Accepting request 360906 from devel:languages:python

1

OBS-URL: https://build.opensuse.org/request/show/360906
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/python-passlib?expand=0&rev=13

passlib-1.6.2.tar.gz

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:e987f6000d16272f75314c7147eb015727e8532a3b747b1a8fb58e154c68392d
-size 408950

passlib-1.6.5.tar.gz

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:a83d34f53dc9b17aa42c9a35c3fbcc5120f3fcb07f7f8721ec45e6a27be347fc
+size 417044

python-passlib.changes

@@ -1,3 +1,32 @@
+-------------------------------------------------------------------
+Sun Feb 21 10:06:22 UTC 2016 - mardnh@gmx.de
+
+- Update to 1.6.5:
+  * Fixed some minor bugs in the test suite which were causing erroneous
+    test failures
+
+- Update to 1.6.4:
+  * bugfix: Correctly detect bcrypt 2.0.
+  * bugfix: CryptContext now accepts scheme names as unicode
+  * bugfix: :mod:`passlib.ext.django` now works correctly with Django 1.7-1.8.
+  * bugfix: :class:`passlib.apache.HtpasswdFile` now recognizes bcrypt,
+    sha256_crypt, sha512_crypt hashes
+
+  * A few changes have been made to the :class:`~passlib.hash.bcrypt` hash:
+    + It now supports the ``$2b$`` hash format.
+    + It will now issue a :exc:`~passlib.exc.PasslibSecurityWarning` if the active
+      backend is vulnerable to the :ref:`wraparound bug <bsd-wraparound-bug>`,
+      and automatically enable a workaround(py-bcrypt is known to be vulnerableas of v0.4).
+    + It will throw a :exc:`~passlib.exc.PasslibSecurityError` if the active backend
+      is vulnerable to the :ref:`8-bit bug <crypt-blowfish-bug>` (none of Passlib's
+      backends are known to be vulnerable as of 2015-07).
+    + Updated documentation to indicate the cffi-based
+      `bcrypt <https://pypi.python.org/pypi/bcrypt>`_ library is now the recommended
+      bcrypt backend.
+    + Backend capability detection code refactored to rely on runtime detection
+      rather than hardcoded information.
+    + Release **1.6.3** was skipped due to upload issues.
+
 -------------------------------------------------------------------
 Mon Jan 13 14:00:00 UTC 2014 - dmueller@suse.com
 

python-passlib.spec

@@ -1,7 +1,7 @@
 #
 # spec file for package python-passlib
 #
-# Copyright (c) 2014 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -17,7 +17,7 @@
 
 
 Name:           python-passlib
-Version:        1.6.2
+Version:        1.6.5
 Release:        0
 Url:            http://passlib.googlecode.com
 Summary:        Comprehensive password hashing framework supporting over 20 schemes