- 23 May, 2019 1 commit
-
-
Michele Angrisano authored
modified: Lib/ctypes/test/test_unicode.py modified: Misc/ACKS new file: Misc/NEWS.d/next/Library/2019-05-23-15-57-36.bpo-36713.sjPhnf.rst
-
- 22 May, 2019 1 commit
-
-
Victor Stinner authored
Test also URLopener().open(), URLopener().retrieve(), and DummyURLopener().retrieve().
-
- 21 May, 2019 2 commits
-
-
SH authored
CVE-2019-9948: Avoid file reading as disallowing the unnecessary URL scheme in urllib.urlopen().
-
Victor Stinner authored
Disallow control chars in http URLs in urllib2.urlopen. This addresses a potential security problem for applications that do not sanity check their URLs where http request headers could be injected. Disable https related urllib tests on a build without ssl (GH-13032) These tests require an SSL enabled build. Skip these tests when python is built without SSL to fix test failures. Use httplib.InvalidURL instead of ValueError as the new error case's exception. (GH-13044) Backport Co-Authored-By: Miro Hrončok <miro@hroncok.cz> (cherry picked from commit 7e200e0763f5b71c199aaf98bd5588f291585619) Notes on backport to Python 2.7: * test_urllib tests urllib.urlopen() which quotes the URL and so is not vulerable to HTTP Header Injection. * Add tests to test_urllib2 on urllib2.urlopen(). * Reject non-ASCII characters: range 0x80-0xff.
-
- 20 May, 2019 2 commits
-
-
Terry Jan Reedy authored
-
Miss Islington (bot) authored
(cherry picked from commit 53d378c8) Co-authored-by: Zackery Spytz <zspytz@gmail.com>
-
- 17 May, 2019 1 commit
-
-
Benjamin Peterson authored
TLS 1.3 has a more efficient handshake protocol. The client can reject the server's credentials and close the connection before the server has even finished writing out all of its initial data. Depending on whether the server finishes writing the rest of its handshake before the it sees the connection is reset, the server will read an empty line or see a ECONNRESET OSError. Nothing is really wrong here with the server or client, so just suppress the error output in the OSError case to fix the test. This fix isn't required in Python 3 because clients that reject the server's certificate will shut down the TLS layer before closing the TCP connection.
-
- 15 May, 2019 1 commit
-
-
Victor Stinner authored
(cherry picked from commit f0be4bbb)
-
- 13 May, 2019 2 commits
-
-
Terry Jan Reedy authored
-
Gregory P. Smith authored
[2.7] bpo-35925: Skip SSL tests that fail due to weak external certs or old TLS (GH-13124) (GH-13253) Modern Linux distros such as Debian Buster have default OpenSSL system configurations that reject connections to servers with weak certificates by default. This causes our test suite run with external networking resources enabled to skip these tests when they encounter such a failure. Fixing the network servers is a separate issue. (cherry picked from commit 2cc0223f) Changes to test_ssl.py required as 2.7 has legacy protocol tests. The test_httplib.py change is omitted from this backport as self-signed.pythontest.net's certificate was updated and the test_nntplib.py change is not applicable on 2.7. Authored-by: Gregory P. Smith greg@krypto.org
-
- 12 May, 2019 1 commit
-
-
Toshio Kuratomi authored
In Python-2.7, we were only searching for bind_textdomain_codeset in libc. We should have also checked for it in libintl. This change from Mel Flynn https://bugs.python.org/file24918/python27-configure.in.patch fixes that.
-
- 09 May, 2019 1 commit
-
-
Gregory P. Smith authored
* [2.7] bpo-36816: Update the self-signed.pythontest.net cert (GH-13192) We updated the server, our testsuite must match. https://bugs.python.org/issue36816
✈ ️ CLE -> DEN✈ ️ #pycon2019 #beyonce (cherry picked from commit 6bd81734) The 2.7 tree also needed a certificate in the capath directory updated. The filename for that was determined by `openssl x509 -in $cert.pem -subject_hash`. Authored-by: Gregory P. Smith <greg@krypto.org>
-
- 08 May, 2019 1 commit
-
-
Julien Palard authored
Patch by Mike Taylor.
-
- 02 May, 2019 2 commits
-
-
Zackery Spytz authored
(cherry picked from commit c4e78b11)
-
Miss Islington (bot) authored
(cherry picked from commit 11e4a941) Co-authored-by: Xtreak <tir.karthi@gmail.com>
-
- 01 May, 2019 1 commit
-
-
Steve Dower authored
-
- 30 Apr, 2019 1 commit
-
-
Miss Islington (bot) authored
(cherry picked from commit ee0309f3) Co-authored-by: Utkarsh Gupta <guptautkarsh2102@gmail.com>
-
- 29 Apr, 2019 1 commit
-
-
Victor Stinner authored
-
- 25 Apr, 2019 1 commit
-
-
Victor Stinner authored
bpo-28552, bpo-7774: Fix distutils.sysconfig if sys.executable is None or an empty string: use os.getcwd() to initialize project_base. Fix also the distutils build command: don't use sys.executable if it's evaluated as false (None or empty string).
-
- 22 Apr, 2019 1 commit
-
-
Zackery Spytz authored
(cherry picked from commit 56ed8649) https://bugs.python.org/issue9194
-
- 13 Apr, 2019 1 commit
-
-
Victor Stinner authored
"make tags" and "make TAGS" now also parse Modules/_io/*.c and Modules/_io/*.h. (cherry picked from commit 21a74a9d)
-
- 12 Apr, 2019 1 commit
-
-
Joshua Root authored
A fix for 69e96910, which resulted in lchmod being disabled on all platforms, not just Linux. (cherry picked from commit ed709d56)
-
- 09 Apr, 2019 5 commits
-
-
Victor Stinner authored
Set CUSTOMIZED_OSX_COMPILER to True to disable _osx_support.customize_compiler().
-
Victor Stinner authored
Fix reference leak hunting in regrtest: compute also deltas (of reference count and file descriptor count) during warmup, to ensure that everything is initialized before starting to hunt reference leaks. Other changes: * Replace gc.collect() with support.gc_collect() in clear_caches() * dash_R() is now more quiet with --quiet option (don't display progress). * Precompute the full range for "for it in range(repcount):" to ensure that the iteration doesn't allocate anything new. * dash_R() now is responsible to call warm_caches(). (cherry picked from commit 5aaac94e)
-
Inada Naoki authored
-
Inada Naoki authored
-
cocoatomo authored
-
- 03 Apr, 2019 1 commit
-
-
Zackery Spytz authored
(cherry picked from commit 487b73ab)
-
- 31 Mar, 2019 1 commit
-
-
Zackery Spytz authored
bpo-36150: Fix possible assertion failures due to _ctypes.c's PyCData_reduce(). (GH-12106) (GH-12643) (cherry picked from commit 5f2c5081)
-
- 28 Mar, 2019 1 commit
-
-
Miss Islington (bot) authored
Remove the PyMem_FREE() call added in cb90c89d. The buffer will be freed when PyTokenizer_Free() is called on the tokenizer state. (cherry picked from commit cda139d1) Co-authored-by: Zackery Spytz <zspytz@gmail.com>
-
- 27 Mar, 2019 3 commits
-
-
Steve Dower authored
-
Miss Islington (bot) authored
(cherry picked from commit d5a5a33f) Co-authored-by: Philipp A <flying-sheep@web.de>
-
Miss Islington (bot) authored
(cherry picked from commit f760610b) Co-authored-by: Andre Delfino <adelfino@gmail.com>
-
- 26 Mar, 2019 2 commits
-
-
Miss Islington (bot) authored
(cherry picked from commit 6cd658b1) Co-authored-by: Tal Einat <taleinat+github@gmail.com> https://bugs.python.org/issue34203
-
Miss Islington (bot) authored
(cherry picked from commit 0523c39e) Co-authored-by: Zackery Spytz <zspytz@gmail.com>
-
- 25 Mar, 2019 2 commits
-
-
Miss Islington (bot) authored
* bpo-34085: Improve wording on classmethod/staticmethod * Address comments from Éric * Address comments from Éric (cherry picked from commit 548cb606) Co-authored-by: Andre Delfino <adelfino@gmail.com>
-
Zackery Spytz authored
Add missing Py_DECREF()s.
-
- 20 Mar, 2019 2 commits
-
-
Victor Stinner authored
(cherry picked from commit cb90c89d)
-
Julien Palard authored
(cherry picked from commit fc8284e2) Co-authored-by: Jean-François B <jfbu@free.fr>
-
- 19 Mar, 2019 1 commit
-