python3-cryptography{-vectors}: upgrade to 42.0.5

* Includes an upgrade to pyo3 from 0.20.0 to 0.20.3 which fixes ppc64 * Refresh -crates.inc https://cryptography.io/en/latest/changelog/#v42-0-5 https://cryptography.io/en/latest/changelog/#v42-0-4 https://cryptography.io/en/latest/changelog/#v42-0-3 42.0.5 - 2024-02-23 * Limit the number of name constraint checks that will be performed in X.509 path validation to protect against denial of service attacks. * Upgrade pyo3 version, which fixes building on PowerPC. 42.0.4 - 2024-02-20 * Fixed a null-pointer-dereference and segfault that could occur when creating a PKCS#12 bundle. Credit to Alexander-Programming for reporting the issue. CVE-2024-26130 * Fixed ASN.1 encoding for PKCS7/SMIME signed messages. The fields SMIMECapabilities and SignatureAlgorithmIdentifier should now be correctly encoded according to the definitions in RFC 2633 RFC 3370. 42.0.3 - 2024-02-15 * Fixed an initialization issue that caused key loading failures for some users. CVE: CVE-2024-26130 https://nvd.nist.gov/vuln/detail/CVE-2024-26130 (From OE-Core rev: 83dad4a93ff81c6c1e048443e0827d825670158b) Signed-off-by: Tim Orling <tim.orling@konsulko.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2026-04-02 17:02:21 +02:00 · 2024-02-28 08:25:31 -08:00
parent eb11e03c81
commit af7d65adfb
3 changed files with 14 additions and 12 deletions
--- a/meta/recipes-devtools/python/python3-cryptography-vectors_42.0.5.bb
+++ b/meta/recipes-devtools/python/python3-cryptography-vectors_42.0.5.bb
@@ -0,0 +1,31 @@
+SUMMARY = "Test vectors for the cryptography package."
+HOMEPAGE = "https://cryptography.io/"
+SECTION = "devel/python"
+LICENSE = "Apache-2.0 | BSD-3-Clause"
+LIC_FILES_CHKSUM = "file://LICENSE;md5=8c3617db4fb6fae01f1d253ab91511e4 \
+                    file://LICENSE.APACHE;md5=4e168cce331e5c827d4c2b68a6200e1b \
+                    file://LICENSE.BSD;md5=5ae30ba4123bc4f2fa49aa0b0dce887b"
+
+# NOTE: Make sure to keep this recipe at the same version as python3-cryptography
+#       Upgrade both recipes at the same time
+
+SRC_URI[sha256sum] = "505cd5e3b0cb32da1526f07042b7fc38a4b6c356710cb73d2b5f76b037a38ed1"
+
+PYPI_PACKAGE = "cryptography_vectors"
+
+inherit pypi python_setuptools_build_meta
+
+DEPENDS += " \
+    python3-cryptography \
+"
+
+do_install:append () {
+	# Remove the sha256 checksum lines for pycache files
+	sed ${D}${PYTHON_SITEPACKAGES_DIR}/cryptography_vectors-${PV}.dist-info/RECORD -e '/__pycache__/d' -i
+}
+
+BBCLASSEXTEND = "native nativesdk"
+
+UPSTREAM_CHECK_REGEX = ""
+
+RECIPE_NO_UPDATE_REASON = "Must be updated in sync with python3-cryptography."