Cloned from: https://pagure.io/freeipa/issue/9708
`cryptography` `44.0.0` brought several changes related to its usage in IPA code.
```sh
$ python3 -c 'import ipalib.x509'
/usr/src/RPM/BUILD/freeipa-4.12.2/ipalib/constants.py:392: CryptographyDeprecationWarning: TripleDES has been moved to cryptography.hazmat.decrepit.ciphers.algorithms.TripleDES and will be removed from cryptography.hazmat.primitives.ciphers.algorithms in 48.0.0.
if getattr(algorithms, 'TripleDES', None):
/usr/src/RPM/BUILD/freeipa-4.12.2/ipalib/constants.py:393: CryptographyDeprecationWarning: TripleDES has been moved to cryptography.hazmat.decrepit.ciphers.algorithms.TripleDES and will be removed from cryptography.hazmat.primitives.ciphers.algorithms in 48.0.0.
if backend.cipher_supported(algorithms.TripleDES(
Traceback (most recent call last):
File "<string>", line 1, in <module>
File "/usr/src/RPM/BUILD/freeipa-4.12.2/ipalib/__init__.py", line 921, in <module>
from ipalib.frontend import Command, LocalOrRemote, Updater
File "/usr/src/RPM/BUILD/freeipa-4.12.2/ipalib/frontend.py", line 31, in <module>
from ipalib.parameters import create_param, Param, Str, Flag
File "/usr/src/RPM/BUILD/freeipa-4.12.2/ipalib/parameters.py", line 125, in <module>
from ipalib.x509 import (
File "/usr/src/RPM/BUILD/freeipa-4.12.2/ipalib/x509.py", line 91, in <module>
class IPACertificate(crypto_x509.Certificate):
TypeError: type 'cryptography.hazmat.bindings._rust.x509.Certificate' is not an acceptable base type
```
- the warning message about `TripleDES` has been changed
https://github.com/pyca/cryptography/pull/11407
- `Certificate` (and many others) are concrete classes
https://github.com/pyca/cryptography/issues/11437
https://github.com/pyca/cryptography/pull/11989
Bug
Normal
RHBA-2024:139322
ipa bug fix and enhancement update
