summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* bump to 2.7.15v2.7.15Benjamin Peterson2018-04-291-3/+3
|
* generate 2.7.15 NEWSBenjamin Peterson2018-04-291-0/+6
|
* Indicate that _PyGC_Head is only 8-byte aligned. (closes bpo-33374)Florian Weimer2018-04-292-1/+19
| | | | | | | | | By spec, the "long double" in _PyGC_Head requires the union to always be 16-byte aligned. However, obmalloc only yields 8-byte alignment. Compilers including GCC 8 are starting to use alignment information to do store-merging. So, the "long double" needs to be changed to a simple "double" as was long ago done in Python 3 by e348c8d154cf6342c79d627ebfe89dfe9de23817. For 2.7, we need to add some dummy padding to make sure _PyGC_Head stays the same size.
* 2.7.15rc1 version bumpv2.7.15rc1Benjamin Peterson2018-04-142-5/+5
|
* make NEWS for 2.7.15rc1Benjamin Peterson2018-04-14167-370/+1693
|
* bpo-33148: Update Windows build to use OpenSSL 1.0.2oSteve Dower2018-04-144-3/+4
| | | | closes https://github.com/python/cpython/pull/6474
* [2.7] bpo-33184: Update macOS installer build to use OpenSSL 1.0.2o. ↵Miss Islington (bot)2018-04-142-3/+4
| | | | | | | (GH-6408) (GH-6471) (cherry picked from commit 76215a4481191b648de522a4e2120f60822f6b9c) Co-authored-by: Ned Deily <nad@python.org>
* [2.7] Fix errant NEWS item: bpo-19019 -> bpo-17128 (GH-6470)Ned Deily2018-04-141-0/+0
|
* [2.7] Backport macOS universal build and installer fixes from 3.6. (GH-6469)Ned Deily2018-04-1418-711/+739
| | | | | | | | | | | | | | | | | | | | | | | | | | These include: - bpo-32726: Provide an additional, more modern macOS installer variant that supports macOS 10.9+ systems in 64-bit mode only. Upgrade the supplied third-party libraries to OpenSSL 1.0.2n and SQLite 3.22.0. The 10.9+ installer now supplies its own private copy of Tcl/Tk 8.6.8. - bpo-24414: Default macOS deployment target is now set by ``configure`` to the build system's OS version (as is done by Python 3), not ``10.4``; override with, for example, ``./configure MACOSX_DEPLOYMENT_TARGET=10.4``. - bpo-19019: All 2.7 macOS installer variants now supply their own version of ``OpenSSL 1.0.2``; the Apple-supplied SSL libraries and root certificates are not longer used. The ``Installer Certificate`` command in ``/Applications/Python 2.7`` may be used to download and install a default set of root certificates from the third-party ``certifi`` package. - bpo-11485: python.org macOS Pythons no longer supply a default SDK value (e.g. ``-isysroot /``) or specific compiler version default (e.g. ``gcc-4.2``) when building extension modules. Use ``CC``, ``SDKROOT``, and ``DEVELOPER_DIR`` environment variables to override compilers or to use an SDK. See Apple's ``xcrun`` man page for more info. - prepare for pending Apple removal of 32-bit support in future macOS release
* [2.7] bpo-31920: Fixed handling directories as arguments in the ↵Serhiy Storchaka2018-04-103-20/+17
| | | | | | | ``pygettext`` script. (GH-6259) (GH-6436) Based on patch by Oleg Krasnikov. (cherry picked from commit c93938b5beea4c3f592119ebee6d4029558db8de)
* [2.7] bpo-8243: Doc patch for curses.window.addstr and curses.window.addch ↵Miss Islington (bot)2018-04-072-0/+14
| | | | | | | (GH-5179) (GH-6405) (cherry picked from commit ef5ce884a41c8553a7eff66ebace908c1dcc1f89) Co-authored-by: Jay Crotts <crotts.jay@gmail.com>
* [2.7] bpo-27212: Modify islice recipe to consume initial values preceding ↵Cheryl Sabella2018-04-023-9/+90
| | | | | start (GH-6195) (GH-6339) (cherry picked from commit da1734c58d2f97387ccc9676074717d38b044128)
* [2.7] bpo-33132: Fix reference counting issues in the compiler. (GH-6209). ↵Serhiy Storchaka2018-04-011-18/+19
| | | | | | | (GH-6322) (cherry picked from commit a95d98607efe0c43475b354543e49bf8e240bc6f) Co-authored-by: Serhiy Storchaka <storchaka@gmail.com>
* [2.7] Gitignore gmon.out (GH-5796) (GH-6328)Serhiy Storchaka2018-03-311-0/+1
| | | | | | | | | | gmon.out is generated when profiling turned on Full Configuration: ./configure --prefix=$PWD/install --enable-profiling --enable-big-digits=30 --with-pydebug --with-assertions --with-valgrind. (cherry picked from commit 95ad3822a2b6287772bd752b6ab493c6d4198d4b) Co-authored-by: Neeraj Badlani <neerajbadlani@gmail.com>
* [2.7] bpo-33096: Fix ttk.Treeview.insert. (GH-6228) (GH-6326)Serhiy Storchaka2018-03-315-1/+3546
| | | | | | | Allow ttk.Treeview.insert to insert iid that has a false boolean value. Note iid=0 and iid=False would be same. (cherry picked from commit 3ab44c0783eebdff687014f7d14d5dec59b6bd39) Co-authored-by: Garvit Khatri <garvitdelhi@gmail.com>
* [2.7] Fix error message in sqlite connection thread check. (GH-6028). (GH-6325)Serhiy Storchaka2018-03-311-2/+2
| | | | | (cherry picked from commit 030345c0bfc2f76684666fe5c61e766ba5debfe6) Co-authored-by: Takuya Akiba <469803+iwiwi@users.noreply.github.com>
* bpo-31544: Fix a reference leak to 'self' after the previous target error ↵scoder2018-03-312-6/+23
| | | | | | handling fixes. (GH-6318) This change generally splits the xmlparser creation code into an unsafe part with "rollback" error handling and a safe "object initialisation done" part with normal decref cleanup.
* bpo-33163: Upgrade pip to 9.0.3 and setuptools to v39.0.1. (GH-6284)Miss Islington (bot)2018-03-281-0/+1
| | | | | (cherry picked from commit c0518cde7a8404f310cd3495e77e612820ecad4f) Co-authored-by: Ned Deily <nad@python.org>
* Fix description about SimpleXMLRPCServer constructor parameter ↵Miss Islington (bot)2018-03-261-1/+1
| | | | | | | | bind_and_activate. (GH-776) Passing True as the `bind_and_activate` *do* immediately opening and binding to their socket. (cherry picked from commit e6223579c87b93f3e60d28796f521587d88091d4) Co-authored-by: cocoatomo <cocoatomo77@gmail.com>
* Fix typo and edit for clarity in the docstrings of sys.float_info. (GH-2251)Miss Islington (bot)2018-03-261-3/+2
| | | | | (cherry picked from commit 0301c9bdd1ebd788d1334cf3fe06c48f35bab0dc) Co-authored-by: Stefano Taschini <taschini@users.noreply.github.com>
* [2.7] bpo-33127: Compatibility patch for LibreSSL 2.7.0 (GH-6210) (GH-6215)Christian Heimes2018-03-243-9/+19
| | | | | | | | | | | | | LibreSSL 2.7 introduced OpenSSL 1.1.0 API. The ssl module now detects LibreSSL 2.7 and only provides API shims for OpenSSL < 1.1.0 and LibreSSL < 2.7. Documentation updates and fixes for failing tests will be provided in another patch set. Signed-off-by: Christian Heimes <christian@python.org>. (cherry picked from commit 4ca0739c9d97ac7cd45499e0d31be68dc659d0e1) Co-authored-by: Christian Heimes <christian@python.org>
* bpo-31544: Avoid calling "PyObject_GetAttrString()" (and potentially ↵scoder2018-03-243-2/+68
| | | | executing user code) with a live exception set. (GH-3992)
* Upgrade pip to v9.0.3 and setuptools to v39.0.1 (GH-6184) Miss Islington (bot)2018-03-223-2/+2
| | | | | (cherry picked from commit d93b5161af12291f3f98a260c90cc2975ea9e9cd) Co-authored-by: Donald Stufft <donald@stufft.io>
* Fix typos in mmap() error messages (GH-6173)Miss Islington (bot)2018-03-211-2/+2
| | | | | (cherry picked from commit 9308dea3e1fd565d50a76a667e4e8ef0568b7053) Co-authored-by: Zackery Spytz <zspytz@gmail.com>
* Update pip to 9.0.2 and setuptools to 38.6.1 (GH-6133) (GH-6135)Miss Islington (bot)2018-03-173-2/+2
| | | | | (cherry picked from commit 7f81bb2addbbccfa45a2fc1aa6030f26dcf4bd78) Co-authored-by: Donald Stufft <donald@stufft.io>
* [2.7] bpo-17288: Prevent jumps from 'return' and 'exception' trace events. ↵xdegaye2018-03-133-15/+93
| | | | | (GH-6111) (cherry picked from commit e32bbaf376a09c149fa7c7f2919d7c9ce4e2a055)
* [2.7] bpo-33026: Fix jumping out of "with" block by setting f_lineno. ↵Miss Islington (bot)2018-03-113-0/+34
| | | | | | | | | (GH-6026). (GH-6074) (GH-6076) (cherry picked from commit 26c9f565d016db21257a60d29ab2c99383dd5ac7) (cherry picked from commit 04aadf23eac51fec2e436c5960c1362bbb7d03de) Co-authored-by: Serhiy Storchaka <storchaka@gmail.com>
* Clear possible exception before calling PyTuple_Pack in IMPORT_NAME (GH-6033)Xiang Zhang2018-03-091-1/+8
|
* [2.7] closes bpo-32997: Fix REDOS in fpformat (GH-5984)Jamie Davis2018-03-063-1/+16
| | | | | | The regex to decode a number in fpformat is susceptible to catastrophic backtracking. This is a potential DOS vector if a server is using fpformat on untrusted number strings. Replace it with an equivalent non-vulnerable regex. The match behavior of the new regex is slightly different. It captures the whole integer part of the number in one group, Leading zeros are stripped off later.
* [2.7] bpo-32981: Fix catastrophic backtracking vulns (GH-5955)Benjamin Peterson2018-03-046-3/+39
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Prevent low-grade poplib REDOS (CVE-2018-1060) The regex to test a mail server's timestamp is susceptible to catastrophic backtracking on long evil responses from the server. Happily, the maximum length of malicious inputs is 2K thanks to a limit introduced in the fix for CVE-2013-1752. A 2KB evil response from the mail server would result in small slowdowns (milliseconds vs. microseconds) accumulated over many apop calls. This is a potential DOS vector via accumulated slowdowns. Replace it with a similar non-vulnerable regex. The new regex is RFC compliant. The old regex was non-compliant in edge cases. * Prevent difflib REDOS (CVE-2018-1061) The default regex for IS_LINE_JUNK is susceptible to catastrophic backtracking. This is a potential DOS vector. Replace it with an equivalent non-vulnerable regex. Also introduce unit and REDOS tests for difflib. Co-authored-by: Tim Peters <tim.peters@gmail.com> Co-authored-by: Christian Heimes <christian@python.org>. (cherry picked from commit 0e6c8ee2358a2e23117501826c008842acb835ac)
* bpo-32963: Fix the tutorial to state source has a default encoding of ASCII ↵Brett Cannon2018-03-021-8/+1
| | | | (GH-5961)
* [2.7] bpo-32903: Fix a memory leak in os.chdir() on Windows (GH-5801). (#5947)Alexey Izbyshev2018-03-012-7/+10
| | | | | | (cherry picked from commit 3e197c7a6740d564ad52fb7901c07d5ff49460f5) Co-authored-by: Alexey Izbyshev <izbyshev@users.noreply.github.com>
* bpo-18533: Avoid RuntimeError from repr() of recursive dictview (#4823) (#5357)bennorth2018-02-264-7/+46
| | | (cherry picked from commit d7773d92bd11640a8c950d6c36a9cef1cee36f96)
* bpo-32500: Correct the documentation for PySequence_Size() and ↵Miss Islington (bot)2018-02-251-3/+2
| | | | | | | | PySequence_Length() (GH-5767) Dropped the part that says: "For objects that do not provide sequence protocol". (cherry picked from commit 7a1e1786f98ad49caa157dcdf14ada9d0b07d0fd) Co-authored-by: Zackery Spytz <zspytz@gmail.com>
* [2.7] bpo-25059: Clarify the print separator usage in tutorial (GH-5879)Cheryl Sabella2018-02-251-1/+1
| | | | | By default `print` adds spaces between its arguments. (cherry picked from commit 84c4b0cc67ceb4b70842b78c718b6e8214874d6a)
* bpo-31454: Include information about "import X as Y" in Modules tutorial ↵Miss Islington (bot)2018-02-251-0/+19
| | | | | | | (GH-4041) (cherry picked from commit fbee88244e8921afdb29fde51a9a010a8ae18277) Co-authored-by: Mario Corchero <mariocj89@gmail.com>
* Delete a broken threading.local example (GH-5870)Miss Islington (bot)2018-02-251-5/+1
| | | | | | This code never did anything correct or useful. The class attribute will never be affected, and the condition will never be true. (cherry picked from commit 5fb632e83136399bad9427ee23ec8b771695290a) Co-authored-by: Aaron Gallagher <habnabit@users.noreply.github.com>
* [2.7] bpo-30622: Fix NPN for OpenSSL 1.1.1-pre1 (GH-5876) (#5882)Christian Heimes2018-02-251-21/+26
| | | | | | Signed-off-by: Christian Heimes <christian@python.org>. (cherry picked from commit 29eab55309b9f78b79074d26db16a44e7841c639) Co-authored-by: Christian Heimes <christian@python.org>
* Fix ssl module, Python 2.7 doesn't have Py_MAX (#5878)Christian Heimes2018-02-251-1/+2
| | | Signed-off-by: Christian Heimes <christian@python.org>
* [2.7] bpo-32647: Link ctypes extension with libdl. (GH-5550) (#5877)Christian Heimes2018-02-252-0/+6
| | | | | | | | | The ctypes module used to depend on indirect linking for dlopen. The shared extension is now explicitly linked against libdl on platforms with dl. Signed-off-by: Christian Heimes <christian@python.org>. (cherry picked from commit 5bb9692575f10f4a7c7f1c2c0c70956baf6d5c23) Co-authored-by: Christian Heimes <christian@python.org>
* [2.7] bpo-30622: Improve NPN support detection (GH-5859) (#5863)Christian Heimes2018-02-253-7/+38
| | | | | | | | | The ssl module now detects missing NPN support in LibreSSL. Co-Authored-By: Bernard Spil <brnrd@FreeBSD.org> Signed-off-by: Christian Heimes <christian@python.org>. (cherry picked from commit 6cdb7954b0a578d899e4b78b868ea59eef08480a) Co-authored-by: Christian Heimes <christian@python.org>
* [2.7] bpo-32185: Don't send IP in SNI TLS extension (GH-5865) (#5871)Miss Islington (bot)2018-02-252-2/+42
| | | | | | | | | The SSL module no longer sends IP addresses in SNI TLS extension on platforms with OpenSSL 1.0.2+ or inet_pton. Signed-off-by: Christian Heimes <christian@python.org> (cherry picked from commit e9370a47389903bb72badc95032ec84a0ebbf8cc) Co-authored-by: Christian Heimes <christian@python.org>
* bpo-25404: SSLContext.load_dh_params() non-ASCII path (GH-3459)Christian Heimes2018-02-253-5/+23
| | | | | SSLContext.load_dh_params() now supports non-ASCII path. Signed-off-by: Christian Heimes <christian@python.org>
* bpo-31518: Change TLS protocol for Debian (#3661)Christian Heimes2018-02-245-9/+12
| | | | | | | Debian Unstable has disabled TLS 1.0 and 1.1 for SSLv23_METHOD(). Change TLS/SSL protocol of some tests to PROTOCOL_TLS or PROTOCOL_TLSv1_2 to make them pass on Debian. Signed-off-by: Christian Heimes <christian@python.org>
* bpo-32923: Unittest doc: replace `whilst` with `while` (GH-5833)Miss Islington (bot)2018-02-231-1/+1
| | | | | | | `whilst` and `while` are both english words, `whilst` is not as commonly used. This can be confusing to readers whose primary language is not english. (cherry picked from commit 98f42aac23f3863973cb6e9964c5212cfd3a1d98) Co-authored-by: Mariatta <Mariatta@users.noreply.github.com>
* [2.7] bpo-30028: make test.support.temp_cwd() fork-safe (GH-1066) (GH-5825)Anselm Kruis2018-02-233-1/+36
| | | | | | | Make test.support.temp_cwd() fork-safe. The context manager test.support.temp_cwd() no longer removes the temporary directory when executing in a process other than the parent it entered from. If a forked child exits the context manager it won't do the cleanup.. (cherry picked from commit 33dddac00ba8d9b72cf21b8698504077eb3c23ad) Co-authored-by: Anselm Kruis <a.kruis@science-computing.de>
* [2.7] bpo-31848: Fix broken error handling in Aifc_read.initfp() when the ↵Miss Islington (bot)2018-02-214-0/+12
| | | | | | | | | | | SSND chunk is not found (GH-5240) (GH-5781) Initialize self._ssnd_chunk so that aifc.Error is raised as intended, not AttributeError. (cherry picked from commit 80d20b918bd8a882043c493a7f958333ecb41727) Co-authored-by: Zackery Spytz <zspytz@gmail.com>
* [2.7] closes bpo-32008: don't use PROTOCOL_TLSv1 in example (GH-5789) (#5792)Benjamin Peterson2018-02-211-2/+2
| | | | | It's bad form to pin to an old version of TLS. ssl.SSLContext has the right protocol default, so let's not pass anyway.. (cherry picked from commit e9edee0b65650c4f9db90cefc2e9a8125bad762c)
* Fix typo in docs (GH-5763)Raymond Hettinger2018-02-191-1/+1
|
* [2.7] bpo-21060 Improve error message for "setup.py upload" without dist ↵Éric Araujo2018-02-192-1/+6
| | | | | | | files (GH-5726). (cherry picked from commit 08a6926b2584040fe3c3f06263b0b5f1fbbdc24c) Co-authored-by: Éric Araujo <merwok@netwok.org>
generated by cgit v0.12 at 2026-01-08 02:38:58 (GMT)