baserev update by copy to link target

• Files Changed
• Browse Source

To be evaluated in Staging:O, it fixes the build there.

• Files Changed
• Browse Source

baserev update by copy to link target

• Files Changed
• Browse Source

- Add twisted-pr1369-remove-pyopenssl-npn.patch to support 
  pyOpenSSL 20
- Add twisted-pr1487-increase-ffdh-keysize.patch to support
  crpytography 3.3
- Fix the update-alternatives setup
  * manpages were cloned but never registerd with u-a
  * install alternatives as master and slave links now

• Files Changed
• Browse Source

baserev update by copy to link target

• Files Changed
• Browse Source

Fix changes

• Files Changed
• Browse Source

- Add no-test_successResultOfWithFailureHasTraceback.patch to
  skip sted.conch.test.test_keys.KeyTests.test_fromOpenSSH,
  which fails. Upstream suggests
  https://twistedmatrix.com/trac/ticket/9665, but it has never
  been confirmed, even less fixed.

• Files Changed
• Browse Source

baserev update by copy to link target

• Files Changed
• Browse Source

- Update to 20.3.0
  * drop Python 2
  * twisted.news is deprecated.
  * twisted.conch.ssh now supports the curve25519-sha256 key exchange 
    algorithm (requires OpenSSL >= 1.1.0).
  * many bugfixes and other miscelaneous fixes
- Fixed update-alternatives mechanism
- Added true-binary.patch
- Dropped python-38-xml-namespace.patch
- Reapplied python-38-hmac-digestmod.patch

• Files Changed
• Browse Source

baserev update by copy to link target

• Files Changed
• Browse Source

- %python3_only -> %python_alternative

• Files Changed
• Browse Source

baserev update by copy to link target

• Files Changed
• Browse Source

Changelog sync with SLE

- Update to 19.10.0 bsc#1162424:
- Remove patch 0001-Prevent-CRLF-injections-described-in-CVE-2019-12387.patch
- Remove patch PR-1147.patch

- Add PR-1147.patch (bsc#1138461, CVE-2019-12855)
  In words.protocols.jabber.xmlstream in Twisted through 19.2.1,
  XMPP support did not verify certificates when used with TLS,
  allowing an attacker to MITM connections.

- Add 0001-Prevent-CRLF-injections-described-in-CVE-2019-12387.patch
  (bsc#1137825, CVE-2019-12387)
  Prevent CRLF injections

• Files Changed
• Browse Source

baserev update by copy to link target

• Files Changed
• Browse Source

- Update to 19.10.0:
  * twisted.trial.successResultOf, twisted.trial.failureResultOf, and twisted.trial.assertNoResult accept coroutines as well as Deferreds. (#9006)
  * Fixed circular import in twisted.trial.reporter, introduced in Twisted 16.0.0. (#8267)
  * The POP3 server implemented by twisted.mail.pop3 now accepts passwords that contain spaces. (#9100)
  * Incoming HTTP/2 connections will now not time out if they persist for longer than one minute. (#9653)
  * twisted.conch.ssh.keys now correctly writes the "iqmp" parameter in serialized RSA private keys as q^-1 mod p rather than p^-1 mod q. (#9681)
  * twisted.web.server.Request will now use twisted.web.server.Site.getContentFile, if it exists, to get a file into which to write request content. If getContentFile is not provided by the site, it will fall back to the previous behavior of using io.BytesIO for small requests and tempfile.TemporaryFile for large ones. (#9655)
  * twisted.web.client.FileBodyProducer will now stop producing when the Deferred returned by FileBodyProducer.startProducing is cancelled. (#9547)
  * The HTTP/2 server implementation now enforces TCP flow control on control frame messages and times out clients that send invalid data without reading responses. This closes CVE-2019-9512 (Ping Flood), CVE-2019-9514 (Reset Flood), and CVE-2019-9515 (Settings Flood). Thanks to Jonathan Looney and Piotr Sikora. (#9694)
- Add python-38-xml-namespace.patch to fix dictionary mutation under Python 3.8
- Add python-38-hmac-digestmod.patch to add digestmod parameter where required
- Add python-38-no-cgi-parseqs.patch to no longer import parse_qs from cgi

• Files Changed
• Browse Source

baserev update by copy to link target

• Files Changed
• Browse Source

- Remove mailmail when only building Python 3 flavour

• Files Changed
• Browse Source

- Update to 19.7.0:
  * The callable argument to twisted.internet.task.deferLater() is no longer required. (#9577)
  * twisted.internet.utils.getProcessOutputAndValue now accepts stdinBytes to write to the child process's standard input. (#9607)
  * Add new twisted.logger.capturedLogs context manager for capturing observed log events in tests. (#9617)
  * twisted.internet.base.PluggableResolverMixin, which implements the pluggable resolver interfaces for easier re-use in other reactors, has been factored out of ReactorBase. (#9632)
  * The PyPI page for Twisted has been enhanced to include more information and useful links. (#9648)
- Refresh patch:
  * skip_MultiCast.patch
- Remove merged patch hyperlink.patch

• Files Changed
• Browse Source

baserev update by copy to link target

• Files Changed
• Browse Source

- update to 19.2.1 (bsc#1137825, CVE-2019-12387):
  * Prevent CRLF injections described in CVE-2019-12387

• Files Changed
• Browse Source