linux/meta-openembedded.git/meta-python/recipes-devtools/python/python3-m2crypto_0.38.0.bb, branch kirkstone-next

python3-m2crypto: fix for CVE-2020-25657

2023-06-03T11:55:37+00:00

A flaw was found in all released versions of m2crypto, where they are vulnerable to Bleichenbacher timing attacks in the RSA decryption API via the timed processing of valid PKCS#1 v1.5 Ciphertext. The highest threat from this vulnerability is to confidentiality. Signed-off-by: Narpat Mali Signed-off-by: Armin Kuster

python3-m2crypto: address build failure with openssl 3.x

2021-10-14T14:15:36+00:00

Signed-off-by: Alexander Kanavin Signed-off-by: Khem Raj Signed-off-by: Trevor Gamblin

python3-m2crypto: fix for new overrides syntax

2021-08-16T15:21:14+00:00

Fix wrong replacement caused by script convert-overrides.py. And use new overrides syntax for 'x32'. Signed-off-by: Kai Kang Signed-off-by: Khem Raj Signed-off-by: Trevor Gamblin

Convert to new override syntax

2021-08-03T17:21:25+00:00

This is the result of automated script (0.9.1) conversion: oe-core/scripts/contrib/convert-overrides.py . converting the metadata to use ":" as the override character instead of "_". Signed-off-by: Martin Jansa

python3-m2crypto: upgrade 0.37.1 -> 0.38.0

2021-07-06T16:40:42+00:00

0.38.0 - 2021-06-14 ------------------- - Remove the last use of setup.py test idiom. - Use m2_PyObject_AsReadBuffer instead of PyObject_AsReadBuffer. - Add support for arm64 big endian - Make support of RSA_SSLV23_PADDING optional (it has been deprecated). - Move project to src/ layout - Allow verify_cb_* to be called with ok=True - Be prepared if any of constants in x509_vfy.h is not available. - But we do support 3.8 - We DO NOT support Python 2.6. Refresh the following patch: cross-compile-platform.patch 0001-Allow-verify_cb_-to-be-called-with-ok-True.patch 0001-Use-of-RSA_SSLV23_PADDING-has-been-deprecated.patch Removed since these are included in 0.38.0 Signed-off-by: Zang Ruochen Signed-off-by: Khem Raj Signed-off-by: Trevor Gamblin