e23cb36ac0
The pycrypto library is unmaintained, and keystonemiddleware currently uses pycrypto to encrypt and decrpyt things before caching them. This patch set removes the pycrypto dependency and updates the code to use the cryptography library. See [1]. Replacing the cryptographic library is backward compatible. See [2]. [1] http://lists.openstack.org/pipermail/openstack-dev/2017-March/113568.html [2] http://paste.openstack.org/show/610186/ Change-Id: Iced7f5115e49ccf4f7f5bf6813cb5988b95c248b Closes-Bug: #1677308
16 lines
702 B
YAML
16 lines
702 B
YAML
---
|
|
fixes:
|
|
- |
|
|
[`bug 1677308 <https://bugs.launchpad.net/keystonemiddleware/+bug/1677308>`_]
|
|
Removes ``pycrypto`` dependency as the library is unmaintained, and
|
|
replaces it with the ``cryptography`` library.
|
|
upgrade:
|
|
- |
|
|
[`bug 1677308 <https://bugs.launchpad.net/keystonemiddleware/+bug/1677308>`_]
|
|
There is no upgrade impact when switching from ``pycrypto`` to
|
|
``cryptography``. All data will be encrypted and decrypted using identical
|
|
blocksize, padding, algorithm (AES) and mode (CBC). Data previously
|
|
encrypted using ``pycrypto`` can be decrypted using both ``pycrypto`` and
|
|
``cryptography``. The same is true of data encrypted using
|
|
``cryptography``.
|