Hello community, here is the log from the commit of package python3-pip for openSUSE:Factory checked in at 2015-01-09 20:50:26 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/python3-pip (Old) and /work/SRC/openSUSE:Factory/.python3-pip.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "python3-pip" Changes: -------- --- /work/SRC/openSUSE:Factory/python3-pip/python3-pip.changes 2014-11-15 12:26:50.000000000 +0100 +++ /work/SRC/openSUSE:Factory/.python3-pip.new/python3-pip.changes 2015-01-09 20:50:31.000000000 +0100 @@ -1,0 +2,162 @@ +Thu Jan 8 00:00:27 UTC 2015 - [email protected] + +- specfile: update copyright year +- Adapt pip-shipped-requests-cabundle.patch to upstream changes + > pip-6.0.6-shipped-requests-cabundle.patch +- Do not ship bundled cacert +- update to version 6.0.6: + * Continue the regression fix from 6.0.5 which was not a complete + fix. +- changes from version 6.0.5: + * Fix a regression with 6.0.4 under Windows where most commands + would raise an exception due to Windows not having the + os.geteuid() function. +- changes from version 6.0.4: + * Fix an issue where ANSI escape codes would be used on Windows even + though the Windows shell does not support them, causing odd + characters to appear with the progress bar. + * Fix an issue where using -v would cause an exception saying + TypeError: not all arguments converted during string formatting. + * Fix an issue where using -v with dependency links would cause an + exception saying TypeError: 'InstallationCandidate' object is not + iterable. + * Fix an issue where upgrading distribute would cause an exception + saying TypeError: expected string or buffer. + * Show a warning and disable the use of the cache directory when the + cache directory is not owned by the current use, commonly caused + by using sudo without the -H flag. + * Update PEP 440 support to handle the latest changes to PEP 440, + particularly the changes to >V and <V so that they no longer imply + !=V.*. + * Document the default cache directories for each operating system. + * Create the cache directory when the pip version check needs to + save to it instead of silently logging an error. + * Fix a regression where the -q flag would not properly suppress the + display of the progress bars. +- changes from version 6.0.3: + * Fix an issue where the implicit version check new in pip 6.0 could + cause pip to block for up to 75 seconds if PyPI was not + accessible. + * Make --no-index imply --disable-pip-version-check. +- changes from version 6.0.2: + * Fix an issue where the output saying that a package was installed + would report the old version instead of the new version during an + upgrade. + * Fix left over merge conflict markers in the documentation. + * Document the backwards incompatible PEP 440 change in the 6.0.0 + changelog. +- changes from version 6.0.1: + * Fix executable file permissions for Wheel files when using the + distutils scripts option. + * Fix a confusing error message when an exceptions was raised at + certain points in pip’s execution. + * Fix the missing list of versions when a version cannot be found + that matches the specifiers. + * Add a warning about the possibly problematic use of > when the + given specifier doesn’t match anything. + * Fix an issue where installing from a directory would not copy over + certain directories which were being excluded, however some build + systems rely on them. +- changes from version 6.0: + * PROCESS Version numbers are now simply X.Y where the leading 1 has + been dropped. + * BACKWARD INCOMPATIBLE Dropped support for Python 3.1. + * BACKWARD INCOMPATIBLE Removed the bundle support which was + deprecated in 1.4. (PR #1806) + * BACKWARD INCOMPATIBLE File lists generated by pip show -f are now + rooted at the location reported by show, rather than one + (unstated) directory lower. (PR #1933) + * BACKWARD INCOMPATIBLE The ability to install files over the FTP + protocol was accidently lost in pip 1.5 and it has now been + decided to not restore that ability. + * BACKWARD INCOMPATIBLE PEP 440 is now fully implemented, this means + that in some cases versions will sort differently or version + specifiers will be interpreted differently than previou sly. The + common cases should all function similarly to before. + * DEPRECATION pip install --download-cache and pip wheel + --download-cache command line flags have been deprecated and the + functionality removed. Since pip now automatically configures and + uses it’s internal HTTP cache which supplants the --download-cache + the existing options have been made non functional but will still be + accepted until their removal in pip v8.0. Fo r more information + please see + https://pip.pypa.io/en/latest/reference/pip_install.html#caching + * DEPRECATION pip install --build and pip install --no-clean are now + NOT deprecated. This reverses the deprecation that occurred in + v1.5.3. See #906 for discussion. + * DEPRECATION Implicitly accessing URLs which point to an origin + which is not a secure origin, instead requiring an opt-in for each + host using the new --trusted-host flag (pip install - + -trusted-host example.com foo). + * Allow the new --trusted-host flag to also disable TLS verification + for a particular hostname. + * Added a --user flag to pip freeze and pip list to check the user + site directory only. + * Fixed #1873. Silence byte compile errors when installation + succeed. + * Added a virtualenv-specific configuration file. (PR #1364) + * Added site-wide configuation files. (PR #1978) + * Added an automatic check to warn if there is an updated version of + pip available (PR #2049). + * wsgiref and argparse (for >py26) are now excluded from pip list + and pip freeze (PR #1606, PR #1369) + * Fixed #1424. Add --client-cert option for SSL client certificates. + * Fixed #1484. pip show –files was broken for wheel installs. (PR + #1635) + * Fixed #1641. install_lib should take precedence when reading + distutils config. (PR #1642) + * Send Accept-Encoding: identity when downloading files in an + attempt to convince some servers who double compress the + downloaded file to stop doing so. (PR #1688) + * Fixed #1559. Stop breaking when given pip commands in uppercase + (PR #1725) + * Fixed #1618. Pip no longer adds duplicate logging consumers, so it + won’t create duplicate output when being called multiple + times. (PR #1723) + * Fixed #1769. pip wheel now returns an error code if any wheels + fail to build. + * Fixed #1775. pip wheel wasn’t building wheels for dependencies of + editable requirements. + * Allow the use of --no-use-wheel within a requirements file. (PR + #1859) + * Fixed #1680. Attempt to locate system TLS certificates to use + instead of the included CA Bundle if possible. (PR #1866) + * Fixed #1319. Allow use of Zip64 extension in Wheels and other zip + files. (PR #1868) + * Fixed #1101. Properly handle an index or –find-links target which + has a <base> without a href attribute. (PR #1869) + * Fixed #1885. Properly handle extras when a project is installed + via Wheel. (PR #1896) + * Fixed #1180. Added support to respect proxies in pip search. It + also fixes #932 and #1104. (PR #1902) + * Fixed #798 and #1060. pip install –download works with vcs + links. (PR #1926) + * Fixed #1456. Disabled warning about insecure index host when using + localhost. Based off of Guy Rozendorn’s work in PR #1718. (PR + #1967) + * Allow the use of OS standard user configuration files instead of + ones simply based around $HOME. (PR #2021) + * Fixed #1825. When installing directly from wheel paths or urls, + previous versions were not uninstalled. This also fixes #804 + specifically for the case of wheel archives. (PR #1838) + * Fixed #2075, detect the location of the .egg-info directory by + looking for any file located inside of it instead of relying on + the record file listing a directory. (PR #2076) + * Fixed #1964, #1935, #676, Use a randomized and secure default + build directory when possible. (PR #2122, CVE-2014-8991) + * Fixed #1433. Support environment markers in requirements.txt + files. (pull:2134) + * Automatically retry failed HTTP requests by default. (PR #1444, + pull:2147) + * Fixed #1100 - Handle HTML Encoding better using a method that is + more similar to how browsers handle it. (PR #1874) + * Reduce the verbosity of the pip command by default. (PR #2175, PR + #2177, PR #2178) + * Fixed #2031 - Respect sys.executable on OSX when installing from + Wheels. + * Display the entire URL of the file that is being downloaded when + downloading from a non PyPI repository (PR #2183). + * Support setuptools style environment markers in a source + distribution (PR #2153). + +------------------------------------------------------------------- Old: ---- pip-1.5.6.tar.gz pip-shipped-requests-cabundle.patch New: ---- pip-6.0.6-shipped-requests-cabundle.patch pip-6.0.6.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ python3-pip.spec ++++++ --- /var/tmp/diff_new_pack.C2Hxs7/_old 2015-01-09 20:50:32.000000000 +0100 +++ /var/tmp/diff_new_pack.C2Hxs7/_new 2015-01-09 20:50:32.000000000 +0100 @@ -1,7 +1,7 @@ # # spec file for package python3-pip # -# Copyright (c) 2014 SUSE LINUX Products GmbH, Nuernberg, Germany. +# Copyright (c) 2015 SUSE LINUX Products GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -17,19 +17,14 @@ Name: python3-pip -Version: 1.5.6 +Version: 6.0.6 Release: 0 Url: http://www.pip-installer.org Summary: Pip installs packages. Python packages. An easy_install replacement License: MIT Group: Development/Languages/Python Source: http://pypi.python.org/packages/source/p/pip/pip-%{version}.tar.gz -Patch0: pip-shipped-requests-cabundle.patch -BuildRoot: %{_tmppath}/%{name}-%{version}-build -BuildRequires: python3 -%if 0%{?suse_version} == 1220 -BuildRequires: python3-2to3 -%endif +Patch0: pip-6.0.6-shipped-requests-cabundle.patch BuildRequires: python3-devel BuildRequires: python3-setuptools # prevent build cycle with python3 requirement @@ -62,6 +57,8 @@ python3 setup.py install --prefix=%{_prefix} --root=%{buildroot} rm %{buildroot}%{_bindir}/pip ln -s %{_bindir}/pip%{py3_ver} %{buildroot}%{_bindir}/pip +# Remove shipped bundled pem cert file +find %{buildroot} -type f -name "*.pem" | xargs rm -f %check %if 0%{?suse_version} != 1315 ++++++ pip-6.0.6-shipped-requests-cabundle.patch ++++++ diff -ruN a/pip/_vendor/requests/certs.py b/pip/_vendor/requests/certs.py --- a/pip/_vendor/requests/certs.py 2014-05-16 20:03:31.000000000 +0200 +++ b/pip/_vendor/requests/certs.py 2014-07-03 09:54:46.751966582 +0200 @@ -19,8 +19,7 @@ except ImportError: def where(): """Return the preferred certificate bundle.""" - # vendored bundle inside Requests - return os.path.join(os.path.dirname(__file__), 'cacert.pem') + return "/etc/ssl/ca-bundle.pem" if __name__ == '__main__': print(where()) ++++++ pip-1.5.6.tar.gz -> pip-6.0.6.tar.gz ++++++ ++++ 41205 lines of diff (skipped) -- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
