- Update to 1.6.5:
* Fixed some minor bugs in the test suite which were causing erroneous
test failures
- Update to 1.6.4:
* bugfix: Correctly detect bcrypt 2.0.
* bugfix: CryptContext now accepts scheme names as unicode
* bugfix: :mod:`passlib.ext.django` now works correctly with Django 1.7-1.8.
* bugfix: :class:`passlib.apache.HtpasswdFile` now recognizes bcrypt,
sha256_crypt, sha512_crypt hashes
* A few changes have been made to the :class:`~passlib.hash.bcrypt` hash:
+ It now supports the ``$2b$`` hash format.
+ It will now issue a :exc:`~passlib.exc.PasslibSecurityWarning` if the active
backend is vulnerable to the :ref:`wraparound bug <bsd-wraparound-bug>`,
and automatically enable a workaround(py-bcrypt is known to be vulnerableas of v0.4).
+ It will throw a :exc:`~passlib.exc.PasslibSecurityError` if the active backend
is vulnerable to the :ref:`8-bit bug <crypt-blowfish-bug>` (none of Passlib's
backends are known to be vulnerable as of 2015-07).
+ Updated documentation to indicate the cffi-based
`bcrypt <https://pypi.python.org/pypi/bcrypt>`_ library is now the recommended
bcrypt backend.
+ Backend capability detection code refactored to rely on runtime detection
rather than hardcoded information.
+ Release **1.6.3** was skipped due to upload issues.
OBS-URL: https://build.opensuse.org/request/show/360695
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-passlib?expand=0&rev=19
