[PR #76] [MERGED] Bump pycryptodomex from 3.10.1 to 3.10.4 #133

New issue

Closed

opened 2026-02-27 08:12:03 +03:00 by kerem · 0 comments

kerem commented

2026-02-27 08:12:03 +03:00

Owner

📋 Pull Request Information

Original PR: https://github.com/kokarare1212/librespot-python/pull/76
Author: @dependabot[bot]
Created: 9/27/2021
Status: ✅ Merged
Merged: 9/27/2021
Merged by: @kokarare1212

Base: rewrite ← Head: dependabot/pip/pycryptodomex-3.10.4

📝 Commits (1)

3c44d64 Bump pycryptodomex from 3.10.1 to 3.10.4

📊 Changes

1 file changed (+1 additions, -1 deletions)

View changed files

📝 requirements.txt (+1 -1)

📄 Description

Bumps pycryptodomex from 3.10.1 to 3.10.4.

Changelog

Sourced from pycryptodomex's changelog.

3.10.4 (25 September 2021) ++++++++++++++++++++++++++

Resolved issues

Output of Crypto.Util.number.long_to_bytes() was not always a multiple of blocksize.

3.10.3 (22 September 2021) ++++++++++++++++++++++++++

Resolved issues

GH#376: Fixed symbol conflict between different versions of libgmp.

GH#481: Improved robustness of PKCS#1v1.5 decryption against timing attacks.

GH#506 and GH#509: Fixed segmentation faults on Apple M1 and other Aarch64 SoCs, when the GMP library add accessed via ctypes. Do not use GMP's own sscanf and snprintf routines: instead, use simpler conversion routines.

GH#510: Workaround for cffi calling ctypes.util.find_library(), which invokes gcc and ld on Linux, considerably slowing down all imports. On certain configurations, that may also leave temporary files behind.

GH#517: Fix RSAES-OAEP, as it didn't always fail when zero padding was incorrect.

New features

Added support for SHA-3 hash functions to HMAC.

Other changes

Install VC9 directly for Python 2.7 on Windows, as vcpython27 has been pulled from choco's repos in April.

Commits

f8d40a6 Output of long_to_bytes() was not always a multiple of blocksize
7825753 Output of long_to_bytes() was not always a multiple of blocksize
731172c Fix backticks in Changelog
4b27395 Fixed reference to GH bug
2f8cbfa Bump version
2514d9b Fix version in Changelog
a9d4b25 Rework Windows build steps (2)
177510f Rework Windows built steps
b889891 Bump version
615e9c9 Fix int/long on Python2
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/kokarare1212/librespot-python/pull/76 **Author:** [@dependabot[bot]](https://github.com/apps/dependabot) **Created:** 9/27/2021 **Status:** ✅ Merged **Merged:** 9/27/2021 **Merged by:** [@kokarare1212](https://github.com/kokarare1212) **Base:** `rewrite` ← **Head:** `dependabot/pip/pycryptodomex-3.10.4` --- ### 📝 Commits (1) - [`3c44d64`](https://github.com/kokarare1212/librespot-python/commit/3c44d643e2fd96849002323356b06110ae7e3f29) Bump pycryptodomex from 3.10.1 to 3.10.4 ### 📊 Changes **1 file changed** (+1 additions, -1 deletions) <details> <summary>View changed files</summary> 📝 `requirements.txt` (+1 -1) </details> ### 📄 Description Bumps [pycryptodomex](https://github.com/Legrandin/pycryptodome) from 3.10.1 to 3.10.4. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/Legrandin/pycryptodome/blob/master/Changelog.rst">pycryptodomex's changelog</a>.</em></p> <blockquote> <p>3.10.4 (25 September 2021) ++++++++++++++++++++++++++</p> <h2>Resolved issues</h2> <ul> <li>Output of <code>Crypto.Util.number.long_to_bytes()</code> was not always a multiple of <code>blocksize</code>.</li> </ul> <p>3.10.3 (22 September 2021) ++++++++++++++++++++++++++</p> <h2>Resolved issues</h2> <ul> <li>GH#376: Fixed symbol conflict between different versions of <code>libgmp</code>.</li> <li>GH#481: Improved robustness of PKCS#1v1.5 decryption against timing attacks.</li> <li>GH#506 and GH#509: Fixed segmentation faults on Apple M1 and other Aarch64 SoCs, when the GMP library add accessed via <code>ctypes</code>. Do not use GMP's own sscanf and snprintf routines: instead, use simpler conversion routines.</li> <li>GH#510: Workaround for <code>cffi</code> calling <code>ctypes.util.find_library()</code>, which invokes <code>gcc</code> and <code>ld</code> on Linux, considerably slowing down all imports. On certain configurations, that may also leave temporary files behind.</li> <li>GH#517: Fix RSAES-OAEP, as it didn't always fail when zero padding was incorrect.</li> </ul> <h2>New features</h2> <ul> <li>Added support for SHA-3 hash functions to HMAC.</li> </ul> <h2>Other changes</h2> <ul> <li>Install VC9 directly for Python 2.7 on Windows, as <code>vcpython27</code> has been pulled from choco's repos in April.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/Legrandin/pycryptodome/commit/f8d40a60fdf1bc4336864b90fc85df8e312dcc33"><code>f8d40a6</code></a> Output of long_to_bytes() was not always a multiple of blocksize</li> <li><a href="https://github.com/Legrandin/pycryptodome/commit/782575396cecf1866fc49fd702a9df5abda6203e"><code>7825753</code></a> Output of long_to_bytes() was not always a multiple of blocksize</li> <li><a href="https://github.com/Legrandin/pycryptodome/commit/731172cb84219b35931dfce515ef4913da190c51"><code>731172c</code></a> Fix backticks in Changelog</li> <li><a href="https://github.com/Legrandin/pycryptodome/commit/4b27395343476768160b77ed958ffe2ae03e3cbe"><code>4b27395</code></a> Fixed reference to GH bug</li> <li><a href="https://github.com/Legrandin/pycryptodome/commit/2f8cbfa4836d99f9c0ccb4b1a9530a94c9c597ba"><code>2f8cbfa</code></a> Bump version</li> <li><a href="https://github.com/Legrandin/pycryptodome/commit/2514d9b7f5c9078cd88af5faed71d7316baa740d"><code>2514d9b</code></a> Fix version in Changelog</li> <li><a href="https://github.com/Legrandin/pycryptodome/commit/a9d4b2532675a374a1b7a8bec8936eb2f77613fb"><code>a9d4b25</code></a> Rework Windows build steps (2)</li> <li><a href="https://github.com/Legrandin/pycryptodome/commit/177510f48dca63e56bfd649bdfc3618a506cef7e"><code>177510f</code></a> Rework Windows built steps</li> <li><a href="https://github.com/Legrandin/pycryptodome/commit/b88989112ed2b13ddd18aff3a21eb05e3d6497d4"><code>b889891</code></a> Bump version</li> <li><a href="https://github.com/Legrandin/pycryptodome/commit/615e9c937cca55244668a54bd7404affe645745e"><code>615e9c9</code></a> Fix int/long on Python2</li> <li>Additional commits viewable in <a href="https://github.com/Legrandin/pycryptodome/compare/v3.10.1...v3.10.4">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pycryptodomex&package-manager=pip&previous-version=3.10.1&new-version=3.10.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> --- <sub>🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.</sub>