- 02 Mar, 2019 2 commits
-
-
Benjamin Peterson authored
-
Ned Deily authored
bpo-32129: Avoid blurry IDLE application icon on macOS with Tk 8.6. Original patch by Kevin Walzer. (GH-12034)
-
- 17 Feb, 2019 2 commits
-
-
Benjamin Peterson authored
-
Steve Dower authored
-
- 16 Feb, 2019 3 commits
-
-
Benjamin Peterson authored
-
Benjamin Peterson authored
-
Ned Deily authored
-
- 15 Feb, 2019 6 commits
-
-
stratakis authored
multissltests: fix _build_src(), add 'cwd' variable.
-
stratakis authored
Backport of TLS 1.3 related fixes from 3.7. Misc fixes and workarounds for compatibility with OpenSSL 1.1.1 from git master and TLS 1.3 support. With OpenSSL 1.1.1, Python negotiates TLS 1.3 by default. Some test cases only apply to TLS 1.2. OpenSSL 1.1.1 has added a new option OP_ENABLE_MIDDLEBOX_COMPAT for TLS 1.3. The feature is enabled by default for maximum compatibility with broken middle boxes. Users should be able to disable the hack and CPython's test suite needs it to verify default options Signed-off-by: Christian Heimes <christian@python.org> (cherry picked from commit 2a4ee8aa01d61b6a9c8e9c65c211e61bdb471826)
-
stratakis authored
Partial backport from cb5b68abCo-authored-by: Christian Heimes <christian@python.org>
-
stratakis authored
The options OP_NO_COMPRESSION, OP_CIPHER_SERVER_PREFERENCE, OP_SINGLE_DH_USE, OP_SINGLE_ECDH_USE, OP_NO_SSLv2 (except for PROTOCOL_SSLv2), and OP_NO_SSLv3 (except for PROTOCOL_SSLv3) are set by default. The initial cipher suite list contains only HIGH ciphers, no NULL ciphers and MD5 ciphers (except for PROTOCOL_SSLv2). (cherry picked from commit 358cfd42)
-
stratakis authored
Change TLS 1.3 cipher suite settings for compatibility with OpenSSL 1.1.1-pre6 and newer. OpenSSL 1.1.1 will have TLS 1.3 cipers enabled by default. Also update multissltests to test with latest OpenSSL. Signed-off-by: Christian Heimes <christian@python.org>. (cherry picked from commit 3e630c541b35c96bfe5619165255e559f577ee71) Co-authored-by: Christian Heimes <christian@python.org>
-
Victor Stinner authored
Add credit for the cert parser vulnerability. Mention also Cisco TALOS-2018-0758 identifier.
-
- 10 Feb, 2019 1 commit
-
-
Miss Islington (bot) authored
(cherry picked from commit 9db56fb8) Co-authored-by: Julien Palard <julien@palard.fr>
-
- 06 Feb, 2019 1 commit
-
-
Mariatta authored
(cherry picked from commit e9bc4172) Co-authored-by: Mariatta <Mariatta@users.noreply.github.com>
-
- 02 Feb, 2019 1 commit
-
-
Miss Islington (bot) authored
(cherry picked from commit 598e15d4) Co-authored-by: jdemeyer <J.Demeyer@UGent.be>
-
- 15 Jan, 2019 2 commits
-
-
Miss Islington (bot) authored
Fix a NULL pointer deref in ssl module. The cert parser did not handle CRL distribution points with empty DP or URI correctly. A malicious or buggy certificate can result into segfault. Signed-off-by: Christian Heimes <christian@python.org> https://bugs.python.org/issue35746 (cherry picked from commit a37f5243) Co-authored-by: Christian Heimes <christian@python.org>
-
Serhiy Storchaka authored
-
- 12 Jan, 2019 3 commits
-
-
Miss Islington (bot) authored
(cherry picked from commit 1cffd0ee) Co-authored-by: Alexey Izbyshev <izbyshev@ispras.ru>
-
Serhiy Storchaka authored
Format character "%s" in PyString_FromFormat() no longer read memory past the limit if precision is specified. (cherry picked from commit d586ccb0)
-
Serhiy Storchaka authored
-
- 10 Jan, 2019 1 commit
-
-
Senthil Kumaran authored
-
- 09 Jan, 2019 2 commits
-
-
Miss Islington (bot) authored
(cherry picked from commit 91c6158d) Co-authored-by: Andre Delfino <adelfino@gmail.com>
-
Sanyam Khurana authored
* bpo-24746: Avoid stripping trailing whitespace in doctest fancy diff * [2.7] bpo-24746: Avoid stripping trailing whitespace in doctest fancy diff (GH-10639). (cherry picked from commit cbb16459) Co-authored-by: Sanyam Khurana <8039608+CuriousLearner@users.noreply.github.com>
-
- 02 Jan, 2019 2 commits
-
-
Benjamin Peterson authored
Remove README.rst inadvertandly "backported" from 3.x in 5a89c715. (GH-11409)
-
Benjamin Peterson authored
(cherry picked from commit 9a69ae8a)
-
- 27 Dec, 2018 2 commits
-
-
Ned Deily authored
-
- 22 Dec, 2018 1 commit
-
-
Matt McCormick authored
This addresses C extension build errors related to an undefined _hypot symbol when building with the Microsoft Visual C++ Compiler for Python 2.7 [1] or MinGWPy [2]. It also addresses errors when building a C++ extension with MinGWPy and C++11 from cmath, 'error "::hypot' has not been declared' [1] https://www.microsoft.com/en-us/download/details.aspx?id=44266 [2] https://mingwpy.github.io/
-
- 20 Dec, 2018 3 commits
-
-
Myles Borins authored
(cherry picked from 0854b92c)
-
Zackery Spytz authored
(cherry picked from commit 842acaab)
-
Miss Islington (bot) authored
"dll" would leak if an error occurred in _validate_paramflags() or GenericPyCData_new(). (cherry picked from commit d77d97c9) Co-authored-by: Zackery Spytz <zspytz@gmail.com>
-
- 19 Dec, 2018 2 commits
-
-
Serhiy Storchaka authored
In _localemodule.c and selectmodule.c, remove dead code that would cause double decrefs if run. In addition, replace PyList_SetItem() with PyList_SET_ITEM() in cases where a new list is populated and there is no possibility of an error. In addition, check if the list changed size in the loop in array_array_fromlist(). (cherry picked from commit 99d56b53) Co-authored-by: Zackery Spytz <zspytz@gmail.com>
-
Zackery Spytz authored
-
- 18 Dec, 2018 2 commits
-
-
Miss Islington (bot) authored
Use "ll" instead of the nonstandard "q". (cherry picked from commit 062cbb67) Co-authored-by: Zackery Spytz <zspytz@gmail.com>
-
Victor Stinner authored
check_environ() of distutils.utils now catchs KeyError on calling pwd.getpwuid(): don't create the HOME environment variable in this case. (cherry picked from commit 17d0c059)
-
- 14 Dec, 2018 1 commit
-
-
Victor Stinner authored
bpo-34279, bpo-35412: support.run_unittest() no longer raises TestDidNotRun if a test result contains skipped tests. The exception is now only raised if no test have been run and no test have been skipped. (cherry picked from commit 3a8f4fef)
-
- 12 Dec, 2018 1 commit
-
-
Victor Stinner authored
* bpo-16039: CVE-2013-1752: Change use of readline() in imaplib.IMAP4_SSL to limit line length. Remove IMAP4_SSL.readline() and IMAP4_SSL.read() to inherit safe IMAP4 implementation. * bpo-20118: reenable test_linetoolong() of test_imaplib on ThreadedNetworkedTests and ThreadedNetworkedTestsSSL. The test now sets the _MAXLINE limit to 10 characters.
-
- 11 Dec, 2018 2 commits
-
-
Victor Stinner authored
(cherry picked from commit cb342182)
-
Ned Deily authored
-