Rocksolid Light

Welcome to novaBBS (click a section below)

mail  files  register  newsreader  groups  login

Message-ID:  

APL hackers do it in the quad.


devel / comp.lang.python.announce / [Python-announce] PyCA cryptography 40.0.0 released

SubjectAuthor
o [Python-announce] PyCA cryptography 40.0.0 releasedPaul Kehrer

1
[Python-announce] PyCA cryptography 40.0.0 released

<CABj5TKT1H9vfb1yaW7ChYL33KtV+x9iyzCuwCU9yDsw+8=mn9w@mail.gmail.com>

  copy mid

https://www.novabbs.com/devel/article-flat.php?id=9983&group=comp.lang.python.announce#9983

  copy link   Newsgroups: comp.lang.python.announce
Path: i2pn2.org!i2pn.org!weretis.net!feeder8.news.weretis.net!hirsch.in-berlin.de!fu-berlin.de!uni-berlin.de!not-for-mail
From: paul.l.k...@gmail.com (Paul Kehrer)
Newsgroups: comp.lang.python.announce
Subject: [Python-announce] PyCA cryptography 40.0.0 released
Date: Fri, 24 Mar 2023 12:41:27 +0800
Lines: 58
Approved: python-announce-list@python.org
Message-ID: <CABj5TKT1H9vfb1yaW7ChYL33KtV+x9iyzCuwCU9yDsw+8=mn9w@mail.gmail.com>
Reply-To: python-list@python.org
Mime-Version: 1.0
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
X-Trace: news.uni-berlin.de XHTHwkc1qHZFpHVSJPwhpgRLpDWMDXxclVrHf1TzTaZg==
Authentication-Results: mail.python.org; dkim=pass
reason="2048-bit key; unprotected key"
header.d=gmail.com header.i=@gmail.com header.b=C26/n3mj;
dkim-adsp=pass; dkim-atps=neutral
X-Spam-Status: OK 0.005
X-Spam-Evidence: '*H*': 0.99; '*S*': 0.00; 'pip': 0.04; '3.6': 0.05;
'windows,': 0.05; 'certificates': 0.07; 'users,': 0.07;
'interfaces': 0.09; 'linux': 0.09; 'macos,': 0.09; 'to:addr
:python-announce-list': 0.09; 'typically': 0.09; 'supported':
0.15; '(i.e.,': 0.16; 'algorithms': 0.16; 'algorithms,': 0.16;
'aliases': 0.16; 'api.': 0.16; 'certificate.': 0.16; 'compiled':
0.16; 'cryptography': 0.16; 'digests,': 0.16; 'functions,': 0.16;
'generating': 0.16; 'hash': 0.16; 'invoke': 0.16; 'parsing': 0.16;
'passed.': 0.16; 'pypi.': 0.16; 'specify': 0.16; 'symmetric':
0.16; 'url:latest': 0.16; 'python': 0.16; 'api': 0.17; 'instead':
0.17; 'installing': 0.19; 'to:no real name:2**1': 0.22; 'version':
0.23; 'classes': 0.26; 'configure': 0.26; 'environment': 0.29;
'sfxlen:2': 0.31; 'module': 0.31; 'raise': 0.31; 'message-
id:@mail.gmail.com': 0.32; 'unless': 0.32; 'but': 0.32; 'release':
0.34; 'received:google.com': 0.34; 'announced': 0.35; 'url-
ip:104.17/16': 0.35; 'from:addr:gmail.com': 0.35; 'source': 0.36;
'those': 0.36; 'using': 0.37; 'received:209.85': 0.37; 'way':
0.38; 'received:209': 0.39; 'added': 0.39; 'skip:u 20': 0.39;
'both': 0.40; 'included': 0.61; 'here.': 0.61; 'skip:h 10': 0.61;
'public': 0.63; 'key': 0.64; 'less': 0.65; 'drop': 0.69;
'instead,': 0.70; 'older': 0.70; 'addition': 0.71; 'longer': 0.71;
'private': 0.73; 'low': 0.74; 'released': 0.75; 'documented':
0.76; 'favor': 0.76; 'more.': 0.82; 'backwards': 0.84;
'constraints': 0.84; 'impacts': 0.84; 'stable,': 0.84; 'unused':
0.84; 'wheels': 0.84; 'union': 0.91
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=gmail.com; s=20210112; t=1679632899;
h=content-transfer-encoding:to:subject:message-id:date:from
:mime-version:from:to:cc:subject:date:message-id:reply-to;
bh=+oeJao3P+1DZuZPXxOOx/IH3GpuVDmW+PiQ4UslYM1o=;
b=C26/n3mjwGKtkoS8sOJCOG2neeLF0FOJp1vyeNjHKRwPF9t/4lUmpCQai28HfP28xt
B22lBjevqG9VSUtEd4PWae8Gi9qy1ACiAVHYTZU4pY32n8ihrIPRF8wM8U/yNam4hGvE
TWetFzanFEel3+bU3Uo+wd5qVHGGPnOQHdJgiJ9h76JEUJoJdXpw9aRMlO4wf+Fg1ksZ
4BS/ipN1GDW5rHXUO0dtW4DHxqnFkwh+XG6CphQnhLqg75IUNMxNjB4vOpwhX5z208+P
Uj2uE6qcF/RgMHpCSW9xibH3ckTBivQ8pICTE74toCDwGP1EunSE6hnF+4U8IkLVhWoz
3jeA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=1e100.net; s=20210112; t=1679632899;
h=content-transfer-encoding:to:subject:message-id:date:from
:mime-version:x-gm-message-state:from:to:cc:subject:date:message-id
:reply-to;
bh=+oeJao3P+1DZuZPXxOOx/IH3GpuVDmW+PiQ4UslYM1o=;
b=K58BxV9VxX/mJ7CPaqNPXrvofkbRs7Im1z8NoiqgD/lxPutssdi2mhVhnlrsEg4leq
ssWDeTO2Cbunk/6XMlZUyEYiQ94BUM92ifKuIj9sbHbjHME1dBa49tU9eYExFRzxqEyl
yvMAT2d/krlS1fe/OQJMuq5sdKLcVycKHnIPaPEuOzvNHaR7PC0aTnBkRWfGlz0W28s6
V32i4FjvzTO6WVsWGnAObo802+OLnuEqMF7WcWwM31sHiSr4OIMYgJ778MqDY5Pk2civ
sNfFVn8nD0mfk0CsrzBLOpYsoXA8LRbTYdqtFGD0xN+DminDbrWIDM2Q7ZOlJIp4Ew9E
fr6Q==
X-Gm-Message-State: AAQBX9dhWcvDM4qOqQmlYa+SwC25AzTjni2MSvQDkmoELw2jm5Bvormx
Y2x9qna0/hFjoa2ghwOfX8nTwIsfGRa2TKC1scpWqj0OE3cuMQS9
X-Google-Smtp-Source: AKy350Zqt43nb4UIneuvXoQdkhVGRf+1n7LSAdrHqBjQeIjbgNLuEucW8fNOLXa750scEvlXDrqkTfbeOFso24aU3Zs=
X-Received: by 2002:a17:903:1c7:b0:1a2:185a:cd6 with SMTP id
e7-20020a17090301c700b001a2185a0cd6mr318328plh.4.1679632898694; Thu, 23 Mar
2023 21:41:38 -0700 (PDT)
X-MailFrom: paul.l.kehrer@gmail.com
X-Mailman-Rule-Hits: emergency
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved
Message-ID-Hash: SAASNUDMZN4USV7Y6GXEGP6EMARD2LBY
X-Message-ID-Hash: SAASNUDMZN4USV7Y6GXEGP6EMARD2LBY
X-Mailman-Approved-At: Fri, 24 Mar 2023 05:47:19 -0400
X-Mailman-Version: 3.3.9b1
Precedence: list
List-Id: Announcement-only list for the Python programming language <python-announce-list.python.org>
Archived-At: <https://mail.python.org/archives/list/python-announce-list@python.org/message/SAASNUDMZN4USV7Y6GXEGP6EMARD2LBY/>
List-Archive: <https://mail.python.org/archives/list/python-announce-list@python.org/>
List-Help: <mailto:python-announce-list-request@python.org?subject=help>
List-Owner: <mailto:python-announce-list-owner@python.org>
List-Post: <mailto:python-announce-list@python.org>
List-Subscribe: <mailto:python-announce-list-join@python.org>
List-Unsubscribe: <mailto:python-announce-list-leave@python.org>
 by: Paul Kehrer - Fri, 24 Mar 2023 04:41 UTC

PyCA cryptography 40.0.0 has been released to PyPI. cryptography
includes both high level recipes and low level interfaces to common
cryptographic algorithms such as symmetric ciphers, asymmetric
algorithms, message digests, X509, key derivation functions, and much
more. We support Python 3.6+, and PyPy3 7.3.10+.

Changelog (https://cryptography.io/en/latest/changelog/#v40-0-0):
* BACKWARDS INCOMPATIBLE: As announced in the 39.0.0 changelog, the
way cryptography links OpenSSL has changed. This only impacts users
who build cryptography from source (i.e., not from a wheel), and
specify their own version of OpenSSL. For those users, the CFLAGS,
LDFLAGS, INCLUDE, LIB, and CRYPTOGRAPHY_SUPPRESS_LINK_FLAGS
environment variables are no longer valid. Instead, users need to
configure their builds as documented here.
* Support for Python 3.6 is deprecated and will be removed in the next release.
* Deprecated the current minimum supported Rust version (MSRV) of
1.48.0. In the next release we will raise MSRV to 1.56.0. Users with
the latest pip will typically get a wheel and not need Rust installed,
but check Installation for documentation on installing a newer rustc
if required.
* Deprecated support for OpenSSL less than 1.1.1d. The next release of
cryptography will drop support for older versions.
* Deprecated support for DSA keys in load_ssh_public_key() and
load_ssh_private_key().
* Deprecated support for OpenSSH serialization in DSAPublicKey and
DSAPrivateKey.
* The minimum supported version of PyPy3 is now 7.3.10.
* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.1.0.
* Added support for parsing SSH certificates in addition to public
keys with load_ssh_public_identity(). load_ssh_public_key() continues
to support only public keys.
* Added support for generating SSH certificates with SSHCertificateBuilder.
* Added verify_directly_issued_by() to Certificate.
* Added a check to NameConstraints to ensure that DNSName constraints
do not contain any * wildcards.
* Removed many unused CFFI OpenSSL bindings. This will not impact you
unless you are using cryptography to directly invoke OpenSSL’s C API.
Note that these have never been considered a stable, supported, public
API by cryptography, this note is included as a courtesy.
* The X.509 builder classes now raise UnsupportedAlgorithm instead of
ValueError if an unsupported hash algorithm is passed.
* Added public union type aliases for type hinting:
Asymmetric types: PublicKeyTypes, PrivateKeyTypes,
CertificatePublicKeyTypes, CertificateIssuerPublicKeyTypes,
CertificateIssuerPrivateKeyTypes
SSH keys: SSHPublicKeyTypes, SSHPrivateKeyTypes,
SSHCertPublicKeyTypes, SSHCertPrivateKeyTypes
PKCS12: PKCS12PrivateKeyTypes
PKCS7: PKCS7HashTypes, PKCS7PrivateKeyTypes
Two-factor: HOTPHashTypes
* Deprecated previously undocumented but not private type aliases in
the cryptography.hazmat.primitives.asymmetric.types module in favor of
new ones above.

-Paul Kehrer (reaperhulk)


devel / comp.lang.python.announce / [Python-announce] PyCA cryptography 40.0.0 released

1
server_pubkey.txt

rocksolid light 0.9.81
clearnet tor