LILiK
/
openwrt-packages-dist
5
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
27025 Commits
1 Branch
46 MiB
Tree: bc417a9558
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'bc417a9558'
${ noResults }
openwrt-packages-dist/lang/python/python-cryptography/patches/0003-Add-compatibility-for-...

127 lines
4.7 KiB
Raw Normal View History

python-cryptography: bump to version 3.3.1 Regenerated patches from: https://github.com/pyca/cryptography/pull/4920 The patch names were kept as generated via 'git format-patch 3.3.1..' And ran through quilt. Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
4 years ago
python-cryptography: fix compilation without deprecated OpenSSL APIs Signed-off-by: Rosen Penev <rosenp@gmail.com>
4 years ago
python-cryptography: bump to version 3.3.1 Regenerated patches from: https://github.com/pyca/cryptography/pull/4920 The patch names were kept as generated via 'git format-patch 3.3.1..' And ran through quilt. Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
4 years ago
python-cryptography: fix compilation without deprecated OpenSSL APIs Signed-off-by: Rosen Penev <rosenp@gmail.com>
4 years ago
python-cryptography: bump to version 3.4.7 Dropped patches: 0004-Replace-EVP_CIPHER_CTX_cleanup-with-EVP_CIPHER_CTX_r.patch 0005-Switch-get_-Update-APIs-to-get0.patch Reworked patches: 0001-Add-new-ASN1_STRING_get0_data-API.patch 0006-Add-X509_STORE_CTX_trusted_stack-compatibility-macro.patch These 2 require that we keep only the CUSTOMIZATIONS stuff for now. Maybe later we can drop this. Ran 'make package/python-cryptography/refresh'. Added patch: 0004-disable-rust.patch upstream did a sloppy job with the CRYPTOGRAPHY_DONT_BUILD_RUST logic; we need to patch it, to make sure the setuptools-rust isn't installed. We may need to carry this patch in our tree for a bit longer than upstream, because in newer versions, CRYPTOGRAPHY_DONT_BUILD_RUST logic gets removed. Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
3 years ago
python-cryptography: bump to version 3.3.1 Regenerated patches from: https://github.com/pyca/cryptography/pull/4920 The patch names were kept as generated via 'git format-patch 3.3.1..' And ran through quilt. Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
4 years ago
python-cryptography: fix compilation without deprecated OpenSSL APIs Signed-off-by: Rosen Penev <rosenp@gmail.com>
4 years ago
python-cryptography: bump to version 3.3.1 Regenerated patches from: https://github.com/pyca/cryptography/pull/4920 The patch names were kept as generated via 'git format-patch 3.3.1..' And ran through quilt. Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
4 years ago
python-cryptography: bump to version 3.4.7 Dropped patches: 0004-Replace-EVP_CIPHER_CTX_cleanup-with-EVP_CIPHER_CTX_r.patch 0005-Switch-get_-Update-APIs-to-get0.patch Reworked patches: 0001-Add-new-ASN1_STRING_get0_data-API.patch 0006-Add-X509_STORE_CTX_trusted_stack-compatibility-macro.patch These 2 require that we keep only the CUSTOMIZATIONS stuff for now. Maybe later we can drop this. Ran 'make package/python-cryptography/refresh'. Added patch: 0004-disable-rust.patch upstream did a sloppy job with the CRYPTOGRAPHY_DONT_BUILD_RUST logic; we need to patch it, to make sure the setuptools-rust isn't installed. We may need to carry this patch in our tree for a bit longer than upstream, because in newer versions, CRYPTOGRAPHY_DONT_BUILD_RUST logic gets removed. Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
3 years ago
python-cryptography: bump to version 3.3.1 Regenerated patches from: https://github.com/pyca/cryptography/pull/4920 The patch names were kept as generated via 'git format-patch 3.3.1..' And ran through quilt. Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
4 years ago
python-cryptography: fix compilation without deprecated OpenSSL APIs Signed-off-by: Rosen Penev <rosenp@gmail.com>
4 years ago
python-cryptography: bump to version 3.4.7 Dropped patches: 0004-Replace-EVP_CIPHER_CTX_cleanup-with-EVP_CIPHER_CTX_r.patch 0005-Switch-get_-Update-APIs-to-get0.patch Reworked patches: 0001-Add-new-ASN1_STRING_get0_data-API.patch 0006-Add-X509_STORE_CTX_trusted_stack-compatibility-macro.patch These 2 require that we keep only the CUSTOMIZATIONS stuff for now. Maybe later we can drop this. Ran 'make package/python-cryptography/refresh'. Added patch: 0004-disable-rust.patch upstream did a sloppy job with the CRYPTOGRAPHY_DONT_BUILD_RUST logic; we need to patch it, to make sure the setuptools-rust isn't installed. We may need to carry this patch in our tree for a bit longer than upstream, because in newer versions, CRYPTOGRAPHY_DONT_BUILD_RUST logic gets removed. Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
3 years ago
python-cryptography: fix compilation without deprecated OpenSSL APIs Signed-off-by: Rosen Penev <rosenp@gmail.com>
4 years ago
python-cryptography: bump to version 3.4.7 Dropped patches: 0004-Replace-EVP_CIPHER_CTX_cleanup-with-EVP_CIPHER_CTX_r.patch 0005-Switch-get_-Update-APIs-to-get0.patch Reworked patches: 0001-Add-new-ASN1_STRING_get0_data-API.patch 0006-Add-X509_STORE_CTX_trusted_stack-compatibility-macro.patch These 2 require that we keep only the CUSTOMIZATIONS stuff for now. Maybe later we can drop this. Ran 'make package/python-cryptography/refresh'. Added patch: 0004-disable-rust.patch upstream did a sloppy job with the CRYPTOGRAPHY_DONT_BUILD_RUST logic; we need to patch it, to make sure the setuptools-rust isn't installed. We may need to carry this patch in our tree for a bit longer than upstream, because in newer versions, CRYPTOGRAPHY_DONT_BUILD_RUST logic gets removed. Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
3 years ago
python-cryptography: fix compilation without deprecated OpenSSL APIs Signed-off-by: Rosen Penev <rosenp@gmail.com>
4 years ago
 
  1. From 7a55c37e01114dfd1ae733b099fdee1ba1889449 Mon Sep 17 00:00:00 2001
  2. From: Rosen Penev <rosenp@gmail.com>
  3. Date: Fri, 7 Jun 2019 21:00:46 -0700
  4. Subject: [PATCH 3/7] Add compatibility for deprecated TLS methods
  5. 

  6. ---

  7.  src/_cffi_src/openssl/ssl.py                  | 45 +++++++++++++++++--
  8.  .../hazmat/bindings/openssl/_conditional.py   | 36 +++++++++++++++
  9.  2 files changed, 77 insertions(+), 4 deletions(-)
  10. 

  11. --- a/src/_cffi_src/openssl/ssl.py

  12. +++ b/src/_cffi_src/openssl/ssl.py

  13. @@ -13,12 +13,14 @@ TYPES = """

  14.  static const long Cryptography_HAS_SSL_ST;
  15.  static const long Cryptography_HAS_TLS_ST;
  16.  static const long Cryptography_HAS_SSL3_METHOD;
  17. -static const long Cryptography_HAS_TLSv1_1;

  18. -static const long Cryptography_HAS_TLSv1_2;

  19. +static const long Cryptography_HAS_TLS1_METHOD;

  20. +static const long Cryptography_HAS_TLS1_1_METHOD;

  21. +static const long Cryptography_HAS_TLS1_2_METHOD;

  22.  static const long Cryptography_HAS_TLSv1_3;
  23.  static const long Cryptography_HAS_SECURE_RENEGOTIATION;
  24.  static const long Cryptography_HAS_SSL_CTX_CLEAR_OPTIONS;
  25.  static const long Cryptography_HAS_DTLS;
  26. +static const long Cryptography_HAS_DTLS1_METHOD;

  27.  static const long Cryptography_HAS_SIGALGS;
  28.  static const long Cryptography_HAS_PSK;
  29.  static const long Cryptography_HAS_VERIFIED_CHAIN;
  30. @@ -548,8 +550,43 @@ static const long Cryptography_HAS_SSL3_

  31.  
  32.  static const long Cryptography_HAS_RELEASE_BUFFERS = 1;
  33.  static const long Cryptography_HAS_OP_NO_COMPRESSION = 1;
  34. -static const long Cryptography_HAS_TLSv1_1 = 1;

  35. -static const long Cryptography_HAS_TLSv1_2 = 1;

  36. +

  37. +#if (OPENSSL_API_COMPAT >= 0x10100000L) && !CRYPTOGRAPHY_IS_LIBRESSL

  38. +static const long Cryptography_HAS_TLS1_METHOD = 0;

  39. +const SSL_METHOD* (*TLSv1_method)(void) = NULL;

  40. +const SSL_METHOD* (*TLSv1_server_method)(void) = NULL;

  41. +const SSL_METHOD* (*TLSv1_client_method)(void) = NULL;

  42. +#else

  43. +static const long Cryptography_HAS_TLS1_METHOD = 1;

  44. +#endif

  45. +

  46. +#if (OPENSSL_API_COMPAT >= 0x10100000L) && !CRYPTOGRAPHY_IS_LIBRESSL

  47. +static const long Cryptography_HAS_TLS1_1_METHOD = 0;

  48. +const SSL_METHOD* (*TLSv1_1_method)(void) = NULL;

  49. +const SSL_METHOD* (*TLSv1_1_server_method)(void) = NULL;

  50. +const SSL_METHOD* (*TLSv1_1_client_method)(void) = NULL;

  51. +#else

  52. +static const long Cryptography_HAS_TLS1_1_METHOD = 1;

  53. +#endif

  54. +

  55. +#if (OPENSSL_API_COMPAT >= 0x10100000L) && !CRYPTOGRAPHY_IS_LIBRESSL

  56. +static const long Cryptography_HAS_TLS1_2_METHOD = 0;

  57. +const SSL_METHOD* (*TLSv1_2_method)(void) = NULL;

  58. +const SSL_METHOD* (*TLSv1_2_server_method)(void) = NULL;

  59. +const SSL_METHOD* (*TLSv1_2_client_method)(void) = NULL;

  60. +#else

  61. +static const long Cryptography_HAS_TLS1_2_METHOD = 1;

  62. +#endif

  63. +

  64. +#if (OPENSSL_API_COMPAT >= 0x10100000L) && !CRYPTOGRAPHY_IS_LIBRESSL

  65. +static const long Cryptography_HAS_DTLS1_METHOD = 0;

  66. +const SSL_METHOD* (*DTLSv1_method)(void) = NULL;

  67. +const SSL_METHOD* (*DTLSv1_server_method)(void) = NULL;

  68. +const SSL_METHOD* (*DTLSv1_client_method)(void) = NULL;

  69. +#else

  70. +static const long Cryptography_HAS_DTLS1_METHOD = 1;

  71. +#endif

  72. +

  73.  static const long Cryptography_HAS_SSL_OP_MSIE_SSLV2_RSA_PADDING = 1;
  74.  static const long Cryptography_HAS_SSL_OP_NO_TICKET = 1;
  75.  static const long Cryptography_HAS_SSL_SET_SSL_CTX = 1;
  76. --- a/src/cryptography/hazmat/bindings/openssl/_conditional.py

  77. +++ b/src/cryptography/hazmat/bindings/openssl/_conditional.py

  78. @@ -31,6 +31,38 @@ def cryptography_has_ssl3_method():

  79.      ]
  80.  
  81.  
  82. +def cryptography_has_tls1_method():

  83. +    return [

  84. +        "TLSv1_method",

  85. +        "TLSv1_client_method",

  86. +        "TLSv1_server_method",

  87. +    ]

  88. +

  89. +

  90. +def cryptography_has_tls1_1_method():

  91. +    return [

  92. +        "TLSv1_1_method",

  93. +        "TLSv1_1_client_method",

  94. +        "TLSv1_1_server_method",

  95. +    ]

  96. +

  97. +

  98. +def cryptography_has_tls1_2_method():

  99. +    return [

  100. +        "TLSv1_2_method",

  101. +        "TLSv1_2_client_method",

  102. +        "TLSv1_2_server_method",

  103. +    ]

  104. +

  105. +

  106. +def cryptography_has_dtls1_method():

  107. +    return [

  108. +        "DTLSv1_method",

  109. +        "DTLSv1_client_method",

  110. +        "DTLSv1_server_method",

  111. +    ]

  112. +

  113. +

  114.  def cryptography_has_102_verification():
  115.      return [
  116.          "X509_V_ERR_SUITE_B_INVALID_VERSION",
  117. @@ -285,6 +317,10 @@ CONDITIONAL_NAMES = {

  118.      "Cryptography_HAS_RSA_OAEP_MD": cryptography_has_rsa_oaep_md,
  119.      "Cryptography_HAS_RSA_OAEP_LABEL": cryptography_has_rsa_oaep_label,
  120.      "Cryptography_HAS_SSL3_METHOD": cryptography_has_ssl3_method,
  121. +    "Cryptography_HAS_TLS1_METHOD": cryptography_has_tls1_method,

  122. +    "Cryptography_HAS_TLS1_1_METHOD": cryptography_has_tls1_1_method,

  123. +    "Cryptography_HAS_TLS1_2_METHOD": cryptography_has_tls1_2_method,

  124. +    "Cryptography_HAS_DTLS1_METHOD": cryptography_has_dtls1_method,

  125.      "Cryptography_HAS_102_VERIFICATION": cryptography_has_102_verification,
  126.      "Cryptography_HAS_110_VERIFICATION_PARAMS": (
  127.          cryptography_has_110_verification_params