PyCA's cryptography library
Go to file
2023-02-23 13:17:18 -05:00
tests Import rpm: 5c743a97fdb06d99fc583a7be55ea1dd0050dd6f 2022-08-08 14:02:14 -04:00
.gitignore Import rpm: 5c743a97fdb06d99fc583a7be55ea1dd0050dd6f 2022-08-08 14:02:14 -04:00
0001-Block-TripleDES-in-FIPS-mode-6879.patch Import rpm: 5c743a97fdb06d99fc583a7be55ea1dd0050dd6f 2022-08-08 14:02:14 -04:00
0002-Disable-DSA-tests-in-FIPS-mode-6916.patch Import rpm: 5c743a97fdb06d99fc583a7be55ea1dd0050dd6f 2022-08-08 14:02:14 -04:00
0003-fixes-6927-handle-negative-return-values-from-openss.patch Import rpm: 5c743a97fdb06d99fc583a7be55ea1dd0050dd6f 2022-08-08 14:02:14 -04:00
0004-Disable-test_openssl_assert_error_on_stack-in-FIPS-m.patch Import rpm: 5c743a97fdb06d99fc583a7be55ea1dd0050dd6f 2022-08-08 14:02:14 -04:00
0005-Fixed-serialization-of-keyusage-ext-with-no-bits-693.patch Import rpm: 5c743a97fdb06d99fc583a7be55ea1dd0050dd6f 2022-08-08 14:02:14 -04:00
conftest-skipper.py Import rpm: 5c743a97fdb06d99fc583a7be55ea1dd0050dd6f 2022-08-08 14:02:14 -04:00
gating.yaml Import rpm: 5c743a97fdb06d99fc583a7be55ea1dd0050dd6f 2022-08-08 14:02:14 -04:00
python-cryptography.spec Import rpm: 5c743a97fdb06d99fc583a7be55ea1dd0050dd6f 2022-08-08 14:02:14 -04:00
README.md Import rpm: 5c743a97fdb06d99fc583a7be55ea1dd0050dd6f 2022-08-08 14:02:14 -04:00
sources Import rpm: 5c743a97fdb06d99fc583a7be55ea1dd0050dd6f 2023-02-23 13:17:18 -05:00
vendor_rust.py Import rpm: 5c743a97fdb06d99fc583a7be55ea1dd0050dd6f 2022-08-08 14:02:14 -04:00

PyCA cryptography

https://cryptography.io/en/latest/

Packaging python-cryptography

The example assumes

  • Fedora Rawhide (f34)
  • PyCA cryptography release 3.4
  • Update Bugzilla issue is RHBZ#00000001

Build new python-cryptography

Switch and update branch

fedpkg switch-branch rawhide
fedpkg pull

Bump version and get sources

rpmdev-bumpspec -c "Update to 3.4 (#00000001)" -n 3.4 python-cryptography.spec
spectool -gf python-cryptography.spec

Upload new source

fedpkg new-sources cryptography-3.4.tar.gz

Commit changes

fedpkg commit --clog
fedpkg push

Build

fedpkg build

RHEL/CentOS builds

RHEL and CentOS use a different approach for Rust crates packaging than Fedora. On Fedora Rust dependencies are packaged as RPMs, e.g. rust-pyo3+default-devel RPM. These packages don't exist on RHEL and CentOS. Instead python-cryptography uses a tar ball with vendored crates. The tar ball is created by a script:

./vendor_rust.py
rhpkg upload cryptography-3.4-vendor.tar.bz2