pyca
diff --git a/‎.github/ISSUE_TEMPLATE.rst
Lines changed: 14 additions & 0 deletions b/‎.github/ISSUE_TEMPLATE.rst
Lines changed: 14 additions & 0 deletions
diff --git a/‎.jenkins/Jenkinsfile-OpenSSL-1.1
Lines changed: 86 additions & 0 deletions b/‎.jenkins/Jenkinsfile-OpenSSL-1.1
Lines changed: 86 additions & 0 deletions
diff --git a/‎.jenkins/Jenkinsfile-Update-Homebrew-OpenSSL
Lines changed: 33 additions & 0 deletions b/‎.jenkins/Jenkinsfile-Update-Homebrew-OpenSSL
Lines changed: 33 additions & 0 deletions
diff --git a/‎.jenkins/Jenkinsfile-cryptography-wheel-builder
Lines changed: 188 additions & 0 deletions b/‎.jenkins/Jenkinsfile-cryptography-wheel-builder
Lines changed: 188 additions & 0 deletions
diff --git a/‎.jenkins/mac-wheel.sh
Lines changed: 0 additions & 72 deletions b/‎.jenkins/mac-wheel.sh
Lines changed: 0 additions & 72 deletions
@@ -0,0 +1,14 @@
+If you're filing a bug (as opposed to a feature request), please try the
+following things:
+
+* Upgrade to the latest version of ``setuptools`` and ``pip``
+* Make sure you're on a supported version of OpenSSL
+* Try with the latest version of ``cryptography``
+
+If none of that works, please make sure to include the following information in
+your bug report:
+
+* Versions of Python, ``cryptography``, ``cffi``, ``pip``, and ``setuptools``
+  you're using
+* How you installed ``cryptography``
+* Clear steps for reproducing your bug
@@ -0,0 +1,86 @@
+def configs = [
+    [
+        label: "windows2012-openssl", arch: "x86", "vsversion": 2010
+    ],
+    [
+        label: "windows2012-openssl", arch: "x86_64", "vsversion": 2010
+    ],
+    [
+        label: "windows2012-openssl", arch: "x86", "vsversion": 2015
+    ],
+    [
+        label: "windows2012-openssl", arch: "x86_64", "vsversion": 2015
+    ],
+]
+
+script = """
+    wmic qfe
+    powershell "[Net.ServicePointManager]::SecurityProtocol = 'tls12'; wget 'https://www.openssl.org/source/openssl-1.1.0-latest.tar.gz' -OutFile 'openssl-latest.tar.gz'"
+    REM Next decompress the tarball using winrar. INUL disables error msgs, which are GUI prompts and therefore undesirable
+    "C:\\Program Files\\WinRAR\\WinRAR.exe" -INUL x openssl-latest.tar.gz
+    cd openssl-1*
+    REM The next line determines the name of the current directory. Batch is great.
+    FOR %%I IN (.) DO @SET CURRENTDIR=%%~nI%%~xI
+    if "%BUILDARCH%" == "x86" (
+        @SET BUILDARCHFLAG=x86
+        @SET OPENSSLARCHFLAG="VC-WIN32"
+    ) else (
+        @SET BUILDARCHFLAG=amd64
+        @SET OPENSSLARCHFLAG="VC-WIN64A"
+    )
+    if "%BUILDVSVERSION%" == "2010" (
+        call "C:\\Program Files (x86)\\Microsoft Visual Studio 10.0\\VC\\vcvarsall.bat" %BUILDARCHFLAG%
+        echo "Building with VS 2010"
+    ) else (
+        call "C:\\Program Files (x86)\\Microsoft Visual Studio 14.0\\VC\\vcvarsall.bat" %BUILDARCHFLAG%
+        echo "Building with VS 2015"
+    )
+    SET
+    perl Configure no-comp no-shared %OPENSSLARCHFLAG%
+    nmake
+    nmake test
+
+    if "%BUILDARCH%" == "x86" (
+        @SET FINALDIR="openssl-win32-%BUILDVSVERSION%"
+    ) else (
+        @SET FINALDIR="openssl-win64-%BUILDVSVERSION%"
+    )
+    mkdir %FINALDIR%
+    mkdir %FINALDIR%\\lib
+    move include %FINALDIR%\\include
+    move libcrypto.lib %FINALDIR%\\lib\\
+    move libssl.lib %FINALDIR%\\lib\\
+    "C:\\Program Files\\WinRAR\\WinRAR.exe" -INUL a %CURRENTDIR%-%BUILDVSVERSION%-%BUILDARCH%.zip %FINALDIR%\\include %FINALDIR%\\lib\\libcrypto.lib %FINALDIR%\\lib\\libssl.lib
+"""
+
+def build(label, vsversion, arch) {
+    node(label) {
+        try {
+            timeout(time: 30, unit: 'MINUTES') {
+                stage("Compile") {
+                    withEnv(["BUILDARCH=$arch", "BUILDVSVERSION=$vsversion"]) {
+                        bat script
+                    }
+                }
+                stage("Archive") {
+                    archiveArtifacts artifacts: "**/openssl-*.zip"
+                }
+            }
+        } finally {
+            deleteDir()
+        }
+    }
+}
+
+def builders = [:]
+
+for (config in configs) {
+    def vsversion = config["vsversion"]
+    def arch = config["arch"]
+    def label = config["label"]
+    builders["${vsversion}-${arch}"] = {
+        build(label, vsversion, arch)
+    }
+}
+
+parallel builders
@@ -0,0 +1,33 @@
+def configs = ["sierra", "yosemite"]
+
+def _build(label) {
+    node(label) {
+        try {
+            timeout(time: 30, unit: 'MINUTES') {
+                stage("Compile") {
+                    sh """
+                        set -xe
+
+                        /usr/local/bin/brew update
+                        /usr/local/bin/brew reinstall [email protected] --build-bottle
+                    """
+                }
+            }
+        } finally {
+            deleteDir()
+        }
+    }
+}
+
+def builders = [:]
+
+for (_label in configs) {
+    def label = _label
+    builders[label] = {
+        _build(label)
+    }
+}
+
+parallel builders
+
+build job: 'pyca/cryptography/master', wait: false
@@ -0,0 +1,188 @@
+properties([
+    parameters([
+        string(defaultValue: '', description: 'The version from PyPI to build', name: 'BUILD_VERSION')
+    ]),
+    pipelineTriggers([])
+])
+
+def configs = [
+    [
+        label: 'windows',
+        versions: ['py26', 'py27', 'py34', 'py35', 'py36'],
+    ],
+    [
+        label: 'windows64',
+        versions: ['py26', 'py27', 'py34', 'py35', 'py36'],
+    ],
+    [
+        label: 'sierra',
+        versions: ['py26', 'py27', 'py34', 'py35', 'py36'],
+    ],
+    [
+        label: 'docker',
+        imageName: 'pyca/cryptography-manylinux1:i686',
+        versions: [
+            'cp26-cp26m', 'cp26-cp26mu', 'cp27-cp27m',
+            'cp27-cp27mu', 'cp34-cp34m', 'cp35-cp35m',
+            'cp36-cp36m'
+        ],
+    ],
+    [
+        label: 'docker',
+        imageName: 'pyca/cryptography-manylinux1:x86_64',
+        versions: [
+            'cp26-cp26m', 'cp26-cp26mu', 'cp27-cp27m',
+            'cp27-cp27mu', 'cp34-cp34m', 'cp35-cp35m',
+            'cp36-cp36m'
+        ],
+    ],
+]
+
+
+def build(version, label, imageName) {
+    try {
+        timeout(time: 30, unit: 'MINUTES') {
+            if (label.contains("windows")) {
+                def pythonPath = [
+                    py26: "C:\\Python26\\python.exe",
+                    py27: "C:\\Python27\\python.exe",
+                    py34: "C:\\Python34\\python.exe",
+                    py35: "C:\\Python35\\python.exe",
+                    py36: "C:\\Python36\\python.exe"
+                ]
+                if (version == "py35" || version == "py36") {
+                    opensslPaths = [
+                        "windows": [
+                            "include": "C:\\OpenSSL-Win32-2015\\include",
+                            "lib": "C:\\OpenSSL-Win32-2015\\lib"
+                        ],
+                        "windows64": [
+                            "include": "C:\\OpenSSL-Win64-2015\\include",
+                            "lib": "C:\\OpenSSL-Win64-2015\\lib"
+                        ]
+                    ]
+                } else {
+                    opensslPaths = [
+                        "windows": [
+                            "include": "C:\\OpenSSL-Win32-2010\\include",
+                            "lib": "C:\\OpenSSL-Win32-2010\\lib"
+                        ],
+                        "windows64": [
+                            "include": "C:\\OpenSSL-Win64-2010\\include",
+                            "lib": "C:\\OpenSSL-Win64-2010\\lib"
+                        ]
+                    ]
+                }
+                bat """
+                    wmic qfe
+                    @set PATH="C:\\Python27";"C:\\Python27\\Scripts";%PATH%
+                    @set PYTHON="${pythonPath[version]}"
+
+                    @set INCLUDE="${opensslPaths[label]['include']}";%INCLUDE%
+                    @set LIB="${opensslPaths[label]['lib']}";%LIB%
+                    virtualenv -p %PYTHON% .release
+                    call .release\\Scripts\\activate
+                    pip install wheel virtualenv
+                    pip wheel cryptography==$BUILD_VERSION --wheel-dir=wheelhouse --no-binary cryptography
+                    pip install -f wheelhouse cryptography --no-index
+                    python -c "from cryptography.hazmat.backends.openssl.backend import backend;print('Loaded: ' + backend.openssl_version_text());print('Linked Against: ' + backend._ffi.string(backend._lib.OPENSSL_VERSION_TEXT).decode('ascii'))"
+                """
+            } else if (label.contains("sierra")) {
+                def pythonPath = [
+                    py26: "python2.6",
+                    py27: "/Library/Frameworks/Python.framework/Versions/2.7/bin/python2.7",
+                    py34: "/Library/Frameworks/Python.framework/Versions/3.4/bin/python3.4",
+                    py35: "/Library/Frameworks/Python.framework/Versions/3.5/bin/python3.5",
+                    py36: "/Library/Frameworks/Python.framework/Versions/3.6/bin/python3.6",
+                ]
+                ansiColor {
+                    sh """#!/usr/bin/env bash
+                        set -xe
+                        # output the list of things we've installed as a point in time check of how up
+                        # to date the builder is
+                        /usr/sbin/system_profiler SPInstallHistoryDataType
+
+                        # Jenkins logs in as a non-interactive shell, so we don't even have /usr/local/bin in PATH
+                        export PATH="/usr/local/bin:\${PATH}"
+                        export PATH="/Users/jenkins/.pyenv/shims:\${PATH}"
+
+                        printenv
+
+                        virtualenv .venv -p ${pythonPath[version]}
+                        source .venv/bin/activate
+                        pip install -U wheel # upgrade wheel to latest before we use it to build the wheel
+                        CRYPTOGRAPHY_SUPPRESS_LINK_FLAGS="1" LDFLAGS="/usr/local/opt/[email protected]/lib/libcrypto.a /usr/local/opt/[email protected]/lib/libssl.a" CFLAGS="-I/usr/local/opt/[email protected]/include -mmacosx-version-min=10.9" pip wheel cryptography==$BUILD_VERSION --wheel-dir=wheelhouse --no-binary cryptography
+                        pip install -f wheelhouse cryptography --no-index
+                        python -c "from cryptography.hazmat.backends.openssl.backend import backend;print('Loaded: ' + backend.openssl_version_text());print('Linked Against: ' + backend._ffi.string(backend._lib.OPENSSL_VERSION_TEXT).decode('ascii'))"
+                        otool -L `find .venv -name '_openssl*.so'`
+                        lipo -info `find .venv -name '*.so'`
+                        otool -L `find .venv -name '_openssl*.so'` | grep -vG "libcrypto\\|libssl"
+                    """
+                }
+            } else if (label.contains("docker")) {
+                linux32 = ""
+                if (imageName.contains("i686")) {
+                    linux32 = "linux32"
+                }
+                sh """#!/usr/bin/env bash
+                    set -x -e
+                    # Because we are doing this as root in the container, but we write to a mounted dir that is outside the container
+                    # we need to make sure we set these files writable such that the jenkins user can delete them afterwards
+                    mkdir -p tmpwheelhouse
+                    mkdir -p wheelhouse
+                    chmod -R 777 tmpwheelhouse
+                    chmod -R 777 wheelhouse
+
+                    $linux32 /opt/python/$version/bin/pip install cffi six idna asn1crypto ipaddress enum34
+                    LDFLAGS="-L/opt/pyca/cryptography/openssl/lib" \
+                        CFLAGS="-I/opt/pyca/cryptography/openssl/include -Wl,--exclude-libs,ALL" \
+                        $linux32 /opt/python/$version/bin/pip wheel cryptography==$BUILD_VERSION -w tmpwheelhouse/ --no-binary cryptography --no-deps
+                    $linux32 auditwheel repair tmpwheelhouse/cryptography*.whl -w wheelhouse/
+                    $linux32 /opt/python/$version/bin/pip install cryptography==$BUILD_VERSION --no-index -f wheelhouse/
+                    $linux32 /opt/python/$version/bin/python -c "from cryptography.hazmat.backends.openssl.backend import backend;print('Loaded: ' + backend.openssl_version_text());print('Linked Against: ' + backend._ffi.string(backend._lib.OPENSSL_VERSION_TEXT).decode('ascii'))"
+                """
+            }
+            archiveArtifacts artifacts: "wheelhouse/cryptography*.whl"
+        }
+    } finally {
+        deleteDir()
+    }
+
+}
+
+def builders = [:]
+for (config in configs) {
+    def label = config["label"]
+    def versions = config["versions"]
+
+    for (_version in versions) {
+        def version = _version
+
+        if (label.contains("docker")) {
+            def imageName = config["imageName"]
+            def combinedName = "${imageName}-${version}"
+            builders[combinedName] = {
+                node(label) {
+                    stage(combinedName) {
+                        def buildImage = docker.image(imageName)
+                        buildImage.pull()
+                        buildImage.inside("-u root") {
+                            build(version, label, imageName)
+                        }
+                    }
+                }
+            }
+        } else {
+            def combinedName = "${label}-${version}"
+            builders[combinedName] = {
+                node(label) {
+                    stage(combinedName) {
+                        build(version, label, "")
+                    }
+                }
+            }
+        }
+    }
+}
+
+parallel builders