8000 fix: Upgrade aws-encryption-sdk dependency by Brianwithay21 · Pull Request #186 · aws-cloudformation/cloudformation-cli-python-plugin · GitHub
[go: up one dir, main page]
Skip to content

fix: Upgrade aws-encryption-sdk dependency #186

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Apr 27, 2022
Merged

fix: Upgrade aws-encryption-sdk dependency #186

merged 2 commits into from
Apr 27, 2022

Conversation

Brianwithay21
Copy link
Member
@Brianwithay21 Brianwithay21 commented Apr 26, 2022
edited
Loading

Description of changes:

The cloudformation-cli-python-lib has a dependency on the aws-encryption-sdk for python. The encryption SDK itself has a dependency on the python cryptography library.

Have had some reports on HOOK type handler returning this internal error:

cannot import name 'int_from_bytes' from 'cryptography.utils' (/var/task/cryptography/utils.py)

According the change log, version 37.0.0 was recently release and includes some breaking changes.

I have tested using the previous v36 version and the issue is fixed. Adding cyrptography version less than v37 as a requirement for the CFN CLI Python library.

Decided to upgrade the aws-encryption-sdk to v3.1.0 instead based on @darrylabbate suggestion. Have tested this change as well.

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

@Brianwithay21 Brianwithay21 requested review from wkexiang, shri-tambe, a user and akshayrane April 26, 2022 22:16
@Brianwithay21 Brianwithay21 marked this pull request as ready for review April 26, 2022 22:19
@darrylabbate
Copy link
Contributor

Do we also want to bump aws-encryption-sdk to >= 3.0.0? Their changelog specifically calls out avoiding the deprecated int_from_bytes import.

@Brianwithay21 Brianwithay21 changed the title fix: breaking change in cryptography dependency fix: Upgrade aws-encryption-sdk dependency Apr 27, 2022
@Brianwithay21
Copy link
Member Author

@darrylabbate Thanks for pointing that out, have updated the PR to upgrade the aws-encryption-sdk instead as there is no breaking change between v2 and v3 besides Python 2 support ending which does not apply here

@Brianwithay21 Brianwithay21 merged commit 9eec769 into aws-cloudformation:master Apr 27, 2022
kddejong pushed a commit to kddejong/cloudformation-cli-python-plugin that referenced this pull request Oct 13, 2022
@Brianwithay21 @kddejong
fix: Upgrade aws-encryption-sdk dependency (aws-cloudformation#186)
581bde1 
* fix: Upgrade aws-encryption-sdk dependency
kddejong pushed a commit to kddejong/cloudformation-cli-python-plugin that referenced this pull request Oct 13, 2022
@Brianwithay21 @kddejong
fix: Upgrade aws-encryption-sdk dependency (aws-cloudformation#186)
598dd38 
* fix: Upgrade aws-encryption-sdk dependency
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@akshayrane akshayrane akshayrane approved these changes

@wkexiang wkexiang wkexiang approved these changes

@shri-tambe shri-tambe shri-tambe approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@Brianwithay21 @darrylabbate @akshayrane @wkexiang @shri-tambe
0