827354 – app-misc/ca-certificates needs to stop depending on dev-python/cryptography

Bug 827354 - app-misc/ca-certificates needs to stop depending on dev-python/cryptography

Summary: app-misc/ca-certificates needs to stop depending on dev-python/cryptography

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	Current packages (show other bugs)
Hardware:	All Linux

Importance:	Normal normal (vote)
Assignee:	Gentoo's Team for Core System packages

URL:
Whiteboard:
Keywords:	PATCH, PullRequest

Depends on:
Blocks:	827350
	Show dependency tree

Reported:	2021-11-26 07:38 UTC by Michał Górny
Modified:	2022-06-17 01:47 UTC (History)
CC List:	1 user (show)

See Also:	https://github.com/gentoo/gentoo/pull/23087 821706
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Michał Górny archtester

2021-11-26 07:38:28 UTC

Since this is super-high profile package, it needs to remove the dependency on dev-python/cryptography since the latter can no longer provide support for half of the keywords ca-certificates have.  This package will be a major blocker for security cleanup of cryptography when another vulnerability is found.

Comment 1 Sam James archtester

2021-11-26 07:41:34 UTC

https://bugs.gentoo.org/821706#c4 has a proposed patch.

Comment 2 Sam James archtester

2022-06-17 01:47:02 UTC

https://github.com/gentoo/gentoo/pull/23087/commits/7d89b0ed63f96eb1a271b231d0a4cbf6163739f5 was merged a while ago.