pkgsrc-Changes-HG archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

[pkgsrc/pkgsrc-2017Q2]: pkgsrc/security/py-tlslite Pullup ticket #5523 - requ...



details:   https://anonhg.NetBSD.org/pkgsrc/rev/b945f92a511b
branches:  pkgsrc-2017Q2
changeset: 408660:b945f92a511b
user:      spz <spz%pkgsrc.org@localhost>
date:      Sat Jul 29 13:05:53 2017 +0000

description:
Pullup ticket #5523 - requested by schmonz
security/py-tlslite: security update

Revisions pulled up:
- security/py-tlslite/Makefile                                  1.15
- security/py-tlslite/PLIST                                     1.6
- security/py-tlslite/distinfo                                  1.4
- security/py-tlslite/patches/patch-tests_httpsserver.sh        1.2

-------------------------------------------------------------------
   Module Name: pkgsrc
   Committed By:        schmonz
   Date:                Sun Jul 23 22:30:03 UTC 2017

   Modified Files:
        pkgsrc/security/py-tlslite: Makefile PLIST distinfo
        pkgsrc/security/py-tlslite/patches: patch-tests_httpsserver.sh

   Log Message:
   Update to 0.4.9. From the commit log:

   - Fix IndexError on junk message (CVE-2015-3220).
   - Fix unit-test failure (disable sha256 mac if maxversion < 1.2)
   - Merge pull request #98 from davidben/chromium-patches-2
   - Fix bug in SRP hashing.
   - Merge pull request #106 from tomato42/name-fixes-trevp
   - rename description_name
   - rename level_name
   - rename type_name
   - rename cert_types
   - rename _server_extensions
   - rename _universal_extensions
   - rename host_names
   - rename server_names
   - rename server_type
   - rename ext_data
   - rename ext_type
   - Merge pull request #104 from tomato42/sni-fix
   - fix parsing server side server_name extension
   - travis.yml: follow redirects, debugging info logging
   - Correctly enforce cipher suite version constraints.
   - Fix Fault-based test framework.
   - Fix client auth for TLS 1.2.
   - If ignoreAbrubtClose is set, write failures don't break sessions.
   - Fix CertificateRequest initialization.
   - Merge pull request #93 from tomato42/gitignore
   - ignore coverage html output folder
   - Merge pull request #88 from tomato42/handshakesettings-fixes
   - promote HandshakeSettings._getCertificateTypes to public
   - add check for interdependance of minKeySize and maxKeySize
   - unit tests for HandshakeSettings
   - promote HandshakeSettings._filter() to public
   - adding acknowledgements
   - Merge pull request #87 from davidben/chromium-patches-1
   - Apply minimal padding.
   - Implement FALLBACK_SCSV.
   - Fix #! line in httpsserver.sh.
   - Fix executable bits on files.
   - Merge pull request #86 from tomato42/tests-with-deps-3
   - Merge pull request #85 from tomato42/clienthello-tests
   - remove BadNextProtos
   - test ClientHello.parse with SSLv2 ClientHello
   - Fix compatibility issues with pycrypto and gmpy
   - fix setting ClientHello.server_name multiple times
   - clientHello.supports_npn test
   - ClientHello.tack test
   - ClientHello.srp_username test
   - Merge pull request #84 from tomato42/messages-tests
   - test coverage for getExtension and certificate_types
   - test coverage for Alert
   - Fix test failure on OSX.
   - Adding acknowledgements for Mirko.
   - Merge pull request #83 from MirkoDziadzka/session-cache
   - remove unneeded import
   - add tests to reproduce the problem
   - fix session cache problem
   - Merge pull request #82 from tomato42/test-coverage
   - RecordHeader3 test coverage
   - test coverage to RecordHeader2
   - Trying this coveralls things for test coverage.
   - Merge pull request #80 from tomato42/coverage
   - add coverage checks to test-dev
   - measure coverage in travis-ci
   - Merge pull request #78 from tomato42/test-intermediate-10
   - add check for code style
   - Merge pull request #77 from tomato42/merged-2
   - fix all problems with tests
   - Merge pull request #68 from tomato42/fix-6568ad9
   - fix bug introduced in 6568ad9
   - Merge pull request #57 from tomato42/test-intermediate-3
   - run tests for every commit in pull request or push [v2]
   - make-based tests
   - Merge pull request #54 from tomato42/revert-53-test-intermediate
   - Revert "More detailed CI"
   - Merge pull request #53 from tomato42/test-intermediate
   - run tests for every commit in pull request or push
   - Merge pull request #51 from tomato42/python26-fix
   - add unittest2 import
   - Trying travis
   - Merge pull request #43 from tomato42/tests-fixes
   - Merge pull request #46 from tomato42/cleanup
   - don't pollute global namespace with `sieve` temporary variable
   - characterisation tests for isPrime
   - don't pollute global namespace with `length`
   - Merge pull request #45 from tomato42/test-coverage-2
   - fix pylint reported formatting issues
   - fix missing import in tlslite.extensions
   - better test coverage for TACKExtension
   - don't use explicit short-circuit in compare
   - better test coverage for __eq__ in TLSExtension
   - remove duplicate check
   - unit tests compatibility with Python2.6
   - run self tests using both python2 and python3
   - python 2.7.9 compatibility
   - change certificate to self signed
   - strict is deprecated and removed in 3.4
   - deal with unclean socket shutdown
   - Merge pull request #40 from tomato42/debugging-aids
   - Merge pull request #42 from tomato42/docstring
   - fix addExtension docstring
   - add __repr__ to ClientHello
   - add __str__ to ClientHello
   - add __repr__ support to Alert
   - add __str__ support to Alert
   - add __repr__ to extensions
   - add __repr__ to ServerHello
   - add __str__ to ServerHello
   - add __repr__ to RecordHeader3
   - add __str__ handling to RecordHeader3
   - Merge pull request #37 from tomato42/server-extensions-4
   - Merge pull request #38 from tomato42/parsePEMKey-fixes
   - be more precise in naming libraries
   - make comment more descriptive in OpenSSL_RSAKey.parse()
   - make OpenSSL wrapper handle PKCS#8 files
   - characterisation tests for parsePEMKey
   - Merge pull request #36 from tomato42/comments
   - use extension parsers and serialisers in server hello
   - convert server hello to using extensions list
   - implement server side version of TACK extension
   - fix typo in ClientHello docs
   - remove some code duplication in ClientHello
   - don't use reserved keyword for name of ServerName type field
   - extend note about backwards compatibility for certificate_types
   - extend extension handler to ServerHello extensions
   - implement server side version of cert type extension
   - add tests for cert_type and NPN ServerHello extensions
   - Merge branch 'writer-fixes' of git://github.com/tomato42/tlslite-1
     into tomato42-writer-fixes
   - Merge pull request #34 from tomato42/new-extensions-3
   - raise exception when overflowing integers
   - Writer characterisation tests
   - rename tlsextension to extensions
   - harmonise get_extension method name with other method names
   - tests for the new extensions variable
   - use array to store ClientHello extensions
   - make TLSExtension parse() into a factory function
   - implement the ClientHello version of cert_type extension
   - implement SRP extension
   - implement NextProtocolNegotiation extension
   - codec: method to return remaining buffer size
   - implement class for ServerNameIndication extension
   - add class handling generic TLS Extensions
   - Merge pull request #32 from tomato42/client-hello-ext-parser-tests
   - add parser tests for extensions in ClientHello
   - clean up also in unit_tests directory
   - Merge pull request #30 from tomato42/epydoc-fixes
   - Merge pull request #31 from tomato42/parser-fixes
   - fix getFixBytes boundary checking
   - add characterisation tests for Parser
   - add graphs to generated documentation
   - add docs/ directory to .gitignore
   - add test for epydoc to test-dev target
   - fix epydoc warnings
   - Merge pull request #29 from tomato42/test-suite-2
   - ServerHello unit tests
   - simple unit tests for ClientHello class (v3)
   - remove dead code


   To generate a diff of this commit:
   cvs rdiff -u -r1.14 -r1.15 pkgsrc/security/py-tlslite/Makefile
   cvs rdiff -u -r1.5 -r1.6 pkgsrc/security/py-tlslite/PLIST
   cvs rdiff -u -r1.3 -r1.4 pkgsrc/security/py-tlslite/distinfo
   cvs rdiff -u -r1.1 -r1.2 \
       pkgsrc/security/py-tlslite/patches/patch-tests_httpsserver.sh

diffstat:

 security/py-tlslite/Makefile                           |   6 +++---
 security/py-tlslite/PLIST                              |   5 ++++-
 security/py-tlslite/distinfo                           |  12 ++++++------
 security/py-tlslite/patches/patch-tests_httpsserver.sh |   6 +++---
 4 files changed, 16 insertions(+), 13 deletions(-)

diffs (74 lines):

diff -r df8c009acc23 -r b945f92a511b security/py-tlslite/Makefile
--- a/security/py-tlslite/Makefile      Sat Jul 29 13:05:39 2017 +0000
+++ b/security/py-tlslite/Makefile      Sat Jul 29 13:05:53 2017 +0000
@@ -1,12 +1,12 @@
-# $NetBSD: Makefile,v 1.14 2017/01/01 22:01:45 schmonz Exp $
+# $NetBSD: Makefile,v 1.14.4.1 2017/07/29 13:05:53 spz Exp $
 
-DISTNAME=              tlslite-0.4.8
+DISTNAME=              tlslite-0.4.9
 PKGNAME=               ${PYPKGPREFIX}-${DISTNAME}
 CATEGORIES=            security python
 MASTER_SITES=          ${MASTER_SITE_GITHUB:=trevp/}
 
 GITHUB_PROJECT=                tlslite
-GITHUB_TAG=            v${PKGVERSION_NOREV}
+GITHUB_TAG=            cd82fadb6bb958522b7457c5ed95890283437a4f
 
 MAINTAINER=            schmonz%NetBSD.org@localhost
 HOMEPAGE=              http://trevp.net/tlslite/
diff -r df8c009acc23 -r b945f92a511b security/py-tlslite/PLIST
--- a/security/py-tlslite/PLIST Sat Jul 29 13:05:39 2017 +0000
+++ b/security/py-tlslite/PLIST Sat Jul 29 13:05:53 2017 +0000
@@ -1,4 +1,4 @@
-@comment $NetBSD: PLIST,v 1.5 2017/01/01 21:50:30 schmonz Exp $
+@comment $NetBSD: PLIST,v 1.5.4.1 2017/07/29 13:05:53 spz Exp $
 bin/tls${PYVERSSUFFIX}.py
 bin/tlsdb${PYVERSSUFFIX}.py
 ${PYSITELIB}/${EGG_FILE}
@@ -15,6 +15,9 @@
 ${PYSITELIB}/tlslite/constants.pyc
 ${PYSITELIB}/tlslite/errors.pyo
 ${PYSITELIB}/tlslite/errors.pyc
+${PYSITELIB}/tlslite/extensions.py
+${PYSITELIB}/tlslite/extensions.pyo
+${PYSITELIB}/tlslite/extensions.pyc
 ${PYSITELIB}/tlslite/handshakesettings.pyo
 ${PYSITELIB}/tlslite/handshakesettings.pyc
 ${PYSITELIB}/tlslite/mathtls.pyo
diff -r df8c009acc23 -r b945f92a511b security/py-tlslite/distinfo
--- a/security/py-tlslite/distinfo      Sat Jul 29 13:05:39 2017 +0000
+++ b/security/py-tlslite/distinfo      Sat Jul 29 13:05:53 2017 +0000
@@ -1,9 +1,9 @@
-$NetBSD: distinfo,v 1.3 2017/01/01 21:50:30 schmonz Exp $
+$NetBSD: distinfo,v 1.3.4.1 2017/07/29 13:05:53 spz Exp $
 
-SHA1 (tlslite-0.4.8.tar.gz) = b20f2a35fe0510a8ee9d1fed2bc1ed6a03a8baba
-RMD160 (tlslite-0.4.8.tar.gz) = 8d470941fe4cabd714b12c76a681d19450c3be1d
-SHA512 (tlslite-0.4.8.tar.gz) = 03cf5d661f6eff3cd2810146387ce4cc80b45f244129afd0a2c69c4df3428d4a98ce31c4238621e74ca10d07eca3f992c2e5d73441f7a97aa2043f4ca51082a9
-Size (tlslite-0.4.8.tar.gz) = 93256 bytes
+SHA1 (tlslite-0.4.9-cd82fadb6bb958522b7457c5ed95890283437a4f.tar.gz) = 8a9fbc90114fbaa468ada9860fe37581c8687a18
+RMD160 (tlslite-0.4.9-cd82fadb6bb958522b7457c5ed95890283437a4f.tar.gz) = 0cd0a71f9c4a8acacc87b1afe39a8cb8e744e2d8
+SHA512 (tlslite-0.4.9-cd82fadb6bb958522b7457c5ed95890283437a4f.tar.gz) = 
c9cc45f75932b1127cd347fbfcef4ca314e8bcc5ca35bfceb20ec95c1ba5788931cf29eb1277875ef387826398fc7db16c21d340c5b05c4934ed7c48e9807d59
+Size (tlslite-0.4.9-cd82fadb6bb958522b7457c5ed95890283437a4f.tar.gz) = 125752 bytes
 SHA1 (patch-setup.py) = fdb3ce8d0ce0bbee4e10ef76e768d83d3a180189
-SHA1 (patch-tests_httpsserver.sh) = 65f583fa3bbac36cccd5239142219e9551d87549
+SHA1 (patch-tests_httpsserver.sh) = e2f20d886acad8366938b3214bafd270a4560745
 SHA1 (patch-tests_tlstest.py) = abd577315a1f690fb280b9ed58f0e73e6ebbdf4d
diff -r df8c009acc23 -r b945f92a511b security/py-tlslite/patches/patch-tests_httpsserver.sh
--- a/security/py-tlslite/patches/patch-tests_httpsserver.sh    Sat Jul 29 13:05:39 2017 +0000
+++ b/security/py-tlslite/patches/patch-tests_httpsserver.sh    Sat Jul 29 13:05:53 2017 +0000
@@ -1,10 +1,10 @@
-$NetBSD: patch-tests_httpsserver.sh,v 1.1 2017/01/01 21:50:31 schmonz Exp $
+$NetBSD: patch-tests_httpsserver.sh,v 1.1.4.1 2017/07/29 13:05:53 spz Exp $
 
 Use the intended Python interpreter.
 
---- tests/httpsserver.sh.orig  2014-11-13 02:22:47.000000000 +0000
+--- tests/httpsserver.sh.orig  2015-08-12 05:54:36.000000000 +0000
 +++ tests/httpsserver.sh
 @@ -1,2 +1,2 @@
- # /bin/sh
+ #!/bin/sh
 -python ../scripts/tls.py server -k serverX509Key.pem -c serverX509Cert.pem -t TACK1.pem localhost:4443
 +@PYTHONBIN@ ../scripts/tls@PYVERSSUFFIX@.py server -k serverX509Key.pem -c serverX509Cert.pem -t TACK1.pem localhost:4443



Home | Main Index | Thread Index | Old Index