mirror of https://github.com/django/django.git
Increased the default PBKDF2 iterations for Django 5.0.
Follow up to 9a1848f48c
.
This commit is contained in:
parent
017fa23d3b
commit
5e9aded33f
|
@ -295,7 +295,7 @@ class PBKDF2PasswordHasher(BasePasswordHasher):
|
||||||
"""
|
"""
|
||||||
|
|
||||||
algorithm = "pbkdf2_sha256"
|
algorithm = "pbkdf2_sha256"
|
||||||
iterations = 580000
|
iterations = 720000
|
||||||
digest = hashlib.sha256
|
digest = hashlib.sha256
|
||||||
|
|
||||||
def encode(self, password, salt, iterations=None):
|
def encode(self, password, salt, iterations=None):
|
||||||
|
|
|
@ -141,7 +141,7 @@ Minor features
|
||||||
~~~~~~~~~~~~~~~~~~~~~~~~~~
|
~~~~~~~~~~~~~~~~~~~~~~~~~~
|
||||||
|
|
||||||
* The default iteration count for the PBKDF2 password hasher is increased from
|
* The default iteration count for the PBKDF2 password hasher is increased from
|
||||||
390,000 to 480,000.
|
390,000 to 600,000.
|
||||||
|
|
||||||
* :class:`~django.contrib.auth.forms.UserCreationForm` now saves many-to-many
|
* :class:`~django.contrib.auth.forms.UserCreationForm` now saves many-to-many
|
||||||
form fields for a custom user model.
|
form fields for a custom user model.
|
||||||
|
|
|
@ -54,7 +54,7 @@ Minor features
|
||||||
~~~~~~~~~~~~~~~~~~~~~~~~~~
|
~~~~~~~~~~~~~~~~~~~~~~~~~~
|
||||||
|
|
||||||
* The default iteration count for the PBKDF2 password hasher is increased from
|
* The default iteration count for the PBKDF2 password hasher is increased from
|
||||||
480,000 to 580,000.
|
600,000 to 720,000.
|
||||||
|
|
||||||
:mod:`django.contrib.contenttypes`
|
:mod:`django.contrib.contenttypes`
|
||||||
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
|
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
|
||||||
|
|
|
@ -74,7 +74,7 @@ class TestUtilsHashPass(SimpleTestCase):
|
||||||
encoded = make_password("lètmein", "seasalt", "pbkdf2_sha256")
|
encoded = make_password("lètmein", "seasalt", "pbkdf2_sha256")
|
||||||
self.assertEqual(
|
self.assertEqual(
|
||||||
encoded,
|
encoded,
|
||||||
"pbkdf2_sha256$580000$seasalt$2sMWfhmkPY33gxRmJ4qOvKMhbLEWgy9yOGCMmzRG4v4=",
|
"pbkdf2_sha256$720000$seasalt$eDupbcisD1UuIiou3hMuMu8oe/XwnpDw45r6AA5iv0E=",
|
||||||
)
|
)
|
||||||
self.assertTrue(is_password_usable(encoded))
|
self.assertTrue(is_password_usable(encoded))
|
||||||
self.assertTrue(check_password("lètmein", encoded))
|
self.assertTrue(check_password("lètmein", encoded))
|
||||||
|
@ -379,8 +379,8 @@ class TestUtilsHashPass(SimpleTestCase):
|
||||||
encoded = hasher.encode("lètmein", "seasalt2")
|
encoded = hasher.encode("lètmein", "seasalt2")
|
||||||
self.assertEqual(
|
self.assertEqual(
|
||||||
encoded,
|
encoded,
|
||||||
"pbkdf2_sha256$580000$"
|
"pbkdf2_sha256$720000$"
|
||||||
"seasalt2$BLfRdHlAvfDMYcb+HhJhZe849VzO7vuXgxGLqx3hwI0=",
|
"seasalt2$e8hbsPnTo9qWhT3xYfKWoRth0h0J3360yb/tipPhPtY=",
|
||||||
)
|
)
|
||||||
self.assertTrue(hasher.verify("lètmein", encoded))
|
self.assertTrue(hasher.verify("lètmein", encoded))
|
||||||
|
|
||||||
|
@ -388,7 +388,7 @@ class TestUtilsHashPass(SimpleTestCase):
|
||||||
hasher = PBKDF2SHA1PasswordHasher()
|
hasher = PBKDF2SHA1PasswordHasher()
|
||||||
encoded = hasher.encode("lètmein", "seasalt2")
|
encoded = hasher.encode("lètmein", "seasalt2")
|
||||||
self.assertEqual(
|
self.assertEqual(
|
||||||
encoded, "pbkdf2_sha1$580000$seasalt2$KLjMFKSPXZb6nco1W2hi/NtT4gk="
|
encoded, "pbkdf2_sha1$720000$seasalt2$2DDbzziqCtfldrRSNAaF8oA9OMw="
|
||||||
)
|
)
|
||||||
self.assertTrue(hasher.verify("lètmein", encoded))
|
self.assertTrue(hasher.verify("lètmein", encoded))
|
||||||
|
|
||||||
|
|
Loading…
Reference in New Issue