Ubuntu
pycryptopp package

update pycryptopp to version 0.5.29-1 in lucid, maverick, natty

Bug #811721 reported by Julian Taylor
50
This bug affects 7 people
Affects Status Importance Assigned to Milestone
pycryptopp (Ubuntu)
Fix Released
Undecided
Unassigned
Natty
Fix Released
Medium
Unassigned
tahoe-lafs (Ubuntu)
Invalid
Undecided
Unassigned
Natty
Invalid
Undecided
Unassigned

Bug Description

requesting acknowledgement for update pycryptopp 0.5.17 to 0.5.29-1 in ubuntu 11.04 natty to fix tahoe

tahoe-lafs in natty requires a newer version of pycryptopp than is available in the natty repository.
It needs >= 0.5.20 but natty only has 0.5.17. See bug bug 782461
The reason for this requirement is a security vulnerability in the embedded libcrypto++. This does *not* affect natty as the pycryptopp package uses the system libcrypto++ which is fixed.
But in order to fix tahoe either the pycryptopp package must be updated or the version dependency of tahoe loosened.
The later option could be dangerous for users which have an old local vurnable version of pycryptopp installed, as tahoe would then not check for the problem anymore, so updating the packaged pycryptopp is preferable.

according to upstream the update should be safe as the majority of changes where build system related and the api was not broken.
Changelog:
http://tahoe-lafs.org/trac/pycryptopp/log/trunk/?action=stop_on_copy&mode=follow_copy&rev=772&stop_rev=&limit=128

The package builds in a clean natty chroot passes its testsuite and only has tahoe and python-beaker as rdepends, tahoe works fine with the new version and for beaker there where no problems reported in oneiric and debian testing either.

Please decide if the solution of upgrading pycryptopp is acceptable or if the route of reducing the version dependency in tahoe should be preferred

See original description

Related branches

lp:~jtaylor/ubuntu/natty/pycryptopp/sru-811721
Ubuntu branches: Pending requested
Diff: 162531 lines (+83458/-76688)
377 files modified
MANIFEST.in (+1/-0)
NEWS.rst (+20/-0)
PKG-INFO (+5/-9)
README.txt (+4/-4)
_testdoubleloadmodule.cpp (+23/-0)
copyright (+2/-2)
cryptopp/Doxyfile (+0/-1109)
cryptopp/GNUmakefile (+0/-168)
cryptopp/License.txt (+0/-67)
cryptopp/Readme.txt (+0/-429)
cryptopp/TestVectors/Readme.txt (+0/-72)
cryptopp/TestVectors/aes.txt (+0/-189)
cryptopp/TestVectors/all.txt (+0/-29)
cryptopp/TestVectors/camellia.txt (+0/-8646)
cryptopp/TestVectors/ccm.txt (+0/-240)
cryptopp/TestVectors/cmac.txt (+0/-38)
cryptopp/TestVectors/dlies.txt (+0/-542)
cryptopp/TestVectors/dsa.txt (+0/-337)
cryptopp/TestVectors/dsa_1363.txt (+0/-553)
cryptopp/TestVectors/eax.txt (+0/-75)
cryptopp/TestVectors/esign.txt (+0/-93)
cryptopp/TestVectors/gcm.txt (+0/-139)
cryptopp/TestVectors/hmac.txt (+0/-125)
cryptopp/TestVectors/mars.txt (+0/-66)
cryptopp/TestVectors/nr.txt (+0/-615)
cryptopp/TestVectors/panama.txt (+0/-76)
cryptopp/TestVectors/rsa_oaep.txt (+0/-1765)
cryptopp/TestVectors/rsa_pkcs1_1_5.txt (+0/-89)
cryptopp/TestVectors/rsa_pss.txt (+0/-2083)
cryptopp/TestVectors/rw.txt (+0/-166)
cryptopp/TestVectors/salsa.txt (+0/-463)
cryptopp/TestVectors/seal.txt (+0/-137)
cryptopp/TestVectors/seed.txt (+0/-19)
cryptopp/TestVectors/sha.txt (+0/-59)
cryptopp/TestVectors/shacal2.txt (+0/-5123)
cryptopp/TestVectors/sosemanuk.txt (+0/-25)
cryptopp/TestVectors/tea.txt (+0/-711)
cryptopp/TestVectors/ttmac.txt (+0/-40)
cryptopp/TestVectors/vmac.txt (+0/-77)
cryptopp/TestVectors/whrlpool.txt (+0/-39)
cryptopp/adhoc.cpp.proto (+0/-17)
cryptopp/aes.h (+0/-16)
cryptopp/algebra.cpp (+0/-340)
cryptopp/algebra.h (+0/-285)
cryptopp/algparam.cpp (+0/-75)
cryptopp/algparam.h (+0/-398)
cryptopp/argnames.h (+0/-79)
cryptopp/asn.cpp (+0/-595)
cryptopp/asn.h (+0/-369)
cryptopp/authenc.h (+0/-49)
cryptopp/basecode.cpp (+0/-238)
cryptopp/basecode.h (+0/-86)
cryptopp/cbcmac.h (+0/-50)
cryptopp/ccm.h (+0/-101)
cryptopp/channels.h (+0/-123)
cryptopp/cmac.h (+0/-52)
cryptopp/config.h (+0/-455)
cryptopp/cpu.cpp (+0/-199)
cryptopp/cpu.h (+0/-263)
cryptopp/cryptdll.dsp (+0/-594)
cryptopp/cryptdll.vcproj (+0/-2694)
cryptopp/cryptest.dsp (+0/-207)
cryptopp/cryptest.dsw (+0/-74)
cryptopp/cryptest.sln (+0/-100)
cryptopp/cryptest.vcproj (+0/-1850)
cryptopp/cryptest_bds.bdsgroup (+0/-22)
cryptopp/cryptest_bds.bdsproj (+0/-267)
cryptopp/cryptest_bds.bpf (+0/-5)
cryptopp/cryptlib.cpp (+0/-821)
cryptopp/cryptlib.dsp (+0/-1204)
cryptopp/cryptlib.h (+0/-1668)
cryptopp/cryptlib.vcproj (+0/-9580)
cryptopp/cryptlib_bds.bdsproj (+0/-377)
cryptopp/cryptopp.rc (+0/-104)
cryptopp/des.cpp (+0/-449)
cryptopp/des.h (+0/-144)
cryptopp/dessp.cpp (+0/-95)
cryptopp/dh.h (+0/-99)
cryptopp/dll.cpp (+0/-146)
cryptopp/dll.h (+0/-71)
cryptopp/dlltest.dsp (+0/-90)
cryptopp/dlltest.vcproj (+0/-419)
cryptopp/dsa.cpp (+0/-119)
cryptopp/dsa.h (+0/-35)
cryptopp/ec2n.cpp (+0/-288)
cryptopp/ec2n.h (+0/-113)
cryptopp/eccrypto.cpp (+0/-694)
cryptopp/eccrypto.h (+0/-280)
cryptopp/ecp.cpp (+0/-473)
cryptopp/ecp.h (+0/-126)
cryptopp/emsa2.h (+0/-86)
cryptopp/eprecomp.cpp (+0/-112)
cryptopp/eprecomp.h (+0/-75)
cryptopp/files.h (+0/-97)
cryptopp/filters.cpp (+0/-1120)
cryptopp/filters.h (+0/-808)
cryptopp/fips140.cpp (+0/-84)
cryptopp/fips140.h (+0/-59)
cryptopp/fltrimpl.h (+0/-67)
cryptopp/gcm.h (+0/-105)
cryptopp/gf2n.cpp (+0/-879)
cryptopp/gf2n.h (+0/-369)
cryptopp/gfpcrypt.cpp (+0/-275)
cryptopp/gfpcrypt.h (+0/-536)
cryptopp/hex.cpp (+0/-44)
cryptopp/hex.h (+0/-36)
cryptopp/hmac.cpp (+0/-86)
cryptopp/hmac.h (+0/-61)
cryptopp/integer.cpp (+0/-4245)
cryptopp/integer.h (+0/-420)
cryptopp/iterhash.cpp (+0/-159)
cryptopp/iterhash.h (+0/-106)
cryptopp/misc.cpp (+0/-130)
cryptopp/misc.h (+0/-1134)
cryptopp/modarith.h (+0/-158)
cryptopp/modes.cpp (+0/-243)
cryptopp/modes.h (+0/-421)
cryptopp/modexppc.h (+0/-34)
cryptopp/mqueue.cpp (+0/-174)
cryptopp/mqueue.h (+0/-100)
cryptopp/mqv.h (+0/-141)
cryptopp/nbtheory.cpp (+0/-1123)
cryptopp/nbtheory.h (+0/-131)
cryptopp/oaep.cpp (+0/-97)
cryptopp/oaep.h (+0/-42)
cryptopp/oids.h (+0/-123)
cryptopp/osrng.cpp (+0/-171)
cryptopp/osrng.h (+0/-153)
cryptopp/pch.h (+0/-21)
cryptopp/pkcspad.cpp (+0/-124)
cryptopp/pkcspad.h (+0/-94)
cryptopp/pssr.cpp (+0/-145)
cryptopp/pssr.h (+0/-66)
cryptopp/pubkey.cpp (+0/-162)
cryptopp/pubkey.h (+0/-1678)
cryptopp/queue.cpp (+0/-564)
cryptopp/queue.h (+0/-143)
cryptopp/randpool.cpp (+0/-50)
cryptopp/randpool.h (+0/-33)
cryptopp/rdtables.cpp (+0/-172)
cryptopp/rijndael.cpp (+0/-993)
cryptopp/rijndael.h (+0/-65)
cryptopp/rng.cpp (+0/-142)
cryptopp/rng.h (+0/-77)
cryptopp/rsa.cpp (+0/-304)
cryptopp/rsa.h (+0/-174)
cryptopp/rw.h (+0/-92)
cryptopp/secblock.h (+0/-500)
cryptopp/seckey.h (+0/-221)
cryptopp/sha.cpp (+0/-900)
cryptopp/sha.h (+0/-63)
cryptopp/simple.h (+0/-209)
cryptopp/skipjack.h (+0/-61)
cryptopp/smartptr.h (+0/-223)
cryptopp/stdcpp.h (+0/-27)
cryptopp/strciphr.cpp (+0/-252)
cryptopp/strciphr.h (+0/-306)
cryptopp/tiger.cpp (+0/-265)
cryptopp/tiger.h (+0/-24)
cryptopp/tigertab.cpp (+0/-525)
cryptopp/trdlocal.h (+0/-44)
cryptopp/words.h (+0/-103)
cryptopp/x64masm.asm (+0/-1563)
darcsver-1.6.3.egg/EGG-INFO/PKG-INFO (+121/-0)
darcsver-1.6.3.egg/EGG-INFO/SOURCES.txt (+17/-0)
darcsver-1.6.3.egg/EGG-INFO/dependency_links.txt (+1/-0)
darcsver-1.6.3.egg/EGG-INFO/entry_points.txt (+10/-0)
darcsver-1.6.3.egg/EGG-INFO/not-zip-safe (+1/-0)
darcsver-1.6.3.egg/EGG-INFO/top_level.txt (+2/-0)
darcsver-1.6.3.egg/darcsver/__init__.py (+8/-0)
darcsver-1.6.3.egg/darcsver/_version.py (+17/-0)
darcsver-1.6.3.egg/darcsver/darcsvermodule.py (+192/-0)
darcsver-1.6.3.egg/darcsver/setuptools_command.py (+116/-0)
darcsver-1.6.3.egg/scripts/darcsverscript.py (+46/-0)
darcsver-1.6.3.egg/share/doc/python-darcsver/README.txt (+95/-0)
debian/changelog (+8/-0)
debian/patches/do_not_regenerate_darcs_stuff.patch (+17/-26)
debian/patches/do_not_ship_extraversion.patch (+13/-0)
debian/patches/series (+1/-0)
embeddedcryptopp/Doxyfile (+1109/-0)
embeddedcryptopp/GNUmakefile (+168/-0)
embeddedcryptopp/License.txt (+67/-0)
embeddedcryptopp/Readme.txt (+429/-0)
embeddedcryptopp/TestVectors/Readme.txt (+72/-0)
embeddedcryptopp/TestVectors/aes.txt (+189/-0)
embeddedcryptopp/TestVectors/all.txt (+29/-0)
embeddedcryptopp/TestVectors/camellia.txt (+8646/-0)
embeddedcryptopp/TestVectors/ccm.txt (+240/-0)
embeddedcryptopp/TestVectors/cmac.txt (+38/-0)
embeddedcryptopp/TestVectors/dlies.txt (+542/-0)
embeddedcryptopp/TestVectors/dsa.txt (+337/-0)
embeddedcryptopp/TestVectors/dsa_1363.txt (+553/-0)
embeddedcryptopp/TestVectors/eax.txt (+75/-0)
embeddedcryptopp/TestVectors/esign.txt (+93/-0)
embeddedcryptopp/TestVectors/gcm.txt (+139/-0)
embeddedcryptopp/TestVectors/hmac.txt (+125/-0)
embeddedcryptopp/TestVectors/mars.txt (+66/-0)
embeddedcryptopp/TestVectors/nr.txt (+615/-0)
embeddedcryptopp/TestVectors/panama.txt (+76/-0)
embeddedcryptopp/TestVectors/rsa_oaep.txt (+1765/-0)
embeddedcryptopp/TestVectors/rsa_pkcs1_1_5.txt (+89/-0)
embeddedcryptopp/TestVectors/rsa_pss.txt (+2083/-0)
embeddedcryptopp/TestVectors/rw.txt (+166/-0)
embeddedcryptopp/TestVectors/salsa.txt (+463/-0)
embeddedcryptopp/TestVectors/seal.txt (+137/-0)
embeddedcryptopp/TestVectors/seed.txt (+19/-0)
embeddedcryptopp/TestVectors/sha.txt (+59/-0)
embeddedcryptopp/TestVectors/shacal2.txt (+5123/-0)
embeddedcryptopp/TestVectors/sosemanuk.txt (+25/-0)
embeddedcryptopp/TestVectors/tea.txt (+711/-0)
embeddedcryptopp/TestVectors/ttmac.txt (+40/-0)
embeddedcryptopp/TestVectors/vmac.txt (+77/-0)
embeddedcryptopp/TestVectors/whrlpool.txt (+39/-0)
embeddedcryptopp/adhoc.cpp.proto (+17/-0)
embeddedcryptopp/aes.h (+16/-0)
embeddedcryptopp/algebra.cpp (+340/-0)
embeddedcryptopp/algebra.h (+285/-0)
embeddedcryptopp/algparam.cpp (+75/-0)
embeddedcryptopp/algparam.h (+398/-0)
embeddedcryptopp/argnames.h (+79/-0)
embeddedcryptopp/asn.cpp (+595/-0)
embeddedcryptopp/asn.h (+369/-0)
embeddedcryptopp/authenc.h (+49/-0)
embeddedcryptopp/basecode.cpp (+238/-0)
embeddedcryptopp/basecode.h (+86/-0)
embeddedcryptopp/cbcmac.h (+50/-0)
embeddedcryptopp/ccm.h (+101/-0)
embeddedcryptopp/channels.h (+123/-0)
embeddedcryptopp/cmac.h (+52/-0)
embeddedcryptopp/config.h (+457/-0)
embeddedcryptopp/cpu.cpp (+199/-0)
embeddedcryptopp/cpu.h (+263/-0)
embeddedcryptopp/cryptdll.dsp (+594/-0)
embeddedcryptopp/cryptdll.vcproj (+2694/-0)
embeddedcryptopp/cryptest.dsp (+207/-0)
embeddedcryptopp/cryptest.dsw (+74/-0)
embeddedcryptopp/cryptest.sln (+100/-0)
embeddedcryptopp/cryptest.vcproj (+1850/-0)
embeddedcryptopp/cryptest_bds.bdsgroup (+22/-0)
embeddedcryptopp/cryptest_bds.bdsproj (+267/-0)
embeddedcryptopp/cryptest_bds.bpf (+5/-0)
embeddedcryptopp/cryptlib.cpp (+821/-0)
embeddedcryptopp/cryptlib.dsp (+1204/-0)
embeddedcryptopp/cryptlib.h (+1668/-0)
embeddedcryptopp/cryptlib.vcproj (+9580/-0)
embeddedcryptopp/cryptlib_bds.bdsproj (+377/-0)
embeddedcryptopp/cryptopp.rc (+104/-0)
embeddedcryptopp/des.cpp (+449/-0)
embeddedcryptopp/des.h (+144/-0)
embeddedcryptopp/dessp.cpp (+95/-0)
embeddedcryptopp/dh.h (+99/-0)
embeddedcryptopp/dll.cpp (+146/-0)
embeddedcryptopp/dll.h (+71/-0)
embeddedcryptopp/dlltest.dsp (+90/-0)
embeddedcryptopp/dlltest.vcproj (+419/-0)
embeddedcryptopp/dsa.cpp (+119/-0)
embeddedcryptopp/dsa.h (+35/-0)
embeddedcryptopp/ec2n.cpp (+288/-0)
embeddedcryptopp/ec2n.h (+113/-0)
embeddedcryptopp/eccrypto.cpp (+694/-0)
embeddedcryptopp/eccrypto.h (+280/-0)
embeddedcryptopp/ecp.cpp (+473/-0)
embeddedcryptopp/ecp.h (+126/-0)
embeddedcryptopp/emsa2.h (+86/-0)
embeddedcryptopp/eprecomp.cpp (+112/-0)
embeddedcryptopp/eprecomp.h (+75/-0)
embeddedcryptopp/extraversion.h (+9/-0)
embeddedcryptopp/files.h (+97/-0)
embeddedcryptopp/filters.cpp (+1120/-0)
embeddedcryptopp/filters.h (+808/-0)
embeddedcryptopp/fips140.cpp (+84/-0)
embeddedcryptopp/fips140.h (+59/-0)
embeddedcryptopp/fltrimpl.h (+67/-0)
embeddedcryptopp/gcm.h (+105/-0)
embeddedcryptopp/gf2n.cpp (+879/-0)
embeddedcryptopp/gf2n.h (+369/-0)
embeddedcryptopp/gfpcrypt.cpp (+275/-0)
embeddedcryptopp/gfpcrypt.h (+536/-0)
embeddedcryptopp/hex.cpp (+44/-0)
embeddedcryptopp/hex.h (+36/-0)
embeddedcryptopp/hmac.cpp (+86/-0)
embeddedcryptopp/hmac.h (+61/-0)
embeddedcryptopp/integer.cpp (+4245/-0)
embeddedcryptopp/integer.h (+420/-0)
embeddedcryptopp/iterhash.cpp (+159/-0)
embeddedcryptopp/iterhash.h (+106/-0)
embeddedcryptopp/misc.cpp (+130/-0)
embeddedcryptopp/misc.h (+1134/-0)
embeddedcryptopp/modarith.h (+158/-0)
embeddedcryptopp/modes.cpp (+243/-0)
embeddedcryptopp/modes.h (+421/-0)
embeddedcryptopp/modexppc.h (+34/-0)
embeddedcryptopp/mqueue.cpp (+174/-0)
embeddedcryptopp/mqueue.h (+100/-0)
embeddedcryptopp/mqv.h (+141/-0)
embeddedcryptopp/nbtheory.cpp (+1123/-0)
embeddedcryptopp/nbtheory.h (+131/-0)
embeddedcryptopp/oaep.cpp (+97/-0)
embeddedcryptopp/oaep.h (+42/-0)
embeddedcryptopp/oids.h (+123/-0)
embeddedcryptopp/osrng.cpp (+171/-0)
embeddedcryptopp/osrng.h (+153/-0)
embeddedcryptopp/pch.h (+21/-0)
embeddedcryptopp/pkcspad.cpp (+124/-0)
embeddedcryptopp/pkcspad.h (+94/-0)
embeddedcryptopp/pssr.cpp (+145/-0)
embeddedcryptopp/pssr.h (+66/-0)
embeddedcryptopp/pubkey.cpp (+162/-0)
embeddedcryptopp/pubkey.h (+1678/-0)
embeddedcryptopp/queue.cpp (+564/-0)
embeddedcryptopp/queue.h (+143/-0)
embeddedcryptopp/randpool.cpp (+52/-0)
embeddedcryptopp/randpool.h (+33/-0)
embeddedcryptopp/rdtables.cpp (+172/-0)
embeddedcryptopp/rijndael.cpp (+989/-0)
embeddedcryptopp/rijndael.h (+65/-0)
embeddedcryptopp/rng.cpp (+142/-0)
embeddedcryptopp/rng.h (+77/-0)
embeddedcryptopp/rsa.cpp (+304/-0)
embeddedcryptopp/rsa.h (+174/-0)
embeddedcryptopp/rw.h (+92/-0)
embeddedcryptopp/secblock.h (+500/-0)
embeddedcryptopp/seckey.h (+221/-0)
embeddedcryptopp/serpent.cpp (+123/-0)
embeddedcryptopp/serpent.h (+52/-0)
embeddedcryptopp/serpentp.h (+434/-0)
embeddedcryptopp/sha.cpp (+900/-0)
embeddedcryptopp/sha.h (+63/-0)
embeddedcryptopp/simple.h (+209/-0)
embeddedcryptopp/skipjack.h (+61/-0)
embeddedcryptopp/smartptr.h (+223/-0)
embeddedcryptopp/sosemanuk.cpp (+711/-0)
embeddedcryptopp/sosemanuk.h (+40/-0)
embeddedcryptopp/stdcpp.h (+27/-0)
embeddedcryptopp/strciphr.cpp (+252/-0)
embeddedcryptopp/strciphr.h (+306/-0)
embeddedcryptopp/tiger.cpp (+265/-0)
embeddedcryptopp/tiger.h (+24/-0)
embeddedcryptopp/tigertab.cpp (+525/-0)
embeddedcryptopp/trdlocal.h (+44/-0)
embeddedcryptopp/words.h (+103/-0)
embeddedcryptopp/x64dll.asm (+1968/-0)
embeddedcryptopp/x64masm.asm (+1563/-0)
ez_setup.py (+0/-250)
misc/aside/test-sha256.cpp (+2182/-0)
misc/build_helpers/run_trial.py (+55/-0)
misc/build_helpers/show-tool-versions.py (+124/-0)
misc/coding_helpers/python.supp (+172/-0)
misc/show-tool-versions.py (+0/-42)
pycryptopp.egg-info/PKG-INFO (+5/-9)
pycryptopp.egg-info/SOURCES.txt (+197/-161)
pycryptopp/__init__.py (+6/-34)
pycryptopp/_pycryptoppmodule.cpp (+24/-5)
pycryptopp/_version.py (+3/-2)
pycryptopp/cipher/aes.py (+63/-0)
pycryptopp/cipher/aesmodule.cpp (+6/-5)
pycryptopp/hash/sha256.py (+38/-0)
pycryptopp/hash/sha256module.cpp (+6/-6)
pycryptopp/publickey/ecdsamodule.cpp (+13/-13)
pycryptopp/publickey/rsamodule.cpp (+6/-6)
pycryptopp/test/test_aes.py (+0/-1)
pycryptopp/test/test_ecdsa.py (+20/-21)
pycryptopp/test/test_from_Nikratio.py (+32/-0)
pycryptopp/test/test_rsa.py (+4/-4)
pycryptopp/test/test_sha256.py (+22/-5)
pycryptopp/test/test_startup.py (+5/-0)
setup.py (+130/-92)
setuptools_darcs-1.2.11-py2.6.egg/EGG-INFO/PKG-INFO (+32/-0)
setuptools_darcs-1.2.11-py2.6.egg/EGG-INFO/SOURCES.txt (+13/-0)
setuptools_darcs-1.2.11-py2.6.egg/EGG-INFO/dependency_links.txt (+1/-0)
setuptools_darcs-1.2.11-py2.6.egg/EGG-INFO/entry_points.txt (+3/-0)
setuptools_darcs-1.2.11-py2.6.egg/EGG-INFO/not-zip-safe (+1/-0)
setuptools_darcs-1.2.11-py2.6.egg/EGG-INFO/top_level.txt (+1/-0)
setuptools_darcs-1.2.11-py2.6.egg/setuptools_darcs/__init__.py (+8/-0)
setuptools_darcs-1.2.11-py2.6.egg/setuptools_darcs/_version.py (+16/-0)
setuptools_darcs-1.2.11-py2.6.egg/setuptools_darcs/setuptools_darcs.py (+79/-0)
setuptools_darcs-1.2.11-py2.6.egg/share/doc/python-setuptools_darcs/README.txt (+143/-0)
lp:ubuntu/natty-proposed/pycryptopp
Julian Taylor (jtaylor)
summary: - update pycryptopp to version 0.5.29-1
+ update pycryptopp to version 0.5.29-1 in natty
description: updated
Revision history for this message
Zooko Wilcox-O'Hearn (zooko) wrote : Re: update pycryptopp to version 0.5.29-1 in natty

I'm the primary maintainer of pycryptopp and a primary maintainer of tahoe-lafs, and I would be happy with upgrading pycryptopp in Ubuntu and less happy with patching tahoe-lafs's declarations of its dependencies.

Launchpad Janitor (janitor)
Changed in pycryptopp (Ubuntu):
status: New → Confirmed
Revision history for this message
Daira Hopwood (daira) wrote :

What Zooko said. (I reviewed the changes to pycryptopp and they all look harmless or low-risk.)

Bear in mind that debian/control in Tahoe-LAFS also needs to be changed to depend on "python-pycryptopp (>= 0.5.20)" here: http://bazaar.launchpad.net/~jtaylor/ubuntu/oneiric/tahoe-lafs/fix-769935/view/head:/debian/control#L16 . Otherwise, if we are on an x86[-64] machine and the installed pycryptopp package declares its version as >= 0.5.14 but < 0.5.20, it won't be upgraded (if I understand the behaviour of .deb-based package managers correctly) and so the dependency in Tahoe's _auto_deps.py won't be met.

For future reference, it would be better if any Ubuntu- or Debian-patched version of pycryptopp (or any other Tahoe dependency) would declare its version in a way that allows us to recognize and accept it in the setuptools dependency language. For example, if the patched pycryptopp had declared itself as as 0.5.17.post1, then we could have written the Tahoe dependency as "pycryptopp == 0.5.17.post1, >= 0.5.20", and everything would have gone much more smoothly. The version numbers should follow http://www.python.org/dev/peps/pep-0396/ . This would probably be a good policy for Python packages in general.

Revision history for this message
Daira Hopwood (daira) wrote :

I meant http://www.python.org/dev/peps/pep-0386 .

Revision history for this message
Zooko Wilcox-O'Hearn (zooko) wrote :

> This would probably be a good policy for Python packages in general.

That's a really good idea.

Launchpad Janitor (janitor)
Changed in tahoe-lafs (Ubuntu):
status: New → Confirmed
Revision history for this message
Shaun Kuppe (shaun-kuppe) wrote :

Installed from 11.04 apt repo:

Package: python-pycryptopp
Priority: optional
Section: universe/python
Installed-Size: 1416
Maintainer: Ubuntu Developers <email address hidden>
Original-Maintainer: Zooko O'Whielacronx <email address hidden>
Architecture: amd64
Source: pycryptopp
Version: 0.5.17-1build1
Provides: python2.6-pycryptopp, python2.7-pycryptopp
Depends: python (<< 2.8), python (>= 2.6), python-support (>= 0.90.0), libc6 (>= 2.4), libcrypto++8, libgcc1 (>= 1:4.1.1), libstdc++6 (>= 4.1.1)
Filename: pool/universe/p/pycryptopp/python-pycryptopp_0.5.17-1build1_amd64.deb
Size: 393024
MD5sum: 0c481b23dd8d19d5718f40921c6e8c29
SHA1: 15f1479af5641931611389612ae1c8eed9e16ff1
SHA256: 79eeb16ab116d17ed32134e7087e2fcfab4850a775d108f8877f6d5ffe759d6a
Description: Python wrappers for the Crypto++ library
 PyCryptopp is a set of Python wrappers for a few of the best crypto algorithms
 from the Crypto++ library (including SHA-256, AES, RSA signatures and Elliptic
 Curve DSA signatures).
Homepage: http://allmydata.org/trac/pycryptopp
Bugs: https://bugs.launchpad.net/ubuntu/+filebug
Origin: Ubuntu

Revision history for this message
Shaun Kuppe (shaun-kuppe) wrote :

This problem is still not fixed. A newer version of python-pycryptopp needs to be added to the 11.04 apt repository. After an apt-get update:

# apt-cache show python-pycryptopp
Package: python-pycryptopp
Priority: optional
Section: universe/python
Installed-Size: 1416
Maintainer: Ubuntu Developers <email address hidden>
Original-Maintainer: Zooko O'Whielacronx <email address hidden>
Architecture: amd64
Source: pycryptopp
Version: 0.5.17-1build1
Provides: python2.6-pycryptopp, python2.7-pycryptopp
Depends: python (<< 2.8), python (>= 2.6), python-support (>= 0.90.0), libc6 (>= 2.4), libcrypto++8, libgcc1 (>= 1:4.1.1), libstdc++6 (>= 4.1.1)
Filename: pool/universe/p/pycryptopp/python-pycryptopp_0.5.17-1build1_amd64.deb
Size: 393024
MD5sum: 0c481b23dd8d19d5718f40921c6e8c29
SHA1: 15f1479af5641931611389612ae1c8eed9e16ff1
SHA256: 79eeb16ab116d17ed32134e7087e2fcfab4850a775d108f8877f6d5ffe759d6a
Description: Python wrappers for the Crypto++ library
 PyCryptopp is a set of Python wrappers for a few of the best crypto algorithms
 from the Crypto++ library (including SHA-256, AES, RSA signatures and Elliptic
 Curve DSA signatures).
Homepage: http://allmydata.org/trac/pycryptopp
Bugs: https://bugs.launchpad.net/ubuntu/+filebug
Origin: Ubuntu

Revision history for this message
Daira Hopwood (daira) wrote :

Bug 843000 was a duplicate.

Revision history for this message
thearthur (arthur-ulfeldt) wrote :

With 11.10 coming soon is this bug still in the works for 11.04?

Revision history for this message
Clint Byrum (clint-fewbar) wrote :

thearthur, typically we don't update to new upstream versions unless they are *purely* bug fix releases. It sounds to me like this might change the API of pycryptopp, which is unacceptable as a Stable Release Update (https://wiki.ubuntu.com/StableReleaseUpdates). If, however, you can show that it doesn't change the API, it can be considered.

If tahoe-lafs doesn't work with this version of the API, then it should be patched, but not the other way around.

I'm marking the main bug task as Fix Released for both products, since this is no longer an issue as of Oneiric. Marking Natty as Confirmed for tahoe-lafs, but Invalid for pycryptopp since as far as I can tell this isn't a bug in it, but rather a bug in something using its API. If I have misunderstood or misstated the problem, please feel free to change the status back to Confirmed and state the reasons.

Changed in pycryptopp (Ubuntu):
status: Confirmed → Fix Released
Changed in tahoe-lafs (Ubuntu):
status: Confirmed → Invalid
Changed in pycryptopp (Ubuntu Natty):
status: New → Invalid
Changed in tahoe-lafs (Ubuntu Natty):
status: New → Confirmed
Revision history for this message
Clint Byrum (clint-fewbar) wrote :

I did, in fact, misunderstand the original request, on re-reading it I see that the inclination is that the API has not been changed and upstream has asserted as much. Reversing my position then, and marknig this as Invalid in tahoe-lafs, and Confirmed in pycryptopp.

The next step would be for somebody to pick up the bug and actually produce a debdiff or bzr merge proposal to update natty to this version.

Changed in pycryptopp (Ubuntu Natty):
status: Invalid → Confirmed
Changed in tahoe-lafs (Ubuntu Natty):
status: Confirmed → Invalid
Changed in pycryptopp (Ubuntu Natty):
importance: Undecided → Medium
Revision history for this message
Martin Pitt (pitti) wrote :

As tahoe is the only reverse dependency of this package, this looks acceptable to me.

Changed in pycryptopp (Ubuntu Natty):
status: Confirmed → Fix Committed
tags: added: verification-needed
Revision history for this message
Martin Pitt (pitti) wrote : Please test proposed package

Hello Julian, or anyone else affected,

Accepted pycryptopp into natty-proposed, the package will build now and be available in a few hours. Please test and give feedback here. See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you in advance!

Revision history for this message
pataquets (pataquets) wrote : Re: update pycryptopp to version 0.5.29-1 in natty

I've 2 natty boxes and updated pycryptopp from -proposed using apt.
I've set up a 2 node grid and everything seems to work fine.
Just dumped a handful of files/dirs, deleted some shares, verified/repaired successfully and ran some 'tahoe backup'.
If someone can point to some thorough test procedure, please do.
HTH.

Martin Pitt (pitti)
tags: added: verification-done
removed: verification-needed
Revision history for this message
Daira Hopwood (daira) wrote :

> If someone can point to some thorough test procedure, please do.

The test suite can be run using 'python setup.py trial'. Thanks for the manual testing; the test suite isn't intended to replace that.

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package pycryptopp - 0.5.29-0ubuntu0.1

---------------
pycryptopp (0.5.29-0ubuntu0.1) natty-proposed; urgency=low

  * New upstream release. (LP: #811721)
  * refresh patches
    - add new patch from debian to not ship extraversion.h
 -- Julian Taylor <email address hidden> Wed, 05 Oct 2011 19:32:34 +0200

Changed in pycryptopp (Ubuntu Natty):
status: Fix Committed → Fix Released
Revision history for this message
Zooko Wilcox-O'Hearn (zooko) wrote :

"add new patch from debian to not ship extraversion.h"

Is there a URL for this patch from debian? I would like to see what this change is. Thank you!

Revision history for this message
Julian Taylor (jtaylor) wrote :

the embedded cryptopp is not used so the extraversion.h must not be shipped.
http://patch-tracker.debian.org/package/pycryptopp/0.5.29-1

that may be something you could apply upstream for the non-embedded build.

Revision history for this message
pataquets (pataquets) wrote :

Just for the record, attached are the 2 node test runs.
As per https://tahoe-lafs.org/trac/tahoe-lafs/wiki/AdvancedInstall#point8, tested by running 'tahoe debug trial'.

Revision history for this message
Zooko Wilcox-O'Hearn (zooko) wrote :

Thank you very much for the testing, Alfonso.

By the way, I noticed that this wiki page -- https://tahoe-lafs.org/trac/tahoe-lafs/wiki/OSPackages -- hasn't been updated to show the existence of Oneiric.

Revision history for this message
Daira Hopwood (daira) wrote :

'tahoe debug trial' is indeed the correct way to run the tests for the installed version.
The following failure:

twisted.trial.unittest.FailTest: We seem to be testing the code at '/usr/lib/pymodules',
(according to the source filename '/usr/lib/pymodules/python2.7/allmydata/__init__.pyc'),
but expected to be testing the code at '/home/eutopia'.
Please run the tests from the root of the Tahoe-LAFS distribution.

is an upstream bug and can be ignored in this particular case.

Revision history for this message
pataquets (pataquets) wrote :

I don't remember what dir from I tested.
Now from ~/.tahoe:
$ tahoe debug trial

Revision history for this message
Evan Broder (broder) wrote :

Opening new tasks on this for Lucid and Maverick; they released with the same old version of pycryptopp as Natty, so this seems like it would still be applicable for them.

(This is presently relevant for a backport request - bug #834361 - wihch is currently uninstallable because of Lucid and Maverick's old versions of pycryptopp)

no longer affects: tahoe-lafs (Ubuntu Lucid)
no longer affects: tahoe-lafs (Ubuntu Maverick)
summary: - update pycryptopp to version 0.5.29-1 in natty
+ update pycryptopp to version 0.5.29-1 in lucid, maverick, natty
Revision history for this message
Julian Taylor (jtaylor) wrote :

the tahoe versions in maverick and lucid work fine with the available pycryptopp. This is no reason to do an SRU.

if you want to backport tahoe-lafs then also backport pycryptop.

Julian Taylor (jtaylor)
no longer affects: pycryptopp (Ubuntu Lucid)
no longer affects: pycryptopp (Ubuntu Maverick)
Revision history for this message
Martin Pitt (pitti) wrote :

Rejecting pycryptopp maverick upload because of comment 23 and maverick is three months before EOL.

Revision history for this message
Clint Byrum (clint-fewbar) wrote :

Indeed, I see no valid high priority bug to give reason to update lucid as well... if the lib needs to be backported, let it be done in backports. Rejected lucid-proposed upload.

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.

Duplicates of this bug

Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.