head 1.16; access; symbols pkgsrc-2023Q4:1.15.0.2 pkgsrc-2023Q4-base:1.15 pkgsrc-2023Q3:1.14.0.2 pkgsrc-2023Q3-base:1.14 pkgsrc-2023Q2:1.11.0.2 pkgsrc-2023Q2-base:1.11 pkgsrc-2023Q1:1.10.0.4 pkgsrc-2023Q1-base:1.10 pkgsrc-2022Q4:1.10.0.2 pkgsrc-2022Q4-base:1.10 pkgsrc-2022Q3:1.9.0.2 pkgsrc-2022Q3-base:1.9 pkgsrc-2022Q2:1.8.0.4 pkgsrc-2022Q2-base:1.8 pkgsrc-2022Q1:1.8.0.2 pkgsrc-2022Q1-base:1.8 pkgsrc-2021Q4:1.7.0.26 pkgsrc-2021Q4-base:1.7 pkgsrc-2021Q3:1.7.0.24 pkgsrc-2021Q3-base:1.7 pkgsrc-2021Q2:1.7.0.22 pkgsrc-2021Q2-base:1.7 pkgsrc-2021Q1:1.7.0.20 pkgsrc-2021Q1-base:1.7 pkgsrc-2020Q4:1.7.0.18 pkgsrc-2020Q4-base:1.7 pkgsrc-2020Q3:1.7.0.16 pkgsrc-2020Q3-base:1.7 pkgsrc-2020Q2:1.7.0.14 pkgsrc-2020Q2-base:1.7 pkgsrc-2020Q1:1.7.0.10 pkgsrc-2020Q1-base:1.7 pkgsrc-2019Q4:1.7.0.12 pkgsrc-2019Q4-base:1.7 pkgsrc-2019Q3:1.7.0.8 pkgsrc-2019Q3-base:1.7 pkgsrc-2019Q2:1.7.0.6 pkgsrc-2019Q2-base:1.7 pkgsrc-2019Q1:1.7.0.4 pkgsrc-2019Q1-base:1.7 pkgsrc-2018Q4:1.7.0.2 pkgsrc-2018Q4-base:1.7 pkgsrc-2018Q3:1.6.0.14 pkgsrc-2018Q3-base:1.6 pkgsrc-2018Q2:1.6.0.12 pkgsrc-2018Q2-base:1.6 pkgsrc-2018Q1:1.6.0.10 pkgsrc-2018Q1-base:1.6 pkgsrc-2017Q4:1.6.0.8 pkgsrc-2017Q4-base:1.6 pkgsrc-2017Q3:1.6.0.6 pkgsrc-2017Q3-base:1.6 pkgsrc-2017Q2:1.6.0.2 pkgsrc-2017Q2-base:1.6 pkgsrc-2017Q1:1.5.0.6 pkgsrc-2017Q1-base:1.5 pkgsrc-2016Q4:1.5.0.4 pkgsrc-2016Q4-base:1.5 pkgsrc-2016Q3:1.5.0.2 pkgsrc-2016Q3-base:1.5 pkgsrc-2016Q2:1.4.0.2 pkgsrc-2016Q2-base:1.4 pkgsrc-2016Q1:1.2.0.2 pkgsrc-2016Q1-base:1.2 pkgsrc-2015Q4:1.1.0.6 pkgsrc-2015Q4-base:1.1 pkgsrc-2015Q3:1.1.0.4 pkgsrc-2015Q3-base:1.1 pkgsrc-2015Q2:1.1.0.2 pkgsrc-2015Q2-base:1.1; locks; strict; comment @# @; 1.16 date 2024.02.09.14.24.19; author adam; state Exp; branches; next 1.15; commitid tMrwcqhj01kIyLXE; 1.15 date 2023.10.28.19.57.15; author wiz; state Exp; branches; next 1.14; commitid jP8MYROLWZ3yJqKE; 1.14 date 2023.08.01.23.20.52; author wiz; state Exp; branches; next 1.13; commitid lyjXpsSeA6xpH8zE; 1.13 date 2023.07.01.12.20.24; author wiz; state Exp; branches; next 1.12; commitid eKCee8hxOPdH26vE; 1.12 date 2023.07.01.11.29.20; author wiz; state Exp; branches; next 1.11; commitid WABqFlsw3FL9L5vE; 1.11 date 2023.05.05.09.02.12; author wiz; state Exp; branches; next 1.10; commitid oJLyFKTSn8JvLKnE; 1.10 date 2022.10.19.14.25.20; author nia; state Exp; branches; next 1.9; commitid 7T3HKpOITEXwVkYD; 1.9 date 2022.09.11.18.12.04; author wiz; state Exp; branches; next 1.8; commitid STHc5bENVMmgptTD; 1.8 date 2022.01.04.20.54.44; author wiz; state Exp; branches; next 1.7; commitid CYyhdK9qtoffkmnD; 1.7 date 2018.12.22.09.41.05; author adam; state Exp; branches; next 1.6; commitid ARVVnMX9E39agM4B; 1.6 date 2017.05.29.11.22.51; author wiz; state Exp; branches; next 1.5; commitid qNrgDHDjijGbdhTz; 1.5 date 2016.07.09.13.04.05; author wiz; state Exp; branches; next 1.4; commitid k9A2yv7vTRunbEdz; 1.4 date 2016.06.01.12.36.40; author wiz; state Exp; branches; next 1.3; commitid rEluqeWWL03XfL8z; 1.3 date 2016.04.14.11.34.23; author leot; state Exp; branches; next 1.2; commitid 7VV62riL7zdtrA2z; 1.2 date 2016.02.21.10.47.20; author wiz; state Exp; branches; next 1.1; commitid phhaskWLyOiHTLVy; 1.1 date 2015.04.20.07.29.44; author wiz; state Exp; branches; next ; commitid OHpno2zCovcLFiiy; desc @@ 1.16 log @py-service_identity: updated to 24.1.0 24.1.0 Changed - If a certificate doesn't contain any `subjectAltName`s, we now raise `service_identity.CertificateError` instead of `service_identity.VerificationError` to make the problem easier to debug. @ text @# $NetBSD: Makefile,v 1.15 2023/10/28 19:57:15 wiz Exp $ DISTNAME= service_identity-24.1.0 PKGNAME= ${PYPKGPREFIX}-${DISTNAME} CATEGORIES= security python MASTER_SITES= ${MASTER_SITE_PYPI:=s/service_identity/} MAINTAINER= pkgsrc-users@@NetBSD.org HOMEPAGE= https://pypi.python.org/pypi/service_identity COMMENT= Service identity verification for pyOpenSSL LICENSE= mit TOOL_DEPENDS+= ${PYPKGPREFIX}-hatchling-[0-9]*:../../devel/py-hatchling TOOL_DEPENDS+= ${PYPKGPREFIX}-hatch-vcs-[0-9]*:../../devel/py-hatch-vcs TOOL_DEPENDS+= ${PYPKGPREFIX}-hatch-fancy-pypi-readme-[0-9]*:../../devel/py-hatch-fancy-pypi-readme DEPENDS+= ${PYPKGPREFIX}-asn1-[0-9]*:../../security/py-asn1 DEPENDS+= ${PYPKGPREFIX}-asn1-modules-[0-9]*:../../security/py-asn1-modules DEPENDS+= ${PYPKGPREFIX}-attrs>=19.1.0:../../devel/py-attrs # optional, but let's depend on it DEPENDS+= ${PYPKGPREFIX}-idna-[0-9]*:../../www/py-idna PYTHON_VERSIONS_INCOMPATIBLE= 27 .include "../../lang/python/wheel.mk" PYTHON_VERSIONED_DEPENDENCIES+= cryptography PYTHON_VERSIONED_DEPENDENCIES+= OpenSSL .include "../../lang/python/versioned_dependencies.mk" .include "../../mk/bsd.pkg.mk" @ 1.15 log @python/wheel.mk: simplify a lot, and switch to 'installer' for installation This follows the recommended bootstrap method (flit_core, build, installer). However, installer installs different files than pip, so update PLISTs for all packages using wheel.mk and bump their PKGREVISIONs. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.14 2023/08/01 23:20:52 wiz Exp $ d3 1 a3 1 DISTNAME= service_identity-23.1.0 a4 1 PKGREVISION= 1 a18 1 DEPENDS+= ${PYPKGPREFIX}-six-[0-9]*:../../lang/py-six a20 1 TEST_DEPENDS+= ${PYPKGPREFIX}-test-[0-9]*:../../devel/py-test a23 4 # needs 'make install' do-test: cd ${WRKSRC} && ${SETENV} ${TEST_ENV} pytest-${PYVERSSUFFIX} @ 1.14 log @*: remove more references to Python 3.7 @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.13 2023/07/01 12:20:24 wiz Exp $ d5 1 @ 1.13 log @py-service_identity: restore PKGNAME @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.12 2023/07/01 11:29:20 wiz Exp $ d24 1 a24 1 PYTHON_VERSIONS_INCOMPATIBLE= 27 37 @ 1.12 log @service_identity: update to 23.1.0. ## [23.1.0](https://github.com/pyca/service-identity/compare/21.1.0...23.1.0) - 2023-06-14 ### Removed - All Python versions up to and including 3.7 have been dropped. - Support for `commonName` in certificates has been dropped. It has been deprecated since 2017 and isn't supported by any major browser. - The oldest supported pyOpenSSL version (when using the `pyopenssl` backend) is now 17.0.0. When using such an old pyOpenSSL version, you have to pin *cryptography* yourself to ensure compatibility between them. Please check out [`contraints/oldest-pyopenssl.txt`](https://github.com/pyca/service-identity/blob/main/tests/constraints/oldest-pyopenssl.txt) to verify what we are testing against. ### Deprecated - If you've used `service_identity.(cryptography|pyopenssl).extract_ids()`, please switch to the new names `extract_patterns()`. [#56](https://github.com/pyca/service-identity/pull/56) ### Added - `service_identity.(cryptography|pyopenssl).extract_patterns()` are now public APIs (FKA `extract_ids()`). You can use them to extract the patterns from a certificate without verifying anything. [#55](https://github.com/pyca/service-identity/pull/55) - *service-identity* is now fully typed. [#57](https://github.com/pyca/service-identity/pull/57) @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.11 2023/05/05 09:02:12 wiz Exp $ d4 1 @ 1.11 log @py-service_identity: update to 21.1.0. 21.1.0 (2021-05-09) ------------------- Backward-incompatible changes: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ - Python 3.4 is not supported anymore. It has been unsupported by the Python core team for a while now, its PyPI downloads are negligible, and our CI provider removed it as a supported option. It's very unlikely that ``service-identity`` will break under 3.4 anytime soon, which is why we do *not* block its installation on Python 3.4. But we don't test it anymore and will block it once someone reports breakage. Changes: ^^^^^^^^ - ``service_identity.exceptions.VerificationError`` can now be pickled and is overall more well-behaved as an exception. This raises the requirement of ``attrs`` to 19.1.0. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.10 2022/10/19 14:25:20 nia Exp $ d3 1 a3 3 DISTNAME= service-identity-21.1.0 # to match previous pkgsrc name PKGNAME= ${PYPKGPREFIX}-${DISTNAME:S/-/_/} d12 3 d23 1 a23 1 PYTHON_VERSIONS_INCOMPATIBLE= 27 d25 1 a25 1 TEST_ENV+= PYTHONPATH=${WRKSRC}/build/lib d29 1 a29 1 .include "../../lang/python/egg.mk" @ 1.10 log @fighting a losing battle against the py-cryptography rustification, part 5 Convert py-OpenSSL users to versioned_dependencies.mk @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.9 2022/09/11 18:12:04 wiz Exp $ d3 3 a5 3 DISTNAME= service_identity-18.1.0 PKGNAME= ${PYPKGPREFIX}-${DISTNAME} PKGREVISION= 1 d14 1 d16 3 a18 2 DEPENDS+= ${PYPKGPREFIX}-attrs-[0-9]*:../../devel/py-attrs DEPENDS+= ${PYPKGPREFIX}-characteristic>=14.0.0:../../devel/py-characteristic d20 1 d24 4 d29 1 @ 1.9 log @py-service_identity: mark as not for python 2.x @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.8 2022/01/04 20:54:44 wiz Exp $ a13 1 DEPENDS+= ${PYPKGPREFIX}-OpenSSL>=0.12:../../security/py-OpenSSL d22 2 @ 1.8 log @*: bump PKGREVISION for egg.mk users They now have a tool dependency on py-setuptools instead of a DEPENDS @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.7 2018/12/22 09:41:05 adam Exp $ d20 2 @ 1.7 log @py-service_identity: updated to 18.1.0 18.1.0 - pyOpenSSL is optional now if you use service_identity.cryptography.* only. - Added support for iPAddress subjectAltName\ s. You can now verify whether a connection or a certificate is valid for an IP address using service_identity.pyopenssl.verify_ip_address() and service_identity.cryptography.verify_certificate_ip_address(). @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.6 2017/05/29 11:22:51 wiz Exp $ d5 1 @ 1.6 log @Updated py-service_identity to 17.0.0. 17.0.0 (2017-05-23) ------------------- Deprecations: ^^^^^^^^^^^^^ - Since Chrome 58 and Firefox 48 both don't accept certificates that contain only a Common Name, its usage is hereby deprecated in ``service_identity`` too. We have been raising a warning since 16.0.0 and the support will be removed in mid-2018 for good. Changes: ^^^^^^^^ - When ``service_identity.SubjectAltNameWarning`` is raised, the Common Name of the certificate is now included in the warning message. `#17 `_ - Added ``cryptography.x509`` backend for verifying certificates. `#18 `_ - Wildcards (``*``) are now only allowed if they are the leftmost label in a certificate. This is common practice by all major browsers. `#19 `_ @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.5 2016/07/09 13:04:05 wiz Exp $ d3 1 a3 1 DISTNAME= service_identity-17.0.0 @ 1.5 log @Remove python33: adapt all packages that refer to it. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.4 2016/06/01 12:36:40 wiz Exp $ d3 1 a3 1 DISTNAME= service_identity-16.0.0 a4 1 PKGREVISION= 1 @ 1.4 log @Fix MASTER_SITES. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.3 2016/04/14 11:34:23 leot Exp $ a19 2 PYTHON_VERSIONS_INCOMPATIBLE= 33 # not supported as of 16.0.0 @ 1.3 log @py-service_identity from version 16.0.0 also needs attrs module (hi wiz! :)) DEPENDS on devel/py-attrs now that we have it and bump PKGREVISION. While here also simplify MASTER_SITE. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.2 2016/02/21 10:47:20 wiz Exp $ d7 1 a7 1 MASTER_SITES= ${MASTER_SITE_PYPI} @ 1.2 log @Update py-service_identity to 16.0.0. 16.0.0 (2016-02-18) ------------------- Backward-incompatible changes: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ - Python 3.3 and 2.6 aren't supported anymore. They may work by chance but any effort to keep them working has ceased. The last Python 2.6 release was on October 29, 2013 and isn't supported by the CPython core team anymore. Major Python packages like Django and Twisted dropped Python 2.6 a while ago already. Python 3.3 never had a significant user base and wasn't part of any distribution's LTS release. - pyOpenSSL versions older than 0.14 are not tested anymore. They don't even build with recent OpenSSL versions. Changes: ^^^^^^^^ - Officially support Python 3.5. - ``service_identity.SubjectAltNameWarning`` is now raised if the server certicate lacks a proper ``SubjectAltName``. [`#9 `_] - Add a ``__str__`` method to ``VerificationError``. - Port from ``characteristic`` to its spiritual successor `attrs `_. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.1 2015/04/20 07:29:44 wiz Exp $ d5 1 d7 1 a7 1 MASTER_SITES= ${MASTER_SITE_PYPI:=s/service_identity/} d16 1 @ 1.1 log @Import py34-service_identity-14.0.0 as security/py-service_identity. service_identity aspires to give you all the tools you need for verifying whether a certificate is valid for the intended purposes. In the simplest case, this means host name verification. However, service_identity implements RFC 6125 fully and plans to add other relevant RFCs too. @ text @d1 1 a1 1 # $NetBSD$ d3 1 a3 1 DISTNAME= service_identity-14.0.0 d6 1 a6 1 MASTER_SITES= https://pypi.python.org/packages/source/s/service_identity/ d18 2 @