[issue16379] SQLite error code not exposed to python

miss-islington added the comment: New changeset 8deb7afbd847656842375119f8dbef8aea54 by Erlend Egeberg Aasland in branch 'main': bpo-16379: Fix SQLite version checks in test_module_constants() (GH-28809) https://github.com/python/cpython/commit/8deb7afbd847656842375119f8dbef8aea54

[issue45408] [fuzzer] Weird input with continuation and newlines causes null deref in parser

Gregory P. Smith added the comment: Marking release blocker as a crash is bad for a function that is documented as safe for use on untrusted input so long as it isn't large enough to overflow the stack. https://docs.python.org/3/library/ast.html#ast.literal_eval -- priority: normal

[issue45262] crash if asyncio is used before and after re-initialization if using python embedded in an application

Change by miss-islington : -- nosy: +miss-islington nosy_count: 5.0 -> 6.0 pull_requests: +27133 pull_request: https://github.com/python/cpython/pull/28815 ___ Python tracker

[issue45262] crash if asyncio is used before and after re-initialization if using python embedded in an application

Change by miss-islington : -- pull_requests: +27134 pull_request: https://github.com/python/cpython/pull/28816 ___ Python tracker ___

[issue45409] Support non-standard executables in venv

New submission from Steve Dower : Currently the venv redirector on Windows is hardcoded for "python.exe" and "pythonw.exe". There is no good reason for this, and it's fairly easy to make the redirector able to invoke any executable in the base environment by inspecting its own name. This

[issue45407] Support buffer protocol for _struct.Struct format argument

Serhiy Storchaka added the comment: I prefer to remove the comment. The format string is a text by its nature, there is no reason to support arbitrary binary data. Bytes objects are only supported for compatibility (with Python 2 strings). -- nosy: +serhiy.storchaka

[issue45403] test_sys: test_stdlib_dir() fails when Python is built outside the source tree

STINNER Victor added the comment: New changeset 768aaf6c433e6a13b82c7bdebd0062c7472c1fc7 by Victor Stinner in branch 'main': bpo-45403: Fix test_sys.test_stdlib_dir() (GH-28785) https://github.com/python/cpython/commit/768aaf6c433e6a13b82c7bdebd0062c7472c1fc7 --

[issue45403] test_sys: test_stdlib_dir() fails when Python is built outside the source tree

Change by STINNER Victor : -- resolution: -> fixed stage: patch review -> resolved status: open -> closed ___ Python tracker ___

[issue45405] Python 3.10.0 does not configure on darwin using public llvm / clang

debohman added the comment: By "public llvm / clang", I mean the toolchain version released by the llvm project. They just released version 13.0.0 last week. The problem is that version 12 of llvm / clang did not implement --print-multiarch, so this logic in configure was not exercised due

[issue45116] Performance regression 3.10b1 and later on Windows: Py_DECREF() not inlined in PGO build

Steve Dower added the comment: I would very much appreciate any new compiler be compatible with the standard Windows debuggers (windbg primarily, but I imagine most contributors would like it to keep working from VS). Last I heard, clang is fine as a compiler for debugging if you use the

[issue27580] CSV Null Byte Error

Change by Serhiy Storchaka : -- keywords: +patch pull_requests: +27127 stage: -> patch review pull_request: https://github.com/python/cpython/pull/28808 ___ Python tracker

[issue45337] Create venv with pip fails when target dir is under userappdata using Microsoft Store python

Steve Dower added the comment: New changeset 6811fdaec825bd6ab64e358a4b480108f5634d2d by Steve Dower in branch 'main': bpo-45337: Use the realpath of the new executable when creating a venv on Windows (GH-28663)

[issue45337] Create venv with pip fails when target dir is under userappdata using Microsoft Store python

Change by miss-islington : -- pull_requests: +27130 pull_request: https://github.com/python/cpython/pull/28811 ___ Python tracker ___

[issue45337] Create venv with pip fails when target dir is under userappdata using Microsoft Store python

Change by miss-islington : -- nosy: +miss-islington nosy_count: 5.0 -> 6.0 pull_requests: +27129 pull_request: https://github.com/python/cpython/pull/28810 ___ Python tracker

[issue45337] Create venv with pip fails when target dir is under userappdata using Microsoft Store python

Change by Steve Dower : -- resolution: -> fixed stage: patch review -> resolved status: open -> closed ___ Python tracker ___ ___

[issue45402] ERROR: test_sundry (test.test_tools.test_sundry.TestSundryScripts): SystemExit: ERROR: missing _freeze_module

STINNER Victor added the comment: New changeset ff8859d965815e8b5af346bd90299cfa5568c855 by Victor Stinner in branch 'main': bpo-45402: Fix test_tools.test_sundry() (GH-28786) https://github.com/python/cpython/commit/ff8859d965815e8b5af346bd90299cfa5568c855 --

[issue45402] ERROR: test_sundry (test.test_tools.test_sundry.TestSundryScripts): SystemExit: ERROR: missing _freeze_module

STINNER Victor added the comment: Thanks Miro for the bug report, it's now fixed. -- resolution: -> fixed stage: patch review -> resolved status: open -> closed ___ Python tracker

[issue45401] logging TimedRotatingFileHandler must not rename devices like /dev/null

Vinay Sajip added the comment: RotatingFileHandler is also affected by the same issue. Both RotatingFileHandler and TimedRotatingFileHandler have a shouldRollover method which, if it returns False, should prevent rollover. I would think that putting something like if not

[issue45393] help() on operator precedence has confusing entries "await" "x" and "not" "x"

Serhiy Storchaka added the comment: In past we could backport some simple documentation fixes to security-only branches. But currently only the release manager of the corresponded version has permission to commit to these branches, and we do not want to disturb them for such minor cause. I

[issue45408] [fuzzer] Weird input with continuation and newlines causes null deref in parser

Change by Batuhan Taskaya : -- nosy: +BTaskaya ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe:

[issue45337] Create venv with pip fails when target dir is under userappdata using Microsoft Store python

miss-islington added the comment: New changeset 06935bd68e3d89a4cc3f08c1d15eaa651b79a523 by Miss Islington (bot) in branch '3.9': bpo-45337: Use the realpath of the new executable when creating a venv on Windows (GH-28663)

[issue45337] Create venv with pip fails when target dir is under userappdata using Microsoft Store python

miss-islington added the comment: New changeset eabca6e593269301a0b7a36c4dc3525f04f5bb36 by Miss Islington (bot) in branch '3.10': bpo-45337: Use the realpath of the new executable when creating a venv on Windows (GH-28663)

[issue45382] platform() is not able to detect windows 11

Eryk Sun added the comment: > use the build number as reference instead of the major.minor It could check the (major, minor, build) tuple, which allows reporting 10.1+ as "post11" and minimizes hard coding of build numbers. For example, given win32_ver() iterates by (major, minor, build)

[issue45116] Performance regression 3.10b1 and later on Windows: Py_DECREF() not inlined in PGO build

Steve Dower added the comment: If we know which parts of the function are critical, perhaps we should be designing a PGO profile that actually hits them all? The current profile is very arbitrary, basically just waiting for someone motivated enough to figure out a better one. --

[issue27580] CSV Null Byte Error

Serhiy Storchaka added the comment: It looks to me that rejecting the null character is just an implementation artifact. 0 is used both as signalling value for "not set" character parameter and as the end-of-line character in the state automata. We can use different values outside of the

[issue45408] [fuzzer] Weird input with continuation and newlines causes null deref in parser

Change by Pablo Galindo Salgado : -- keywords: +patch pull_requests: +27131 stage: -> patch review pull_request: https://github.com/python/cpython/pull/28812 ___ Python tracker

[issue45408] [fuzzer] Weird input with continuation and newlines causes null deref in parser

Pablo Galindo Salgado added the comment: New changeset 0219017df7ec41839fd0d56a3076b5f09c58d313 by Pablo Galindo Salgado in branch 'main': bpo-45408: Don't override previous tokenizer errors in the second parser pass (GH-28812)

[issue45408] [fuzzer] Weird input with continuation and newlines causes null deref in parser

Change by Pablo Galindo Salgado : -- pull_requests: +27132 pull_request: https://github.com/python/cpython/pull/28813 ___ Python tracker ___

[issue45408] [fuzzer] Weird input with continuation and newlines causes null deref in parser

Change by Pablo Galindo Salgado : -- resolution: -> fixed stage: patch review -> resolved status: open -> closed ___ Python tracker ___

[issue45408] [fuzzer] Weird input with continuation and newlines causes null deref in parser

Pablo Galindo Salgado added the comment: New changeset 4ce55a2353e07962280181df40af0135aef1cf51 by Pablo Galindo Salgado in branch '3.10': [3.10] bpo-45408: Don't override previous tokenizer errors in the second parser pass (GH-28812). (GH-28813)

[issue37157] shutil: add reflink=False to file copy functions to control clone/CoW copies (use copy_file_range)

Change by STINNER Victor : -- nosy: -vstinner ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe:

[issue45262] crash if asyncio is used before and after re-initialization if using python embedded in an application

STINNER Victor added the comment: New changeset 392a89835371baa0fc4bf79ae479abb80661f57d by Matthias Reichl in branch 'main': bpo-45262, asyncio: Fix cache of the running loop holder (GH-28796) https://github.com/python/cpython/commit/392a89835371baa0fc4bf79ae479abb80661f57d --

[issue45262] crash if asyncio is used before and after re-initialization if using python embedded in an application

miss-islington added the comment: New changeset 87f0156a229e4cda92ad8e50645c5a71030caf7c by Miss Islington (bot) in branch '3.9': bpo-45262, asyncio: Fix cache of the running loop holder (GH-28796) https://github.com/python/cpython/commit/87f0156a229e4cda92ad8e50645c5a71030caf7c --

[issue45409] Support non-standard executables in venv

Change by Steve Dower : -- keywords: +patch pull_requests: +27135 stage: needs patch -> patch review pull_request: https://github.com/python/cpython/pull/28817 ___ Python tracker

[issue45409] Support non-standard executables in venv

Steve Dower added the comment: Pushed the branch so the changes are out there, but I still need to check (and probably fix) some handling of the Store package layout. The changes now will probably create some executables that won't work (pip.exe and idle.exe), so we might have to go back to

[issue45408] [fuzzer] Weird input with continuation and newlines causes null deref in parser

Łukasz Langa added the comment: Confirmed in 3.10 and 3.11: >>> ast.literal_eval(r'''\ ... \ ... (\ ... \ ''') fish: Job 1, 'python' terminated by signal SIGSEGV (Address boundary error) 3.9 raises SyntaxError: >>> ast.literal_eval(r''' ... \ ... (\ ... \ ''') Traceback (most recent call

[issue16379] SQLite error code not exposed to python

Change by Erlend E. Aasland : -- pull_requests: +27128 pull_request: https://github.com/python/cpython/pull/28809 ___ Python tracker ___

[issue45405] Python 3.10.0 does not configure on darwin using public llvm / clang

debohman added the comment: I can put together a pull request to fix this. The fix is in configure.ac. Should I include the mods from the autoreconf in the PR? -- ___ Python tracker

[issue45351] List all sockets in TCP echo server using streams

Eric V. Smith added the comment: I'm not clear why you're suggesting this change. Is this additional functionality, or is the current example broken? Is the text wrong, or just the code? -- nosy: +eric.smith ___ Python tracker

[issue45405] Python does not configure on darwin using public llvm / clang version 13.0.0

Change by debohman : -- title: Python 3.10.0 does not configure on darwin using public llvm / clang -> Python does not configure on darwin using public llvm / clang version 13.0.0 versions: -Python 3.10 ___ Python tracker

[issue45405] Python 3.10.0 does not configure on darwin using public llvm / clang

debohman added the comment: Also, what branch should the PR be on, 3.10 or main? -- ___ Python tracker ___ ___ Python-bugs-list

[issue45357] Idle does not check user config for extention configuration

Terry J. Reedy added the comment: I am puzzled by your report. As explained in the top of idlelib/confix-extensions.def, the options for four features are still defined there for compatibility reasons and user changes to those option *are* stored in ~/.idlerc/config-extensions.cfg and read

[issue45405] Python does not configure on darwin using public llvm / clang version 13.0.0

debohman added the comment: Okay, I see from the developer guide, that the generated files should be included. Is it permissible to use the current version of autoconf? -- ___ Python tracker

[issue45407] Support buffer protocol for _struct.Struct format argument

Change by Dong-hee Na : -- nosy: +corona10 ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe:

[issue31155] Encode set, frozenset, bytearray, and iterators as json arrays

Change by sedrubal : -- nosy: +sedrubal ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe:

[issue45395] Frozen stdlib modules are discarded if custom frozen modules added.

Marc-Andre Lemburg added the comment: I'm not sure I follow, but in any case, please make sure that the freeze tool in Tools/ continues to work with the new mechanism. The freeze tool would also need to know which modules are already frozen via the new script, so that modules don't get

[issue45385] Fix reference leak from descr_check

Dong-hee Na added the comment: New changeset 35d4857375b6ef8f1243db4da9c2cba0bee63ad6 by Miss Islington (bot) in branch '3.10': bpo-45385: Fix reference leak from descr_check (GH-28719) (GH-28779) https://github.com/python/cpython/commit/35d4857375b6ef8f1243db4da9c2cba0bee63ad6 --

[issue26651] Deprecate register_adapter() and register_converter() in sqlite3

Marc-Andre Lemburg added the comment: FWIW: I'm -1 on removing the possibility to register conversion or adapter hooks in sqlite3. Such mechanisms have become a standard with Python database modules and are widely used to adapt them to applications or middleware using the modules. The

[issue31399] Let OpenSSL verify hostname and IP address

Change by ramikg : -- nosy: +ramikg nosy_count: 4.0 -> 5.0 pull_requests: +27115 pull_request: https://github.com/python/cpython/pull/28602 ___ Python tracker ___

[issue29410] Moving to SipHash-1-3

Christian Heimes added the comment: I support this change, too. SipHash-1-3 is more than good enough for our use case. It provides sufficient diffusion of str and bytes hashes and has sufficient reliance against timing attacks on the PRF key. Also 64bit platforms are less affected less by

[issue45397] Doc for turtle.write missing the tuple part of the font param in 3.10+

Serhiy Storchaka added the comment: This looks like some Sphinx bug. In Python 3.8, using Sphinx: >>> from sphinx.pycode import ast >>> ast.unparse(ast.parse("('Arial', 8, 'normal')", 'eval').body) "'Arial', 8, 'normal'" For comparison, using builtin ast module in Python 3.9: >>> import

[issue45390] asyncio.Task doesn't propagate CancelledError() exception correctly.

Chris Jerdonek added the comment: > But, once the asyncio.Task is cancelled, is impossible to retrieve that > original asyncio.CancelledError(msg) exception with the message, because it > seems that *a new* asyncio.CancelledError() [without the message] is raised > when

[issue45382] platform() is not able to detect windows 11

Alex Zaslavskis added the comment: systeminfo can be option -- Added file: https://bugs.python.org/file50329/import subprocess.py ___ Python tracker ___

[issue44603] REPL: exit when the user types exit instead of asking them to explicitly type exit()

Terry J. Reedy added the comment: Steven's list left out the standard way of closing *any* windowed app -- click the close button on the title bar. Works on all major systems. Its does a little too much when python is started on a command line (by closing the console), but beginners, at

[issue45390] asyncio.Task doesn't propagate CancelledError() exception correctly.

Thomas Grainger added the comment: afaik this is intentional https://bugs.python.org/issue31033 -- nosy: +graingert ___ Python tracker ___

[issue29410] Moving to SipHash-1-3

STINNER Victor added the comment: "1.67 us +- 0.03 us: 1.78x faster" with a bytes string of 6k bytes sounds worth it to me. When we talk about "security" here, we are talking about a denial of service attack on the dict worst case performance:

[issue45397] Doc for turtle.write missing the tuple part of the font param in 3.10+

Serhiy Storchaka added the comment: Seems it was fixed in Sphinx a year ago: https://github.com/sphinx-doc/sphinx/pull/8265. Maybe we need to update the Sphinx version (but it can introduce new incompatibilities). -- ___ Python tracker

[issue45335] Default TIMESTAMP converter in sqlite3 ignores UTC offset

Erlend E. Aasland added the comment: See also: - bpo-19065: sqlite3 timestamp adapter chokes on timezones - bpo-26651 Deprecate register_adapter() and register_converter() in sqlite3 (Adding Berker to nosy list.) -- nosy: +berker.peksag ___

[issue45382] platform() is not able to detect windows 11

Marc-Andre Lemburg added the comment: It's probably time to extend the marketing version detection mechanism to use the build number as reference instead of the major.minor system version numbers. Here's a good reference for this:

[issue29410] Moving to SipHash-1-3

Inada Naoki added the comment: I am not sure this is worth doing. Microbenchmarks: ## import time ``` $ main/opt/bin/pyperf command main/opt/bin/python3 -c 'import typing,asyncio' . command: Mean +- std dev: 49.6 ms +- 0.1 ms $ siphash13/opt/bin/pyperf command

[issue45041] [sqlite3] simplify executescript()

Pablo Galindo Salgado added the comment: New changeset 3f2c433da560d7999a52f9fcba4bbd0898848520 by Erlend Egeberg Aasland in branch 'main': bpo-45041: Restore `sqlite3` executescript behaviour for `SELECT` queries (GH-28509)

[issue45398] Bugs in set operations in 3.8.10 (detected in Win7)

New submission from Алексей : x = set('abcde') y = set('bdxyz') x | y result: {'b', 'c', 'd', 'z', 'x', 'a', 'y'} but should be: {'b', 'c', 'd', 'z', 'x', 'a', 'y', 'e'} -- messages: 403362 nosy: bfx683 priority: normal severity: normal status: open title: Bugs in set

[issue29410] Moving to SipHash-1-3

Mark Shannon added the comment: Yes, this is worth doing, IMO. It adds no more code and probably reduces maintenance costs as any improvements/bug-fixes to the rust/ruby versions can be easily ported. Even if the benefit is small, the cost is basically zero. -- nosy: +Mark.Shannon

[issue45405] Python 3.10.0 does not configure on darwin using public llvm / clang

New submission from debohman : % CC=clang CXX=clang++ ./configure --enable-optimizations --with-lto checking build system type... x86_64-apple-darwin16.7.0 checking host system type... x86_64-apple-darwin16.7.0 checking for python3.10... no checking for python3... python3 checking for

[issue45398] Bugs in set operations in 3.8.10 (detected in Win7)

Alexey added the comment: Is interesting, that in win10 the bug is not reproduced too ! (only in win7!!!) -- ___ Python tracker ___

[issue41105] Add some extra content check in configure process for some empty header file who has been deprecated by glibc

Diego Alonso added the comment: Yes, I have the same problem. The empty file is needed to avoid compilation errors in certain builds, but in this case it creates an error... -- nosy: +etale-cohomology ___ Python tracker

[issue29410] Moving to SipHash-1-3

Christian Heimes added the comment: JP got back to me On 07/10/2021 14.34, Jean-Philippe Aumasson wrote: > xxHash is much faster indeed, but collisions seem trivial to find, which > might allow hash-flood DoS again (see for example > https://github.com/Cyan4973/xxHash/issues/180 >

[issue45262] crash if asyncio is used before and after re-initialization if using python embedded in an application

Change by Matthias Reichl : -- keywords: +patch nosy: +HiassofT nosy_count: 4.0 -> 5.0 pull_requests: +27124 stage: -> patch review pull_request: https://github.com/python/cpython/pull/28796 ___ Python tracker

[issue17659] no way to determine First weekday (based on locale)

Cédric Krier added the comment: I have updated the PR to be included in 3.11 -- versions: +Python 3.11 -Python 3.10 ___ Python tracker ___

[issue45400] test_name_error_suggestions_do_not_trigger_for_too_many_locals: AssertionError: 'a1' unexpectedly found in Traceback

Change by STINNER Victor : -- resolution: -> fixed stage: patch review -> resolved status: open -> closed versions: +Python 3.10 ___ Python tracker ___

[issue45116] Performance regression 3.10b1 and later on Windows: Py_DECREF() not inlined in PGO build

STINNER Victor added the comment: > How feasible would it be to use Clang or GCC on Windows? clang seems to have a good Windows support and tries to the ABI compatible with MSC which is a must have to keep wheel package support (especially for the stable ABI, used by PyQt on Windows for

[issue29410] Moving to SipHash-1-3

Marc-Andre Lemburg added the comment: On 07.10.2021 15:29, Christian Heimes wrote: > > Christian Heimes added the comment: > > JP got back to me > > On 07/10/2021 14.34, Jean-Philippe Aumasson wrote: >> xxHash is much faster indeed, but collisions seem trivial to find, which >> might

[issue45397] Doc for turtle.write missing the tuple part of the font param in 3.10+

Serhiy Storchaka added the comment: jg, please remove the copy of other message when answer. It makes painfully difficult reading the discussion for visually impaired people. -- ___ Python tracker

[issue29410] Moving to SipHash-1-3

Christian Heimes added the comment: I suggest that you write a new PEP that discusses possible improvement for str and bytes hashing. This BPO is just about SipHash-1-3. As the author and implementer of PEP 456, I only approve SipHash-1-3 as new default algorithm. All other change proposals

[issue29410] Moving to SipHash-1-3

Serhiy Storchaka added the comment: Do Rust and Ruby cache the hash of the string in the string object? If they do not then the hashing speed is more important to them. -- ___ Python tracker

[issue45116] Performance regression 3.10b1 and later on Windows: Py_DECREF() not inlined in PGO build

Mark Shannon added the comment: Sadly the MSVC team are claiming that this isn't a bug in their compiler. Not sure how we convince them that it is. The website rejects any attempt to reopen the issue. How feasible would it be to use Clang or GCC on Windows? --

[issue45404] Undefined I_* macros when building 3.10 on Ubuntu?

Serhiy Storchaka added the comment: What is the output of the following command? ./python -m sysconfig | grep HAVE_STROPTS_H Also, is there the stropts.h file on your system and where? dlocate stropts.h locate stropts.h -- nosy: +serhiy.storchaka

[issue37157] shutil: add reflink=False to file copy functions to control clone/CoW copies (use copy_file_range)

Dulanic added the comment: As a note, coreutils 9.0 cp defaults now to reflink=auto. https://www.phoronix.com/scan.php?page=news_item=GNU-Coreutils-9.0 -- nosy: +dulanic ___ Python tracker

[issue45340] Lazily create dictionaries for plain Python objects

Change by Mark Shannon : -- keywords: +patch pull_requests: +27125 stage: -> patch review pull_request: https://github.com/python/cpython/pull/28802 ___ Python tracker ___

[issue45262] crash if asyncio is used before and after re-initialization if using python embedded in an application

Matthias Reichl added the comment: We were hitting the same issue in kodi, which uses embedded sub-interpreters to run python addons, after one of the addons was switched to asyncio. The immediate cause of the assertion failure is a use-after-free issue from the running loop holder cache:

[issue45406] inspect.getouterframes() tracebacks when $CWD does not exists

Change by Miroslav Suchý : -- type: -> crash ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe:

[issue45406] inspect.getouterframes() tracebacks when $CWD does not exists

New submission from Miroslav Suchý : When you exec inspect.getouterframes() in directory, which no longer exists, then you get traceback, because the code traverse to os.getcwd() which fails. Reproducer: $ mkdir /tmp/bar $ cd /tmp/bar $ rmdir /tmp/bar $ python3 Python 3.10.0rc2 (default, Sep

[issue45393] help() on operator precedence has confusing entries "await" "x" and "not" "x"

Zachary Ware added the comment: Correct; 3.7 and 3.8 are both in security-fix-only maintenance mode; their documentation is no longer updated unless a security-related fix causes a significant change in behavior that needs to be documented. As far as fixing this issue, we have a few

[issue45397] Doc for turtle.write missing the tuple part of the font param in 3.10+

jg added the comment: I forgot to mention I'm on Windows 10 PC and see the same thing under Edge and FireFox. John G. Gammon -. .. .. .-.. .- -.. -- .. .-. .- .-. .. This message and any attachments hereto may contain confidential and/or privileged information. If you

[issue45397] Doc for turtle.write missing the tuple part of the font param in 3.10+

Serhiy Storchaka added the comment: I tested with Sphinx 1.5.4, and this issue is gone. It introduces a regression with some smart quotes (see https://github.com/sphinx-doc/sphinx/issues/9713), but it is less severe than incorrect rendering of tuples as parameter defaults. --

[issue37157] shutil: add reflink=False to file copy functions to control clone/CoW copies (use copy_file_range)

Giampaolo Rodola' added the comment: > So using copy_file_range (if available) should be the most generic solution, > which includes copy-on-write support, and server-side copy support. Doesn't this imply to pass some flag to copy_file_range()? "man copy_file_range" says: > The flags

[issue29410] Moving to SipHash-1-3

Christian Heimes added the comment: > That's certainly true, but at the same time, just focusing on string hashes only doesn't really help either, e.g. it is very easy to create a DoS with numeric keys or other objects which use trivial hashing algorithms. Marc-Andre, Victor, your postings

[issue29410] Moving to SipHash-1-3

Marc-Andre Lemburg added the comment: On 07.10.2021 12:48, Christian Heimes wrote: > >> I don't quite follow. Why is it fine that you discuss DoS, but it's not > fine when others discuss DoS ? > > But this BPO is not about discussing mitigations against DoS attacks in > general. It's about

[issue45400] test_name_error_suggestions_do_not_trigger_for_too_many_locals: AssertionError: 'a1' unexpectedly found in Traceback

STINNER Victor added the comment: > I am working on a fix Or, I missed your message. You wrote it 4 minutes before I created my PR :-) -- ___ Python tracker ___

[issue45243] [sqlite3] add support for changing connection limits

Change by Erlend E. Aasland : -- pull_requests: +27123 pull_request: https://github.com/python/cpython/pull/28790 ___ Python tracker ___

[issue45395] Frozen stdlib modules are discarded if custom frozen modules added.

Eric Snow added the comment: On Thu, Oct 7, 2021 at 1:17 AM Marc-Andre Lemburg wrote: > I'm not sure I follow, but in any case, please make sure that > the freeze tool in Tools/ continues to work with the new mechanism. > > The freeze tool would also need to know which modules are already >

[issue45395] Frozen stdlib modules are discarded if custom frozen modules added.

Marc-Andre Lemburg added the comment: On 07.10.2021 16:40, Eric Snow wrote: > > On Thu, Oct 7, 2021 at 1:17 AM Marc-Andre Lemburg > wrote: >> I'm not sure I follow, but in any case, please make sure that >> the freeze tool in Tools/ continues to work with the new mechanism. >> >> The freeze

[issue45398] Bugs in set operations in 3.8.10 (detected in Win7)

Алексей added the comment: In 3.8.9 version (in Win7 too) the bug is not reproduced! -- ___ Python tracker ___ ___ Python-bugs-list

[issue29410] Moving to SipHash-1-3

Inada Naoki added the comment: > I recommend that you add SipHash-1-3 as an additional algorithm and make it > the default. The removal of --with-hash-algorithm=siphash24 should go through > regular deprecation cycle of two Python versions. I am not sure its worth enough. Adding algorithm

[issue45398] Bugs in set operations in 3.8.10 (detected in Win7)

Change by Serhiy Storchaka : -- nosy: +rhettinger ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe:

[issue29410] Moving to SipHash-1-3

Marc-Andre Lemburg added the comment: On 07.10.2021 11:49, Inada Naoki wrote: > Hash DoS is not only for HTTP headers. Everywhere creating dict from > untrusted source can be attack vector. > For example, many API servers receive JSON as HTTP request body. Limiting > HTTP header don't

[issue45382] platform() is not able to detect windows 11

Alex Zaslavskis added the comment: That nice idea . So the dist can contain the minimal build required to say that is for example windows 11 . The simplest solution that came in mind is . Is far from perfect but it works. -- Added file: https://bugs.python.org/file50330/main.py

[issue29410] Moving to SipHash-1-3

Marc-Andre Lemburg added the comment: On 07.10.2021 12:16, Christian Heimes wrote: > >> That's certainly true, but at the same time, just focusing on string > hashes only doesn't really help either, e.g. it is very easy to > create a DoS with numeric keys or other objects which use trivial >

[issue29410] Moving to SipHash-1-3

Christian Heimes added the comment: > I don't quite follow. Why is it fine that you discuss DoS, but it's not fine when others discuss DoS ? But this BPO is not about discussing mitigations against DoS attacks in general. It's about adding SipHash1-3- and following the example of Rust and

[issue19065] sqlite3 timestamp adapter chokes on timezones

Change by Ian Fisher : -- nosy: +iafisher ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe:

  1   2   >