[issue18233] SSLSocket.getpeercertchain()

Changes by Christian Heimes : -- versions: -Python 3.6 ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe: https:/

[issue28165] The 'subprocess' module leaks roughly 4 KiB of memory per call

Changes by Xavion : Removed file: http://bugs.python.org/file44671/Output.log ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubsc

[issue28165] The 'subprocess' module leaks roughly 4 KiB of memory per call

Xavion added the comment: It's easier to reproduce the issue if you use a timer (rather than a loop). The newly attached logfile was generated with the following code fragment. def fTest() : check_output("true") threading.Timer(1, fTest, ()).start() -- Added file:

[issue9334] argparse does not accept options taking arguments beginning with dash (regression from optparse)

Clint Olsen added the comment: Thanks for the suggestion! It seems to be extremely limited, unfortunately. I don't want option processing to cease once I hit this switch. p=argparse.ArgumentParser() p.add_argument('--subscipt_args', nargs='...') #p.add_argument('pos',nargs='*') p.add_argument(

[issue28124] Rework SSL module documentation

Changes by Christian Heimes : -- components: +SSL ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe: https://mail.

[issue17128] OS X system openssl deprecated - installer should build local libssl

Changes by Christian Heimes : -- components: +SSL ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe: https://mail.

[issue28022] SSL releated deprecation for 3.6

Changes by Christian Heimes : -- components: +SSL ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe: https://mail.

[issue19500] Add client-side SSL session resumption

Changes by Christian Heimes : -- components: +SSL ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe: https://mail.

[issue28085] SSL: Add client and server protocols for SSLContext

Changes by Christian Heimes : -- components: +SSL ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe: https://mail.

[issue18233] SSLSocket.getpeercertchain()

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL ___ Python tracker ___ ___ Python-bugs-list mailing l

[issue25852] smtplib's SMTP.connect() should store the server name in ._host for .starttls()

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL ___ Python tracker ___ ___ Python-bugs-list mailing l

[issue27629] Cannot create ssl.SSLSocket without existing socket

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL ___ Python tracker ___ ___ Python-bugs-list mailing l

[issue16487] Allow ssl certificates to be specified from memory rather than files.

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL ___ Python tracker ___ ___ Python-bugs-list mailing l

[issue23239] SSL match_hostname does not accept IP Address

Changes by Christian Heimes : -- components: +SSL ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe: https://mail.

[issue12197] non-blocking SSL write fails if a partial write was issued

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL nosy: +paul.moore, steve.dower, tim.golden, zach.ware ___ Python tracker ___

[issue20762] SSLSocket.read() not documented

Changes by Christian Heimes : -- components: +SSL ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe: https://mail.

[issue12378] smtplib.SMTP_SSL leaks socket connections on SSL error

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL nosy: +christian.heimes ___ Python tracker ___ ___ Py

[issue21541] Provide configure option --with-ssl for compilation with custom openssl

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL ___ Python tracker ___ ___ Python-bugs-list mailing l

[issue26471] load_verify_locations(cadata) should load AUX ASN.1 to supported trusted certs

Changes by Christian Heimes : -- components: +SSL ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe: https://mail.

[issue25404] ssl.SSLcontext.load_dh_params() does not handle unicode filenames properly

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL nosy: +christian.heimes ___ Python tracker ___ ___ Py

[issue20994] Disable TLS Compression

Christian Heimes added the comment: For 3.6 and 3.7, _ssl__SSLContext_impl() now sets NO_COMPRESSION. -- assignee: -> christian.heimes components: +SSL versions: -Python 3.6, Python 3.7 ___ Python tracker ___

[issue15464] ssl: add set_msg_callback function

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL versions: -Python 3.6 ___ Python tracker ___ ___ Pyt

[issue18369] X509 cert class for ssl module

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL ___ Python tracker ___ ___ Python-bugs-list mailing l

[issue27906] Socket accept exhaustion during high TCP traffic

STINNER Victor added the comment: > On the asyncio side, with debug turned on, we see nothing. Hum, I'm concerned by this issue. I would expect that in debug log, a log would be emitted. Maybe something like "accept queue saturated! we may probably loose incoming connections". Does someone se

[issue25674] test_ssl (test_algorithms) failures on bolen-ubuntu slaves: sha256.tbs-internet.com unknown host

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL ___ Python tracker ___ ___ Python-bugs-list mailing l

[issue27850] Remove 3DES from cipher list (sweet32 CVE-2016-2183)

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL ___ Python tracker ___ ___ Python-bugs-list mailing l

[issue25115] SSL_set_verify_depth not exposed by the ssl module

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL ___ Python tracker ___ ___ Python-bugs-list mailing l

[issue19084] No way to use TLS-PSK from python ssl

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL ___ Python tracker ___ ___ Python-bugs-list mailing l

[issue24516] SSL create_default_socket purpose insufficiently documented

Changes by Christian Heimes : -- components: +SSL ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe: https://mail.

[issue24334] SSLSocket extra level of indirection

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL ___ Python tracker ___ ___ Python-bugs-list mailing l

[issue23588] Errno conflicts in ssl.SSLError

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL ___ Python tracker ___ ___ Python-bugs-list mailing l

[issue11943] Add TLS-SRP (RFC 5054) support to ssl, _ssl, http, and urllib

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL ___ Python tracker ___ ___ Python-bugs-list mailing l

[issue23033] Disallow support for a*.example.net, *a.example.net, and a*b.example.net in certificate wildcard handling.

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL versions: -Python 3.5, Python 3.6 ___ Python tracker ___ ___

[issue17123] Add OCSP support to ssl module

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL ___ Python tracker ___ ___ Python-bugs-list mailing l

[issue27766] Add ChaCha20 Poly1305 to SSL ciphers

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL ___ Python tracker ___ ___ Python-bugs-list mailing l

[issue26970] Replace OpenSSL's CPRNG with system entropy source

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL ___ Python tracker ___ ___ Python-bugs-list mailing l

[issue21649] Mention "Recommendations for Secure Use of TLS and DTLS"

Changes by Christian Heimes : -- components: +SSL ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe: https://mail.

[issue22365] SSLContext.load_verify_locations(cadata) does not accept CRLs

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL ___ Python tracker ___ ___ Python-bugs-list mailing l

[issue27876] Add SSLContext.set_version_range(minver, maxver=None)

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL ___ Python tracker ___ ___ Python-bugs-list mailing l

[issue27768] ssl: get CPU cap flags for AESNI and PCLMULQDQ

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL ___ Python tracker ___ ___ Python-bugs-list mailing l

[issue18617] TLS and Intermediate Certificates

Changes by Christian Heimes : -- components: +SSL versions: -Python 3.6 ___ Python tracker ___ ___ Python-bugs-list mailing list Unsu

[issue18880] ssl.SSLSocket shutdown doesn't behave like socket.shutdown

Changes by Christian Heimes : -- components: +SSL ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe: https://mail.

[issue27995] Upgrade Python 3.4 to OpenSSL 1.0.2h on Windows

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL nosy: +christian.heimes ___ Python tracker ___ ___ Py

[issue13403] Option for XMLPRC Server to support HTTPS

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL ___ Python tracker ___ ___ Python-bugs-list mailing l

[issue27815] Make SSL suppress_ragged_eofs default more secure

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL nosy: +christian.heimes ___ Python tracker ___ ___ Py

[issue15670] PEP 3121, 384 Refactoring applied to ssl module

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL versions: -Python 3.6 ___ Python tracker ___ ___ Pyt

[issue26867] test_ssl test_options fails on ubuntu 16.04

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL nosy: +christian.heimes ___ Python tracker ___ ___ Py

[issue27391] server_hostname should only be required when checking host names

Christian Heimes added the comment: server_hostname is also required for SNI (server name indicator). Virtual hosting depends on the feature. Without SNI TLS extension you'll end up on the wrong vhost or the web server sends you the wrong certificate. The feature is pretty much required these

[issue23749] asyncio missing wrap_socket (starttls)

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL nosy: +christian.heimes versions: +Python 3.6, Python 3.7 -Python 3.4 ___ Python tracker ___

[issue27354] SSLContext.load_verify_locations cannot handle paths on Windows which cannot be encoded using mbcs

Christian Heimes added the comment: Is this still an issue? -- assignee: -> christian.heimes components: +SSL nosy: +christian.heimes stage: -> needs patch type: -> behavior versions: +Python 3.6, Python 3.7 ___ Python tracker

[issue20916] ssl.enum_certificates() will not return all certificates trusted by Windows

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL nosy: +christian.heimes versions: +Python 3.6, Python 3.7 ___ Python tracker ___

[issue27340] bytes-like objects with socket.sendall(), SSL, and http.client

Changes by Christian Heimes : -- components: +SSL stage: -> needs patch type: -> behavior versions: +Python 3.7 ___ Python tracker ___ _

[issue18546] ssl.get_server_certificate like addition for cert chain

Christian Heimes added the comment: I'm closing the ticket as duplicate of #18233 -- assignee: -> christian.heimes components: +SSL resolution: -> duplicate stage: needs patch -> resolved status: open -> closed ___ Python tracker

[issue28166] WindowsConsoleIO misbehavior when Ctrl+C is ignored

New submission from Eryk Sun: _PyOS_WindowsConsoleReadline should continue to read when interrupted by Ctrl+C if SIGINT is ignored or the handler doesn't raise an exception. Currently it breaks out of the read loop, which looks like an EOF: >>> import signal >>> signal.signal(signal.SI

[issue18293] ssl.wrap_socket (cert_reqs=...), getpeercert, and unvalidated certificates

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL versions: +Python 3.7 -Python 3.5 ___ Python tracker ___

[issue26612] test_ssl: use context manager (with) to fix ResourceWarning

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL nosy: +christian.heimes ___ Python tracker ___ ___ Py

[issue26815] SIGBUS in test_ssl.test_dealloc_warn() on "AMD64 FreeBSD 10.0 3.x" buildbot

Christian Heimes added the comment: Does the test still crash? I haven't seen a crasher for a while. -- assignee: -> christian.heimes components: +SSL nosy: +christian.heimes status: open -> pending versions: +Python 3.7 ___ Python tracker

[issue25292] ssl socket gets into broken state when client exits during handshake

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL nosy: +christian.heimes type: -> behavior versions: +Python 3.6, Python 3.7 ___ Python tracker _

[issue26254] ssl should raise an exception when trying to load an unusable key (ECC key not using a named curve)

Christian Heimes added the comment: The SSL module uses SSL_CTX_check_private_key() to verify the private key. Further validations are up to OpenSSL or you. -- assignee: -> christian.heimes components: +SSL nosy: +christian.heimes resolution: -> rejected stage: -> resolved status: op

[issue22559] [backport] ssl.MemoryBIO

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +Extension Modules, SSL type: -> enhancement ___ Python tracker ___ _

[issue15670] PEP 3121, 384 Refactoring applied to ssl module

Changes by Giampaolo Rodola' : -- nosy: -giampaolo.rodola ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe: http

[issue27768] ssl: get CPU cap flags for AESNI and PCLMULQDQ

Changes by Giampaolo Rodola' : -- nosy: -giampaolo.rodola ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe: http

[issue27876] Add SSLContext.set_version_range(minver, maxver=None)

Changes by Giampaolo Rodola' : -- nosy: -giampaolo.rodola ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe: http

[issue28123] _PyDict_GetItem_KnownHash ignores DKIX_ERROR return

STINNER Victor added the comment: If __eq__() raise an exception, _PyDict_GetItem_KnownHash() currently returns NULL and pass through the exception. To me, it looks like the correct behaviour. With your patch, it looks like the _PyDict_GetItem_KnownHash() clears the __eq__() exception: return

[issue28165] The 'subprocess' module leaks roughly 4 KiB of memory per call

Changes by Florian Bruhin : -- nosy: +The Compiler ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe: https://mail

[issue13403] Option for XMLPRC Server to support HTTPS

Changes by Petri Lehtinen : -- nosy: -petri.lehtinen ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe: https://m

[issue27354] SSLContext.load_verify_locations cannot handle paths on Windows which cannot be encoded using mbcs

STINNER Victor added the comment: > Is this still an issue? I'm not 100% sure that SSL_CTX_load_verify_locations() accepts a path encoded to UTF-8 on Windows. To be 100% sure, it's "simple": try a filename not encoded to the ANSI code page on Windows. The best would be to have an unit test

[issue26815] SIGBUS in test_ssl.test_dealloc_warn() on "AMD64 FreeBSD 10.0 3.x" buildbot

STINNER Victor added the comment: Maybe the bug was fixed indirectly, maybe we missed a recent failure. Anyway, since this issue doesn't contain any useful information and I didn't see the failure recently, I decide to close it. -- resolution: -> out of date status: pending -> closed

[issue15369] pybench and test.pystone poorly documented

Marc-Andre Lemburg added the comment: On 14.09.2016 15:20, STINNER Victor wrote: > > STINNER Victor added the comment: > >> I'd also like to request that you reword this dismissive line in the >> performance package's readme: (...) > > Please report issues of the performance module on its own

[issue15369] pybench and test.pystone poorly documented

STINNER Victor added the comment: Hum, since the discussion restarted, I reopen the issue ... "Well, pybench is not just one benchmark, it's a whole collection of benchmarks for various different aspects of the CPython VM and per concept it tries to calibrate itself per benchmark, since each b

Re: [issue15369] pybench and test.pystone poorly documented

On 15.09.2016 11:11, STINNER Victor wrote: > > STINNER Victor added the comment: > > Hum, since the discussion restarted, I reopen the issue ... > > "Well, pybench is not just one benchmark, it's a whole collection of > benchmarks for various different aspects of the CPython VM and per concept

[issue28165] The 'subprocess' module leaks roughly 4 KiB of memory per call

Antti Haapala added the comment: Ahhah, the title should say: subprocess module leaks 4kiB memory **per thread**. -- ___ Python tracker ___ __

[issue15369] pybench and test.pystone poorly documented

STINNER Victor added the comment: 2016-09-15 11:21 GMT+02:00 Marc-Andre Lemburg : > I think we are talking about different things here: calibration is > pybench means that you try to determine the overhead of the > outer loop and possible setup code that is needed to run the > the test. > (...) >

[issue28167] remove platform.linux_distribution()

New submission from Matthias Klose: platform.linux_distribution() was deprecated in 3.5, and should be removed. Can't be kept up to date, see #18872, #19213, #20454, #1180267, plus uncounted issues closed as won't fix. I'm surprised that #26041 removed the removal warnings again after such a l

[issue28167] remove platform.linux_distribution()

Changes by Chi Hsuan Yen : -- nosy: +Chi Hsuan Yen ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe: https://mail

[issue28167] remove platform.linux_distribution()

STINNER Victor added the comment: > platform.linux_distribution() was deprecated in 3.5, and should be removed. Is it replaced with the distro package? FYI I reported the issue to pip and it seems like pip now embeds and uses distro: * https://github.com/pypa/pip/issues/3823 * https://github.

[issue28167] remove platform.linux_distribution()

Berker Peksag added the comment: I think the current consensus is to keep old APIs around to make porting from Python 2 easier. That's why I opened issue 26041. See also msg256111 and "Deprecation policy PEP" proposed at https://mail.python.org/pipermail/python-committers/2016-January/003706.h

[issue28168] Use _winapi.WaitForMultipleObjects in Popen.wait()

New submission from Eryk Sun: On Unix, waiting on an instance of subprocess.Popen in the main thread is interruptible by Ctrl+C. On Windows, it currently calls _winapi.WaitForSingleObject, which isn't interruptible. It should instead call _winapi.WaitForMultipleObjects, which automatically add

[issue27973] urllib.urlretrieve() fails on second ftp transfer

Sohaib Ahmad added the comment: I didn't know that urllib.urlopen() retrieves complete object in case of FTP. When getresp() is called for big files (the one in issue26960), RETR command is initiated and server returns code 150 which means "standby for another reply" and there is where the con

[issue28168] Use _winapi.WaitForMultipleObjects in Popen.wait()

Eryk Sun added the comment: This patch makes the trivial change to the Popen.wait() method and also modifies _winapi.WaitForMultipleObjects to restart the wait if SIGINT is ignored or the handler didn't raise an exception. -- keywords: +patch stage: needs patch -> patch review Added fi

[issue27482] heap-buffer-overflow on address 0x6250000078ff

Francisco Couzo added the comment: I can confirm this bug is also present in 3.7 -- nosy: +franciscouzo versions: +Python 3.7 ___ Python tracker ___ _

[issue28128] Improve the warning message for invalid escape sequences

Emanuel Barry added the comment: Besides converting the DeprecationWarning to a Syntax{Error,Warning}, I don't see an easy way to include the offending line (or even file). The place in the code where the strings are created has no idea *where* they are being defined. AIUI, either we special-c

[issue27400] Datetime NoneType after calling Py_Finalize and Py_Initialize

Changes by Roman Evstifeev : -- nosy: +Roman.Evstifeev ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe: https://

[issue28169] shift exponent overflow

New submission from Francisco Couzo: Steps to reproduce: make distclean LDFLAGS="-lasan -lubsan" CFLAGS="-fsanitize=address -fsanitize=undefined" ./configure ASAN_OPTIONS="detect_leaks=0" make UBSAN_OPTIONS=print_stacktrace=1 ASAN_OPTIONS="allocator_may_return_null=1:detect_leaks=0" ./python -m

[issue28168] Use _winapi.WaitForMultipleObjects in Popen.wait()

Changes by Eryk Sun : Added file: http://bugs.python.org/file44674/issue_28168_02.patch ___ Python tracker ___ ___ Python-bugs-list mailing li

[issue28169] shift exponent overflow

Martin Panter added the comment: Perhaps this is a dupe of Issue 15119. When I was testing with the sanitizer, the only excessive shift error I got was explained by that bug. -- nosy: +martin.panter ___ Python tracker

[issue28137] Windows sys.path file should be renamed

Wolfgang Langner added the comment: If this is only for the use case of embedded distribution we are now only to steps away to provide a easy custom shipping of applications for Windows. 1. Take the file name of the executable to load a custom EXECUTABLENAME.path file 2. Allow to specify a mai

[issue27354] SSLContext.load_verify_locations cannot handle paths on Windows which cannot be encoded using mbcs

Steve Dower added the comment: TESTFN_UNENCODABLE will be invalid utf8 now, as the name is chosen by attempting to encode a list of names and using the first one to fail. No code pages have emoji in them AFAIK, so a test with one of those would do. ISTR looking at this function though and find

[issue28137] Windows sys.path file should be renamed

Paul Moore added the comment: You can actually handle this already, with a simple wrapper program (based on the one in PC\WinMain.c): /* Minimal main program -- everything is loaded from the library. */ #include "Python.h" #define WIN32_LEAN_AND_MEAN #include int wmain() { wchar_t **mya

[issue20160] broken ctypes calling convention on MSVC / 64-bit Windows (large structs)

Rafał Chłodnicki added the comment: Only a part of this fix was backported to 3.3 branch (in http://bugs.python.org/issue20160#msg272059). The other important part was only backported to 3.4 and up in http://bugs.python.org/issue20160#msg230723 . Should this still be fixed? -- nosy: +

[issue22733] MSVC ffi_prep_args doesn't handle 64-bit arguments properly

Rafał Chłodnicki added the comment: Maybe worth backporting to 3.3 and up? Especially if #20160 is to be backported as they seem to be related. -- nosy: +Rafał Chłodnicki ___ Python tracker ___

[issue20160] broken ctypes calling convention on MSVC / 64-bit Windows (large structs)

Christian Heimes added the comment: 3.3 no longer receives any updates, neither security nor feature updates. 3.3.7 was the final release of 3.3. -- nosy: +christian.heimes ___ Python tracker _

[issue20160] broken ctypes calling convention on MSVC / 64-bit Windows (large structs)

Christian Heimes added the comment: Small correction, 3.3 will get security updates until 2017. This bug is clearly not a security issue. The patch should not have landed in 3.3 in the first patch. https://www.python.org/dev/peps/pep-0398/#id7 -- _

[issue28138] Windows _sys.path file should allow import site

Wolfgang Langner added the comment: But this is nearly the same as a *.pth file. Using the same logic and extension then does not confuse more users. Why not doing the same as with a .pth file? Using something like a _sys.pth file if it is there it will be used for path handling. In all cases

[issue22493] Deprecate the use of flags not at the start of regular expression

Tim Graham added the comment: Could we include the offending pattern in the deprecation message? I'm attaching a proposed patch. With that patch I can more easily find the offending pattern, whereas before I had no idea: django/django/urls/resolvers.py:101: DeprecationWarning: Flags not at the

[issue28128] Improve the warning message for invalid escape sequences

R. David Murray added the comment: Are SyntaxWarnings silent by default? If not it can't even go into 3.7. -- ___ Python tracker ___

[issue20160] broken ctypes calling convention on MSVC / 64-bit Windows (large structs)

Vinay Sajip added the comment: > This bug is clearly not a security issue. I'm not sure it's all that clear - the bug could cause a crash (observed in practice - not theoretical), which perhaps could be exploited. See Steve Dower's message msg272008 in this thread. That's why I added the patch

[issue22493] Deprecate the use of flags not at the start of regular expression

Tim Graham added the comment: And on further investigation, I'm not sure how to fix the deprecation warnings in Django. We have a urlpattern like this: url(r'^(?i)CaseInsensitive/(\w+)', empty_view, name="insensitive"), The regex string r'^(?i)CaseInsensitive/(\w+)' is later substituted in t

[issue28138] Windows _sys.path file should allow import site

Steve Dower added the comment: On issue28137 I agreed with the proposal to rename to EXENAME.pth, but rather than supporting all of .pth file's syntax we would abort the process on anything we don't like. Specifically, we'd allow relative paths, absolute paths, blank lines, comments, and "imp

[issue28137] Windows sys.path file should be renamed

Steve Dower added the comment: I like it. Making the name match the exe name should have been obvious, and if nobody is opposed to simply aborting on unsupported syntax (i.e. imports other than site) I don't actually mind making it .pth. It's a separate idea, but what if the presence of a __ma

  1   2   3   >