IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2025-02-25 18:55:28 -06:00
Code Issues Packages Projects Releases Wiki Activity

Use datetime.timezone.utc instead of newer datetime.UTC alias

Browse Source 
datetime.UTC alias was added in Python 3.11:
https://docs.python.org/3/library/datetime.html#datetime.UTC

datetime.timezone.utc was present since Python 3.2.

Since RHEL 9 is using Python 3.9, use more compatible variant.

Fixes: https://pagure.io/freeipa/issue/9454

Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
Reviewed-By: Rafael Guterres Jeffman <rjeffman@redhat.com>
Reviewed-By: Rob Crittenden <rcritten@redhat.com>
This commit is contained in:
Alexander Bokovoy 2023-09-28 10:34:58 +03:00 committed by Rob Crittenden
parent 6aebfe74fb
commit 1a2cd7f408
16 changed files with 40 additions and 28 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
ipaclient/install/ipa_epn.py
View File

@ -33,7 +33,8 @@ import ssl
import time import time
from collections import deque from collections import deque
from datetime import datetime, timedelta, UTC from datetime import datetime, timedelta, timezone
UTC = timezone.utc
from email.utils import formataddr, formatdate from email.utils import formataddr, formatdate
from email.mime.multipart import MIMEMultipart from email.mime.multipart import MIMEMultipart
from email.mime.text import MIMEText from email.mime.text import MIMEText

2
ipalib/parameters.py
View File

@ -1836,7 +1836,7 @@ class DateTime(Param):
def _convert_scalar(self, value, index=None): def _convert_scalar(self, value, index=None):
if isinstance(value, str): if isinstance(value, str):
if value == u'now': if value == u'now':
time = datetime.datetime.now(tz=datetime.UTC) time = datetime.datetime.now(tz=datetime.timezone.utc)
return time return time
else: else:
for date_format in self.accepted_formats: for date_format in self.accepted_formats:

5
ipalib/rpc.py
View File

@ -819,7 +819,8 @@ class KerbTransport(SSLTransport):
session_cookie = ( session_cookie = (
Cookie.get_named_cookie_from_string( Cookie.get_named_cookie_from_string(
cookie, COOKIE_NAME, request_url, cookie, COOKIE_NAME, request_url,
timestamp=datetime.datetime.now(tz=datetime.UTC)) timestamp=datetime.datetime.now(
tz=datetime.timezone.utc))
) )
if session_cookie is not None: if session_cookie is not None:
break break
@ -922,7 +923,7 @@ class RPCClient(Connectible):
try: try:
session_cookie = Cookie.get_named_cookie_from_string( session_cookie = Cookie.get_named_cookie_from_string(
cookie_string, COOKIE_NAME, cookie_string, COOKIE_NAME,
timestamp=datetime.datetime.now(tz=datetime.UTC)) timestamp=datetime.datetime.now(tz=datetime.timezone.utc))
except Exception as e: except Exception as e:
logger.debug( logger.debug(
'Error retrieving cookie from the persistent storage: %s', 'Error retrieving cookie from the persistent storage: %s',

4
ipalib/x509.py
View File

@ -267,12 +267,12 @@ class IPACertificate(crypto_x509.Certificate):
@property @property
def not_valid_before(self): def not_valid_before(self):
return datetime.datetime.fromtimestamp( return datetime.datetime.fromtimestamp(
self._cert.not_valid_before.timestamp(), tz=datetime.UTC) self._cert.not_valid_before.timestamp(), tz=datetime.timezone.utc)
@property @property
def not_valid_after(self): def not_valid_after(self):
return datetime.datetime.fromtimestamp( return datetime.datetime.fromtimestamp(
self._cert.not_valid_after.timestamp(), tz=datetime.UTC) self._cert.not_valid_after.timestamp(), tz=datetime.timezone.utc)
@property @property
def tbs_certificate_bytes(self): def tbs_certificate_bytes(self):

2
ipapython/certdb.py
View File

@ -943,7 +943,7 @@ class NSSDatabase:
def _verify_cert_validity(self, cert): def _verify_cert_validity(self, cert):
"""Common checks for cert validity """Common checks for cert validity
""" """
utcnow = datetime.datetime.now(tz=datetime.UTC) utcnow = datetime.datetime.now(tz=datetime.timezone.utc)
if cert.not_valid_before > utcnow: if cert.not_valid_before > utcnow:
raise ValueError( raise ValueError(
f"not valid before {cert.not_valid_before} UTC is in the " f"not valid before {cert.not_valid_before} UTC is in the "

2
ipapython/cookie.py
View File

@ -652,7 +652,7 @@ class Cookie:
cookie_expiration = self.get_expiration() cookie_expiration = self.get_expiration()
if cookie_expiration is not None: if cookie_expiration is not None:
now = datetime.datetime.now(tz=datetime.UTC) now = datetime.datetime.now(tz=datetime.timezone.utc)
if cookie_expiration < now: if cookie_expiration < now:
raise Cookie.Expired("cookie named '%s'; expired at %s'" % \ raise Cookie.Expired("cookie named '%s'; expired at %s'" % \
(cookie_name, (cookie_name,

4
ipaserver/install/certs.py
View File

@ -740,7 +740,7 @@ class _CrossProcessLock:
self._do(self._release, owner) self._do(self._release, owner)
def _acquire(self, owner): def _acquire(self, owner):
now = datetime.datetime.now(tz=datetime.UTC) now = datetime.datetime.now(tz=datetime.timezone.utc)
if self._locked and now >= self._expire: if self._locked and now >= self._expire:
self._locked = False self._locked = False
@ -800,7 +800,7 @@ class _CrossProcessLock:
try: try:
self._expire = datetime.datetime.strptime( self._expire = datetime.datetime.strptime(
expire, self._DATETIME_FORMAT).replace( expire, self._DATETIME_FORMAT).replace(
tzinfo=datetime.UTC) tzinfo=datetime.timezone.utc)
except ValueError: except ValueError:
raise configparser.Error raise configparser.Error
except configparser.Error: except configparser.Error:

2
ipaserver/install/ipa_cacert_manage.py
View File

@ -556,7 +556,7 @@ class CACertManage(admintool.AdminTool):
api.env.realm, api.env.realm,
False) False)
now = datetime.datetime.now(tz=datetime.UTC) now = datetime.datetime.now(tz=datetime.timezone.utc)
for ca_cert, ca_nickname, _ca_trust_flags in ca_certs: for ca_cert, ca_nickname, _ca_trust_flags in ca_certs:
if ca_cert.not_valid_after < now: if ca_cert.not_valid_after < now:
expired_certs.append(ca_nickname) expired_certs.append(ca_nickname)

2
ipaserver/install/ipa_cert_fix.py
View File

@ -129,7 +129,7 @@ class IPACertFix(AdminTool):
ca_subject_dn = ca.lookup_ca_subject(api, subject_base) ca_subject_dn = ca.lookup_ca_subject(api, subject_base)
now = ( now = (
datetime.datetime.now(tz=datetime.UTC) datetime.datetime.now(tz=datetime.timezone.utc)
+ datetime.timedelta(weeks=2)) + datetime.timedelta(weeks=2))
certs, extra_certs, non_renewed = expired_certs(now) certs, extra_certs, non_renewed = expired_certs(now)

2
ipatests/create_external_ca.py
View File

@ -35,7 +35,7 @@ class ExternalCA:
""" """
def __init__(self, days=365, key_size=None): def __init__(self, days=365, key_size=None):
self.now = datetime.datetime.now(tz=datetime.UTC) self.now = datetime.datetime.now(tz=datetime.timezone.utc)
self.delta = datetime.timedelta(days=days) self.delta = datetime.timedelta(days=days)
self.ca_key = None self.ca_key = None
self.ca_public_key = None self.ca_public_key = None

8
ipatests/pytest_ipa/integration/create_caless_pki.py
View File

@ -102,7 +102,7 @@ class KRB5PrincipalName(univ.Sequence):
def profile_ca(builder, ca_nick, ca): def profile_ca(builder, ca_nick, ca):
now = datetime.datetime.now(tz=datetime.UTC) now = datetime.datetime.now(tz=datetime.timezone.utc)
builder = builder.not_valid_before(now) builder = builder.not_valid_before(now)
builder = builder.not_valid_after(now + 10 * YEAR) builder = builder.not_valid_after(now + 10 * YEAR)
@ -174,7 +174,7 @@ def profile_ca(builder, ca_nick, ca):
def profile_server(builder, ca_nick, ca, def profile_server(builder, ca_nick, ca,
warp=datetime.timedelta(days=0), dns_name=None, warp=datetime.timedelta(days=0), dns_name=None,
badusage=False, wildcard=False): badusage=False, wildcard=False):
now = datetime.datetime.now(tz=datetime.UTC) + warp now = datetime.datetime.now(tz=datetime.timezone.utc) + warp
builder = builder.not_valid_before(now) builder = builder.not_valid_before(now)
builder = builder.not_valid_after(now + YEAR) builder = builder.not_valid_after(now + YEAR)
@ -231,7 +231,7 @@ def profile_server(builder, ca_nick, ca,
def profile_kdc(builder, ca_nick, ca, def profile_kdc(builder, ca_nick, ca,
warp=datetime.timedelta(days=0), dns_name=None, warp=datetime.timedelta(days=0), dns_name=None,
badusage=False): badusage=False):
now = datetime.datetime.now(tz=datetime.UTC) + warp now = datetime.datetime.now(tz=datetime.timezone.utc) + warp
builder = builder.not_valid_before(now) builder = builder.not_valid_before(now)
builder = builder.not_valid_after(now + YEAR) builder = builder.not_valid_after(now + YEAR)
@ -347,7 +347,7 @@ def gen_cert(profile, nick_base, subject, ca=None, **kwargs):
def revoke_cert(ca, serial): def revoke_cert(ca, serial):
now = datetime.datetime.now(tz=datetime.UTC) now = datetime.datetime.now(tz=datetime.timezone.utc)
crl_builder = x509.CertificateRevocationListBuilder() crl_builder = x509.CertificateRevocationListBuilder()
crl_builder = crl_builder.issuer_name(ca.cert.subject) crl_builder = crl_builder.issuer_name(ca.cert.subject)

9
ipatests/test_integration/test_epn.py
View File

@ -467,7 +467,8 @@ class TestEPN(IntegrationTest):
extra_args=[ extra_args=[
"--password-expiration", "--password-expiration",
datetime_to_generalized_time( datetime_to_generalized_time(
datetime.datetime.now(tz=datetime.UTC) + datetime.timedelta( datetime.datetime.now(
tz=datetime.timezone.utc) + datetime.timedelta(
days=7) days=7)
), ),
], ],
@ -496,7 +497,8 @@ class TestEPN(IntegrationTest):
uid=uid, uid=uid,
days=i, days=i,
krbpasswordexpiration=datetime_to_generalized_time( krbpasswordexpiration=datetime_to_generalized_time(
datetime.datetime.now(tz=datetime.UTC) + datetime.timedelta( datetime.datetime.now(
tz=datetime.timezone.utc) + datetime.timedelta(
days=i) days=i)
), ),
) )
@ -812,7 +814,8 @@ class TestEPN(IntegrationTest):
self.master.run_command( self.master.run_command(
['ipa', 'user-mod', 'admin', '--password-expiration', ['ipa', 'user-mod', 'admin', '--password-expiration',
datetime_to_generalized_time( datetime_to_generalized_time(
datetime.datetime.now(tz=datetime.UTC) + datetime.timedelta( datetime.datetime.now(
tz=datetime.timezone.utc) + datetime.timedelta(
days=7) days=7)
)] )]
) )

3
ipatests/test_integration/test_ipahealthcheck.py
View File

@ -8,7 +8,8 @@ Tests to verify that the ipa-healthcheck scenarios
from __future__ import absolute_import from __future__ import absolute_import
from configparser import RawConfigParser, NoOptionError from configparser import RawConfigParser, NoOptionError
from datetime import datetime, timedelta, UTC from datetime import datetime, timedelta, timezone
UTC = timezone.utc
import json import json
import os import os
import re import re

12
ipatests/test_ipalib/test_x509.py
View File

@ -234,8 +234,10 @@ class test_x509:
# Verify certificate contents. This exercises python-cryptography # Verify certificate contents. This exercises python-cryptography
# more than anything but confirms our usage of it. # more than anything but confirms our usage of it.
not_before = datetime.datetime(2010, 6, 25, 13, 0, 42, 0, datetime.UTC) not_before = datetime.datetime(2010, 6, 25, 13, 0, 42, 0,
not_after = datetime.datetime(2015, 6, 25, 13, 0, 42, 0, datetime.UTC) datetime.timezone.utc)
not_after = datetime.datetime(2015, 6, 25, 13, 0, 42, 0,
datetime.timezone.utc)
cert = x509.load_pem_x509_certificate(goodcert_headers) cert = x509.load_pem_x509_certificate(goodcert_headers)
assert DN(cert.subject) == DN(('CN', 'ipa.example.com'), ('O', 'IPA')) assert DN(cert.subject) == DN(('CN', 'ipa.example.com'), ('O', 'IPA'))
@ -279,8 +281,10 @@ class test_x509:
assert DN(cert.issuer) == DN( assert DN(cert.issuer) == DN(
"CN=Let's Encrypt Authority X3,O=Let's Encrypt,C=US") "CN=Let's Encrypt Authority X3,O=Let's Encrypt,C=US")
assert cert.serial_number == 0x03ad42a2a5ada59a131327cb0979623cb605 assert cert.serial_number == 0x03ad42a2a5ada59a131327cb0979623cb605
not_before = datetime.datetime(2018, 7, 25, 5, 36, 59, 0, datetime.UTC) not_before = datetime.datetime(2018, 7, 25, 5, 36, 59, 0,
not_after = datetime.datetime(2018, 10, 23, 5, 36, 59, 0, datetime.UTC) datetime.timezone.utc)
not_after = datetime.datetime(2018, 10, 23, 5, 36, 59, 0,
datetime.timezone.utc)
assert cert.not_valid_before == not_before assert cert.not_valid_before == not_before
assert cert.not_valid_after == not_after assert cert.not_valid_after == not_after
assert cert.san_general_names == [DNSName('ipa.demo1.freeipa.org')] assert cert.san_general_names == [DNSName('ipa.demo1.freeipa.org')]

4
ipatests/test_ipapython/test_cookie.py
View File

@ -402,7 +402,9 @@ class TestHTTPReturn:
assert cookie.http_return_ok(self.url) assert cookie.http_return_ok(self.url)
def test_expires(self): def test_expires(self):
now = datetime.datetime.now(tz=datetime.UTC).replace(microsecond=0) now = datetime.datetime.now(
tz=datetime.timezone.utc).replace(
microsecond=0)
# expires 1 day from now # expires 1 day from now
expires = now + datetime.timedelta(days=1) expires = now + datetime.timedelta(days=1)

4
ipatests/test_webui/crypto_utils.py
View File

@ -2,8 +2,8 @@
# Copyright (C) 2018 FreeIPA Contributors see COPYING for license # Copyright (C) 2018 FreeIPA Contributors see COPYING for license
# #
from datetime import datetime, timedelta, UTC from datetime import datetime, timedelta, timezone
UTC = timezone.utc
from cryptography import x509 from cryptography import x509
from cryptography.hazmat.backends import default_backend from cryptography.hazmat.backends import default_backend
from cryptography.hazmat.primitives import serialization, hashes from cryptography.hazmat.primitives import serialization, hashes