Hello community, here is the log from the commit of package python-argon2-cffi for openSUSE:Factory checked in at 2019-02-26 22:14:49 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/python-argon2-cffi (Old) and /work/SRC/openSUSE:Factory/.python-argon2-cffi.new.28833 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "python-argon2-cffi" Tue Feb 26 22:14:49 2019 rev:3 rq:677427 version:19.1.0 Changes: -------- --- /work/SRC/openSUSE:Factory/python-argon2-cffi/python-argon2-cffi.changes 2018-08-24 17:11:58.602633002 +0200 +++ /work/SRC/openSUSE:Factory/.python-argon2-cffi.new.28833/python-argon2-cffi.changes 2019-02-26 22:14:55.610221228 +0100 @@ -1,0 +2,25 @@ +Tue Feb 19 12:11:20 UTC 2019 - John Vandenberg <[email protected]> + +- Update to v19.1.0 + * Vendoring Argon2 @ 670229c + * Added support for Argon2 v1.2 hashes in argon2.extract_parameters() +- from 18.3.0 + * Vendoring Argon2 @ 670229c + * argon2.PasswordHasher's hash type is now configurable +- from 18.2.0 + * Vendoring Argon2 @ 670229c + * The hash type for ``argon2.PasswordHasher`` is Argon2\ **id** now. + This decision has been made based on the recommendations in the latest + Argon2 RFC draft + * To make the change of hash type backward compatible, + argon2.PasswordHasher.verify() now determines the type of the hash and + verifies it accordingly + * Some of the hash parameters have been made stricter to be closer to said + recommendations. The current goal for a hash verification times is around 50ms + * To allow for bespoke decisions about upgrading Argon2 parameters, it's now + possible to extract them from a hash via argon2.extract_parameters() + * Additionally argon2.PasswordHasher now has a check_needs_rehash() method + that allows to verify whether a hash has been created with the instance's + parameters or whether it should be rehashed + +------------------------------------------------------------------- @@ -14 +39 @@ -- Initial package, used by Django +- Initial package for v18.1.0, used by Django Old: ---- argon2_cffi-18.1.0.tar.gz New: ---- argon2_cffi-19.1.0.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ python-argon2-cffi.spec ++++++ --- /var/tmp/diff_new_pack.1KJEUa/_old 2019-02-26 22:14:56.758220824 +0100 +++ /var/tmp/diff_new_pack.1KJEUa/_new 2019-02-26 22:14:56.766220822 +0100 @@ -1,7 +1,7 @@ # # spec file for package python-argon2-cffi # -# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -12,13 +12,13 @@ # license that conforms to the Open Source Definition (Version 1.9) # published by the Open Source Initiative. -# Please submit bugfixes or comments via http://bugs.opensuse.org/ +# Please submit bugfixes or comments via https://bugs.opensuse.org/ # %{?!python_module:%define python_module() python-%{**} python3-%{**}} Name: python-argon2-cffi -Version: 18.1.0 +Version: 19.1.0 Release: 0 Summary: The Argon2 password hashing algorithm for Python License: MIT ++++++ argon2_cffi-18.1.0.tar.gz -> argon2_cffi-19.1.0.tar.gz ++++++ ++++ 2834 lines of diff (skipped)
