Bump cryptography from 2.7 to 2.9.1

[dependabot-preview]

Bumps cryptography from 2.7 to 2.9.1.

Changelog

Sourced from cryptography's changelog.

2.9.1 - 2020-04-21

• Updated Windows, macOS, and manylinux wheels to be compiled with OpenSSL 1.1.1g.

2.9 - 2020-04-02

• BACKWARDS INCOMPATIBLE: Support for Python 3.4 has been removed due to low usage and maintenance burden.
• BACKWARDS INCOMPATIBLE: Support for OpenSSL 1.0.1 has been removed. Users on older version of OpenSSL will need to upgrade.
• BACKWARDS INCOMPATIBLE: Support for LibreSSL 2.6.x has been removed.
• Removed support for calling ~cryptography.hazmat.primitives.asymmetric.x25519.X25519PublicKey.public_bytes with no arguments, as per our deprecation policy. You must now pass encoding and format.
• BACKWARDS INCOMPATIBLE: Reversed the order in which ~cryptography.x509.Name.rfc4514_string returns the RDNs as required by 4514.
• Updated Windows, macOS, and manylinux wheels to be compiled with OpenSSL 1.1.1f.
• Added support for parsing ~cryptography.x509.ocsp.OCSPResponse.single_extensions in an OCSP response.
• ~cryptography.x509.NameAttribute values can now be empty strings.

2.8 - 2019-10-16

• Updated Windows, macOS, and manylinux wheels to be compiled with OpenSSL 1.1.1d.
• Added support for Python 3.8.
• Added class methods Poly1305.generate_tag <cryptography.hazmat.primitives.poly1305.Poly1305.generate_tag> and Poly1305.verify_tag <cryptography.hazmat.primitives.poly1305.Poly1305.verify_tag> for Poly1305 sign and verify operations.
• Deprecated support for OpenSSL 1.0.1. Support will be removed in cryptography 2.9.
• We now ship manylinux2010 wheels in addition to our manylinux1 wheels.
• Added support for ed25519 and ed448 keys in the ~cryptography.x509.CertificateBuilder, ~cryptography.x509.CertificateSigningRequestBuilder, ~cryptography.x509.CertificateRevocationListBuilder and ~cryptography.x509.ocsp.OCSPResponseBuilder.
• cryptography no longer depends on asn1crypto.
• ~cryptography.x509.FreshestCRL is now allowed as a ~cryptography.x509.CertificateRevocationList extension.

Commits

• 6199f62 2.9.1 version bump (#5211)
• 81b7fc6 need to upgrade, not install, to update openssl in homebrew (#5174)
• 0e8941a 2.9 version and changelog bump (#5172)
• 3584a93 Added changelog for OpenSSL 1.1.1f (#5170)
• 7a2523e fixed linkcheck for CVE website configuration failure (#5169)
• 90f5bc0 Added a new checkbox to openssl-release.md (#5168)
• 6bb9d5a Update the openssl release (#5166)
• b76fdd5 sid now has 3.8 (#5167)
• 6648ac0 fix CI badge again since naming it breaks the link (#5162)
• 3a41e00 name the CI GH workflow (#5161)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Pull request limits (per update run and/or open at any time)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

[codecov-io]

Codecov Report

Merging #549 into dev will not change coverage.
The diff coverage is n/a.

@@           Coverage Diff           @@
##              dev     #549   +/-   ##
=======================================
  Coverage   42.66%   42.66%           
=======================================
  Files          52       52           
  Lines        3223     3223           
=======================================
  Hits         1375     1375           
  Misses       1848     1848           

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 6906287...4105a4e. Read the comment docs.

[dependabot-preview]

Superseded by #550.