Note: This is a public test instance of Red Hat Bugzilla. The data contained within is a snapshot of the live data so any changes you make will not be reflected in the production Bugzilla. Email is disabled so feel free to test any aspect of the site that you want. File any problems you find or give feedback at bugzilla.redhat.com.
Bug 1761081 - python-cryptography: Remove (sub)packages from Fedora 32+: python2-cryptography
Summary: python-cryptography: Remove (sub)packages from Fedora 32+: python2-cryptography
Keywords:
Status: CLOSED RAWHIDE
Alias: None
Product: Fedora
Classification: Fedora
Component: python-cryptography
Version: rawhide
Hardware: Unspecified
OS: Unspecified
unspecified
unspecified
Target Milestone: ---
Assignee: Jeremy Cline
QA Contact: Fedora Extras Quality Assurance
URL:
Whiteboard:
Depends On: 1760139 1761194
Blocks: PY2REMOVAL F31_PY2REMOVAL 1761082 1761083 1761084 1761085
TreeView+ depends on / blocked
 
Reported: 2019-10-12 10:20 UTC by Miro Hrončok
Modified: 2019-10-14 08:32 UTC (History)
14 users (show)

Fixed In Version: python-cryptography-2.6.1-3.fc32
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed: 2019-10-14 08:32:01 UTC
Type: ---
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Github pyca cryptography issues 4998 0 None None None 2019-10-12 19:44:14 UTC

Description Miro Hrončok 2019-10-12 10:20:36 UTC 
In line with the Mass Python 2 Package Removal [0], the following (sub)packages of python-cryptography were marked for removal:

 * python2-cryptography

According to our query, those (sub)packages only provide a Python 2 importable module. If this is not true, please tell us why, so we can fix our query.

Please remove them from your package in Rawhide (Fedora 32).

Please don't remove packages from Fedora 31, it is past Beta Freeze.
Please don't do this for Fedora 30/29 either, removing packages from a released Fedora branch is forbidden.

As said in the change document, if there is no objection in a week, we will remove the package(s) as soon as we get to it. This change might not match your packaging style, so we'd prefer if you did the change. If you need more time, please let us know here.

If you do the change yourself, it would help us a lot by reducing the amount of packages we need to mass change.

We hope this doesn't come to you as a surprise. If you want to know our motivation for this, please read the change document [0].

[0] https://fedoraproject.org/wiki/Changes/F31_Mass_Python_2_Package_Removal
Comment 1 Christian Heimes 2019-10-12 19:31:57 UTC 
python-cryptography-2.7-2.fc32.src.rpm FTBFS, see scratch build https://koji.fedoraproject.org/koji/taskinfo?taskID=38243094

Two tests are failing on F32, I'll investigate on Monday:

=================================== FAILURES ===================================
_____________________ TestDH.test_dh_parameters_supported ______________________
self = <tests.hazmat.primitives.test_dh.TestDH object at 0x7f14a6900730>
backend = <cryptography.hazmat.backends.openssl.backend.Backend object at 0x7f14c8dca100>
    def test_dh_parameters_supported(self, backend):
        assert backend.dh_parameters_supported(23, 5)
>       assert not backend.dh_parameters_supported(23, 18)
E       assert not True
E        +  where True = <bound method Backend.dh_parameters_supported of <cryptography.hazmat.backends.openssl.backend.Backend object at 0x7f14c8dca100>>(23, 18)
E        +    where <bound method Backend.dh_parameters_supported of <cryptography.hazmat.backends.openssl.backend.Backend object at 0x7f14c8dca100>> = <cryptography.hazmat.backends.openssl.backend.Backend object at 0x7f14c8dca100>.dh_parameters_supported
tests/hazmat/primitives/test_dh.py:161: AssertionError
_____________ TestECDSACertificate.test_load_ecdsa_no_named_curve ______________
self = <tests.x509.test_x509.TestECDSACertificate object at 0x7f14a37a26a0>
backend = <cryptography.hazmat.backends.openssl.backend.Backend object at 0x7f14c8dca100>
    def test_load_ecdsa_no_named_curve(self, backend):
        _skip_curve_unsupported(backend, ec.SECP256R1())
        cert = _load_cert(
            os.path.join("x509", "custom", "ec_no_named_curve.pem"),
            x509.load_pem_x509_certificate,
            backend
        )
        with pytest.raises(NotImplementedError):
>           cert.public_key()
E           Failed: DID NOT RAISE <class 'NotImplementedError'>
tests/x509/test_x509.py:3731: Failed
Comment 2 Christian Heimes 2019-10-12 19:44:14 UTC 
test_load_ecdsa_no_named_curve is a known issue with OpenSSL 1.1.1d, https://github.com/pyca/cryptography/issues/4998
Comment 3 Lumír Balhar 2019-10-14 07:47:33 UTC 
I can confirm that in the latest build, Python 2 subpackage has been removed.
Comment 4 Christian Heimes 2019-10-14 08:32:01 UTC 
Fixed in python-cryptography-2.6.1-3.fc31, which also addresses FTBFS from #1761194

https://bodhi.fedoraproject.org/updates/FEDORA-2019-c69eb4cdb1
Note You need to log in before you can comment on or make changes to this bug.