[gentoo-commits] repo/gentoo:master commit in: app-crypt/certbot/files/

public inbox for gentoo-commits@lists.gentoo.org
 help / color / mirror / Atom feed

* [gentoo-commits] repo/gentoo:master commit in: app-crypt/certbot/files/
@ 2024-10-14  0:35 Sam James
  0 siblings, 0 replies; only message in thread
From: Sam James @ 2024-10-14  0:35 UTC (permalink / raw
  To: gentoo-commits

commit:     6cf1e696cb6a62e70a9f5f9f01933ef571d4109a
Author:     Sam James <sam <AT> gentoo <DOT> org>
AuthorDate: Mon Oct 14 00:34:24 2024 +0000
Commit:     Sam James <sam <AT> gentoo <DOT> org>
CommitDate: Mon Oct 14 00:34:24 2024 +0000
URL:        https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=6cf1e696

app-crypt/certbot: drop obsolete patch

Signed-off-by: Sam James <sam <AT> gentoo.org>

 ...karound-cryptography-deprecation-warnings.patch | 36 ----------------------
 1 file changed, 36 deletions(-)

diff --git a/app-crypt/certbot/files/certbot-2.11.0-workaround-cryptography-deprecation-warnings.patch b/app-crypt/certbot/files/certbot-2.11.0-workaround-cryptography-deprecation-warnings.patch
deleted file mode 100644
index ecaf4830eb24..000000000000
--- a/app-crypt/certbot/files/certbot-2.11.0-workaround-cryptography-deprecation-warnings.patch
+++ /dev/null
@@ -1,36 +0,0 @@
-https://github.com/certbot/certbot/issues/9967
-https://bugs.gentoo.org/937889
---- a/certbot/ocsp.py
-+++ b/certbot/ocsp.py
-@@ -4,6 +4,7 @@ from datetime import timedelta
- import logging
- import re
- import subprocess
-+import warnings
- from subprocess import PIPE
- from typing import Optional
- from typing import Tuple
-@@ -235,12 +236,17 @@ def _check_ocsp_response(response_ocsp: 'ocsp.OCSPResponse', request_ocsp: 'ocsp
-     # https://github.com/openssl/openssl/blob/ef45aa14c5af024fcb8bef1c9007f3d1c115bd85/crypto/ocsp/ocsp_cl.c#L338-L391
-     # thisUpdate/nextUpdate are expressed in UTC/GMT time zone
-     now = datetime.now(pytz.UTC).replace(tzinfo=None)
--    if not response_ocsp.this_update:
--        raise AssertionError('param thisUpdate is not set.')
--    if response_ocsp.this_update > now + timedelta(minutes=5):
--        raise AssertionError('param thisUpdate is in the future.')
--    if response_ocsp.next_update and response_ocsp.next_update < now - timedelta(minutes=5):
--        raise AssertionError('param nextUpdate is in the past.')
-+    with warnings.catch_warnings():
-+        # Workaround for deprecation warnings w/ newer cryptography
-+        # https://github.com/certbot/certbot/issues/9967 (bug #937889)
-+        warnings.filterwarnings("ignore", category=CryptographyDeprecationWarning)
-+
-+        if not response_ocsp.this_update:
-+            raise AssertionError('param thisUpdate is not set.')
-+        if response_ocsp.this_update > now + timedelta(minutes=5):
-+            raise AssertionError('param thisUpdate is in the future.')
-+        if response_ocsp.next_update and response_ocsp.next_update < now - timedelta(minutes=5):
-+            raise AssertionError('param nextUpdate is in the past.')
- 
- 
- def _check_ocsp_response_signature(response_ocsp: 'ocsp.OCSPResponse',


^ permalink raw reply related	[flat|nested] only message in thread

only message in thread, other threads:[~2024-10-14  0:35 UTC | newest]

Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2024-10-14  0:35 [gentoo-commits] repo/gentoo:master commit in: app-crypt/certbot/files/ Sam James

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox