Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump asn1crypto from 0.24.0 to 1.5.1 #77

Open
wants to merge 1 commit into
base: main
Choose a base branch
from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 21, 2022

Bumps asn1crypto from 0.24.0 to 1.5.1.

Changelog

Sourced from asn1crypto's changelog.

1.5.1

  • Handle RSASSA-PSS in keys.PrivateKeyInfo.bit_size and keys.PublicKeyInfo.bit_size
  • Handle RSASSA-PSS in keys.PrivateKeyInfo.wrap and keys.PublicKeyInfo.wrap
  • Updated docs for keys.PrivateKeyInfo.algorithm and keys.PublicKeyInfo.algorithm to reflect that they can return "rsassa_pss"

1.5.0

  • Fix tsp.TimeStampAndCRL to be a core.Sequence instead of a core.SequenceOf via @​joernheissler
  • Added OIDs for Edwards curves from RFC 8410 - via @​MatthiasValvekens
  • Fixed convenience attributes on algos.EncryptionAlgorithm when the algorithm is RC2 via @​joernheissler
  • Added Microsoft OIDs microsoft_enrollment_csp_provider (1.3.6.1.4.1.311.13.2.2), microsoft_os_version (1.3.6.1.4.1.311.13.2.3) and microsoft_request_client_info (1.3.6.1.4.1.311.21.20) to csr.CSRAttributeType along with supporting extension structures via @​qha
  • Added Microsoft OID microsoft_enroll_certtype (1.3.6.1.4.1.311.20.2) to x509.ExtensionId via @​qha
  • Fixed a few bugs with parsing indefinite-length encodings via @​davidben
  • Added various bounds checks to parsing engine via @​davidben
  • Fixed a bug with tags not always being minimally encoded via @​davidben
  • Fixed cms.RoleSyntax, cms.SecurityCategory and cms.AttCertIssuer to have explicit instead of implicit tagging via @​MatthiasValvekens
  • Fixed tagging of, and default value for fields in cms.Clearance via @​MatthiasValvekens
  • Fixed calling .dump(force=True) when the value has undefined/unknown core.Sequence fields. Previously the value would be truncated, now the existing encoding is preserved.
  • Added sMIME capabilities (1.2.840.113549.1.9.15) support from RFC 2633 to cms.CMSAttribute via Hellzed

1.4.0

  • core.ObjectIdentifier and all derived classes now obey X.660 §7.6 and thus restrict the first arc to 0 to 2, and the second arc to less than 40 if the first arc is 0 or 1. This also fixes parsing of OIDs where the first arc is 2 and the second arc is greater than 39.
  • Fixed keys.PublicKeyInfo.bit_size to return an int rather than a float on Python 3 when working with elliptic curve keys
  • Fixed the asn1crypto-tests sdist on PyPi to work properly to generate a .whl

1.3.0

... (truncated)

Commits
  • 835365c Version 1.5.1
  • d0040c2 Handle PSS in keys.PrivateKeyInfo.wrap() / keys.PublicKeyInfo.wrap()
  • 0bb7066 Handle PSS in keys.PrivateKeyInfo.bit_size / keys.PublicKeyInfo.bit_size
  • 47f7588 Version 1.5.0
  • 9e067d2 Fix dev/deps.py to work on Python 3.10
  • 557a900 Update copyright year in license
  • 6bad16e Add Python 3.10 to CI and docs
  • 4791c1e Update SMIMECapabilityIdentifier to use EncryptionAlgorithmId
  • 976dbba Add support for rfc2633 sMIME capabilities signed attr (#215)
  • 5a24aed Fix calling .dump(force=True) on a core.Sequence() with no field info
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [asn1crypto](https://github.com/wbond/asn1crypto) from 0.24.0 to 1.5.1.
- [Release notes](https://github.com/wbond/asn1crypto/releases)
- [Changelog](https://github.com/wbond/asn1crypto/blob/master/changelog.md)
- [Commits](wbond/asn1crypto@0.24.0...1.5.1)

---
updated-dependencies:
- dependency-name: asn1crypto
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Mar 21, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants