Debian Bookworm support
Todos:
-
Pylint warns: Deprecated module 'crypt' - We have legacy support for crypt-encrypted passwords (
uffd/password_hash.py
), but use argon2 for new passwords - However, we fully rely on crypt for recovery codes!
- Crypt is going to be removed in Python 3.13, so not a problem for Bookworm. But we need a solution at some point.
- We have legacy support for crypt-encrypted passwords (
-
Migration aff5f350dcdf_added_role_is_default.py
breaks with sqlalchemy v1.4: I belivedefault=False
is interpreted as no default, i.e. DEFAULT NULL, which conflichts withnullable=False
. -
Various sqlalchemy.orm.exc.DetachedInstanceError
and aRuntimeError: Working outside of application context
: Probably issues in the test code and not uffd itself -
Job tests:bookworm:mysql
hangs forever attests/views/test_selfservice.py
-
Job build:apt
breaks with pybuild complaining aboutInvalid version: 'local'
-
Fix trans_de
job: jinja 3.x.x compat issue -
Fix migrations for MariaDB: Some constraints are not properly created with SQLAlchemy/Alembic on Bookworm - Double-check changelogs of all major dependencies:
-
flask 1.1.2 -> 2.2.2 -
jinja2 2.11.3 -> 3.1.2 -
itsdangerous 1.1.0 -> 2.1.2 -
Werkzeug 1.0. -> 2.2.2 -
click 7.1.2 -> 8.1.3 -
qrcode 6.1 -> 7.4.2 -
fido2 NO CHANGE -
flask-sqlalchemy 2.1 -> 3.0.3 -
SQLAlchemy 1.3.22 -> 1.4.46 -
Flask-Migrate 2.6.0 -> 4.0.4 -
alembic 1.4.3.dev0 -> 1.8.1.dev0 -
prometheus-client 0.9.0 -> 0.16.0 -
oauthlib 3.1.0 -> 3.2.2 -
Flask-Babel 0.12.2 -> 2.0.0 -
Babel 2.8.0 -> 2.10.3 -
argon2-cffi 18.3.0 -> 21.1.0 -
mysqlclient 1.4.4 -> 1.4.6
-
-
Double-check migration results
Edited by Julian