Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[aroca-fault]: Bump asn1crypto from 0.24.0 to 1.5.1 #20

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

[aroca-fault]: Bump asn1crypto from 0.24.0 to 1.5.1 #20

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 4, 2023

Bumps asn1crypto from 0.24.0 to 1.5.1.

Changelog

Sourced from asn1crypto's changelog.

1.5.1

  • Handle RSASSA-PSS in keys.PrivateKeyInfo.bit_size and keys.PublicKeyInfo.bit_size
  • Handle RSASSA-PSS in keys.PrivateKeyInfo.wrap and keys.PublicKeyInfo.wrap
  • Updated docs for keys.PrivateKeyInfo.algorithm and keys.PublicKeyInfo.algorithm to reflect that they can return "rsassa_pss"

1.5.0

  • Fix tsp.TimeStampAndCRL to be a core.Sequence instead of a core.SequenceOf via @​joernheissler
  • Added OIDs for Edwards curves from RFC 8410 - via @​MatthiasValvekens
  • Fixed convenience attributes on algos.EncryptionAlgorithm when the algorithm is RC2 via @​joernheissler
  • Added Microsoft OIDs microsoft_enrollment_csp_provider (1.3.6.1.4.1.311.13.2.2), microsoft_os_version (1.3.6.1.4.1.311.13.2.3) and microsoft_request_client_info (1.3.6.1.4.1.311.21.20) to csr.CSRAttributeType along with supporting extension structures via @​qha
  • Added Microsoft OID microsoft_enroll_certtype (1.3.6.1.4.1.311.20.2) to x509.ExtensionId via @​qha
  • Fixed a few bugs with parsing indefinite-length encodings via @​davidben
  • Added various bounds checks to parsing engine via @​davidben
  • Fixed a bug with tags not always being minimally encoded via @​davidben
  • Fixed cms.RoleSyntax, cms.SecurityCategory and cms.AttCertIssuer to have explicit instead of implicit tagging via @​MatthiasValvekens
  • Fixed tagging of, and default value for fields in cms.Clearance via @​MatthiasValvekens
  • Fixed calling .dump(force=True) when the value has undefined/unknown core.Sequence fields. Previously the value would be truncated, now the existing encoding is preserved.
  • Added sMIME capabilities (1.2.840.113549.1.9.15) support from RFC 2633 to cms.CMSAttribute via Hellzed

1.4.0

  • core.ObjectIdentifier and all derived classes now obey X.660 §7.6 and thus restrict the first arc to 0 to 2, and the second arc to less than 40 if the first arc is 0 or 1. This also fixes parsing of OIDs where the first arc is 2 and the second arc is greater than 39.
  • Fixed keys.PublicKeyInfo.bit_size to return an int rather than a float on Python 3 when working with elliptic curve keys
  • Fixed the asn1crypto-tests sdist on PyPi to work properly to generate a .whl

1.3.0

... (truncated)

Commits
  • 835365c Version 1.5.1
  • d0040c2 Handle PSS in keys.PrivateKeyInfo.wrap() / keys.PublicKeyInfo.wrap()
  • 0bb7066 Handle PSS in keys.PrivateKeyInfo.bit_size / keys.PublicKeyInfo.bit_size
  • 47f7588 Version 1.5.0
  • 9e067d2 Fix dev/deps.py to work on Python 3.10
  • 557a900 Update copyright year in license
  • 6bad16e Add Python 3.10 to CI and docs
  • 4791c1e Update SMIMECapabilityIdentifier to use EncryptionAlgorithmId
  • 976dbba Add support for rfc2633 sMIME capabilities signed attr (#215)
  • 5a24aed Fix calling .dump(force=True) on a core.Sequence() with no field info
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
[aroca-fault]: Bump asn1crypto from 0.24.0 to 1.5.1
eeff10c 
Bumps [asn1crypto](https://github.com/wbond/asn1crypto) from 0.24.0 to 1.5.1.
- [Changelog](https://github.com/wbond/asn1crypto/blob/master/changelog.md)
- [Commits](wbond/asn1crypto@0.24.0...1.5.1)

---
updated-dependencies:
- dependency-name: asn1crypto
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added aroca-fault damn dependencies Pull requests that update a dependency file pip labels Oct 4, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@efiaroca efiaroca

Labels
aroca-fault damn dependencies Pull requests that update a dependency file pip
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@efiaroca