delta/python-packages/passlib.git/docs, branch cmdline-dev foss.heptapod.net: python-libs/passlib renamed .summary to .description, more apropos; added PrefixWrapper description kwd 2012-04-17T20:57:17+00:00 Eli Collins elic@assurancetechnologies.com 2012-04-17T20:57:17+00:00 020a13443af9c4549791a8a165c656fff045eef1 






Merge from default
2012-04-17T20:41:14+00:00

Eli Collins
elic@assurancetechnologies.com

2012-04-17T20:41:14+00:00

697b6076d08b773805ae8467df86991148f9faa1












CryptPolicy deprecation, part 5 - updated docs, changelog, benchmark script
2012-04-17T19:37:59+00:00

Eli Collins
elic@assurancetechnologies.com

2012-04-17T19:37:59+00:00

8341dc6179d656b898f944b0cd848c350c627aab












updated passlib.apache module's api - more flexible to use, changed some ambiguous method names
2012-04-17T19:09:21+00:00

Eli Collins
elic@assurancetechnologies.com

2012-04-17T19:09:21+00:00

29e7c681bed9a2a9b96f71b56b0bf4edca8ef044












issue warning if app requests even bsdi_crypt rounds
2012-04-13T18:12:14+00:00

Eli Collins
elic@assurancetechnologies.com

2012-04-13T18:12:14+00:00

154046a05e38cb889f886853971a48a8c7d626b4












work on des_crypt family
2012-04-13T18:10:11+00:00

Eli Collins
elic@assurancetechnologies.com

2012-04-13T18:10:11+00:00

5a3bd0d6ac8ad706c7d4a21aa49a51c9fcc54873

* cleaned up source of des_crypt variants and DES util functions
* DES utils functions now have tighter input validation, full UT coverage





* cleaned up source of des_crypt variants and DES util functions
* DES utils functions now have tighter input validation, full UT coverage







clarify behavior for secret=None and hash=None
2012-04-11T21:49:09+00:00

Eli Collins
elic@assurancetechnologies.com

2012-04-11T21:49:09+00:00

5bd6deb8144cb24caa51e82c7682f706ecc09a6c

* passing a non-string secret or non-string hash to any
  CryptContext or handler method will now reliably result
  in a TypeError.

  previously, passing hash=None to many handler identify() and verify()
  methods would return False, while others would raise a TypeError.
  other handler methods would alternately throw ValueError or TypeError
  when passed a value that wasn't unicode or bytes.
  the various CryptContext methods also behaved inconsistently,
  depending on the behavior of the underlying handler.

  all of these behaviors are gone, they should all raise the same TypeError.

* redid many of the from_string() methods to verify the hash type.

* moved secret type & size validation to GenericHandler's encrypt/genhash/verify methods.
  this cheaply made the secret validation global to all hashes, and lets
  _calc_digest() implementations trust that the secret is valid.

* updated the CryptContext and handler unittests to verify the above behavior is adhered to.





* passing a non-string secret or non-string hash to any
  CryptContext or handler method will now reliably result
  in a TypeError.

  previously, passing hash=None to many handler identify() and verify()
  methods would return False, while others would raise a TypeError.
  other handler methods would alternately throw ValueError or TypeError
  when passed a value that wasn't unicode or bytes.
  the various CryptContext methods also behaved inconsistently,
  depending on the behavior of the underlying handler.

  all of these behaviors are gone, they should all raise the same TypeError.

* redid many of the from_string() methods to verify the hash type.

* moved secret type & size validation to GenericHandler's encrypt/genhash/verify methods.
  this cheaply made the secret validation global to all hashes, and lets
  _calc_digest() implementations trust that the secret is valid.

* updated the CryptContext and handler unittests to verify the above behavior is adhered to.







ldap salted digest improvements
2012-04-10T03:05:31+00:00

Eli Collins
elic@assurancetechnologies.com

2012-04-10T03:05:31+00:00

575ad2bfaf04cc1d75d61a30e469b52afdd8ccb8

* support variable salt size of 4-16 bytes [issue 30].
* throw correct error when invalid base64 encoding is encountered.
* added some test vectors for the above.





* support variable salt size of 4-16 bytes [issue 30].
* throw correct error when invalid base64 encoding is encountered.
* added some test vectors for the above.







*all* hashes now throw PasswordSizeError if password is larger than 4096 chars; to prevent DOS issues.
2012-04-09T23:19:41+00:00

Eli Collins
elic@assurancetechnologies.com

2012-04-09T23:19:41+00:00

ce8e7d2438a3804b50e9af2712302de8d72c9f50












removed default policy file & object
2012-04-09T19:29:44+00:00

Eli Collins
elic@assurancetechnologies.com

2012-04-09T19:29:44+00:00

34f766f4a2f11b19ce233e136e435c131531e42c

was using default policy to store recommended defaults for hashes,
but it only affects CryptContext objects, and users seem to frequent
using the handler objects directly - so going to store recommended
defaults in the handler from now on.





was using default policy to store recommended defaults for hashes,
but it only affects CryptContext objects, and users seem to frequent
using the handler objects directly - so going to store recommended
defaults in the handler from now on.