Bump cryptography from 3.3.1 to 3.4.1

[dependabot]

Bumps cryptography from 3.3.1 to 3.4.1.

Changelog

Sourced from cryptography's changelog.

3.4.1 - 2021-02-07

* Fixed a circular import issue.
* Added additional debug output to assist users seeing installation errors
  due to outdated ``pip`` or missing ``rustc``.
.. _v3-4:
3.4 - 2021-02-07

* **BACKWARDS INCOMPATIBLE:** Support for Python 2 has been removed.
* We now ship ``manylinux2014`` wheels and no longer ship ``manylinux1``
  wheels. Users should upgrade to the latest ``pip`` to ensure this doesn't
  cause issues downloading wheels on their platform.
* ``cryptography`` now incorporates Rust code. Users building ``cryptography``
  themselves will need to have the Rust toolchain installed. Users who use an
  officially produced wheel will not need to make any changes. The minimum
  supported Rust version is 1.45.0.
* ``cryptography`` now has :pep:`484` type hints on nearly all of of its public
  APIs. Users can begin using them to type check their code with ``mypy``.
.. _v3-3-2:
3.3.2 - 2021-02-07

</code></pre>

<ul>

<li><strong>SECURITY ISSUE:</strong> Fixed a bug where certain sequences of <code>update()</code> calls

when symmetrically encrypting very large payloads (&gt;2GB) could result in an

integer overflow, leading to buffer overflows. <em>CVE-2020-36242</em></li>

</ul>

<p>.. _v3-3-1:</p>

</blockquote>

</details>

<details>

<summary>Commits</summary>
<ul>

<li><a href="https://github.com/pyca/cryptography/commit/ebde3be7ef92658bfbc322476a6f2604f41639fb&quot;&gt;&lt;code&gt;ebde3be&lt;/code&gt;&lt;/a> 3.4.1 fixes and changelog bump (<a href="https://github-redirect.dependabot.com/pyca/cryptography/issues/5761&quot;&gt;#5761&lt;/a&gt;)&lt;/li>

<li><a href="https://github.com/pyca/cryptography/commit/2c11ad53c07179e03ea2f60813cb52d83f766292&quot;&gt;&lt;code&gt;2c11ad5&lt;/code&gt;&lt;/a> 3.4 release (<a href="https://github-redirect.dependabot.com/pyca/cryptography/issues/5749&quot;&gt;#5749&lt;/a&gt;)&lt;/li>

<li><a href="https://github.com/pyca/cryptography/commit/06cbf77371881e80ea4b5e349136dcc53749fc0c&quot;&gt;&lt;code&gt;06cbf77&lt;/code&gt;&lt;/a> port changelog and fix back to master for CVE-2020-36242 (<a href="https://github-redirect.dependabot.com/pyca/cryptography/issues/5748&quot;&gt;#5748&lt;/a&gt;)&lt;/li>

<li><a href="https://github.com/pyca/cryptography/commit/9d1669534f95d276412fe224f5a9c413a814f759&quot;&gt;&lt;code&gt;9d16695&lt;/code&gt;&lt;/a> Linker script is no longer required for building your own OpenSSL (<a href="https://github-redirect.dependabot.com/pyca/cryptography/issues/5746&quot;&gt;#5746&lt;/a&gt;)&lt;/li>

<li><a href="https://github.com/pyca/cryptography/commit/0b41cb2b61d873c1204fad4fbc994c68ac7e0dd3&quot;&gt;&lt;code&gt;0b41cb2&lt;/code&gt;&lt;/a> Added typing for a bunch of random stuff (<a href="https://github-redirect.dependabot.com/pyca/cryptography/issues/5743&quot;&gt;#5743&lt;/a&gt;)&lt;/li>

<li><a href="https://github.com/pyca/cryptography/commit/fb3c73a0b111017bbc0559301588321c9ae9759b&quot;&gt;&lt;code&gt;fb3c73a&lt;/code&gt;&lt;/a> Bump ctor from 0.1.18 to 0.1.19 in /src/rust (<a href="https://github-redirect.dependabot.com/pyca/cryptography/issues/5741&quot;&gt;#5741&lt;/a&gt;)&lt;/li>

<li><a href="https://github.com/pyca/cryptography/commit/d125d85458dd9c8f7fbcc28b6988a4fcae1fde06&quot;&gt;&lt;code&gt;d125d85&lt;/code&gt;&lt;/a> Use caching of rust artifacts in GHA (<a href="https://github-redirect.dependabot.com/pyca/cryptography/issues/5740&quot;&gt;#5740&lt;/a&gt;)&lt;/li>

<li><a href="https://github.com/pyca/cryptography/commit/cba69f1922803f4f29a3fde01741890d88b8e217&quot;&gt;&lt;code&gt;cba69f1&lt;/code&gt;&lt;/a> Bump libc from 0.2.84 to 0.2.85 in /src/rust (<a href="https://github-redirect.dependabot.com/pyca/cryptography/issues/5739&quot;&gt;#5739&lt;/a&gt;)&lt;/li>

<li><a href="https://github.com/pyca/cryptography/commit/da8d490ed24f247769d3a67ed694debf659909b2&quot;&gt;&lt;code&gt;da8d490&lt;/code&gt;&lt;/a> Added typing for more of ciphers (<a href="https://github-redirect.dependabot.com/pyca/cryptography/issues/5738&quot;&gt;#5738&lt;/a&gt;)&lt;/li>

<li><a href="https://github.com/pyca/cryptography/commit/e6352d5ef2798f9cb8ec2fd330605606117b515b&quot;&gt;&lt;code&gt;e6352d5&lt;/code&gt;&lt;/a> Added typing for a bunch of methods (<a href="https://github-redirect.dependabot.com/pyca/cryptography/issues/5737&quot;&gt;#5737&lt;/a&gt;)&lt;/li>

<li>Additional commits viewable in <a href="https://github.com/pyca/cryptography/compare/3.3.1...3.4.1&quot;&gt;compare view</a></li>

</ul>

</details>
<br />



Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options


You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually

[lukpueh]

Looks like we have to pin cryptography<3.4 for Python 2.7 installs/tests.

[dependabot]

Superseded by #1275.