The package has an upper limit for python-cryptography that prevents me to update the package with latest security updates. The version pin is likely coming from upstreams setup.py, requirements.txt, or pyproject.toml. Please remove the version limit and update the package in my side tag for F41, F40, and F39, e.g. fedpkg build --target=f41-build-side-86213 - f41-build-side-86213 - f40-build-side-86215 - f39-build-side-86167 $ dnf repoquery --requires python3-dns+dnssec | grep cryptography Last metadata expiration check: 1:07:48 ago on 2024-03-22T06:26:51 CET. (python3.12dist(cryptography) < 42~~ with python3.12dist(cryptography) >= 2.6) $ dnf repoquery --nvr python3-dns+dnssec Last metadata expiration check: 1:08:25 ago on 2024-03-22T06:26:51 CET. python3-dns+dnssec-2.4.2-1.fc39 F40 and Rawhide might be ok. I have only verified the issue on F39. Reproducible: Always
python3-dns+dnssec-2.6.1-1.fc41.noarch.rpm in rawhide has: python3.12dist(cryptography) >= 41 python3-dns+dnssec-2.5.0-2.fc40.noarch.rpm has: python3.12dist(cryptography) >= 41 python3-dns+dnssec-2.4.2-1.fc39.noarch.rpm has: (python3.12dist(cryptography) < 42~~ with python3.12dist(cryptography) >= 2.6) So there is only one incompatible version and it's in F39. It seems that it should be possible to update Fedora 39 to 2.5.0. Let me do an impact check.
I cannot build python-dns 2.5.0 in Fedora 39 because it requires newer python-httpx (and that package requires newer httpcore…).
Thanks for investigating! The pgadmin4 maintainer had to patch upstream's requirements.txt to remove the limitation. Could you run the test suite with a more recent cryptography version? Upstream is very careful with backwards incompatibilities. I bet dnspython will just work fine.
The tests seem to work fine with the latest cryptography. Please, let me know when the new version will be available in the side-tag for f39 and I'll try to build python-dns there.
This message is a reminder that Fedora Linux 39 is nearing its end of life. Fedora will stop maintaining and issuing updates for Fedora Linux 39 on 2024-11-26. It is Fedora's policy to close all bug reports from releases that are no longer maintained. At that time this bug will be closed as EOL if it remains open with a 'version' of '39'. Package Maintainer: If you wish for this bug to remain open because you plan to fix it in a currently maintained version, change the 'version' to a later Fedora Linux version. Note that the version field may be hidden. Click the "Show advanced fields" button if you do not see it. Thank you for reporting this issue and we are sorry that we were not able to fix it before Fedora Linux 39 is end of life. If you would still like to see this bug fixed and are able to reproduce it against a later version of Fedora Linux, you are encouraged to change the 'version' to a later version prior to this bug being closed.
Fedora Linux 39 entered end-of-life (EOL) status on 2024-11-26. Fedora Linux 39 is no longer maintained, which means that it will not receive any further security or bug fix updates. As a result we are closing this bug. If you can reproduce this bug against a currently maintained version of Fedora Linux please feel free to reopen this bug against that version. Note that the version field may be hidden. Click the "Show advanced fields" button if you do not see the version field. If you are unable to reopen this bug, please file a new report against an active release. Thank you for reporting this bug and we are sorry it could not be fixed.