe44748708acacd909d4e2e160a09a7f6d936a /dev-python/cryptography | |
parent | 77398e424e45d9e98c1cef3c43bdadb9d56e81ef (diff) |
gentoo resync : 18.11.2019
Diffstat (limited to 'dev-python/cryptography')
-rw-r--r-- | dev-python/cryptography/Manifest | 20 | ||||
-rw-r--r-- | dev-python/cryptography/cryptography-2.2.2-r1.ebuild | 69 | ||||
-rw-r--r-- | dev-python/cryptography/cryptography-2.3.1.ebuild | 67 | ||||
-rw-r--r-- | dev-python/cryptography/cryptography-2.3.ebuild | 67 | ||||
-rw-r--r-- | dev-python/cryptography/cryptography-2.4.2.ebuild | 67 | ||||
-rw-r--r-- | dev-python/cryptography/cryptography-2.5.ebuild | 67 | ||||
-rw-r--r-- | dev-python/cryptography/cryptography-2.6.1.ebuild | 1 | ||||
-rw-r--r-- | dev-python/cryptography/cryptography-2.8.ebuild (renamed from dev-python/cryptography/cryptography-2.7.ebuild) | 16 | ||||
-rw-r--r-- | dev-python/cryptography/files/CVE-2018-10903.patch | 76 | ||||
-rw-r--r-- | dev-python/cryptography/files/cryptography-2.1.4-libressl-2.7-x509.patch | 23 | ||||
-rw-r--r-- | dev-python/cryptography/files/cryptography-2.1.4-libressl-2.7-x509_vfy.patch | 73 |
11 files changed, 14 insertions, 532 deletions
diff --git a/dev-python/cryptography/Manifest b/dev-python/cryptography/Manifest index 47a7e7d0e01c..76a6bbb3b699 100644 --- a/dev-python/cryptography/Manifest +++ b/dev-python/cryptography/Manifest @@ -1,19 +1,7 @@ -AUX CVE-2018-10903.patch 3641 BLAKE2B a426705cfcbc9ba4e3ffd662610b7a27c7afe52dff71d1c7248c03524369faa763196eb018b7ea94b8ac87cc5cb5dd5bf172f5cdedadb54be62dbe4e0819ed82 SHA512 94c56586ae1649b29959d855235af8e84bc9dd927b412e0e0a62cb47bb52580a919bacefe4be6d0b75318be05afccb950dbff3d7f6ec1cb44c111a4bbc2e6a99 -AUX cryptography-2.1.4-libressl-2.7-x509.patch 1005 BLAKE2B 9c01fe0f9c3c8c598388db68f68470b953b4a8e79dba8c1d3c6ce56486a93f340101a58db8771fa1adeaabe430d78acbb6723da597b8b114416d676022b989d4 SHA512 fc58993b3dc86990194e03c7cc4554d83260b243913d77b3743fe1f9fd0d21985ee849c6b7f7fc158c48b75505e8e8a9adf090b9c7ba40e12b09b3c020e50afe -AUX cryptography-2.1.4-libressl-2.7-x509_vfy.patch 3419 BLAKE2B 89642459484d42958aec818c4196eff35991ba415c76ee1f43c0765b1a9687c6b405f31322227eb132309439aa8d7ee5ed6df7ed07f640e4eea21c6e97fde858 SHA512 e941b89924d68b1d1dfe8e64a4f7ae363ccb53fd232a3853d9ddba0a7aed1dc27fb8d699e9197bdd7ff0b1780c1f12edd2edd4133f08e2f7f13348b170985a4c AUX cryptography-2.6.1-libressl.patch 2527 BLAKE2B 090e0fcd78a6661f8a87c27f572b0beeb27a6e410e7b6cbcfb4b2a952857cfb2facaf98cc4b9d8da6b4de250dc9199a28e5fd334ed2b6f4b84040471cb8132df SHA512 dfa0dcf912a5a103015abc2e9aee39a8440105d08ddfe217a9d283c57b0111610663cca90494903ee2e48be9bdd27ba1b8f752661d278fbd115ac11ff9a00fc9 -DIST cryptography-2.2.2.tar.gz 443822 BLAKE2B d0fbaad78d172f1ba1bfa6edd64d2d5a0eac0853a564fdbb9830dfedc5c53fe1b28d8c1878be85ce38b8cd90a0c2e40e6a209158693a88a7053a80f0481e6302 SHA512 6c1b19cdb870d65abad42523697e9a0bebc7a0025b34f10c4bdd30c313333efd7c41bcb4237a29b3a1b270e3fbade75ccb35df172b055b7c075d619f4d9424c9 -DIST cryptography-2.3.1.tar.gz 449577 BLAKE2B 66a94f68a6f5c14ff1e3316ea740bda8c34135bc4614a6a36880d4970d54cb72d69374555a6a89dd9a6794e35feed8fc4598ad071cce33b9515da1ada4c38d53 SHA512 384581238b5669dbf31fd1b1385ec2ff9c6d76e2b7612efb15f255e17a11a38474f84668e62ceaa39a146260f46cac743575c0a8ffedc1e40c7b2f90d7cb00b1 -DIST cryptography-2.3.tar.gz 449464 BLAKE2B 7485c745f9c6512a5efce42181970deff19bd4420e91230d84b070cd77450a6805c56a2e37cda73b45c90ed969c8fdbb866a7cc9e53a6828a1ca6e45befd9de8 SHA512 75e14020da500fdbbd578f004b22ef3237844185329adf59288b29f1b3ee9dd2005a2c4a933fe8609a59d168012a9f687bab0f31ab39ed6ca325198aa9295e52 -DIST cryptography-2.4.2.tar.gz 468645 BLAKE2B 80ecde87cf1568239977fbe4f835db98f689a7dc3646d44229b5b33932885c288d4274427f5d04eb74e9e064b01b11b7eac40fc6221ea2241371bca618cc66df SHA512 800735fa86e9ad0f8517328d47e55dc79a2b86d8c7539ee2921c526085782d8dad5559bbee84f7effb42275503fa9a984b099a688c530c92f5672c423c0f1a28 -DIST cryptography-2.5.tar.gz 487694 BLAKE2B 9502e7b7987ee0101ad8e5fcd09208034222a7f20b6b3bc3126c8b59081c9d8ecf872985d5fca191fc132dd6759afd4d11c0e0d39268627f35990c005a2095d3 SHA512 5e8f8818fcaa8143526006b027107b8afbdc925d40c846701e65b2c7ee02235b7e0918246515520ef2030b1c87bb157d0d403c28ad68c31459d677af7e2d0b3f DIST cryptography-2.6.1.tar.gz 491580 BLAKE2B b81114b57e9973c80fe999a63a3b1269d6289ac67851fedc263927b74e9e5ec4f35356cf5d46e4a27a994d5a3b2b3b599fea264b3ebce3a0cac27abfde3ef046 SHA512 f14319e24d9dca52e74548cada5b78a6235f089ef875dbff4799e862f94da8b087f1b6e03e84dcef9fc7d7693c4a349c5f0cd54b8535806da777420ce8757d39 -DIST cryptography-2.7.tar.gz 495877 BLAKE2B 48654897ff6ecd2fcf732b2d0378b806a9162c07c9e8349128593f4e28b3df222ac6a9cc19bc9342d303d1930bfb12747f9831f2a1bc42b1e784d85d69f0bf00 SHA512 fa420f44b038b6fe1983c6f2c6d830e2668017c26e1e125ad621e37ea627a927ffe64d0e987e0a26dcc260834f2ec817cccd22da03b892190f46cb6e8131a5a8 -EBUILD cryptography-2.2.2-r1.ebuild 2155 BLAKE2B c3e05bb5a12c0f9dd7af40c24c37b1966e4240ca79ced123d82f34203fb79fb48fe490bb493d598705f1dd925ed7d560d2a5696833fef215d8d09e613ae9ba26 SHA512 fc063559654880e549f6e6014dd11a09f0ecfd5efede6360af26fbb157208270aa0d3c6716a40e7c8b4d6ffaa2f018bbf61a868a8a8048e5ca53f7595cf5564b -EBUILD cryptography-2.3.1.ebuild 2150 BLAKE2B 603053e0dcb75db7703faa615beb00664b0c172512485192c1f481a66c1c4acf20d400581421cbe348531d501387f0ecc0361b7a9304ef757be15c154352b662 SHA512 99ef2c38dab016f1f6a1c71e4b4c5a38c2e2bcf3d6a02b1834556258ed6f208795baebab362d42e75a2a29403d38f01e11ad428273cb9f52c4fd4e73a784fa83 -EBUILD cryptography-2.3.ebuild 2105 BLAKE2B 870cf266558e70d1842be6fd714db8b25c7a505d6abccf323102ec84601a861115068d7c83edc1ee9e46f70c3af4c2393b95699e711ebe93c4bc3ef6d5fe1f22 SHA512 2a73fa12713ad94b68064a27cc54735baaa76f69fc73c468dfe29f68a930772474bc32f731491507cd9dce3343f9e1f3235cc59723e37aefa2e541537c6caad4 -EBUILD cryptography-2.4.2.ebuild 2105 BLAKE2B 870cf266558e70d1842be6fd714db8b25c7a505d6abccf323102ec84601a861115068d7c83edc1ee9e46f70c3af4c2393b95699e711ebe93c4bc3ef6d5fe1f22 SHA512 2a73fa12713ad94b68064a27cc54735baaa76f69fc73c468dfe29f68a930772474bc32f731491507cd9dce3343f9e1f3235cc59723e37aefa2e541537c6caad4 -EBUILD cryptography-2.5.ebuild 2120 BLAKE2B 8c8b4d41c9282dfe33179141232bf4dece7aaecc76d7ae12a381bc0e6ad7bef01a77d2d897cbe31d21fe61a1c617973368ca67849583ac564c3ab39af600aa46 SHA512 6e7df176573306fedd704421afa97879c60a42691be161ed96bf8703923eeacb423cdfc732c840b4b5dfac582484ec732c90245c390651aaa7a87d6158639597 -EBUILD cryptography-2.6.1.ebuild 2214 BLAKE2B b4ab669cb03f223de934e4a684bc1d1ec7f8dbe1212084a7df4c6d0c11d9dd63f01c1209e1e9b7ee5ebe11f82ae318dc728034b67624f8e5bbfe92d47a4fbc0a SHA512 1089368bb0ef923e8faaa5235cccacfe2022be1875785aecbc6974bbbdddb4c36b3c2556628861bd8ab2d3ecdcf50079f8e5cd3b67a9f529387e9e1c23ccfbdd -EBUILD cryptography-2.7.ebuild 2179 BLAKE2B 44effc1d084dfe4e57ae59ca03dc4475455546354e56ea741cba14d74a0d2aa5f8cd9e0e2adf69bba54049d8d83e2b7a9f4375c0bccd9ab46da2c92125d7f6e9 SHA512 5d1cd87a145bee7c08a442f4b87665048f0299eea5dc639c2d9f7231a97fedaef33af0471ac3407934f675c7363b40a49d78eac817dfc4913a232eebd2a275f5 +DIST cryptography-2.8.tar.gz 504516 BLAKE2B 3a853bf59a752acee9e9607f3f35f3815701c6068a1ffa5b6604ec648a31a5d4e31f13a1b19f3156c703313800242d8b06dd71a54a4eb0cc68481dea894002f3 SHA512 bf3ca44123c693b0602be19445925f9efebd46c469909e47b7907d57141fb6bd99268c33e1fe3f42a08ab8b4edd4f98f21b6a682f530352313334dfd31ba91e7 +DIST cryptography_vectors-2.8.tar.gz 35102030 BLAKE2B 8e98e12bab31a2097a72c849f52ee93b9b684a8923c140722419154471bd695c6287ff4498c9fe326662c7d9a9f5d9ebaa55dc4d5a0d8180a6827ae244464006 SHA512 d328082d3a65b8036d396172d7e42c753c842e9310850a77c6ccd99c9905d48bbc3e3319d216013c1370b8439f0f8056749ae94b1abf9a5b7088435acdeed7fb +EBUILD cryptography-2.6.1.ebuild 2241 BLAKE2B 23fde60e4629f87b17a8a0575051b9e9371cd43c6f8fc4cb4ea3cbe6228c197010cdc3ff591326c100fc3128190c3e60960e225faefd388c03fc44aadacca97e SHA512 93b740d2cf9b0739328febe821a31c14b6f7b015b267baceb2c486cfd7b93b61a6b436ffca9294835ec0d3dc06e9f0f12a7640532cb9f455f2c9f1451bb4c063 +EBUILD cryptography-2.8.ebuild 2237 BLAKE2B 016b7b2be5653d64cc6c1270ebea547d207321edf790c7b681485be4f3673ce0a6a5dc6b4aa698bf376b2e06a6bcd1d20920845fb6d85781f4023ee11dd0d85f SHA512 a4d6a38ee7fa32fdd6f3f65ffa6c627a9348c6f36eabf38a434fe64a2e0bc70bc7c8aa36ed4078eea0d6025d8721d1e0e94243a54600566efba1fd6018f1cffa MISC metadata.xml 499 BLAKE2B 2e4c37917ebb1604f399b0db4abe27b02b133a2cc8fb69fbbf52b6fdc0aee079dde61be188bfa5bca043a1804a670ffb53f6ab1e79147230166f696741fadad8 SHA512 26eda8b0a2ac91dce2946e18e941e2e75df15e4583e4ddb1f1329403eaae30db9976017f92981c462bfb8c8a559de2a2ea9531f4ac5ccb2d57cadb00e68e05ec diff --git a/dev-python/cryptography/cryptography-2.2.2-r1.ebuild b/dev-python/cryptography/cryptography-2.2.2-r1.ebuild deleted file mode 100644 index dfd4ffee34df..000000000000 --- a/dev-python/cryptography/cryptography-2.2.2-r1.ebuild +++ /dev/null @@ -1,69 +0,0 @@ -# Copyright 1999-2019 Gentoo Authors -# Distributed under the terms of the GNU General Public License v2 - -EAPI=6 - -PYTHON_COMPAT=( python2_7 python3_{5,6,7} pypy{,3} ) -PYTHON_REQ_USE="threads(+)" - -inherit distutils-r1 flag-o-matic - -DESCRIPTION="Library providing cryptographic recipes and primitives" -HOMEPAGE="https://github.com/pyca/cryptography/ https://pypi.org/project/cryptography/" -SRC_URI="mirror://pypi/${PN:0:1}/${PN}/${P}.tar.gz" - -LICENSE="|| ( Apache-2.0 BSD )" -SLOT="0" -KEYWORDS="alpha amd64 arm arm64 hppa ia64 m68k ~mips ppc ppc64 s390 sh sparc x86 ~amd64-linux ~x86-linux ~ppc-macos ~x64-macos ~x64-solaris" -IUSE="libressl test" - -# the openssl 1.0.2l-r1 needs to be updated again :( -# It'd theb be able to go into the || section again -#=dev-libs/openssl-1.0.2l-r1:0 -# the following is the original section, disallowing bindist entirely -#!libressl? ( >=dev-libs/openssl-1.0.2:0=[-bindist(-)] ) -RDEPEND=" - !libressl? ( - dev-libs/openssl:0= ( - || ( - dev-libs/openssl:0[-bindist(-)] - >=dev-libs/openssl-1.0.2o-r6:0 - ) - ) - ) - libressl? ( dev-libs/libressl:0= ) - $(python_gen_cond_dep '>=dev-python/cffi-1.7:=[${PYTHON_USEDEP}]' 'python*') - >=dev-python/idna-2.1[${PYTHON_USEDEP}] - >=dev-python/asn1crypto-0.21.0[${PYTHON_USEDEP}] - dev-python/setuptools[${PYTHON_USEDEP}] - >=dev-python/six-1.4.1[${PYTHON_USEDEP}] - virtual/python-enum34[${PYTHON_USEDEP}] - virtual/python-ipaddress[${PYTHON_USEDEP}] - " -DEPEND="${RDEPEND} - >=dev-python/setuptools-1.0[${PYTHON_USEDEP}] - test? ( - ~dev-python/cryptography-vectors-${PV}[${PYTHON_USEDEP}] - dev-python/hypothesis[${PYTHON_USEDEP}] - dev-python/iso8601[${PYTHON_USEDEP}] - dev-python/pretend[${PYTHON_USEDEP}] - dev-python/pyasn1-modules[${PYTHON_USEDEP}] - >=dev-python/pytest-2.9.0[${PYTHON_USEDEP}] - dev-python/pytz[${PYTHON_USEDEP}] - )" - -DOCS=( AUTHORS.rst CONTRIBUTING.rst README.rst ) - -PATCHES=( - "${FILESDIR}"/${PN}-2.1.4-libressl-2.7-x509.patch - "${FILESDIR}"/${PN}-2.1.4-libressl-2.7-x509_vfy.patch - "${FILESDIR}"/CVE-2018-10903.patch -) - -python_configure_all() { - append-cflags $(test-flags-CC -pthread) -} - -python_test() { - py.test -v -v -x || die "Tests fail with ${EPYTHON}" -} diff --git a/dev-python/cryptography/cryptography-2.3.1.ebuild b/dev-python/cryptography/cryptography-2.3.1.ebuild deleted file mode 100644 index a439e334e1d2..000000000000 --- a/dev-python/cryptography/cryptography-2.3.1.ebuild +++ /dev/null @@ -1,67 +0,0 @@ -# Copyright 1999-2019 Gentoo Authors -# Distributed under the terms of the GNU General Public License v2 - -EAPI=6 - -PYTHON_COMPAT=( python2_7 python3_{5,6,7} pypy{,3} ) -PYTHON_REQ_USE="threads(+)" - -inherit distutils-r1 flag-o-matic - -DESCRIPTION="Library providing cryptographic recipes and primitives" -HOMEPAGE="https://github.com/pyca/cryptography/ https://pypi.org/project/cryptography/" -SRC_URI="mirror://pypi/${PN:0:1}/${PN}/${P}.tar.gz" - -LICENSE="|| ( Apache-2.0 BSD )" -SLOT="0" -KEYWORDS="~alpha ~amd64 ~arm ~arm64 ~hppa ~ia64 ~m68k ~mips ~ppc ~ppc64 ~s390 ~sh ~sparc ~x86 ~amd64-linux ~x86-linux ~ppc-macos ~x64-macos ~sparc-solaris ~sparc64-solaris ~x64-solaris ~x86-solaris" -IUSE="libressl test" - -# the openssl 1.0.2l-r1 needs to be updated again :( -# It'd theb be able to go into the || section again -#=dev-libs/openssl-1.0.2l-r1:0 -# the following is the original section, disallowing bindist entirely -#!libressl? ( >=dev-libs/openssl-1.0.2:0=[-bindist(-)] ) -RDEPEND=" - !libressl? ( - dev-libs/openssl:0= ( - || ( - dev-libs/openssl:0[-bindist(-)] - >=dev-libs/openssl-1.0.2o-r6:0 - ) - ) - ) - libressl? ( dev-libs/libressl:0= ) - >=dev-python/idna-2.1[${PYTHON_USEDEP}] - >=dev-python/asn1crypto-0.21.0[${PYTHON_USEDEP}] - dev-python/setuptools[${PYTHON_USEDEP}] - >=dev-python/six-1.4.1[${PYTHON_USEDEP}] - virtual/python-enum34[${PYTHON_USEDEP}] - virtual/python-ipaddress[${PYTHON_USEDEP}] - " -DEPEND="${RDEPEND} - >=dev-python/setuptools-1.0[${PYTHON_USEDEP}] - $(python_gen_cond_dep '>=dev-python/cffi-1.7:=[${PYTHON_USEDEP}]' 'python*') - $(python_gen_cond_dep '!~dev-python/cffi-1.11.3[${PYTHON_USEDEP}]' 'python*') - test? ( - ~dev-python/cryptography-vectors-${PV}[${PYTHON_USEDEP}] - dev-python/hypothesis[${PYTHON_USEDEP}] - dev-python/iso8601[${PYTHON_USEDEP}] - dev-python/pretend[${PYTHON_USEDEP}] - dev-python/pyasn1-modules[${PYTHON_USEDEP}] - >=dev-python/pytest-2.9.0[${PYTHON_USEDEP}] - dev-python/pytz[${PYTHON_USEDEP}] - )" - -DOCS=( AUTHORS.rst CONTRIBUTING.rst README.rst ) - -PATCHES=( -) - -python_configure_all() { - append-cflags $(test-flags-CC -pthread) -} - -python_test() { - py.test -v -v -x || die "Tests fail with ${EPYTHON}" -} diff --git a/dev-python/cryptography/cryptography-2.3.ebuild b/dev-python/cryptography/cryptography-2.3.ebuild deleted file mode 100644 index c614fbc3c922..000000000000 --- a/dev-python/cryptography/cryptography-2.3.ebuild +++ /dev/null @@ -1,67 +0,0 @@ -# Copyright 1999-2019 Gentoo Authors -# Distributed under the terms of the GNU General Public License v2 - -EAPI=6 - -PYTHON_COMPAT=( python2_7 python3_{5,6,7} pypy{,3} ) -PYTHON_REQ_USE="threads(+)" - -inherit distutils-r1 flag-o-matic - -DESCRIPTION="Library providing cryptographic recipes and primitives" -HOMEPAGE="https://github.com/pyca/cryptography/ https://pypi.org/project/cryptography/" -SRC_URI="mirror://pypi/${PN:0:1}/${PN}/${P}.tar.gz" - -LICENSE="|| ( Apache-2.0 BSD )" -SLOT="0" -KEYWORDS="~alpha ~amd64 ~arm ~arm64 ~hppa ~ia64 ~m68k ~mips ~ppc ~ppc64 ~s390 ~sh ~sparc ~x86 ~amd64-linux ~x86-linux ~ppc-macos ~x64-macos ~x64-solaris" -IUSE="libressl test" - -# the openssl 1.0.2l-r1 needs to be updated again :( -# It'd theb be able to go into the || section again -#=dev-libs/openssl-1.0.2l-r1:0 -# the following is the original section, disallowing bindist entirely -#!libressl? ( >=dev-libs/openssl-1.0.2:0=[-bindist(-)] ) -RDEPEND=" - !libressl? ( - dev-libs/openssl:0= ( - || ( - dev-libs/openssl:0[-bindist(-)] - >=dev-libs/openssl-1.0.2o-r6:0 - ) - ) - ) - libressl? ( dev-libs/libressl:0= ) - >=dev-python/idna-2.1[${PYTHON_USEDEP}] - >=dev-python/asn1crypto-0.21.0[${PYTHON_USEDEP}] - dev-python/setuptools[${PYTHON_USEDEP}] - >=dev-python/six-1.4.1[${PYTHON_USEDEP}] - virtual/python-enum34[${PYTHON_USEDEP}] - virtual/python-ipaddress[${PYTHON_USEDEP}] - " -DEPEND="${RDEPEND} - >=dev-python/setuptools-1.0[${PYTHON_USEDEP}] - $(python_gen_cond_dep '>=dev-python/cffi-1.7:=[${PYTHON_USEDEP}]' 'python*') - $(python_gen_cond_dep '!~dev-python/cffi-1.11.3[${PYTHON_USEDEP}]' 'python*') - test? ( - ~dev-python/cryptography-vectors-${PV}[${PYTHON_USEDEP}] - dev-python/hypothesis[${PYTHON_USEDEP}] - dev-python/iso8601[${PYTHON_USEDEP}] - dev-python/pretend[${PYTHON_USEDEP}] - dev-python/pyasn1-modules[${PYTHON_USEDEP}] - >=dev-python/pytest-2.9.0[${PYTHON_USEDEP}] - dev-python/pytz[${PYTHON_USEDEP}] - )" - -DOCS=( AUTHORS.rst CONTRIBUTING.rst README.rst ) - -PATCHES=( -) - -python_configure_all() { - append-cflags $(test-flags-CC -pthread) -} - -python_test() { - py.test -v -v -x || die "Tests fail with ${EPYTHON}" -} diff --git a/dev-python/cryptography/cryptography-2.4.2.ebuild b/dev-python/cryptography/cryptography-2.4.2.ebuild deleted file mode 100644 index c614fbc3c922..000000000000 --- a/dev-python/cryptography/cryptography-2.4.2.ebuild +++ /dev/null @@ -1,67 +0,0 @@ -# Copyright 1999-2019 Gentoo Authors -# Distributed under the terms of the GNU General Public License v2 - -EAPI=6 - -PYTHON_COMPAT=( python2_7 python3_{5,6,7} pypy{,3} ) -PYTHON_REQ_USE="threads(+)" - -inherit distutils-r1 flag-o-matic - -DESCRIPTION="Library providing cryptographic recipes and primitives" -HOMEPAGE="https://github.com/pyca/cryptography/ https://pypi.org/project/cryptography/" -SRC_URI="mirror://pypi/${PN:0:1}/${PN}/${P}.tar.gz" - -LICENSE="|| ( Apache-2.0 BSD )" -SLOT="0" -KEYWORDS="~alpha ~amd64 ~arm ~arm64 ~hppa ~ia64 ~m68k ~mips ~ppc ~ppc64 ~s390 ~sh ~sparc ~x86 ~amd64-linux ~x86-linux ~ppc-macos ~x64-macos ~x64-solaris" -IUSE="libressl test" - -# the openssl 1.0.2l-r1 needs to be updated again :( -# It'd theb be able to go into the || section again -#=dev-libs/openssl-1.0.2l-r1:0 -# the following is the original section, disallowing bindist entirely -#!libressl? ( >=dev-libs/openssl-1.0.2:0=[-bindist(-)] ) -RDEPEND=" - !libressl? ( - dev-libs/openssl:0= ( - || ( - dev-libs/openssl:0[-bindist(-)] - >=dev-libs/openssl-1.0.2o-r6:0 - ) - ) - ) - libressl? ( dev-libs/libressl:0= ) - >=dev-python/idna-2.1[${PYTHON_USEDEP}] - >=dev-python/asn1crypto-0.21.0[${PYTHON_USEDEP}] - dev-python/setuptools[${PYTHON_USEDEP}] - >=dev-python/six-1.4.1[${PYTHON_USEDEP}] - virtual/python-enum34[${PYTHON_USEDEP}] - virtual/python-ipaddress[${PYTHON_USEDEP}] - " -DEPEND="${RDEPEND} - >=dev-python/setuptools-1.0[${PYTHON_USEDEP}] - $(python_gen_cond_dep '>=dev-python/cffi-1.7:=[${PYTHON_USEDEP}]' 'python*') - $(python_gen_cond_dep '!~dev-python/cffi-1.11.3[${PYTHON_USEDEP}]' 'python*') - test? ( - ~dev-python/cryptography-vectors-${PV}[${PYTHON_USEDEP}] - dev-python/hypothesis[${PYTHON_USEDEP}] - dev-python/iso8601[${PYTHON_USEDEP}] - dev-python/pretend[${PYTHON_USEDEP}] - dev-python/pyasn1-modules[${PYTHON_USEDEP}] - >=dev-python/pytest-2.9.0[${PYTHON_USEDEP}] - dev-python/pytz[${PYTHON_USEDEP}] - )" - -DOCS=( AUTHORS.rst CONTRIBUTING.rst README.rst ) - -PATCHES=( -) - -python_configure_all() { - append-cflags $(test-flags-CC -pthread) -} - -python_test() { - py.test -v -v -x || die "Tests fail with ${EPYTHON}" -} diff --git a/dev-python/cryptography/cryptography-2.5.ebuild b/dev-python/cryptography/cryptography-2.5.ebuild deleted file mode 100644 index defeba4778b9..000000000000 --- a/dev-python/cryptography/cryptography-2.5.ebuild +++ /dev/null @@ -1,67 +0,0 @@ -# Copyright 1999-2019 Gentoo Authors -# Distributed under the terms of the GNU General Public License v2 - -EAPI=6 - -PYTHON_COMPAT=( python2_7 python3_{5,6,7} pypy{,3} ) -PYTHON_REQ_USE="threads(+)" - -inherit distutils-r1 flag-o-matic - -DESCRIPTION="Library providing cryptographic recipes and primitives" -HOMEPAGE="https://github.com/pyca/cryptography/ https://pypi.org/project/cryptography/" -SRC_URI="mirror://pypi/${PN:0:1}/${PN}/${P}.tar.gz" - -LICENSE="|| ( Apache-2.0 BSD )" -SLOT="0" -KEYWORDS="~alpha ~amd64 ~arm ~arm64 ~hppa ~ia64 ~m68k ~mips ~ppc ~ppc64 ~s390 ~sh ~sparc ~x86 ~amd64-linux ~x86-linux ~ppc-macos ~x64-macos ~x64-solaris" -IUSE="libressl idna test" - -# the openssl 1.0.2l-r1 needs to be updated again :( -# It'd theb be able to go into the || section again -#=dev-libs/openssl-1.0.2l-r1:0 -# the following is the original section, disallowing bindist entirely -#!libressl? ( >=dev-libs/openssl-1.0.2:0=[-bindist(-)] ) -RDEPEND=" - !libressl? ( - dev-libs/openssl:0= ( - || ( - dev-libs/openssl:0[-bindist(-)] - >=dev-libs/openssl-1.0.2o-r6:0 - ) - ) - ) - libressl? ( dev-libs/libressl:0= ) - idna? ( >=dev-python/idna-2.1[${PYTHON_USEDEP}] ) - >=dev-python/asn1crypto-0.21.0[${PYTHON_USEDEP}] - dev-python/setuptools[${PYTHON_USEDEP}] - >=dev-python/six-1.4.1[${PYTHON_USEDEP}] - virtual/python-enum34[${PYTHON_USEDEP}] - virtual/python-ipaddress[${PYTHON_USEDEP}] - " -DEPEND="${RDEPEND} - >=dev-python/setuptools-1.0[${PYTHON_USEDEP}] - $(python_gen_cond_dep '>=dev-python/cffi-1.8:=[${PYTHON_USEDEP}]' 'python*') - $(python_gen_cond_dep '!~dev-python/cffi-1.11.3[${PYTHON_USEDEP}]' 'python*') - test? ( - ~dev-python/cryptography-vectors-${PV}[${PYTHON_USEDEP}] - dev-python/hypothesis[${PYTHON_USEDEP}] - dev-python/iso8601[${PYTHON_USEDEP}] - dev-python/pretend[${PYTHON_USEDEP}] - dev-python/pyasn1-modules[${PYTHON_USEDEP}] - >=dev-python/pytest-2.9.0[${PYTHON_USEDEP}] - dev-python/pytz[${PYTHON_USEDEP}] - )" - -DOCS=( AUTHORS.rst CONTRIBUTING.rst README.rst ) - -PATCHES=( -) - -python_configure_all() { - append-cflags $(test-flags-CC -pthread) -} - -python_test() { - py.test -v -v -x || die "Tests fail with ${EPYTHON}" -} diff --git a/dev-python/cryptography/cryptography-2.6.1.ebuild b/dev-python/cryptography/cryptography-2.6.1.ebuild index 41f0e5866601..52a71757df07 100644 --- a/dev-python/cryptography/cryptography-2.6.1.ebuild +++ b/dev-python/cryptography/cryptography-2.6.1.ebuild @@ -16,6 +16,7 @@ LICENSE="|| ( Apache-2.0 BSD )" SLOT="0" KEYWORDS="alpha amd64 arm arm64 hppa ia64 m68k ~mips ppc ppc64 s390 sh sparc x86 ~x64-cygwin ~amd64-linux ~x86-linux ~ppc-macos ~x64-macos ~x64-solaris" IUSE="libressl idna test" +RESTRICT="!test? ( test )" # the openssl 1.0.2l-r1 needs to be updated again :( # It'd theb be able to go into the || section again diff --git a/dev-python/cryptography/cryptography-2.7.ebuild b/dev-python/cryptography/cryptography-2.8.ebuild index adb8ae7c50fa..777545258fb7 100644 --- a/dev-python/cryptography/cryptography-2.7.ebuild +++ b/dev-python/cryptography/cryptography-2.8.ebuild @@ -1,21 +1,24 @@ # Copyright 1999-2019 Gentoo Authors # Distributed under the terms of the GNU General Public License v2 -EAPI=6 +EAPI=7 -PYTHON_COMPAT=( python2_7 python3_{5,6,7} pypy{,3} ) +PYTHON_COMPAT=( python2_7 python3_{5,6,7,8} pypy{,3} ) PYTHON_REQ_USE="threads(+)" inherit distutils-r1 flag-o-matic +VEC_P=cryptography_vectors-${PV} DESCRIPTION="Library providing cryptographic recipes and primitives" HOMEPAGE="https://github.com/pyca/cryptography/ https://pypi.org/project/cryptography/" -SRC_URI="mirror://pypi/${PN:0:1}/${PN}/${P}.tar.gz" +SRC_URI="mirror://pypi/${PN:0:1}/${PN}/${P}.tar.gz + test? ( mirror://pypi/c/cryptography_vectors/${VEC_P}.tar.gz )" LICENSE="|| ( Apache-2.0 BSD )" SLOT="0" KEYWORDS="~alpha ~amd64 ~arm ~arm64 ~hppa ~ia64 ~m68k ~mips ~ppc ~ppc64 ~s390 ~sh ~sparc ~x86 ~x64-cygwin ~amd64-linux ~x86-linux ~ppc-macos ~x64-macos ~x64-solaris" IUSE="libressl idna test" +RESTRICT="!test? ( test )" # the openssl 1.0.2l-r1 needs to be updated again :( # It'd theb be able to go into the || section again @@ -33,7 +36,6 @@ RDEPEND=" ) libressl? ( dev-libs/libressl:0= ) idna? ( >=dev-python/idna-2.1[${PYTHON_USEDEP}] ) - >=dev-python/asn1crypto-0.21.0[${PYTHON_USEDEP}] dev-python/setuptools[${PYTHON_USEDEP}] >=dev-python/six-1.4.1[${PYTHON_USEDEP}] virtual/python-enum34[${PYTHON_USEDEP}] @@ -44,14 +46,13 @@ DEPEND="${RDEPEND} $(python_gen_cond_dep '>=dev-python/cffi-1.8:=[${PYTHON_USEDEP}]' 'python*') $(python_gen_cond_dep '!~dev-python/cffi-1.11.3[${PYTHON_USEDEP}]' 'python*') test? ( - ~dev-python/cryptography-vectors-${PV}[${PYTHON_USEDEP}] dev-python/pretend[${PYTHON_USEDEP}] dev-python/iso8601[${PYTHON_USEDEP}] dev-python/pytz[${PYTHON_USEDEP}] >=dev-python/hypothesis-1.11.4[${PYTHON_USEDEP}] !~dev-python/hypothesis-3.79.2[${PYTHON_USEDEP}] dev-python/pyasn1-modules[${PYTHON_USEDEP}] - >=dev-python/pytest-2.9.0[${PYTHON_USEDEP}] + dev-python/pytest[${PYTHON_USEDEP}] )" DOCS=( AUTHORS.rst CONTRIBUTING.rst README.rst ) @@ -61,5 +62,6 @@ python_configure_all() { } python_test() { - py.test -v -v -x || die "Tests fail with ${EPYTHON}" + local -x PYTHONPATH=${PYTHONPATH}:${WORKDIR}/${VEC_P} + pytest -vv || die "Tests fail with ${EPYTHON}" } diff --git a/dev-python/cryptography/files/CVE-2018-10903.patch b/dev-python/cryptography/files/CVE-2018-10903.patch deleted file mode 100644 index 1133405fb93d..000000000000 --- a/dev-python/cryptography/files/CVE-2018-10903.patch +++ /dev/null @@ -1,76 +0,0 @@ -From 688e0f673bfbf43fa898994326c6877f00ab19ef Mon Sep 17 00:00:00 2001 -From: Paul Kehrer <paul.l.kehrer@gmail.com> -Date: Tue, 17 Jul 2018 10:47:57 +0800 -Subject: [PATCH] disallow implicit tag truncation with finalize_with_tag - ---- - docs/hazmat/primitives/symmetric-encryption.rst | 1 + - src/cryptography/hazmat/backends/openssl/ciphers.py | 5 +++++ - src/cryptography/hazmat/primitives/ciphers/modes.py | 1 + - tests/hazmat/primitives/test_aes.py | 16 ++++++++++++++++ - 5 files changed, 28 insertions(+) - -diff --git a/docs/hazmat/primitives/symmetric-encryption.rst b/docs/hazmat/primitives/symmetric-encryption.rst -index 5ebcca754..5b6000902 100644 ---- a/docs/hazmat/primitives/symmetric-encryption.rst -+++ b/docs/hazmat/primitives/symmetric-encryption.rst -@@ -670,6 +670,7 @@ Interfaces - :raises ValueError: This is raised when the data provided isn't - a multiple of the algorithm's block size, if ``min_tag_length`` is - less than 4, or if ``len(tag) < min_tag_length``. -+ ``min_tag_length`` is an argument to the ``GCM`` constructor. - :raises NotImplementedError: This is raised if the version of the - OpenSSL backend used is 1.0.1 or earlier. - -diff --git a/src/cryptography/hazmat/backends/openssl/ciphers.py b/src/cryptography/hazmat/backends/openssl/ciphers.py -index 462ffea25..e0ee06ee2 100644 ---- a/src/cryptography/hazmat/backends/openssl/ciphers.py -+++ b/src/cryptography/hazmat/backends/openssl/ciphers.py -@@ -199,6 +199,11 @@ def finalize_with_tag(self, tag): - "finalize_with_tag requires OpenSSL >= 1.0.2. To use this " - "method please update OpenSSL" - ) -+ if len(tag) < self._mode._min_tag_length: -+ raise ValueError( -+ "Authentication tag must be {0} bytes or longer.".format( -+ self._mode._min_tag_length) -+ ) - res = self._backend._lib.EVP_CIPHER_CTX_ctrl( - self._ctx, self._backend._lib.EVP_CTRL_AEAD_SET_TAG, - len(tag), tag -diff --git a/src/cryptography/hazmat/primitives/ciphers/modes.py b/src/cryptography/hazmat/primitives/ciphers/modes.py -index 598dfaa4a..543015fef 100644 ---- a/src/cryptography/hazmat/primitives/ciphers/modes.py -+++ b/src/cryptography/hazmat/primitives/ciphers/modes.py -@@ -220,6 +220,7 @@ def __init__(self, initialization_vector, tag=None, min_tag_length=16): - min_tag_length) - ) - self._tag = tag -+ self._min_tag_length = min_tag_length - - tag = utils.read_only_property("_tag") - initialization_vector = utils.read_only_property("_initialization_vector") -diff --git a/tests/hazmat/primitives/test_aes.py b/tests/hazmat/primitives/test_aes.py -index d6f83ebc2..4ceccf155 100644 ---- a/tests/hazmat/primitives/test_aes.py -+++ b/tests/hazmat/primitives/test_aes.py -@@ -439,3 +439,19 @@ def test_gcm_tag_decrypt_finalize(self, backend): - decryptor.finalize() - else: - decryptor.finalize_with_tag(tag) -+ -+ @pytest.mark.supported( -+ only_if=lambda backend: ( -+ not backend._lib.CRYPTOGRAPHY_OPENSSL_LESS_THAN_102 or -+ backend._lib.CRYPTOGRAPHY_IS_LIBRESSL -+ ), -+ skip_message="Not supported on OpenSSL 1.0.1", -+ ) -+ def test_gcm_tag_decrypt_finalize_tag_length(self, backend): -+ decryptor = base.Cipher( -+ algorithms.AES(b"0" * 16), -+ modes.GCM(b"0" * 12), -+ backend=backend -+ ).decryptor() -+ with pytest.raises(ValueError): -+ decryptor.finalize_with_tag(b"tagtooshort") diff --git a/dev-python/cryptography/files/cryptography-2.1.4-libressl-2.7-x509.patch b/dev-python/cryptography/files/cryptography-2.1.4-libressl-2.7-x509.patch deleted file mode 100644 index 9a14d4606019..000000000000 --- a/dev-python/cryptography/files/cryptography-2.1.4-libressl-2.7-x509.patch +++ /dev/null @@ -1,23 +0,0 @@ -diff -ur a/src/_cffi_src/openssl/x509.py b/src/_cffi_src/openssl/x509.py ---- a/src/_cffi_src/openssl/x509.py 2017-07-27 05:11:29.000000000 +0200 -+++ b/src/_cffi_src/openssl/x509.py 2018-03-23 10:28:00.387774214 +0100 -@@ -254,8 +254,7 @@ - - const X509_ALGOR *X509_get0_tbs_sigalg(const X509 *); - --/* in 1.1.0 becomes const ASN1_BIT_STRING, const X509_ALGOR */ --void X509_get0_signature(ASN1_BIT_STRING **, X509_ALGOR **, X509 *); -+void X509_get0_signature(const ASN1_BIT_STRING **, const X509_ALGOR **, const X509 *); - - long X509_get_version(X509 *); - -@@ -338,7 +337,8 @@ - CUSTOMIZATIONS = """ - /* Added in 1.0.2 beta but we need it in all versions now due to the great - opaquing. */ --#if CRYPTOGRAPHY_OPENSSL_LESS_THAN_102 -+#if CRYPTOGRAPHY_OPENSSL_LESS_THAN_102 && \ -+ (defined(LIBRESSL_VERSION_NUMBER) && LIBRESSL_VERSION_NUMBER < 0x2070000fL) - /* from x509/x_x509.c version 1.0.2 */ - void X509_get0_signature(ASN1_BIT_STRING **psig, X509_ALGOR **palg, - const X509 *x) diff --git a/dev-python/cryptography/files/cryptography-2.1.4-libressl-2.7-x509_vfy.patch b/dev-python/cryptography/files/cryptography-2.1.4-libressl-2.7-x509_vfy.patch deleted file mode 100644 index a1c93cf0c66e..000000000000 --- a/dev-python/cryptography/files/cryptography-2.1.4-libressl-2.7-x509_vfy.patch +++ /dev/null @@ -1,73 +0,0 @@ -$OpenBSD: patch-src__cffi_src_openssl_x509_vfy_py,v 1.7 2018/02/22 18:49:16 sthen Exp $ - ---- a/src/_cffi_src/openssl/x509_vfy.py -+++ b/src/_cffi_src/openssl/x509_vfy.py -@@ -204,7 +204,7 @@ int sk_X509_OBJECT_num(Cryptography_STACK_OF_X509_OBJE - X509_OBJECT *sk_X509_OBJECT_value(Cryptography_STACK_OF_X509_OBJECT *, int); - X509_VERIFY_PARAM *X509_STORE_get0_param(X509_STORE *); - Cryptography_STACK_OF_X509_OBJECT *X509_STORE_get0_objects(X509_STORE *); --X509 *X509_OBJECT_get0_X509(X509_OBJECT *); -+X509 *X509_OBJECT_get0_X509(const X509_OBJECT *); - int X509_OBJECT_get_type(const X509_OBJECT *); - - /* added in 1.1.0 */ -@@ -220,14 +220,11 @@ static const long Cryptography_HAS_102_VERIFICATION_ER - static const long Cryptography_HAS_102_VERIFICATION_PARAMS = 1; - #else - static const long Cryptography_HAS_102_VERIFICATION_ERROR_CODES = 0; -+#if LIBRESSL_VERSION_NUMBER >= 0x2070000fL -+static const long Cryptography_HAS_102_VERIFICATION_PARAMS = 1; -+#else - static const long Cryptography_HAS_102_VERIFICATION_PARAMS = 0; - --static const long X509_V_ERR_SUITE_B_INVALID_VERSION = 0; --static const long X509_V_ERR_SUITE_B_INVALID_ALGORITHM = 0; --static const long X509_V_ERR_SUITE_B_INVALID_CURVE = 0; --static const long X509_V_ERR_SUITE_B_INVALID_SIGNATURE_ALGORITHM = 0; --static const long X509_V_ERR_SUITE_B_LOS_NOT_ALLOWED = 0; --static const long X509_V_ERR_SUITE_B_CANNOT_SIGN_P_384_WITH_P_256 = 0; - /* These 3 defines are unavailable in LibreSSL 2.5.x, but may be added - in the future... */ - #ifndef X509_V_ERR_HOSTNAME_MISMATCH -@@ -240,12 +237,6 @@ static const long X509_V_ERR_EMAIL_MISMATCH = 0; - static const long X509_V_ERR_IP_ADDRESS_MISMATCH = 0; - #endif - --/* X509_V_FLAG_TRUSTED_FIRST is also new in 1.0.2+, but it is added separately -- below because it shows up in some earlier 3rd party OpenSSL packages. */ --static const long X509_V_FLAG_SUITEB_128_LOS_ONLY = 0; --static const long X509_V_FLAG_SUITEB_192_LOS = 0; --static const long X509_V_FLAG_SUITEB_128_LOS = 0; -- - int (*X509_VERIFY_PARAM_set1_host)(X509_VERIFY_PARAM *, const char *, - size_t) = NULL; - int (*X509_VERIFY_PARAM_set1_email)(X509_VERIFY_PARAM *, const char *, -@@ -257,6 +248,19 @@ void (*X509_VERIFY_PARAM_set_hostflags)(X509_VERIFY_PA - unsigned int) = NULL; - #endif - -+static const long X509_V_ERR_SUITE_B_INVALID_VERSION = 0; -+static const long X509_V_ERR_SUITE_B_INVALID_ALGORITHM = 0; -+static const long X509_V_ERR_SUITE_B_INVALID_CURVE = 0; -+static const long X509_V_ERR_SUITE_B_INVALID_SIGNATURE_ALGORITHM = 0; -+static const long X509_V_ERR_SUITE_B_LOS_NOT_ALLOWED = 0; -+static const long X509_V_ERR_SUITE_B_CANNOT_SIGN_P_384_WITH_P_256 = 0; -+/* X509_V_FLAG_TRUSTED_FIRST is also new in 1.0.2+, but it is added separately -+ below because it shows up in some earlier 3rd party OpenSSL packages. */ -+static const long X509_V_FLAG_SUITEB_128_LOS_ONLY = 0; -+static const long X509_V_FLAG_SUITEB_192_LOS = 0; -+static const long X509_V_FLAG_SUITEB_128_LOS = 0; -+#endif -+ - /* OpenSSL 1.0.2+ or Solaris's backport */ - #ifdef X509_V_FLAG_PARTIAL_CHAIN - static const long Cryptography_HAS_X509_V_FLAG_PARTIAL_CHAIN = 1; -@@ -292,7 +296,7 @@ X509 *X509_STORE_CTX_get0_cert(X509_STORE_CTX *ctx) - return ctx->cert; - } - --X509 *X509_OBJECT_get0_X509(X509_OBJECT *x) { -+X509 *X509_OBJECT_get0_X509(const X509_OBJECT *x) { - return x->data.x509; - } - #endif |