Merge branch 'master' into triple-des

Conflicts: tests/primitives/test_nist.py
2026-05-14 20:37:55 +00:00 · 2013-09-10 17:21:39 -07:00 · 2013-09-10 17:21:39 -07:00 · 6c7be9c4f4
commit 6c7be9c4f4
parent 920e3300c3 180606f3e7
4 changed files with 93 additions and 40 deletions
--- a/CONTRIBUTING.rst
+++ b/CONTRIBUTING.rst
@ -1,43 +1,15 @@
-Process
-=======
+Contributing to cryptography
+============================

-This repository has a mandatory code review policy. Contributions
-should happen through pull requests. Never commit to ``master``
-directly.
+As an open source project, cryptography welcomes contributions of many forms.

-Code
-====
+Examples of contributions include:

-When in doubt, refer to `PEP 8`_ for Python code.
+* Code patches
+* Documentation improvements
+* Bug reports and patch reviews

-Every code file must start with the boilerplate notice of the Apache License.
-Additionally, every Python code file must contain
+Extensive contribution guidelines are available in the repository at
+``docs/contributing.rst``, or online at:

-.. code-block:: python
-
-    from __future__ import absolute_import, division, print_function
-
-Docs
-====
-
-Write docstrings like this:
-
-.. code-block:: python
-
-    def some_function(some_arg):
-        """
-        Does some things.
-
-        :param some_arg: Some argument.
-        """
-
-So, specifically:
-
- Always use three double quotes.
- Put the three double quotes on their own line.
- No blank line at the end.
- Use Sphinx parameter/attribute documentation `syntax`_.
-
-
-.. _`PEP 8`: http://www.peps.io/8/
-.. _`syntax`: http://sphinx-doc.org/domains.html#info-field-lists
+https://cryptography.readthedocs.org/en/latest/contributing/
--- a/docs/contributing.rst
+++ b/docs/contributing.rst
@ -0,0 +1,80 @@
+Contributing
+============
+
+Process
+-------
+
+As an open source project, ``cryptography`` welcomes contributions of all
+forms. These can include:
+
+* Bug reports and feature requests
+* Pull requests for both code and documentation
+* Patch reviews
+
+You can file bugs and submit pull requests on `GitHub`_. To discuss larger
+changes you can start a conversation on `our mailing list`_.
+
+Because cryptography is so complex, and the implications of getting it wrong so
+devastating, ``cryptography`` has a strict code review policy:
+
+* Patches must *never* be pushed directly to ``master``, all changes (even the
+  most trivial typo fixes!) must be submitted as a pull request.
+* A committer may *never* merge their own pull request, a second party must
+  merge their changes. If multiple people work on a pull request, the merger
+  may not be any of them.
+* A patch which breaks tests, or introduces regressions by changing or removing
+  existing tests should not be merged. Tests must always be passing on
+  ``master``.
+* If somehow the tests get into a failing state on ``master`` (such as by a
+  backwards incompatible release of a dependency) no pull requests may be
+  merged until this is rectified.
+
+The purpose of these policies is to minimize the chances we merge a change
+which jeopardizes our users' security.
+
+We do not yet have a formal security contact. To report security issues in
+``cryptography`` you should email ``alex.gaynor@gmail.com``, messages may be
+encrypted with PGP to key fingerprint
+``E27D 4AA0 1651 72CB C5D2  AF2B 125F 5C67 DFE9 4084`` (this public key is
+available from most commonly-used keyservers).
+
+Code
+----
+
+When in doubt, refer to `PEP 8`_ for Python code.
+
+Every code file must start with the boilerplate notice of the Apache License.
+Additionally, every Python code file must contain
+
+.. code-block:: python
+
+    from __future__ import absolute_import, division, print_function
+
+Documentation
+-------------
+
+All features should be documented with prose.
+
+Docstrings should be written like this:
+
+.. code-block:: python
+
+    def some_function(some_arg):
+        """
+        Does some things.
+
+        :param some_arg: Some argument.
+        """
+
+So, specifically:
+
+- Always use three double quotes.
+- Put the three double quotes on their own line.
+- No blank line at the end.
+- Use Sphinx parameter/attribute documentation `syntax`_.
+
+
+.. _`GitHub`: https://github.com/alex/cryptography
+.. _`our mailing list`: https://mail.python.org/mailman/listinfo/cryptography-dev
+.. _`PEP 8`: http://www.peps.io/8/
+.. _`syntax`: http://sphinx-doc.org/domains.html#info-field-lists
--- a/docs/index.rst
+++ b/docs/index.rst
@ -32,4 +32,5 @@ Contents

    architecture
    primitives/index
+    contributing
    community
--- a/tests/primitives/test_nist.py
+++ b/tests/primitives/test_nist.py
@ -44,7 +44,7 @@ def parameterize_encrypt_test(cipher, vector_type, params, fnames):
 class TestAES_CBC(object):
    @parameterize_encrypt_test(
        "AES", "KAT",
-        ["key", "iv", "plaintext", "ciphertext"],
+        ("key", "iv", "plaintext", "ciphertext"),
        [
            "CBCGFSbox128.rsp",
            "CBCGFSbox192.rsp",
@ -71,7 +71,7 @@ class TestAES_CBC(object):

    @parameterize_encrypt_test(
        "AES", "MMT",
-        ["key", "iv", "plaintext", "ciphertext"],
+        ("key", "iv", "plaintext", "ciphertext"),
        [
            "CBCMMT128.rsp",
            "CBCMMT192.rsp",