python-trio · dependabot · Feb 21, 2024 · Feb 22, 2024 · Feb 22, 2024
diff --git a/docs-requirements.txt b/docs-requirements.txt
@@ -14,7 +14,7 @@ cffi==1.16.0
     # via cryptography
 charset-normalizer==3.3.2
     # via requests
-cryptography==41.0.7
+cryptography==42.0.4
     # via -r docs-requirements.in
 docutils==0.20.1
     # via sphinx

diff --git a/lint-requirements.txt b/lint-requirements.txt
@@ -6,7 +6,7 @@
 #
 cffi==1.16.0
     # via cryptography
-cryptography==41.0.7
+cryptography==42.0.4
     # via
     #   -r lint-requirements.in
     #   types-pyopenssl

diff --git a/test-requirements.txt b/test-requirements.txt
@@ -10,7 +10,7 @@ cffi==1.16.0
     # via cryptography
 coverage[toml]==7.4.1
     # via -r test-requirements.in
-cryptography==41.0.7
+cryptography==42.0.4
     # via
     #   -r test-requirements.in
     #   pyopenssl

diff --git a/tests/test_trustme.py b/tests/test_trustme.py
@@ -69,7 +69,7 @@ def assert_is_leaf(leaf_cert: x509.Certificate) -> None:
 def test_basics(key_type: KeyType, expected_key_header: bytes) -> None:
     ca = CA(key_type=key_type)
 
-    today = datetime.datetime.today()
+    today = datetime.datetime.now(datetime.timezone.utc)
 
     assert (
         b"BEGIN " + expected_key_header + b" PRIVATE KEY" in ca.private_key_pem.bytes()
@@ -79,7 +79,7 @@ def test_basics(key_type: KeyType, expected_key_header: bytes) -> None:
     private_key = load_pem_private_key(ca.private_key_pem.bytes(), password=None)
 
     ca_cert = x509.load_pem_x509_certificate(ca.cert_pem.bytes())
-    assert ca_cert.not_valid_before <= today <= ca_cert.not_valid_after
+    assert ca_cert.not_valid_before_utc <= today <= ca_cert.not_valid_after_utc
 
     public_key1 = private_key.public_key().public_bytes(
         Encoding.PEM, PublicFormat.SubjectPublicKeyInfo
@@ -108,7 +108,7 @@ def test_basics(key_type: KeyType, expected_key_header: bytes) -> None:
 
     server_cert = x509.load_pem_x509_certificate(server.cert_chain_pems[0].bytes())
 
-    assert server_cert.not_valid_before <= today <= server_cert.not_valid_after
+    assert server_cert.not_valid_before_utc <= today <= server_cert.not_valid_after_utc
     assert server_cert.issuer == ca_cert.subject
     assert_is_leaf(server_cert)
 
@@ -168,7 +168,7 @@ def test_issue_cert_custom_not_after() -> None:
     cert = x509.load_pem_x509_certificate(leaf_cert.cert_chain_pems[0].bytes())
 
     for t in ["year", "month", "day", "hour", "minute", "second"]:
-        assert getattr(cert.not_valid_after, t) == getattr(expires, t)
+        assert getattr(cert.not_valid_after_utc, t) == getattr(expires, t)
 
 
 def test_issue_cert_custom_not_before() -> None:
@@ -185,7 +185,7 @@ def test_issue_cert_custom_not_before() -> None:
     cert = x509.load_pem_x509_certificate(leaf_cert.cert_chain_pems[0].bytes())
 
     for t in ["year", "month", "day", "hour", "minute", "second"]:
-        assert getattr(cert.not_valid_before, t) == getattr(not_before, t)
+        assert getattr(cert.not_valid_before_utc, t) == getattr(not_before, t)
 
 
 def test_intermediate() -> None: