Commit Graph

5460 Commits

Author SHA1 Message Date
Ezio Melotti 36b7361fe7 HTMLParser is now able to handle slashes in the start tag. 2012-02-21 09:22:16 +02:00
Benjamin Peterson aee9dfba4a merge 2.6 with hash randomization fix 2012-02-20 21:44:56 -05:00
Barry Warsaw 1e13eb084f - Issue #13703: oCERT-2011-003: add -R command-line option and PYTHONHASHSEED
environment variable, to provide an opt-in way to protect against denial of
  service attacks due to hash collisions within the dict and set types.  Patch
  by David Malcolm, based on work by Victor Stinner.
2012-02-20 20:42:21 -05:00
Ned Deily c5df563041 Issue #12627: Implement PEP 394 for OS X framework builds.
OS X framework builds already created versioned symlinks for all
executables and scripts installed in the framework bin directory,
of the general form ${cmd} - ${cmd}2.7.  The changes here add a
hierarchy of ${cmd} -> ${cmd}2 -> ${cmd}2.7.  Per previous
practice, all of the links are created in the framework bin
directory for both the install and altinstall targets.  This is
consistent with the long-standing recommendation to manage multiple
framework versions by adding and ordering framework bin directories
on $PATH.  Also, per past practice, symlinks to all framework bin
entries are created in $prefix/bin (by default, /usr/local/bin)
for the install target and only versioned links are created for
altinstall, although the use of these links is not recommended
for framework builds and their installation is optional with
the standard OS X installers.
2012-02-19 02:19:12 +01:00
Charles-François Natali e062466480 Issue #14001: CVE-2012-0845: xmlrpc: Fix an endless loop in SimpleXMLRPCServer
upon malformed POST request.
2012-02-18 14:30:34 +01:00
Charles-François Natali 66f3cc6f8d Issue #14001: CVE-2012-0845: xmlrpc: Fix an endless loop in SimpleXMLRPCServer
upon malformed POST request.
2012-02-18 14:15:38 +01:00
Petri Lehtinen 437b149b0c Fix a variable scoping error in an sqlite3 test
Initial patch by Torsten Landschoff.

Closes #11689.
2012-02-17 21:34:45 +02:00
Petri Lehtinen 002b202009 Fix errors in sqlite3's Cursor.rowcount documentation
Closes #13995.
2012-02-16 21:42:34 +02:00
Gregory P. Smith 14dc510395 news entry for previous commit 2012-02-16 00:44:50 -08:00
Antoine Pitrou dd7e071b23 Issue #13014: Fix a possible reference leak in SSLSocket.getpeercert(). 2012-02-15 22:25:27 +01:00
Éric Araujo e897a7472d Fix parsing of build_ext --libraries option (#1326113) 2012-02-15 16:28:20 +01:00
Ezio Melotti 65d36dab4d #13987: HTMLParser is now able to handle malformed start tags. 2012-02-15 13:19:10 +02:00
Ezio Melotti d2307cb48a #13987: HTMLParser is now able to handle EOFs in the middle of a construct. 2012-02-15 12:44:23 +02:00
Antoine Pitrou c66ed457ef Issue #13020: Fix a reference leak when allocating a structsequence object fails.
Patch by Suman Saha.
2012-02-15 02:51:43 +01:00
Antoine Pitrou c39cd783fb Issue #13015: Fix a possible reference leak in defaultdict.__repr__.
Patch by Suman Saha.
2012-02-15 02:42:46 +01:00
Meador Inge ff337ccd4b Issue #13979: Fix ctypes.util.find_library ldconfig regex 2012-02-13 22:22:06 -06:00
Ezio Melotti f117443cb8 #13993: HTMLParser is now able to handle broken end tags. 2012-02-13 16:28:54 +02:00
Ezio Melotti 4b92cc3f79 #13960: HTMLParser is now able to handle broken comments. 2012-02-13 16:10:44 +02:00
Gregory P. Smith 12426998ce Issue #13930: Adds ability for 2to3 to write its output to a different
directory tree instead of overwriting the input files.  Adds three command
line options: -o/--output-dir, -W/--write-unchanged-files and --add-suffix.

Feature backports into stable release branches for 2to3 are allowed by
a special exemption:
 http://mail.python.org/pipermail/python-dev/2011-December/115089.html
2012-02-12 15:51:21 -08:00
Petri Lehtinen 587209f089 Fix sqlite3.Connection.iterdump on tables/fields with reserved names or quotes
Closes #9750
2012-02-12 21:03:02 +02:00
Florent Xicluna c227965cbd Typo in Misc/NEWS. 2012-02-12 14:49:03 +01:00
Éric Araujo 6faad8de7f Fix distutils.filelist.FileList under Windows (#13193).
The code used to call os.path.join to build a regex but without escaping
the backslash, which lead to test failures on Windows.  Antoine Pitrou
fixed it in 557a973709de by enhancing the code to accept both / and \,
with proper escaping, but in my opinion this goes against the distutils
feature freeze, hence this change.
2012-02-12 04:41:36 +01:00
Ned Deily c47a459251 Issue #13994: Earler partial revert of Distutils enhancements in 2.7
has left two versions of customize_compiler, the original in
distutils.sysconfig and another copy in distutils.ccompiler, with some
parts of distutils calling one and others using the other.
Complete the revert back to only having one in distutils.sysconfig as
is the case in 3.x.
2012-02-11 20:40:24 +01:00
Ned Deily 0d0ea48709 Issue #13590: On OS X 10.7 and 10.6 with Xcode 4.2, building
Distutils-based packages with C extension modules may fail because
Apple has removed gcc-4.2, the version used to build python.org
64-bit/32-bit Pythons.  If the user does not explicitly override
the default C compiler by setting the CC environment variable,
Distutils will now attempt to compile extension modules with clang
if gcc-4.2 is required but not found. Also as a convenience, if
the user does explicitly set CC, substitute its value as the default
compiler in the Distutils LDSHARED configuration variable for OS X.
(Note, the python.org 32-bit-only Pythons use gcc-4.0 and the 10.4u
SDK, neither of which are available in Xcode 4.  This change does not
attempt to override settings to support their use with Xcode 4.)
2012-02-10 12:59:06 +01:00
Senthil Kumaran 59e7c8f177 Issue #9021: Add an introduction to the copy module. Doc changes suggested by Terry Reedy. 2012-02-09 18:22:01 +08:00
Senthil Kumaran 607e31eddf Fix Issue #6005: Examples in the socket library documentation use sendall,
where relevant, instead send method. Patch contributed by Brian Brazil.
2012-02-09 17:43:31 +08:00
Petri Lehtinen c7fd523ac5 Issue #10811: Fix recursive usage of cursors. Instead of crashing, raise a ProgrammingError now. 2012-02-06 22:04:00 +02:00
Ned Deily 2c8bf04308 Issue #10881: Fix test_site failures with OS X framework builds. 2012-02-06 00:55:50 +01:00
Terry Jan Reedy adb87e2677 Issue 964437 Make IDLE help window non-modal.
Patch by Guilherme Polo and Roger Serwy.
2012-02-05 15:10:55 -05:00
Ned Deily 61c9534363 Issue #13933: IDLE auto-complete did not work with some imported
module, like hashlib.  (Patch by Roger Serwy)
2012-02-04 18:35:23 +01:00
Ned Deily fbc56fde26 Issue #13901: Prevent test_distutils failures on OS X with --enable-shared. 2012-02-03 02:39:49 +01:00
Petri Lehtinen fe6f9d0edc Document absoluteness of sys.executable
Closes #13402.
2012-02-02 21:26:05 +02:00
Petri Lehtinen 0518f470b1 sqlite3: Handle strings with embedded zeros correctly
Closes #13676.
2012-02-01 22:20:13 +02:00
Terry Jan Reedy b98000ab5b #13506 Add '' to path for interactive interpreter by adding with_cwd parameter
to PyShell.PyShell.transfer_path() and changing elsewhere as needed.
Original patches by Marco Scataglini and Roger Serwy.
2012-01-31 02:09:25 -05:00
Antoine Pitrou 88c51e8cb1 Issue #13806: The size check in audioop decompression functions was too strict and could reject valid compressed data.
Patch by Oleg Plakhotnyuk.
2012-01-28 22:01:59 +01:00
Antoine Pitrou 374b4ea9da Issue #13885: CVE-2011-3389: the _ssl module would always disable the CBC IV attack countermeasure. 2012-01-27 09:44:08 +01:00
Antoine Pitrou d358e0554b Issue #13885: CVE-2011-3389: the _ssl module would always disable the CBC IV attack countermeasure. 2012-01-27 09:42:45 +01:00
Brett Cannon 64b2b6a84d Issue #13883: Document all platforms PYTHONCASEOK works on. 2012-01-26 18:32:24 -05:00
Florent Xicluna a1f948bdec Issue #12501: merge the discordant NEWS entries. 2012-01-24 21:05:10 +01:00
Antoine Pitrou d1c818a9c0 Issue #11235: Fix OverflowError when trying to import a source file whose modification time doesn't fit in a 32-bit timestamp. 2012-01-24 17:44:06 +01:00
Senthil Kumaran b05f91d155 NEWS entry for Issue6631 2012-01-21 11:45:12 +08:00
Meador Inge da747c3d97 Issue #2134: Clarify token.OP handling rationale in tokenize documentation. 2012-01-19 00:17:44 -06:00
Nadeem Vawda d7664dee0c Issue #13781: Fix GzipFile to work with os.fdopen()'d file objects. 2012-01-19 00:40:46 +02:00
Jesus Cea 4a8ba19783 Closes #13803: Under Solaris, distutils doesn't include bitness in the directory name 2012-01-18 03:51:38 +01:00
Antoine Pitrou 3b6a31412f Issue #13589: Fix some serialization primitives in the aifc module.
Patch by Oleg Plakhotnyuk.
2012-01-17 17:13:04 +01:00
Jesus Cea 23fbd8ccb1 Berkeley DB: Erratic behaviour of "DBEnv->rep_elect()" because a typo 2012-01-17 00:17:10 +01:00
Amaury Forgeot d'Arc dee76e627d Issue #13774: json: Fix a SystemError when a bogus encoding is passed to
json.loads().
2012-01-13 22:53:25 +01:00
Senthil Kumaran bcd833f30f - Issue #13642: Unquote before b64encoding user:password during Basic
Authentication. Patch contributed by Joonas Kuorilehto and Michele Orrù.
2012-01-11 00:09:24 +08:00
Antoine Pitrou d76088d972 Issue #13636: Weak ciphers are now disabled by default in the ssl module
(except when SSLv2 is explicitly asked for).
2012-01-03 22:46:48 +01:00
Charles-François Natali 3aa59e327c Issue #9975: socket: Fix incorrect use of flowinfo and scope_id. Patch by
Vilmos Nebehaj.
2012-01-02 15:38:27 +01:00