[Python-modules-commits] r33299 - in packages/python-cryptography/tags/0.8.2-4/debian (4 files)

stefanor at users.alioth.debian.org stefanor at users.alioth.debian.org
Tue Jul 7 21:18:11 UTC 2015 

    Date: Tuesday, July 7, 2015 @ 21:18:10
  Author: stefanor
Revision: 33299

* Team upload.
* Cherry-pick a double-free fix from upstream. Causes test failures with
  cffi 1.1.

Added:
  packages/python-cryptography/tags/0.8.2-4/debian/patches/
  packages/python-cryptography/tags/0.8.2-4/debian/patches/double-free.patch
  packages/python-cryptography/tags/0.8.2-4/debian/patches/series
Modified:
  packages/python-cryptography/tags/0.8.2-4/debian/changelog

Modified: packages/python-cryptography/tags/0.8.2-4/debian/changelog
===================================================================
--- packages/python-cryptography/tags/0.8.2-4/debian/changelog	2015-07-07 21:16:25 UTC (rev 33298)
+++ packages/python-cryptography/tags/0.8.2-4/debian/changelog	2015-07-07 21:18:10 UTC (rev 33299)
@@ -1,3 +1,11 @@
+python-cryptography (0.8.2-4) unstable; urgency=medium
+
+  * Team upload.
+  * Cherry-pick a double-free fix from upstream. Causes test failures with
+    cffi 1.1.
+
+ -- Stefano Rivera <stefanor at debian.org>  Tue, 07 Jul 2015 14:08:40 -0700
+
 python-cryptography (0.8.2-3) unstable; urgency=medium
 
   * Add needs-root for autopkgtest (via patch from Matthias Klose in

Added: packages/python-cryptography/tags/0.8.2-4/debian/patches/double-free.patch
===================================================================
--- packages/python-cryptography/tags/0.8.2-4/debian/patches/double-free.patch	                        (rev 0)
+++ packages/python-cryptography/tags/0.8.2-4/debian/patches/double-free.patch	2015-07-07 21:18:10 UTC (rev 33299)
@@ -0,0 +1,23 @@
+commit c1587fcf1e9ed87b16e285339e5deb3336665eb0
+Author: Paul Kehrer <paul.l.kehrer at gmail.com>
+Date:   Sat Jun 6 00:56:00 2015 -0500
+
+    don't double free DSA cdata when verifying things
+
+--- a/src/cryptography/hazmat/backends/openssl/dsa.py
++++ b/src/cryptography/hazmat/backends/openssl/dsa.py
+@@ -40,13 +40,10 @@
+         self._hash_ctx.update(data)
+ 
+     def verify(self):
+-        self._dsa_cdata = self._backend._ffi.gc(self._public_key._dsa_cdata,
+-                                                self._backend._lib.DSA_free)
+-
+         data_to_verify = self._hash_ctx.finalize()
+ 
+         data_to_verify = _truncate_digest_for_dsa(
+-            self._dsa_cdata, data_to_verify, self._backend
++            self._public_key._dsa_cdata, data_to_verify, self._backend
+         )
+ 
+         # The first parameter passed to DSA_verify is unused by OpenSSL but

Added: packages/python-cryptography/tags/0.8.2-4/debian/patches/series
===================================================================
--- packages/python-cryptography/tags/0.8.2-4/debian/patches/series	                        (rev 0)
+++ packages/python-cryptography/tags/0.8.2-4/debian/patches/series	2015-07-07 21:18:10 UTC (rev 33299)
@@ -0,0 +1 @@
+double-free.patch

More information about the Python-modules-commits mailing list