d09e1b23b2
2.10.1: - [Bug]: (CVE-2022-24302) Creation of new private key files using PKey subclasses was subject to a race condition between file creation & mode modification, which could be exploited by an attacker with knowledge of where the Paramiko-using code would write out such files. - This has been patched by using os.open and os.fdopen to ensure new files are opened with the correct mode immediately. We’ve left the subsequent explicit chmod in place to minimize any possible disruption, though it may get removed in future backwards- incompatible updates. - Thanks to Jan Schejbal for the report & feedback on the solution, and to Jeremy Katz at Tidelift for coordinating the disclosure. 2.10.0: - [Feature] Add support for OpenSSH’s Windows agent as a fallback when Putty/WinPageant isn’t available or functional. Reported by @benj56 with patches/PRs from @lewgordon and Patrick Spendrin. - [Feature] Add support for the %C token when parsing SSH config files. Foundational PR submitted by @jbrand42. - [Bug] Significantly speed up low-level read/write actions on SFTPFile objects by using bytearray/memoryview. This is unlikely to change anything for users of the higher level methods like SFTPClient.get or SFTPClient.getfo, but users of SFTPClient.open will likely see orders of magnitude improvements for files larger than a few megabytes in size. - Thanks to @jkji for the original report and to Sevastian Tchernov for the patch. - [Support] Add six explicitly to install-requires; it snuck into active use at some point but has only been indicated by transitive dependency on bcrypt until they somewhat-recently dropped it. This will be short-lived until we drop Python 2 support. Thanks to Sondre Lillebø Gundersen for catch & patch. Signed-off-by: Javier Marcet <javier@marcet.info>
39 lines
1.1 KiB
Makefile
39 lines
1.1 KiB
Makefile
include $(TOPDIR)/rules.mk
|
|
|
|
PKG_NAME:=python-paramiko
|
|
PKG_VERSION:=2.10.1
|
|
PKG_RELEASE:=1
|
|
|
|
PYPI_NAME:=paramiko
|
|
PKG_HASH:=443f4da23ec24e9a9c0ea54017829c282abdda1d57110bf229360775ccd27a31
|
|
|
|
PKG_MAINTAINER:=Javier Marcet <javier@marcet.info>
|
|
PKG_LICENSE:=LGPL-2.1-or-later
|
|
PKG_LICENSE_FILES:=LICENSE
|
|
|
|
include ../pypi.mk
|
|
include $(INCLUDE_DIR)/package.mk
|
|
include ../python3-package.mk
|
|
|
|
PYTHON3_PKG_SETUP_ARGS:=
|
|
|
|
define Package/python3-paramiko
|
|
SECTION:=lang
|
|
CATEGORY:=Languages
|
|
SUBMENU:=Python
|
|
TITLE:=SSH2 protocol library
|
|
URL:=https://github.com/paramiko/paramiko/
|
|
DEPENDS:=+python3-light +python3-logging +python3-bcrypt \
|
|
+python3-cryptography +python3-openssl +python3-pynacl
|
|
endef
|
|
|
|
define Package/python3-paramiko/description
|
|
Paramiko is a Python (2.7, 3.4+) implementation of the SSHv2 protocol,
|
|
providing both client and server functionality. While it leverages a Python
|
|
C extension for low level cryptography (Cryptography), Paramiko itself is a
|
|
pure Python interface around SSH networking concepts.
|
|
endef
|
|
|
|
$(eval $(call Py3Package,python3-paramiko))
|
|
$(eval $(call BuildPackage,python3-paramiko))
|
|
$(eval $(call BuildPackage,python3-paramiko-src))
|