Andy Maier added the comment:
I have addressed the comments by Jim Jewett, Martin Panter and of myself in a
new version v11, which got posted.
For the expression.rst doc file, this version of the patch has its diff
sections in a logical order, so that the original text and the patched text
Georg Brandl added the comment:
PyId_sort is not a function, it's a somewhat complicated way of getting a
Python string sort (in this case, for looking up a method using
PyObject_GetAttrId). The string object is cached, with is faster than
constructing one every time with
Changes by Serhiy Storchaka storch...@gmail.com:
--
stage: commit review - resolved
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue21855
___
___
Andy Maier added the comment:
I also made sure in both files that the line length of any changed or new lines
is max 80. Sorry if that creates extra changes when looking at deltas between
change sets.
--
___
Python tracker rep...@bugs.python.org
New submission from Serhiy Storchaka:
WWW address (http://www.python.org/idle/) mentioned in About IDLE dialog
window is no longer valid.
--
assignee: docs@python
components: Documentation, IDLE
messages: 229329
nosy: docs@python, eric.araujo, ezio.melotti, georg.brandl, kbk,
New submission from Guido:
Python/frozenmain.c:27 -
https://hg.python.org/cpython/file/424fbf011176/Python/frozenmain.c#l27
Memory is allocated for sizeof(wchar_t*) * argc bytes. If argc is 0 (which is a
possibility, see below), then 0 bytes are attempted to allocate.
Note that
Changes by Ned Deily n...@acm.org:
--
nosy: +bquinlan
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue22630
___
___
Python-bugs-list mailing list
Changes by Ned Deily n...@acm.org:
--
nosy: +neologix
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue22631
___
___
Python-bugs-list mailing list
David Bolen added the comment:
Both of my FreeBSD buildbots are quite ancient (particularly so with
FreeBSD/6.4), and mostly still exist because of lack of pressure to change
them, and at least for a while having an older, legacy FreeBSD buildbot was of
some use.
I have no plans on upgrading
Ned Deily added the comment:
For the record, on the legacy web site, that URI (which you can still see as
http://legacy.python.org/idle/) redirected to the Python 2 IDLE page in the
Standard Library docs: https://docs.python.org/2/library/idle.html.
--
nosy: +ned.deily
Georg Brandl added the comment:
I guess a redirect could be added again.
--
nosy: +benjamin.peterson
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue22632
___
Ned Deily added the comment:
It could but to which page, e.g. which version of the docs?
--
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue22632
___
Serhiy Storchaka added the comment:
Should we add /idle3/ redirection for 3.x?
--
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue22632
___
___
Ned Deily added the comment:
The URI in About IDLE is redundant in that the same information on the doc
page is also available in text format in the IDLE Help menu and there is also a
link there to the full HTML docs. Perhaps the URI should just be removed from
About IDLE going forward; we
Barry A. Warsaw added the comment:
I changed the link to point here: https://docs.python.org/devguide/patch.html
--
resolution: - fixed
status: open - closed
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue21189
STINNER Victor added the comment:
The issue has a workaround: use LC_NUMERIC and LC_CTYPE locales which use the
same encoding. To avoid issues, it's probably safer to only use UTF-8 locales,
which are now available on modern Linux distro.
I don't like the idea of calling setlocale() just for
Charles-François Natali added the comment:
Annoying.
I thought CAN_RAW_FD_FRAME would be a macro, which would have made conditional
compilation easy, but it's apparently a enum value, which means we have to add
a configure-time check...
--
components: +Library (Lib) -IO
Terry J. Reedy added the comment:
Referring to previous item numbers, this new patch, relative to -2,
1. adds padx to gridding of entry widgets. (Note, editor text area runs
against scroll bar in same way as these did, but without breaks, it looks
fine.) Padding border looks better to me.
STINNER Victor added the comment:
If we drop support of FreeBSD older than 8.x for example, we should
make it official. Mention it at least in the What's New in Python 3.5
and/or the PEP 11. What do you think?
--
___
Python tracker
STINNER Victor added the comment:
Similar issue on old FreeBSD versions: issuee #22521.
--
nosy: +haypo
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue22634
___
Christopher Lee added the comment:
Hi Antoine, thanks for taking a look.
I should explain further. This code is for an introspection tool[1] that
provides an interface to write tests in python against an application.
This code is a workaround for using large timestamps[2] (i.e. larger than
David Bolen added the comment:
I suppose it depends on what the current policy (if any) is. Not sure how far
back we would officially claim to support even today. We have a 6.4 buildbot
due to history, but it's never made the stable list, and is probably in a
failing state as much or more
Georg Brandl added the comment:
This appears to be caused by the update to libffi version 3.1 in 3.4.2.
--
keywords: +3.4regression
nosy: +doko, georg.brandl
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue22634
Roundup Robot added the comment:
New changeset 6098141155f9 by Charles-François Natali in branch 'default':
Issue #18643: Add socket.socketpair() on Windows.
https://hg.python.org/cpython/rev/6098141155f9
--
___
Python tracker rep...@bugs.python.org
Claudiu Popa added the comment:
Here's a refreshed patch, which applies cleanly on tip. Also, I added a test
for the code that generates an infinite loop.
--
nosy: +Claudiu.Popa
versions: +Python 3.5 -Python 3.2, Python 3.3, Python 3.4
Added file:
Terry J. Reedy added the comment:
Idle's Help system needs a thorough review. Current issues include
16893, 21995, 17583, and a few more in my head, including revising About.
In the meanwhile, I am replacing the dead link with
'https://docs.python.org/' + sys.version[:3] +
Ned Deily added the comment:
OK, the redirect should now be in place.
--
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue22632
___
___
Roundup Robot added the comment:
New changeset d411dff4e3d4 by Terry Jan Reedy in branch '2.7':
Issue #22632: replace dead link with version-specific doc link.
https://hg.python.org/cpython/rev/d411dff4e3d4
New changeset db5e431125b1 by Terry Jan Reedy in branch '3.4':
Issue #22632: replace
Terry J. Reedy added the comment:
verified
--
resolution: - fixed
stage: - resolved
status: open - closed
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue22632
___
Roundup Robot added the comment:
New changeset 03d3f2664930 by Victor Stinner in branch '3.4':
Issue #18643: asyncio.windows_utils now reuse socket.socketpair() on Windows if
https://hg.python.org/cpython/rev/03d3f2664930
--
___
Python tracker
New submission from Josh Rosenberg:
(U) The examples for the function still show the return code in the form
os.popen would produce (a program exiting with status 1 would return 256 as the
status), but the new code from #10197 makes the status 1, not 256.
(U) This is a breaking change for
STINNER Victor added the comment:
It probably comes from this change:
---
changeset: 86879:c34e163c0086
branch: 3.3
parent: 86870:dbff708e393f
user:Tim Golden m...@timgolden.me.uk
date:Sun Nov 03 12:53:17 2013 +
files: Lib/subprocess.py
STINNER Victor added the comment:
Oh, I now understand why I feel guilty, I proposed a patch rewriting
getstatusoutput() in the issue #10197. My patch ends with:
+if os.name != 'nt':
+# convert status to be interpreted according to the wait() rules
+sts = sts 8
This fix
Josh Rosenberg added the comment:
Ah blech. Can someone with privileges edit my original message to remove the
junk at the beginning of each paragraph? Habit from an old job. Wish I could
just edit the message.
--
___
Python tracker
STINNER Victor added the comment:
Can someone with privileges edit my original message to remove the junk at
the beginning of each paragraph?
It's not possible to edit a message, only to remove it. I don't like removing
the initial message of an issue.
Don't worry, (U) looks a bullet, it
R. David Murray added the comment:
You are right, it did change in 3.3.4 (see issue 10197). That change should
not have been applied to 3.3, and obviously there was a missing test concerning
the return code format.
At this point I think we are stuck with changing the documentation. The new
Changes by Charles-François Natali cf.nat...@gmail.com:
--
resolution: - fixed
stage: patch review - resolved
status: open - closed
title: add a fallback socketpair() implementation in test.support - add a
fallback socketpair() implementation to the socket module
STINNER Victor added the comment:
You are right, it did change in 3.3.4 (see issue 10197). That change should
not have been applied to 3.3, ...
The purpose of the issue #10197 was to fix a bug on Windows: getoutput() didn't
work.
--
___
Python
R. David Murray added the comment:
But it was also a feature addition: getoutput had not been *intended* to work
on Windows. I understand why the mistake was made (the argument that it was a
bug has weight), but the fact that a versionchanged was needed mentioning 3.3.4
indicates it wasn't
Roundup Robot added the comment:
New changeset 5e8b94397f81 by Brett Cannon in branch 'default':
Issue #20152: Convert the cmath module to Argument Clinic.
https://hg.python.org/cpython/rev/5e8b94397f81
--
___
Python tracker rep...@bugs.python.org
New submission from STINNER Victor:
Attached patch modifies the ctypes.util module to not use a shell: it replaces
os.open() with subprocess.Popen on Linux.
Running a shell is slower and is more vulnerable to code injection.
I only modified code path on Linux right now. They are still calls
New submission from STINNER Victor:
Attached patch modifies the uuid module to not use a shell: it replaces
os.popen() with subprocess.Popen on UNIX.
Running a shell is slower and is more vulnerable to code injection.
I only modified code path on UNIX right now. They is still a call to
STINNER Victor added the comment:
There is one downside of my solution. For now the code uses current builtin
open() which can be overloaded (to handle reading from ZIP archive for
example, or to check permissions).
Oh, does anyone really modify the builtin open() for that? If you already
STINNER Victor added the comment:
traceback_at_exit-2.patch: Updated patch to remove import builtins from
tokenize.py, it's no more needed.
--
Added file: http://bugs.python.org/file36925/traceback_at_exit-2.patch
___
Python tracker
Roundup Robot added the comment:
New changeset 7ba47bbfe38d by Terry Jan Reedy in branch '2.7':
Issue #3068: Change 0/1 to False/True so that extension configure dialog can
https://hg.python.org/cpython/rev/7ba47bbfe38d
New changeset 94f8d65371b7 by Terry Jan Reedy in branch '3.4':
Issue #3068:
New submission from STINNER Victor:
Copy of Donald Stuff email sent to python-dev:
A big security breach of SSL 3.0 just dropped a little while ago (named POODLE).
With this there is now no ability to securely connect via SSL 3.0. I believe
that we should disable SSL 3.0 in Python similarly to
Changes by Josh Rosenberg shadowranger+pyt...@gmail.com:
--
nosy: +josh.r
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue22637
___
___
Changes by Alex Gaynor alex.gay...@gmail.com:
--
nosy: +christian.heimes, dstufft, giampaolo.rodola, janssen, pitrou
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue22638
___
Alex Gaynor added the comment:
This patch disables SSLv3 by default for Python. Uesrs can get it back by
specifiying SSL_PROTOCOLv3 explicitly.
--
keywords: +needs review, patch
nosy: +alex
Added file: http://bugs.python.org/file36926/issue22638.diff
Antoine Pitrou added the comment:
Disabling SSL 3.0 support, or CBC-mode ciphers with SSL 3.0, is sufficient
to mitigate this issue, but presents significant compatibility problems, even
today. Therefore our recommended response is to support TLS_FALLBACK_SCSV. This
is a mechanism that solves
Antoine Pitrou added the comment:
IOW, I think it may be ok to disable SSLv3 in create_default_context(), but not
necessarily in other contexts.
--
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue22638
Alex Gaynor added the comment:
create_default_context already disables SSLv3! (Good work everybody :-))
FWIW many vendors are already moving to disable SSLv3, e.g. cloudflare already
did.
--
___
Python tracker rep...@bugs.python.org
Antoine Pitrou added the comment:
How many times will it have to be repeated that SSL is used for other things
than HTTPS-on-the-Web?
--
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue22638
Donald Stufft added the comment:
I think it's fine to disable it all together. Google is planning/hoping to kill
SSL 3.0 completely from their clients in the next couple of months. They just
don't want to release a patch that disables SSL 3.0 right today.
--
Donald Stufft added the comment:
I don't know, how many times will it have to be repeated that secure defaults
matter?
SSL 3.0 can be turned back on easily enough, it isn't a hard shut off. It
changes the default just like what was done with SSLv2.0.
--
Antoine Pitrou added the comment:
The difference is that SSLv2 had been dead for long already. We don't have any
statistic about SSLv3 servers in the wild, but I'd be surprised if they had
turned entirely negligible.
--
___
Python tracker
Alex Gaynor added the comment:
CloudFlare published some statistics:
https://blog.cloudflare.com/sslv3-support-disabled-by-default-due-to-vulnerability/
--
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue22638
Donald Stufft added the comment:
There's also https://www.trustworthyinternet.org/ssl-pulse/
--
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue22638
___
Alex Gaynor added the comment:
Debian is also considering this, and link some statistics on IE6 specifically
(one of the, if not the single, largest SSLv3 users):
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=765347
--
___
Python tracker
Antoine Pitrou added the comment:
On the Web, there is indeed a good reaction time to security issues (especially
in large providers). That may not be the case for all the other SSL services
out there.
Since TLS_FALLBACK_SCSV is the recommended solution (not to mention it will
work against
Alex Gaynor added the comment:
It's been implemented in boringssl:
https://boringssl.googlesource.com/boringssl/+/2970779684c6f164a0e261e96a3d59f331123320
I don't believe it's in OpenSSL though.
--
___
Python tracker rep...@bugs.python.org
Antoine Pitrou added the comment:
Note the Debian issue is specifically for Apache, not the OpenSSL package.
If Debian decides to disable SSLv3 in its OpenSSL package, then it will be a
pretty good hint that we can do so as well :-)
--
___
Python
Donald Stufft added the comment:
OpenSSL generally doesn't have bad options disabled until they are years old.
OpenSSL takes the stance that it's up to the consumers of the OpenSSL API to
properly configure themselves.
Also it's important to note that TLS_FALLBACK_SCSV isn't actually a work
Terry J. Reedy added the comment:
The reason for the apparent writing of unchanged values is that '0' != 'False'
and '1' !- 'True'. With all booleans writen as 'False' or 'True', non-enable
boolean items can be recognized and non-changes not seen as changes. I will
next revise the patch and
Antoine Pitrou added the comment:
OpenSSL generally doesn't have bad options disabled until they are years old.
OpenSSL takes the stance that it's up to the consumers of the OpenSSL API to
properly configure themselves.
The point is, if they start exposing it, we can enable it ourselves.
Changes by Arfrever Frehtes Taifersar Arahesis arfrever@gmail.com:
--
nosy: +Arfrever
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue22635
___
Changes by Arfrever Frehtes Taifersar Arahesis arfrever@gmail.com:
--
nosy: +Arfrever
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue22636
___
Changes by Arfrever Frehtes Taifersar Arahesis arfrever@gmail.com:
--
nosy: +Arfrever
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue22637
___
Changes by Arfrever Frehtes Taifersar Arahesis arfrever@gmail.com:
--
nosy: +Arfrever
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue22638
___
New submission from Steve P:
Looking in past bug reports, I suspect the test itself is problematic. When I
paste the (erroneous) URL the tests is using into Firefox, I get a page back
from my ISP with Sorry, the website sadflkjsasf.i.nvali.d cannot be found
Here's the output of the test:
Changes by Arfrever Frehtes Taifersar Arahesis arfrever@gmail.com:
--
nosy: +Arfrever
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue22633
___
Changes by Arfrever Frehtes Taifersar Arahesis arfrever@gmail.com:
--
nosy: +Arfrever
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue22335
___
Changes by Arfrever Frehtes Taifersar Arahesis arfrever@gmail.com:
--
nosy: +Arfrever
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue15994
___
Changes by Antoine Pitrou pit...@free.fr:
--
nosy: +haypo
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue22633
___
___
Python-bugs-list mailing
Ned Deily added the comment:
I'm not sure what you are trying to do but there is no test module named
test_bad_address in the standard library, which is why you get that error.
Doing a quick search of Lib/test shows three different cases of
test_bad_address: in the test_ipaddress,
Changes by Arfrever Frehtes Taifersar Arahesis arfrever@gmail.com:
--
nosy: +Arfrever
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue22627
___
Changes by Arfrever Frehtes Taifersar Arahesis arfrever@gmail.com:
--
nosy: +Arfrever
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue22521
___
Changes by Arfrever Frehtes Taifersar Arahesis arfrever@gmail.com:
--
nosy: +Arfrever
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue22634
___
Alexander Belopolsky added the comment:
In general, you cannot expect datetime.fromtimestamp(0) + timedelta(seconds) to
return the same value as datetime.fromtimestamp(seconds). This will only be
true if you are lucky enough to live in an area where local government did not
mess with
Rishi added the comment:
I have recreated the patch(issue1610654_1.patch) and it performs more or less
like the earlier patch
Serhiy,
I agree we cannot use handmade buffering here, without seeking ahead.
I believe, we can make optimizations for streams which are buffered and
non-seekable.
Cgi
Alexander Belopolsky added the comment:
Antoine,
I don't think the behavior that you have shown is a bug in strict sense.
On my Mac, I get
$ python mkbug.py breakme
1396702800.0
1396702800.0
but on Linux,
$ python mkbug.py breakme
1396706400.0
1396702800.0
The problem here is that
Christopher Lee added the comment:
Alexander,
Ah ok thanks for clarifying that. Am I wrong then to think that this code[1]
should work as I think it should (i.e.
datetime_from_large_timestamp(example_ts) == datetime.fromtimestamp(example_ts))
I'm trying to be able to handle timestamps larger
John added the comment:
error message should contain more details about what went wrong and why
--
nosy: +lambda
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue2943
___
Alexander Belopolsky added the comment:
Your code as good as your timezone library, but you should realize that by
discarding tzinfo you are making your local_stamp ambiguous.
I am not familiar with dateutil.tz, but pytz I believe uses some tricks to make
sure astimezone() result remembers
Roundup Robot added the comment:
New changeset 613c30ffd344 by Ethan Furman in branch '3.4':
Issue20386: SocketType is again socket.socket; the IntEnum SOCK constants are
SocketKind
https://hg.python.org/cpython/rev/613c30ffd344
New changeset ef24851f340f by Ethan Furman in branch 'default':
Changes by Ethan Furman et...@stoneleaf.us:
--
resolution: - fixed
stage: patch review - resolved
status: open - closed
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue20386
___
Akira Li added the comment:
Christopher,
About your script http://paste.ubuntu.com/8562027/
dateutil may break if the local timezone had different UTC offset in the past.
You could use tzlocal module to get pytz timezone that can handle such
timezones.
To get the correct time for
Steve P added the comment:
I got test_bad_address from what was reported using make test. Perhaps
at I read the log wrong, but it was clear I got a failure. At any rate,
here's what I get with the correct test name:
sp@chip:~/Downloads/Python-3.4.2 $ ./python -m test -v -u network
Terry J. Reedy added the comment:
cfg-ext-34-4.diff: In this patch, default values are classified as bool, int,
on other. An invalid user bool or int value is replaced by the corresponding
default (which had to be a valid bool or int for the type to be set) and the
invalid value is either
Colton Leekley-Winslow added the comment:
Here is a patch. Please note that in your example \r is replaced by \n per
2.11: http://www.w3.org/TR/REC-xml/#sec-line-ends
Also, the patch is only for ElementTree, I will investigate cElementTree but no
promises.
--
keywords: +patch
nosy:
Colton Leekley-Winslow added the comment:
I sort of realized, does this mean lxml.etree would now be the offender, for
not following 2.11 and leaving the \r as-is?
--
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue17582
Colton Leekley-Winslow added the comment:
Also agree setup allowing broken code an be annoying, but it is necessary to
maintain the existing behavior. Maybe we need an additional argument for setup
that will in turn pass doraise to py_compile.compile, but retain the default
behavior in all
Christopher Lee added the comment:
Thanks Akira, everyone for all the info.
It looks like I've highjacked this bug comments to trying to solve my first
problem (i.e. datetime objects for large timestamps) instead of the bug at
hand, I feel should move that conversation elsewhere.
It appears
Ned Deily added the comment:
Thanks for the additional information. It appears this is a duplicate of
Issue17564 with the root cause being the ISP not properly rejecting an
undefined host name as expected by the test case. See the discussion there for
more information.
--
Donald Stufft added the comment:
Firefox is planning to disable SSL 3.0 as well -
https://blog.mozilla.org/security/2014/10/14/the-poodle-attack-and-the-end-of-ssl-3-0/
SSLv3 will be disabled by default in Firefox 34, which will be released on Nov
25.
--
201 - 295 of 295 matches
Mail list logo