pool/python-passlib
SHA256
2
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
df102b7b03
python-passlib/python-passlib.changes

170 lines
6.8 KiB
Plaintext
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

-------------------------------------------------------------------
Wed Jan 1 22:15:42 UTC 2020 - Michael Ströder <michael@stroeder.com>
- Removed obsolete patches:
* python-passlib-1.7.1-libxcrypt-compat.patch
* pr_9_1.patch and pr_9_2.patch
- Update to 1.7.2
* New Features
- argon2: Now supports Argon2 “ID” and “D” hashes
(assuming new enough backend library).
- scrypt: Now uses python 3.6 stdlibs hashlib.scrypt() as backend,
if present (issue 86).
* Bugfixes
- Python 3.8 compatibility fixes
- passlib.apache.HtpasswdFile:
Now generates bcrypt hashes using the "$2y$" prefix, which should work
properly with Apache 2.4s htpasswd tool.
- passlib.totp: The TOTP.to_uri() method now prepends the issuer to URI label,
(per the KeyURI spec). This should fix some compatibility issues with
older TOTP clients (issue 92)
- Fixed error in argon2.parsehash() (issue 97)
- unittests: crypt() unittests now account for linux systems running
libxcrypt (such as recent Fedora releases)
-------------------------------------------------------------------
Thu Oct 3 15:09:46 UTC 2019 - John Vandenberg <jayvdb@gmail.com>
- Add two patches to fix Python 3.8 compatibility
* pr_9_1.patch and pr_9_2.patch
-------------------------------------------------------------------
Mon Mar 18 10:46:39 UTC 2019 - Tomáš Chvátal <tchvatal@suse.com>
- Add patch to fix libxcrypt compatibility:
* python-passlib-1.7.1-libxcrypt-compat.patch
-------------------------------------------------------------------
Sat Mar 2 15:20:20 UTC 2019 - Tomáš Chvátal <tchvatal@suse.com>
- Do not use symlinks when creating fdupes
-------------------------------------------------------------------
Wed Dec 19 00:03:58 UTC 2018 - Jan Engelhardt <jengelh@inai.de>
- Use noun phrase in summary. Trim filler wording from description.
-------------------------------------------------------------------
Tue Dec 4 12:51:16 UTC 2018 - Matej Cepl <mcepl@suse.com>
- Remove superfluous devel dependency for noarch package
-------------------------------------------------------------------
Sat Apr 22 16:44:52 UTC 2017 - aloisio@gmx.com
- Converted to single-spec
- Enabled tests
-------------------------------------------------------------------
Tue Jan 31 15:08:14 UTC 2017 - michael@stroeder.com
- Update to 1.7.1
-------------------------------------------------------------------
Sun Jan 22 11:18:59 UTC 2017 - michael@stroeder.com
- updated project and source URLs
-------------------------------------------------------------------
Sat Nov 26 15:40:04 UTC 2016 - michael@stroeder.com
- Update to 1.7.0 with very many changes:
http://passlib.readthedocs.io/en/stable/history/1.7.html#id1
- CHANGES not in upstream source anymore
-------------------------------------------------------------------
Sun Feb 21 10:06:22 UTC 2016 - mardnh@gmx.de
- Update to 1.6.5:
* Fixed some minor bugs in the test suite which were causing erroneous
test failures
- Update to 1.6.4:
* bugfix: Correctly detect bcrypt 2.0.
* bugfix: CryptContext now accepts scheme names as unicode
* bugfix: :mod:`passlib.ext.django` now works correctly with Django 1.7-1.8.
* bugfix: :class:`passlib.apache.HtpasswdFile` now recognizes bcrypt,
sha256_crypt, sha512_crypt hashes
* A few changes have been made to the :class:`~passlib.hash.bcrypt` hash:
+ It now supports the ``$2b$`` hash format.
+ It will now issue a :exc:`~passlib.exc.PasslibSecurityWarning` if the active
backend is vulnerable to the :ref:`wraparound bug <bsd-wraparound-bug>`,
and automatically enable a workaround(py-bcrypt is known to be vulnerableas of v0.4).
+ It will throw a :exc:`~passlib.exc.PasslibSecurityError` if the active backend
is vulnerable to the :ref:`8-bit bug <crypt-blowfish-bug>` (none of Passlib's
backends are known to be vulnerable as of 2015-07).
+ Updated documentation to indicate the cffi-based
`bcrypt <https://pypi.python.org/pypi/bcrypt>`_ library is now the recommended
bcrypt backend.
+ Backend capability detection code refactored to rely on runtime detection
rather than hardcoded information.
+ Release **1.6.3** was skipped due to upload issues.
-------------------------------------------------------------------
Mon Jan 13 14:00:00 UTC 2014 - dmueller@suse.com
- update to 1.6.2:
* Re-tuned the :attr:`~passlib.ifc.PasswordHash.default_rounds` values for all of the hashes.
* Added the new :doc:`bcrypt_sha256 <lib/passlib.hash.bcrypt_sha256>` hash,
which wraps BCrypt using SHA256 in order to work around BCrypt's password size limitations
* :doc:`passlib.hash.bcrypt <lib/passlib.hash.bcrypt>`:
Added support for the `bcrypt <https://pypi.python.org/pypi/bcrypt>`_
-------------------------------------------------------------------
Thu Oct 24 11:09:44 UTC 2013 - speilicke@suse.com
- Require python-setuptools instead of distribute (upstreams merged)
-------------------------------------------------------------------
Tue Feb 5 13:10:42 UTC 2013 - saschpe@suse.de
- Drop testsuite again, has strange issues
-------------------------------------------------------------------
Sat Sep 8 21:58:41 UTC 2012 - os-dev@jacraig.com
- Update to 1.6.1:
* bugfix: Various CryptContext methods would incorrectly raise TypeError
if passed a unicode user category under Python 2. For consistency,
unicode user category values are now encoded to ``utf-8`` bytes under
Python 2.
* bugfix: Reworked internals of the CryptContext config compiler to fix a
couple of border cases (issue 39), see CHANGES for details.
* bugfix: FreeBSD 8.3 added native support for hash.sha256_crypt -- updated
Passlib's unittests and documentation accordingly (issue 35).
* bugfix: Fixed bug which caused passlib.apache unittest to fail if mtime
resolution >= 1 second (issue 35).
* Various bugfixes for Python 3.3 compatibility.
* Various documentation updates and corrections.
-------------------------------------------------------------------
Fri Jun 15 04:57:41 UTC 2012 - os-dev@jacraig.com
- Update to 1.6: tons of changes including deprecated API, features and fixes;
see CHANGES.
-------------------------------------------------------------------
Thu Mar 8 11:34:03 UTC 2012 - saschpe@suse.de
- Don't run testsuite on SLE, fixes build
-------------------------------------------------------------------
Tue Jan 31 10:38:52 UTC 2012 - saschpe@suse.de
- Fix macro usage and remove reST from description
-------------------------------------------------------------------
Tue Nov 29 09:26:22 UTC 2011 - saschpe@suse.de
- SPDX-style license string (BSD-3-Clause)
- Package CHANGES, README, LICENSE
- Run testsuite
-------------------------------------------------------------------
Mon Oct 24 12:26:26 UTC 2011 - cthiel@suse.com
- initial package (version 1.5.3)
Reference in New Issue View Git Blame Copy Permalink