notbugIf you buy from Amazon USA, please support us by using this link.
Port details
py-cryptography Cryptographic recipes and primitives for Python developers
2.3 security on this many watch lists=14 search for ports that depend on this port An older version of this port was marked as vulnerable. Find issues related to this port Report an issue related to this port
Maintainer: koobs@FreeBSD.org search for ports maintained by this maintainer
Port Added: 23 Feb 2014 13:47:20
Also Listed In: python
License: APACHE20 BSD3CLAUSE
cryptography is a package designed to expose cryptographic recipes and
primitives to Python developers. Our goal is for it to be your "cryptographic
standard library".

cryptography includes both high level recipes, and low level interfaces to
common cryptographic algorithms such as symmetric ciphers, message digests
and key derivation functions.

WWW: https://github.com/pyca/cryptography/
SVNWeb : Homepage : PortsMon
There is no configure plist information for this port

To install the port: cd /usr/ports/security/py-cryptography/ && make install clean
To add the package: pkg install py27-cryptography

PKGNAME: py27-cryptography

distinfo:

TIMESTAMP = 1532336711
SHA256 (cryptography-2.3.tar.gz) = c132bab45d4bd0fff1d3fe294d92b0a6eb8404e93337b3127bdec9f21de117e6
SIZE (cryptography-2.3.tar.gz) = 449464


NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.

Build dependencies:
  1. py27-cffi>=1.7 : devel/py-cffi@py27
  2. py27-setuptools>0 : devel/py-setuptools@py27
  3. python2.7 : lang/python27
Runtime dependencies:
  1. py27-idna>=2.1 : dns/py-idna@py27
  2. py27-asn1crypto>=0.21.0 : devel/py-asn1crypto@py27
  3. py27-six>=1.4.1 : devel/py-six@py27
  4. py27-cffi>=1.7 : devel/py-cffi@py27
  5. py27-enum34>0 : devel/py-enum34@py27
  6. py27-ipaddress>0 : net/py-ipaddress@py27
  7. py27-setuptools>0 : devel/py-setuptools@py27
  8. python2.7 : lang/python27

This port is required by:

for Build for Run * - deleted ports are only shown under the This port is required by section. It was harder to do for the Required section. Perhaps later...
Configuration Options
     No options to configure

USES:
compiler:env python ssl

Master Sites:
  1. https://files.pythonhosted.org/packages/source/c/cryptography/
  2. https://pypi.org/packages/source/c/cryptography/
Notes from UPDATING
These upgrade notes are taken from /usr/ports/UPDATING
  • 2017-11-30
    Affects: */py*
    Author: mat@FreeBSD.org
    Reason: 
      Ports using Python via USES=python are now flavored.  All the py3-* ports
      have been removed and folded into their py-* master ports.
    
      People using Poudriere 3.2+ and binary packages do not have to do anything.
    
      For other people, to build the Python 3.6 version of, for example,
      databases/py-gdbm, you need to run:
    
        # make FLAVOR=py36 install
    
    

Number of commits found: 34

Commit History - (may be incomplete: see SVNWeb link above for full details)
DateByDescription
06 Aug 2018 03:25:20
Original commit files touched by this commit  2.3
Revision:476488
koobs search for other commits by this committer
security/py-cryptography: Update to 2.3

This version update fixes builds with libressl >= 2.7.

Builds with openssl-devel are broken due to an underlying lang/python* port
issue [1].

Changelog:

  https://github.com/pyca/cryptography/blob/2.3/CHANGELOG.rst

[1] https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=229223

PR:             226906
Submitted by:   Charli Li <ml+freebsd vishwin info>
Reported by:    many
MFH:            2018Q3 (fixes package build, security fix)
Security:	9e2d0dcf-9926-11e8-a92d-0050562a4d7b
20 Jun 2018 17:05:44
Original commit files touched by this commit  2.1.4
Revision:472884 This port version is marked as vulnerable.
mat search for other commits by this committer
Use PY_FLAVOR for dependencies.

FLAVOR is the current port's flavor, it should not be used outside of
this scope.

Sponsored by:	Absolight
22 Jan 2018 14:57:29
Original commit files touched by this commit  2.1.4
Revision:459656 This port version is marked as vulnerable.
sbz search for other commits by this committer
- Update to 2.1.4

PR:		225348
10 Jan 2018 12:35:03
Original commit files touched by this commit  2.0.3_1
Revision:458625 This port version is marked as vulnerable.
amdmi3 search for other commits by this committer
- Fix build on mips by disabling unknown warning flag

MFH:		2018Q1
Approved by:	portmgr blanket
05 Jan 2018 20:02:04
Original commit files touched by this commit  2.0.3_1
Revision:458167 This port version is marked as vulnerable.
yuri search for other commits by this committer
Corrected shared library names that got the .abi3 suffix for python-36 and up
after devel/py-cffi upgrade to 1.11.2

This is the followup for the r457997 commit that updated devel/py-cffi to
1.11.2.
As it turned out, the shared object names built by py-cffi has changed in python
36.
Dependent ports can choose between installing such shared object as part of
their plist, or
generating them in the runtime and placing them into ~/.cache/{port-name}/ The
former ones,
that include the shared objects in their plist, got affected.

4 of the ports were failing explicitly in their py36 flavor during the strip
phase.
The other 6 were either missing strip entirely, or performed the strip operation
without
using explicit shared object names. These 6 ports didn't trigger any build
errors, and were
failing silently during the runtime, making the problem very hard to detect.

Precisely, .abi3 suffix is now added for the py36 flavor of relevant ports.

Here are the 10 ports that got affected and are now corrected:
databases/py-psycopg2cffi devel/py-pygit2 devel/py-xattr devel/py-pyopencl
devel/py-atomiclong
multimedia/py-librtmp net/py-nnpy security/py-bcrypt security/py-cryptography
security/py-pynacl

All of them got the * in the stripped shared object name, and a PORTREVISION
bump.
30 Nov 2017 15:50:34
Original commit files touched by this commit  2.0.3
Revision:455210  Sanity Test Failure This port version is marked as vulnerable.
mat search for other commits by this committer
Convert Python ports to FLAVORS.

  Ports using USE_PYTHON=distutils are now flavored.  They will
  automatically get flavors (py27, py34, py35, py36) depending on what
  versions they support.

  There is also a USE_PYTHON=flavors for ports that do not use distutils
  but need FLAVORS to be set.  A USE_PYTHON=noflavors can be set if
  using distutils but flavors are not wanted.

  A new USE_PYTHON=optsuffix that will add PYTHON_PKGNAMESUFFIX has been
  added to cope with Python ports that did not have the Python
  PKGNAMEPREFIX but are flavored.

  USES=python now also exports a PY_FLAVOR variable that contains the
(Only the first 15 lines of the commit message are shown above View all of this commit message)
24 Sep 2017 05:00:21
Original commit files touched by this commit  2.0.3
Revision:450479 This port version is marked as vulnerable.
koobs search for other commits by this committer
security/py-cryptography: Update to 2.0.3

- Update LICENSE section, now Dual-licensed
- Update dependencies and minimum versions
- Enable concurrent Python feature
- Remove upstreamed patch
- Remove version support declaration from pkg-descr

Changelog:

  https://cryptography.io/en/latest/changelog/#v2-0-3

PR:		222519
Submitted by:	Yasuhiro KIMURA <yasu utahime org>
03 Sep 2017 10:28:00
Original commit files touched by this commit  1.7.2
Revision:449195 This port version is marked as vulnerable.
rene search for other commits by this committer
security/py-cryptography: remove support for expired Python 3.3
10 Jun 2017 03:16:45
Original commit files touched by this commit  1.7.2
Revision:443067 This port version is marked as vulnerable.
woodsb02 search for other commits by this committer
security/py-cryptography: Fix build with Python 3.3

PR:		219833
Reported by:	koobs
Approved by:	portmgr blanket
07 Jun 2017 14:22:59
Original commit files touched by this commit  1.7.2
Revision:442838 This port version is marked as vulnerable.
woodsb02 search for other commits by this committer
[NEW] security/py3-cryptography: Create Python 3.x version of port

The latest www/py-requests update [1] unbundled its dependencies, now
requiring chardet, idna, urllib3 and certifi from ports.

www/py3-requests port was not tested during QA, which would have highlighted
the need for many new py3-* ports (and their dependencies).

This change creates one of those ports.

[1] https://svnweb.freebsd.org/changeset/ports/442565

PR:		219833
22 Feb 2017 19:10:26
Original commit files touched by this commit  1.7.2
Revision:434632 This port version is marked as vulnerable.
rezny search for other commits by this committer
Update to 1.7.2 and fix building with libressl-devel

PR:		216825
Approved by:	maintainer (timeout), swills (mentor)
Differential Revision:	https://reviews.freebsd.org/D9711
01 Jan 2017 03:45:13
Original commit files touched by this commit  1.6
Revision:430235 This port version is marked as vulnerable.
sunpoet search for other commits by this committer
Remove BROKEN_FreeBSD_9

Approved by:	portmgr (blanket)
19 Dec 2016 09:05:48
Original commit files touched by this commit  1.6
Revision:428912 This port version is marked as vulnerable.
amdmi3 search for other commits by this committer
- Mark BROKEN on 9.x

Approved by:	portmgr blanket
08 Dec 2016 17:15:30
Original commit files touched by this commit  1.6
Revision:428140 This port version is marked as vulnerable.
antoine search for other commits by this committer
Unbreak

With hat:	portmgr
MFH:		2016Q4
08 Dec 2016 17:07:23
Original commit files touched by this commit  1.6
Revision:428138 This port version is marked as vulnerable.
feld search for other commits by this committer
security/py-pycryptography: Fix build on FreeBSD 9.3

Modern py-cryptography requires a more modern OpenSSL. This switch to
requiring OpenSSL from ports is a disruptive change, but it will protect
these users from the recently patched vulnerabilites.

Support for OpenSSL 0.9.8 was removed in pycryptography as of version 1.4.
The last release to support OpenSSL 0.9.8 was 1.3.4 which is still
vulnerable to the HDKF key generation bug. It appears that version 1.4
did build successfully on FreeBSD 9.3, but upstream had abandoned
support for OpenSSL 0.9.8 at that point so it is unclear if it was fully
functional.

PR:		214915
MFH:		2016Q4
04 Dec 2016 22:18:51
Original commit files touched by this commit  1.6
Revision:427810 This port version is marked as vulnerable.
feld search for other commits by this committer
security/py-cryptography: Update to 1.6

Changelog:	https://github.com/pyca/cryptography/blob/master/CHANGELOG.rst

PR:		214915
Approved by:	ports-secteam (with hat)
MFH:		2016Q4
Security:	CVE-2016-9243
02 Dec 2016 09:21:59
Original commit files touched by this commit  1.4
Revision:427548 This port version is marked as vulnerable.
mat search for other commits by this committer
http://github.com redirects to https://github.com, spare everyone a redirect.

Sponsored by:	Absolight
12 Aug 2016 16:58:34
Original commit files touched by this commit  1.4
Revision:420137 This port version is marked as vulnerable.
swills search for other commits by this committer
security/py-cryptography: update to 1.4

PR:		210484
Approved by:	koobs (maintainer)
17 Apr 2016 19:19:09
Original commit files touched by this commit  1.3.1
Revision:413538 This port version is marked as vulnerable.
brnrd search for other commits by this committer
security/py-cryptography: Update to 1.3.1

  - Update to latest version 1.3.1
  - Remove patch now included upstream
  - Add patch to allow build without openssl/e_os.h in base

Reviewed by:	koobs (mentor, python), feld (mentor)
Approved by:	feld (mentor)
Differential Revision:	D5959
01 Apr 2016 14:25:18
Original commit files touched by this commit  1.0.2_4
Revision:412349 This port version is marked as vulnerable.
mat search for other commits by this committer
Remove ${PORTSDIR}/ from dependencies, categories r, s, t, and u.

With hat:	portmgr
Sponsored by:	Absolight
02 Mar 2016 17:14:23
Original commit files touched by this commit  1.0.2_4
Revision:409954 This port version is marked as vulnerable.
koobs search for other commits by this committer
security/py-cryptography: Fix build with OpenSSL 1.0.2g

Backport upstream commit [1] fixing build failures after the OpenSSL
1.0.2g update

[1]
https://github.com/pyca/cryptography/commit/df779dfec9ce87b79e48448aea3c597a4716b29e

PR:		207624
Reported by:	matthew, Pierre Guinoiseau <pierre guinoiseau eu>
MFH:		2016Q1
18 Nov 2015 21:41:48
Original commit files touched by this commit  1.0.2_3
Revision:401898 This port version is marked as vulnerable.
rm search for other commits by this committer
devel/py-asn1: move to devel/py-pyasn1 to match PyPI name

- move to devel/py-pyasn1 to match PyPI name
- update *_DEPENDS and bump PORTREVISION in dependent ports
- reset PORTEPOCH

PR:		204567
Submitted by:	John W. O'Brien <john@saltant.com>
Approved by:	mhjacks@swbell.net (maintainer of devel/py-asn1)
02 Nov 2015 16:39:53
Original commit files touched by this commit  1.0.2_2
Revision:400661 This port version is marked as vulnerable.
koobs search for other commits by this committer
security/py-cryptography: Add missing run-time dependencies

Add py-idna and conditionally (For Python < 3.3) py-ipaddress to
RUN_DEPENDS

While I'm here:

- Update minimum versions requirement for py-cffi
- Update test target since the framework supports TEST_DEPENDS et al.

Noticed by:	brnrd
20 Oct 2015 15:14:09
Original commit files touched by this commit  1.0.2_1
Revision:399860 This port version is marked as vulnerable.
koobs search for other commits by this committer
security/py-cryptography: Add enum43 to RUN_DEPENDS

Refactor *_DEPENDS to match setup.py's less than obvious dependencies

cffi is both a build/run dependency, the rest are only run dependencies.

This was causing a build failure for net-im/papyon:

  ImportError: No module named enum

Reported by:	kwm, pkg-fallout
Assisted by:	antoine
18 Oct 2015 03:13:54
Original commit files touched by this commit  1.0.2
Revision:399604 This port version is marked as vulnerable.
koobs search for other commits by this committer
security/py-cryptography: Update to 1.0.2

- Update to 1.0.2
- Strip shared libraries
- Add patch to support building with LibreSSL
- Remove ALPN patch (upstreamed)

Changes:

  https://github.com/pyca/cryptography/blob/1.0.2/CHANGELOG.rst

PR:		203819
Submitted by:	Ralf van der Enden <tremere cainites net>
26 May 2015 16:47:03
Original commit files touched by this commit  0.8.2
Revision:387491 This port version is marked as vulnerable.
antoine search for other commits by this committer
Switch PYTHON_REL from a 3 digits number to a 4 digits number to handle
python 2.7.10

Differential Revision:	https://reviews.freebsd.org/D2639
Reviewed by:	sunpoet, mva
24 Apr 2015 13:36:30
Original commit files touched by this commit  0.8.2
Revision:384640 This port version is marked as vulnerable.
koobs search for other commits by this committer
security/py-cryptography: Update to 0.8.2

- Update to 0.8.2
- Update COMMENT (upstream)
- Pet portlint (TEST_DEPENDS must appear earlier)
- Remove patches that have been upstreamed
- Backport ALPN patch merged upstream, not yet released [1]

Changes:

  * https://github.com/pyca/cryptography/blob/0.8.2/CHANGELOG.rst

[1] https://github.com/pyca/cryptography/pull/1849

PR:		197049
Submitted by:	Bernard Spil <spil.oss gmail com>
18 Jan 2015 09:38:16
Original commit files touched by this commit  0.7.2
Revision:377287 This port version is marked as vulnerable.
koobs search for other commits by this committer
security/py-cryptography: Update to 0.7.2, Fix LibreSSL

- Update to 0.7.2
- Update BUILD_DEPENDS and TEST_DEPENDS
- Patch upstream sources to fix LibreSSL:

  * Remove EGD (Perl Entropy Gathering Daemon) support. This hasn't
    been needed on FreeBSD since FreeBSD 4.2
  * Disable compression conditionally using OPENSSL_NO_COMP
  * Check features, not version for x509_vfy

[1] https://github.com/pyca/cryptography/issues/928

PR:		196827
Submitted by:	Bernard Spil <spil.oss gmail com>
25 Aug 2014 08:40:33
Original commit files touched by this commit  0.5.4
Revision:366044 This port version is marked as vulnerable.
koobs search for other commits by this committer
security/py-cryptography: Update to 0.5.4, Modernize

- Update 0.5.4
- Add LICENSE_FILE
- Update TEST_DEPENDS
- Modernize Python framework entries (USES, USE_PYTHON)

Changes:

  https://github.com/pyca/cryptography/blob/0.5.4/CHANGELOG.rst
01 Jul 2014 04:55:57
Original commit files touched by this commit  0.4
Revision:359958 This port version is marked as vulnerable.
koobs search for other commits by this committer
security/py-cryptography: Update to 0.4

- Update to 0.4
- Remove setup.py patch (Upstreamed [1])

Changes:

  * https://github.com/pyca/cryptography/blob/0.4/CHANGELOG.rst

[1] https://github.com/pyca/cryptography/pull/678
08 Mar 2014 09:12:34
Original commit files touched by this commit  0.2.2_1
Revision:347460 This port version is marked as vulnerable.
koobs search for other commits by this committer
security/py-cryptography: BUILD_DEPENDS are also RUN_DEPENDS

Add BUILD_DEPENDS (cffi and six) to RUN_DEPENDS as they are needed at run time

Reported by: antoine
08 Mar 2014 02:33:00
Original commit files touched by this commit  0.2.2
Revision:347440 This port version is marked as vulnerable.
koobs search for other commits by this committer
security/py-cryptography: Update to 0.2.2

- Update to 0.2.2

Changes:

 * Removed a constant definition that was causing compilation problems
   with specific versions of OpenSSL.
25 Feb 2014 11:29:36
Original commit files touched by this commit  0.2.1_1
Revision:345962 This port version is marked as vulnerable.
koobs search for other commits by this committer
security/py-cryptography: Tests fix, Depend on OpenSSL

- Backport python setup.py test integration PR [1]
- Add OpenSSL as a dependency (Was py-openssl dependency)
- Add TEST_DEPENDS and regression-test: target

[1] https://github.com/pyca/cryptography/pull/678
23 Feb 2014 13:47:05
Original commit files touched by this commit  0.2.1
Revision:345722 This port version is marked as vulnerable.
koobs search for other commits by this committer
[NEW PORT] security/py-cryptography: Cryptographic recipes and primitives to
Python developers

cryptography is a package designed to expose cryptographic recipes and
primitives to Python developers. Our goal is for it to be your "cryptographic
standard library". It supports Python 2.6-2.7, Python 3.2+, and PyPy.

cryptography includes both high level recipes, and low level interfaces to
common cryptographic algorithms such as symmetric ciphers, message digests
and key derivation functions.

WWW: http://github.com/pyca/cryptography/

Number of commits found: 34

Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
Issues
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
botan2Aug 17
jenkinsAug 15
jenkins-ltsAug 15
linux-flashplayerAug 14
samba46Aug 14
samba47Aug 14
samba48Aug 14
wpa_supplicantAug 14
chickenAug 12
giteaAug 12
GraphicsMagickAug 11
mbedtlsAug 10
postgresql10-serverAug 10
postgresql93-serverAug 10
postgresql94-serverAug 10

15 vulnerabilities affecting 134 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities

Last updated:
2018-08-17 23:13:03


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 35057
Broken 75
Deprecated 94
Ignore 317
Forbidden 3
Restricted 162
No CDROM 74
Vulnerable 32
Expired 6
Set to expire 79
Interactive 0
new 24 hours 9
new 48 hours16
new 7 days66
new fortnight110
new month2609

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2018 Dan Langille. All rights reserved.