cpython.git - https://github.com/python/cpython.git

	Commit message (Collapse)	Author	Age	Files	Lines
*	bpo-27657: Fix urlparse() with numeric paths (#661)	Tim Graham	2019-10-18	1	-21/+1
\| \| \| \| \| \| \| \| \| \|	* bpo-27657: Fix urlparse() with numeric paths Revert parsing decision from bpo-754016 in favor of the documented consensus in bpo-16932 of how to treat strings without a // to designate the netloc. * bpo-22891: Remove urlsplit() optimization for 'http' prefixed inputs.
*	bpo-32498: urllib.parse.unquote also accepts bytes (GH-7768)	Stein Karlsen	2019-10-14	1	-0/+2
\|
*	bpo-25068: urllib.request.ProxyHandler now lowercases the dict keys (GH-13489)	Zackery Spytz	2019-09-13	1	-0/+1
\|
*	bpo-12707: deprecate info(), geturl(), getcode() methods in favor of ↵	Ashwin Ramaswami	2019-09-13	2	-11/+7
\| \| \| \| \|	headers, url, and status properties for HTTPResponse and addinfourl (GH-11447) Co-Authored-By: epicfaace <aramaswamis@gmail.com>
*	bpo-35922: Fix RobotFileParser when robots.txt has no relevant crawl delay ↵	Rémi Lapeyre	2019-06-16	1	-2/+6
\| \| \| \| \|	or request rate (GH-11791) Co-Authored-By: Tal Einat <taleinat+github@gmail.com>
*	bpo-36742: Corrects fix to handle decomposition in usernames (#13812)	Steve Dower	2019-06-04	1	-3/+3
\|
*	bpo-35397: Remove deprecation and document urllib.parse.unwrap (GH-11481)	Rémi Lapeyre	2019-05-27	2	-11/+9
\|
*	bpo-36842: Implement PEP 578 (GH-12613)	Steve Dower	2019-05-23	1	-0/+1
\| \| \|	Adds sys.audit, sys.addaudithook, io.open_code, and associated C APIs.
*	bpo-35907, CVE-2019-9948: urllib rejects local_file:// scheme (GH-13474)	Victor Stinner	2019-05-22	1	-1/+1
\| \| \| \| \| \| \|	CVE-2019-9948: Avoid file reading as disallowing the unnecessary URL scheme in URLopener().open() and URLopener().retrieve() of urllib.request. Co-Authored-By: SH <push0ebp@gmail.com>
*	bpo-36948: Fix NameError in urllib.request.URLopener.retrieve (GH-13389)	Xtreak	2019-05-19	1	-5/+5
\|
*	bpo-36742: Fixes handling of pre-normalization characters in urlsplit() ↵	Steve Dower	2019-04-30	1	-4/+7
\| \| \| \|	(GH-13017)
*	bpo-12910: update and correct quote docstring (#2568)	Jörn Hees	2019-04-10	1	-13/+20
\| \| \| \| \| \|	Fixes some mistakes and misleadings in the quote function docstring: - reserved chars are never actually used by quote code, unreserved chars are - reserved chars were wrong and incomplete - mentioned that use-case is not minimal quoting wrt. RFC, but cautious quoting
*	bpo-36431: Use PEP 448 dict unpacking for merging two dicts. (GH-12553)	Serhiy Storchaka	2019-03-27	1	-2/+1
\|
*	bpo-36216: Add check for characters in netloc that normalize to separators ↵	Steve Dower	2019-03-07	1	-0/+17
\| \| \| \|	(GH-12201)
*	closes bpo-35309: cpath should be capath (GH-10699)	Boštjan Mejak	2018-11-25	1	-1/+1
\|
*	bpo-34866: Adding max_num_fields to cgi.FieldStorage (GH-9660)	matthewbelisle-wf	2018-10-19	1	-3/+19
\| \| \| \|	Adding `max_num_fields` to `cgi.FieldStorage` to make DOS attacks harder by limiting the number of `MiniFieldStorage` objects created by `FieldStorage`.
*	bpo-21475: Support the Sitemap extension in robotparser (GH-6883)	Christopher Beacham	2018-05-16	1	-0/+12
\|
*	bpo-32861: urllib.robotparser fix incomplete __str__ methods. (GH-5711)	Michael Lazar	2018-05-14	1	-5/+12
\| \| \| \| \| \|	The urllib.robotparser's __str__ representation now includes wildcard entries and the "Crawl-delay" and "Request-rate" fields. Also removes extra newlines that were being appended to the end of the string.
*	bpo-27485: Rename and deprecate undocumented functions in urllib.parse (GH-2205)	Cheryl Sabella	2018-04-25	2	-57/+152
\|
*	bpo-33034: Improve exception message when cast fails for ↵	Matt Eaton	2018-03-20	1	-1/+5
\| \| \| \|	{Parse,Split}Result.port (GH-6078)
*	Revert unneccessary changes made in bpo-30296 and apply other improvements. ↵	Serhiy Storchaka	2018-02-26	1	-1/+2
\| \| \| \|	(GH-2624)
*	urllib.request: Remove unused import (GH-5268)	INADA Naoki	2018-01-22	1	-1/+0
\|
*	bpo-32323: urllib.parse.urlsplit() must not lowercase() IPv6 scope value (#4867)	Коренберг Марк	2017-12-21	1	-4/+6
\|
*	bpo-31325: Fix usage of namedtuple in RobotFileParser.parse() (#4529)	Berker Peksag	2017-11-23	1	-5/+4
\|
*	remove a redundant lower in urllib.parse.urlsplit (#3008)	Oren Milman	2017-09-03	1	-2/+1
\|
*	urllib: Simplify splithost by calling into urlparse. (#1849)	postmasters	2017-06-20	1	-1/+1
\| \| \| \| \| \| \| \|	The current regex based splitting produces a wrong result. For example:: http://abc#@def Web browsers parse that URL as ``http://abc/#@def``, that is, the host is ``abc``, the path is ``/``, and the fragment is ``#@def``.
*	bpo-30296 Remove unnecessary tuples, lists, sets, and dicts (#1489)	Jon Dufresne	2017-05-18	1	-6/+5
\| \| \| \| \| \| \| \|	* Replaced list(<generator expression>) with list comprehension * Replaced dict(<generator expression>) with dict comprehension * Replaced set(<list literal>) with set literal * Replaced builtin func(<list comprehension>) with func(<generator expression>) when supported (e.g. any(), all(), tuple(), min(), & max())
*	bpo-29976: urllib.parse clarify '' in scheme values. (GH-984)	Senthil Kumaran	2017-05-18	1	-11/+19
\|
*	bpo-30022: Get rid of using EnvironmentError and IOError (except test… (#1051)	Serhiy Storchaka	2017-04-16	1	-1/+1
\|
*	Remove superfluous comment in urllib.error. (#1076)	Senthil Kumaran	2017-04-11	1	-4/+0
\|
*	Remove OSError related comment in urllib.request. (#1070)	Senthil Kumaran	2017-04-10	1	-1/+0
\|
*	Remove invalid comment in urllib.request. (#1054)	Senthil Kumaran	2017-04-09	1	-6/+2
\|
*	correct parse_qs and parse_qsl test case descriptions. (#968)	Senthil Kumaran	2017-04-05	1	-13/+17
\| \| \|	* correct parse_qs and parse_qsl test case descriptions.
*	bpo-16285: Update urllib quoting to RFC 3986 (#173)	Ratnadeep Debnath	2017-02-25	1	-3/+6
\| \| \| \| \| \| \| \| \| \|	* bpo-16285: Update urllib quoting to RFC 3986 urllib.parse.quote is now based on RFC 3986, and hence includes `'~'` in the set of characters that is not escaped by default. Patch by Christian Theune and Ratnadeep Debnath.
*	Issue #29142: Merge 3.6.	Xiang Zhang	2017-01-09	1	-0/+1
\|\
\| *	Issue #29142: Merge 3.5.	Xiang Zhang	2017-01-09	1	-0/+1
\| \|\
\| \| *	Issue #29142: Fix suffixes in no_proxy handling in urllib.	Xiang Zhang	2017-01-09	1	-0/+1
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	In urllib.request, suffixes in no_proxy environment variable with leading dots could match related hostnames again (e.g. .b.c matches a.b.c). Patch by Milan Oberkirch.
* \| \|	Issue #28992: Use bytes.fromhex().	Serhiy Storchaka	2016-12-21	1	-1/+1
\| \| \|
* \| \|	Remove unused imports.	Serhiy Storchaka	2016-12-16	1	-1/+0
\|/ /
* \|	Issue #25400: RobotFileParser now correctly returns default values for ↵	Berker Peksag	2016-09-18	1	-2/+6
\| \| \| \| \| \| \| \| \| \| \| \|	crawl_delay and request_rate Initial patch by Peter Wirtz.
* \|	Issue #25895: Merge from 3.5	Berker Peksag	2016-09-16	1	-2/+3
\|\ \ \| \|/
\| *	Issue #25895: Enable WebSocket URL schemes in urllib.parse.urljoin	Berker Peksag	2016-09-16	1	-2/+3
\| \| \| \| \| \| \| \|	Patch by Gergely Imreh and Markus Holtermann.
\| *	Issue #22450: Use "Accept: /" in the default headers for urllib.request	Raymond Hettinger	2016-09-09	1	-1/+1
\| \|
* \|	Issue #28022: Deprecate ssl-related arguments in favor of SSLContext.	Christian Heimes	2016-09-10	1	-0/+3
\| \| \| \| \| \| \| \| \| \| \| \| \| \|	The deprecation include manual creation of SSLSocket and certfile/keyfile (or similar) in ftplib, httplib, imaplib, smtplib, poplib and urllib. ssl.wrap_socket() is not marked as deprecated yet.
* \|	Merge	Raymond Hettinger	2016-09-09	1	-1/+1
\| \|
* \|	Issue #12319: Support for chunked encoding of HTTP request bodies	Martin Panter	2016-08-24	1	-23/+19
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	When the body object is a file, its size is no longer determined with fstat(), since that can report the wrong result (e.g. reading from a pipe). Instead, determine the size using seek(), or fall back to chunked encoding for unseekable files. Also, change the logic for detecting text files to check for TextIOBase inheritance, rather than inspecting the “mode” attribute, which may not exist (e.g. BytesIO and StringIO). The Content-Length for text files is no longer determined ahead of time, because the original logic could have been wrong depending on the codec and newline translation settings. Patch by Demian Brecht and Rolf Krahl, with a few tweaks by me.
* \|	[merge from 3.5] - Prevent HTTPoxy attack (CVE-2016-1000110)	Senthil Kumaran	2016-07-31	1	-0/+6
\|\ \ \| \|/ \| \| \| \| \| \| \| \| \| \|	Ignore the HTTP_PROXY variable when REQUEST_METHOD environment is set, which indicates that the script is in CGI mode. Issue #27568 Reported and patch contributed by Rémi Rampin.
\| *	[merge from 3.4] - Prevent HTTPoxy attack (CVE-2016-1000110)	Senthil Kumaran	2016-07-31	1	-0/+6
\| \|\ \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Ignore the HTTP_PROXY variable when REQUEST_METHOD environment is set, which indicates that the script is in CGI mode. Issue #27568 Reported and patch contributed by Rémi Rampin.
\| \| *	[merge from 3.3] Prevent HTTPoxy attack (CVE-2016-1000110)	Senthil Kumaran	2016-07-31	1	-0/+7
\| \| \|\ \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Ignore the HTTP_PROXY variable when REQUEST_METHOD environment is set, which indicates that the script is in CGI mode. Issue #27568 Reported and patch contributed by Rémi Rampin.
\| \| \| *	Prevent HTTPoxy attack (CVE-2016-1000110)	Senthil Kumaran	2016-07-31	1	-0/+7
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Ignore the HTTP_PROXY variable when REQUEST_METHOD environment is set, which indicates that the script is in CGI mode. Issue #27568 Reported and patch contributed by Rémi Rampin.