From paul.l.kehrer at gmail.com Tue Dec 8 19:50:57 2020 From: paul.l.kehrer at gmail.com (Paul Kehrer) Date: Tue, 8 Dec 2020 18:50:57 -0600 Subject: [Cryptography-dev] PyCA cryptography 3.3 released Message-ID: PyCA cryptography 3.3 has been released to PyPI. cryptography includes both high level recipes and low level interfaces to common cryptographic algorithms such as symmetric ciphers, asymmetric algorithms, message digests, X509, key derivation functions, and much more. We support Python 2.7, Python 3.6+, and PyPy. Please note that this is the final version that will support Python 2.7! Changelog (https://cryptography.io/en/latest/changelog/): * BACKWARDS INCOMPATIBLE: Support for Python 3.5 has been removed due to low usage and maintenance burden. * BACKWARDS INCOMPATIBLE: The GCM and AESGCM now require 64-bit to 1024-bit (8 byte to 128 byte) initialization vectors. This change is to conform with an upcoming OpenSSL release that will no longer support sizes outside this window. * BACKWARDS INCOMPATIBLE: When deserializing asymmetric keys we now raise ValueError rather than UnsupportedAlgorithm when an unsupported cipher is used. This change is to conform with an upcoming OpenSSL release that will no longer distinguish between error types. * BACKWARDS INCOMPATIBLE: We no longer allow loading of finite field Diffie-Hellman parameters of less than 512 bits in length. This change is to conform with an upcoming OpenSSL release that no longer supports smaller sizes. These keys were already wildly insecure and should not have been used in any application outside of testing. * Updated Windows, macOS, and manylinux wheels to be compiled with OpenSSL 1.1.1i. * Python 2 support is deprecated in cryptography. This is the last release that will support Python 2. * Added the recover_data_from_signature() function to RSAPublicKey for recovering the signed data from an RSA signature. -Paul Kehrer (reaperhulk) -------------- next part -------------- An HTML attachment was scrubbed... URL: From paul.l.kehrer at gmail.com Wed Dec 9 21:56:50 2020 From: paul.l.kehrer at gmail.com (Paul Kehrer) Date: Wed, 9 Dec 2020 20:56:50 -0600 Subject: [Cryptography-dev] PyCA cryptography 3.3.1 released Message-ID: PyCA cryptography 3.3.1 has been released to PyPI. cryptography includes both high level recipes and low level interfaces to common cryptographic algorithms such as symmetric ciphers, asymmetric algorithms, message digests, X509, key derivation functions, and much more. We support Python 2.7, Python 3.6+, and PyPy. Please note that this is the final version that will support Python 2.7! Changelog (https://cryptography.io/en/latest/changelog/): * Re-added a legacy symbol causing problems for older ``pyOpenSSL`` users. -Paul Kehrer (reaperhulk) -------------- next part -------------- An HTML attachment was scrubbed... URL: From alex.gaynor at gmail.com Tue Dec 22 14:43:24 2020 From: alex.gaynor at gmail.com (Alex Gaynor) Date: Tue, 22 Dec 2020 14:43:24 -0500 Subject: [Cryptography-dev] Rust in pyca/cryptography Message-ID: Hi all, As we previewed in August [0] we're planning to incorporate Rust code into pyca/cryptography. I'm thrilled to announce that we just landed a patch that starts us down that path: https://github.com/pyca/cryptography/commit/c84d6ee0605645a24fd93c436967ee2519aa586a As a reminder, the schedule for this is: - The 3.4 release will include a Rust extension module, which is built by default. It is not required for cryptography to work, and can be disabled at build time with an environment variable. - The 3.5 release will include a Rust extension module, without which cryptography will not work. For all releases, users who consume our wheels from PyPI will not need to make any changes. Users who built cryptography from source will need to ensure they have a Rust toolchain available. For users who build or redistribute cryptography, we strongly suggest that you use the time before our 3.4 release to ensure you have a Rust toolchain installed, and verify that building cryptography from source in git works for you: https://cryptography.io/en/latest/installation.html#rust Happy holidays, Alex [0]: https://mail.python.org/pipermail/cryptography-dev/2020-August/000976.html -- All that is necessary for evil to succeed is for good people to do nothing.