Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

castlabs_evs package is incompatible with cryptography 42.0.0+ #178

Closed
quanglam2807 opened this issue Jan 30, 2024 · 4 comments
Closed

castlabs_evs package is incompatible with cryptography 42.0.0+ #178

quanglam2807 opened this issue Jan 30, 2024 · 4 comments

Comments

@quanglam2807
Copy link

quanglam2807 commented Jan 30, 2024
edited
Loading

I ran this issue when running castlab sign with python3. It's probably related to this change: https://cryptography.io/en/latest/changelog/#v42-0-0

Running: python3 -m castlabs_evs.vmp sign-pkg "/var/folders/s6/1nfxlhk965l07b0jz9mlcdqh0000gn/T/tmp-3646-CAbM36yQ1OAL/mac-arm64"
  Error: /Library/Frameworks/Python.framework/Versions/3.12/lib/python3.12/site-packages/castlabs_evs/vmp.py:151: CryptographyDeprecationWarning: Properties that return a naïve datetime object have been deprecated. Please switch to not_valid_before_utc.
    if now < cert.not_valid_before:
  /Library/Frameworks/Python.framework/Versions/3.12/lib/python3.12/site-packages/castlabs_evs/vmp.py:153: CryptographyDeprecationWarning: Properties that return a naïve datetime object have been deprecated. Please switch to not_valid_after_utc.
    if min_days is not None and now > (cert.not_valid_after - timedelta(days=min_days)):
  /Library/Frameworks/Python.framework/Versions/3.12/lib/python3.12/site-packages/castlabs_evs/vmp.py:155: CryptographyDeprecationWarning: Properties that return a naïve datetime object have been deprecated. Please switch to not_valid_after_utc.
    days_left = (cert.not_valid_after - now).days
@quanglam2807 quanglam2807 changed the title castlabs_evs package is incompatible with Python 3.12 castlabs_evs package is incompatible with cryptography 42.0.0+ Jan 30, 2024
@khwaaj
Copy link
Collaborator

khwaaj commented Jan 30, 2024
edited
Loading

Thanks for the report, we will look into this.

It looks like we may be treating deprecation warnings as errors, but we might as well look into supporting the updated/safer APIs as well. This is a EVS client issue, so the client will need to be updated once we publish a fixed version.

@khwaaj
Copy link
Collaborator

khwaaj commented Jan 31, 2024
edited
Loading

I can't actually reproduce the error you are seeing, I only get deprecation warnings logged (with python 3.12 and cryptography 42.0.2), otherwise things work as normal. Perhaps you have a stricter setting that treat warnings as errors in your python installation?

Whatever the case we will still update the EVS client to prefer the newer APIs when they are available, which should fix both warnings and errors going forward.

@khwaaj
Copy link
Collaborator

khwaaj commented Jan 31, 2024

castlabs-evs 1.1.2 has been published to PyPI, and it contains updated support to deal with the changes in the cryptography API. You can update with something like:

% python3 -m pip install --upgrade castlabs-evs

Let me know how it goes!

@khwaaj
Copy link
Collaborator

khwaaj commented May 23, 2024

Since there has been no followup I'll assume the fix worked and close the ticket.

@khwaaj khwaaj closed this as completed May 23, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@quanglam2807 @khwaaj