Alex Gaynor added the comment:
New patch uses self-signed.pythontest.net, instead of svn.python.org.
svn.python.org is signed by CACert, which is in the root on some machines.
--
Added file: http://bugs.python.org/file37113/issue22417.diff
Changes by Alex Gaynor :
--
nosy: +alex, christian.heimes, dstufft, giampaolo.rodola, janssen, pitrou
___
Python tracker
<http://bugs.python.org/issue22
Changes by Alex Gaynor :
--
keywords: +patch
Added file: http://bugs.python.org/file37121/issue22787.diff
___
Python tracker
<http://bugs.python.org/issue22
Alex Gaynor added the comment:
Latest patch fixes the urllib2_localnet tests.
--
Added file: http://bugs.python.org/file37122/issue22417.diff
___
Python tracker
<http://bugs.python.org/issue22
Changes by Alex Gaynor :
--
keywords: +needs review
___
Python tracker
<http://bugs.python.org/issue22787>
___
___
Python-bugs-list mailing list
Unsubscribe:
Alex Gaynor added the comment:
Fix for the failing test_ssl testes.
--
Added file: http://bugs.python.org/file37123/issue22417.diff
___
Python tracker
<http://bugs.python.org/issue22
Alex Gaynor added the comment:
I'm not sure I follow, where does HTTPHandler ever construct an HTTPSConnection?
--
nosy: +alex
___
Python tracker
<http://bugs.python.org/is
Alex Gaynor added the comment:
Hah! I didn't realize you meant *logging.handlers.HTTPHandler*, I thought you
meant *urllib.request.HTTPHandler*.
--
___
Python tracker
<http://bugs.python.org/is
Alex Gaynor added the comment:
Quick pass at a patch. No docs, and it should proabbly be an error to pass
context with secure=False.
--
keywords: +needs review, patch
Added file: http://bugs.python.org/file37124/issue22788.diff
___
Python tracker
New submission from Alex Earl:
As you can see below, the code in fileobject.c is removing the U from the UTF-8
(or UNICODE) when it tries to replace a U for universal line ending mode.
Python 2.7.8 (default, Jun 30 2014, 16:03:49) [MSC v.1500 32 bit (Intel)] on
win32
Type "help",
Alex Gaynor added the comment:
FWIW, I'm not convinced the pure python fallback code is sufficient either;
time.time() doesn't have the necessary resolution AFAIK? Also clock_seq is
generated using the random module's messerne twister, not SystemRandom().
---
Alex Gaynor added the comment:
FWIW, that code is all significantly simplified by the patch in
http://bugs.python.org/issue22559
--
___
Python tracker
<http://bugs.python.org/issue22
Changes by Alex Gaynor :
--
nosy: +alex, christian.heimes, dstufft, giampaolo.rodola, janssen, pitrou
___
Python tracker
<http://bugs.python.org/issue22
Alex Gaynor added the comment:
In a post-pep476 world, this method will be used on Python2.7, so it would be
good to backport now.
--
___
Python tracker
<http://bugs.python.org/issue22
Alex Gaynor added the comment:
Attached patch backports this to 2.7.
--
Added file: http://bugs.python.org/file37261/issue22417.diff
___
Python tracker
<http://bugs.python.org/issue22
New submission from Alex Gaynor:
With the pep476 backport, we need a way to pass a context argument to urrlib
--
components: Library (Lib)
messages: 231588
nosy: alex, benjamin.peterson, dstufft
priority: normal
severity: normal
status: open
title: Expose an SSLContext parameter on
Changes by Alex Gaynor :
--
keywords: +patch
Added file: http://bugs.python.org/file37263/issue22927.diff
___
Python tracker
<http://bugs.python.org/issue22
Alex Gaynor added the comment:
FWIW, Debian expiremental appears to be using a different #define for this.
Here's how we handled it in pyca/cryptography:
https://github.com/pyca/cryptography/commit/04a3f1f2c4086c0d7162b6dd79b6332d9115b2c0
--
nosy: +alex, christian.heimes, ds
Alex Gaynor added the comment:
Good to know, thanks.
--
___
Python tracker
<http://bugs.python.org/issue22935>
___
___
Python-bugs-list mailing list
Unsubscribe:
Changes by Alex Gaynor :
--
nosy: +alex, christian.heimes, dstufft, giampaolo.rodola, janssen, pitrou
versions: +Python 2.7
___
Python tracker
<http://bugs.python.org/issue22
Alex Gaynor added the comment:
Attached is a patch for 2.7
--
keywords: +patch
Added file: http://bugs.python.org/file37321/issue22960.diff
___
Python tracker
<http://bugs.python.org/issue22
Alex Gaynor added the comment:
Attached patch fixes it for Python3.
--
Added file: http://bugs.python.org/file37323/issue22960-3.diff
___
Python tracker
<http://bugs.python.org/issue22
Alex Gaynor added the comment:
This will cause it to not validate in some cases where it currently is
validating? That seems like a regression to me.
--
___
Python tracker
<http://bugs.python.org/issue22
Alex Gaynor added the comment:
I agree this is a bug, but I believe the correct output is:
no yes yes yes yes yes
--
nosy: +alex, christian.heimes, dstufft, giampaolo.rodola, janssen, pitrou
___
Python tracker
<http://bugs.python.org/issue22
New submission from Alex Gaynor:
For almost any conceivable application, os.urandom is a preferable way to
access a CSPRNG, and is less error prone, the docs should point this out.
--
assignee: docs@python
components: Documentation
files: rand.diff
keywords: patch
messages: 232436
nosy
Alex Gaynor added the comment:
As a part of this, we might want to consider changing the implementation to not
compile the SANs into a regular expression. Constantly compiling new regexs can
cause churn in the `re` cache, which can degrade performance -- also, it's
probably much worse on
Alex Gaynor added the comment:
Python 2.7.9 enabled certificate validation by default for HTTP connections,
see PEP476.
The server you're connecting to does not have a certificate that is trusted by
your client. pysphere should configure SSL appropriately for this use case.
--
New submission from Alex Gaynor:
Whether __builtins__ is a module or a dict is undefined in CPython. Use the
reliably well defined `import __builtin__` instead.
--
components: Library (Lib)
files: mock-backport.diff
keywords: patch
messages: 232838
nosy: alex, benjamin.peterson
New submission from Alex Gaynor:
This makes the urandom codebase easier to maintain by allowing porting patches
between 2.7 and 3.x easier; it also improves support for the OpenBSD platform.
Support for porting patches is not just a theoretical concern, it's likely that
Linux's
Changes by Alex Gaynor :
Added file: http://bugs.python.org/file37543/issue23115.diff
___
Python tracker
<http://bugs.python.org/issue23115>
___
___
Python-bugs-list m
New submission from Alex Potapenko:
I run Python on an arm-brcm-linux-uclibcgnueabi router. Python was
cross-compiled using hndtools-arm-linux-2.6.36-uclibc-4.5.3 toolchain. While
trying to use deluge, I realised that there's something wrong with handling C++
exceptions in C++ exte
Alex Potapenko added the comment:
Thank you for your reply, David! I will come back and reopen if I do identify a
python bug.
--
___
Python tracker
<http://bugs.python.org/issue23
Alex Potapenko added the comment:
Thank you for giving me a hint, Eric! Even though you weren't 100% right, your
got me thinking in the right direction, and I found out in the end that I have
to explicitly link python with libgcc_s on build time. Now everything works
fine. This looks l
Changes by Alex Potapenko :
--
title: armv7l C++ exceptions issue -> uClibc C++ exceptions issue
___
Python tracker
<http://bugs.python.org/issue23340>
___
_
New submission from Alex Martelli:
http://stackoverflow.com/questions/28264353/stack-overflow-in-pythons-curses-is-it-bug-in-the-module/28264823#28264823
for details. a curses.textpad on a wide-enough window, in insert mode, causes
a crash by recursion limit exceeded (in
New submission from Alex Shkop:
Added test for wssgiref.simple_server to check that environ argument contains
correct headers, query string and path.
This code wasn't covered in tests previously.
--
components: Tests
files: wsgiref_test_environ.patch
keywords: patch
messages: 2
New submission from Alex Gaynor:
In addition to the security concerns, it is now a violation of RFC7465 to offer
a cipher suite with RC4 in a ClientHello: https://tools.ietf.org/html/rfc7465
--
components: Library (Lib)
files: rc4.diff
keywords: patch
messages: 236202
nosy: alex
Alex Shkop added the comment:
Replaced "%s;%s;%s" with ';'.join() call.
--
Added file: http://bugs.python.org/file38184/wsgiref_test_environ_v2.patch
___
Python tracker
<http://bug
Alex Grönholm added the comment:
Was __await__() deliberately left out of concurrent.futures.Future or was that
an oversight? Or am I misunderstanding something?
--
nosy: +alex.gronholm
___
Python tracker
<http://bugs.python.org/issue24
Alex Lord added the comment:
Adding a patch for 3.6 since 3.5 is in beta.
--
versions: +Python 3.6 -Python 3.5
Added file: http://bugs.python.org/file39677/replace_lastrowid_3_6.patch
___
Python tracker
<http://bugs.python.org/issue16
New submission from Alex Gaynor:
https://www.openssl.org/news/secadv_20150611.txt
--
components: Library (Lib)
keywords: security_issue
messages: 245173
nosy: alex, christian.heimes, dstufft, giampaolo.rodola, janssen, paul.moore,
pitrou, steve.dower, tim.golden, zach.ware
priority
New submission from Alex Monk:
alex@alex-laptop:~$ python3
Python 3.4.3 (default, Mar 26 2015, 22:03:40)
[GCC 4.9.2] on linux
Type "help", "copyright", "credits" or "license" for more information.
>>> infj = complex(0, float("inf"))
New submission from Alex Walters:
I use the *.msi installers for python to automate deployment of... an absurd
number of python installations. I have been able to do this relatively easily,
as the Windows installer didn't change much between 2.6 and 3.4 (possibly much
longer than that,
Alex Walters added the comment:
Related to the exe installer... /? lists only 4 options, none of which are
useful in restricting the installation, or changing its location.
--
___
Python tracker
<http://bugs.python.org/issue24
Alex Walters added the comment:
and...you already addressed that. Ignore previous.
--
___
Python tracker
<http://bugs.python.org/issue24642>
___
___
Python-bug
Alex Walters added the comment:
Having now worked with the new installer, there is nothing wrong with it, and
provides sufficient scritpability, if that is a word. I only have two (and a
half) thoughts on it:
1. This should be more prominently documented. The addition of the new web
Alex Walters added the comment:
on 2.5, I figured the answer would be along those lines.
for 2, Linking to the documentation at least would be helpful (or otherwise
indicating that there are arguments that are not listed and are in the docs) if
the arguments cant be listed reasonably easily
Alex Walters added the comment:
Isn't this whats sphinx's apidoc is for?
--
nosy: +tritium
___
Python tracker
<http://bugs.python.org/issue10716>
___
___
Changes by Alex Walters :
--
resolution: -> fixed
status: open -> closed
___
Python tracker
<http://bugs.python.org/issue24642>
___
___
Python-bugs-list
Changes by Alex Walters :
--
nosy: +tritium
___
Python tracker
<http://bugs.python.org/issue23496>
___
___
Python-bugs-list mailing list
Unsubscribe:
New submission from Alex Budovski:
The svn commands need to be wrapped with "call", otherwise the batch
interpreter hangs. Attached simple fix.
--
files: externalsfix.diff
keywords: patch
messages: 247223
nosy: Alex Budovski
priority: normal
severity: normal
status:
Alex Grönholm added the comment:
Yes, Yury's approach is wrong here -- Futures should not know about asyncio,
but asyncio should be able to handle Futures natively. This seems like the
obvious solution to me. Any counterarguments?
--
nosy: +alex.gro
Alex Walters added the comment:
The vast majority of the patch is adding || Defined('bitrig') after
Defined('openbsd'). I don't know if that is an argument for or against, but on
its face, its just working around an issue of an openbsd fork not identifying
as
Alex Shkop added the comment:
Looking at this patch again, I'm wondering if it is correct to remove duplicate
filter if append=True. Perhaps in this case it is more correct to leave the
filter in place and do not append new one?
--
___
P
Alex Grönholm added the comment:
Sorry to keep you waiting. This sample code runs fine with the attached patch:
https://gist.github.com/agronholm/43c71be0028bb866753a
In short, I implemented support for concurrent.futures in the asyncio Task
class instead of making concurrent.futures aware of
New submission from Alex Budovski:
This is a known issue, from the comment, but it is causing AVs for my embedded
application when background threads are created, for example, by the _socket
builtin module.
/* Undo the effect of Py_Initialize().
Beware: if multiple interpreter and/or
Changes by Alex Budovski :
--
type: -> crash
___
Python tracker
<http://bugs.python.org/issue24770>
___
___
Python-bugs-list mailing list
Unsubscrib
Alex Grönholm added the comment:
I think concurrent.futures.Future warrants adding support for in Task. It
predates asyncio and is generic enough. Can you elaborate on what other types
you would want to support as awaitables in Task?
--
___
Python
Alex Grönholm added the comment:
I agree with Stefan and Yury. As for the tests, Yury seemed to have those in
his patches -- I'll take a look and see if they're directly applicable.
For Python 3.5 and earlier, there is a workaround to awaiting for concurrent
Futures, but it requir
Alex Grönholm added the comment:
Yury, your tests complete even without any patches on cpython default
(@74fc1af57c72). How is that possible? I verified that they are run.
--
___
Python tracker
<http://bugs.python.org/issue24
Alex Grönholm added the comment:
Nevermind, I was running the wrong Python version.
--
___
Python tracker
<http://bugs.python.org/issue24383>
___
___
Python-bug
Alex Grönholm added the comment:
I'm having trouble compiling the latest default (@859a45ca1e86). Getting linker
errors. I've updated the patch with Yury's tests in it. Would someone mind
running them? Apparently they do pass on
Alex Grönholm added the comment:
Ah hehe, I forgot to actually attach the patch. Thanks Yury.
The asyncio docs need to explicitly mention that concurrent.futures.Futures can
be directly awaited from coroutines. Aside from that, I think we're set -- just
need Guido to chime in on
Alex Grönholm added the comment:
You're right Stefan -- I too was appalled that this was not possible in 3.5 to
begin with. It feels completely natural to be able to await for concurrent
Futures. But as this is considered a feature, it'll probably have to wait until
3.6. Otherwise
Alex Grönholm added the comment:
Updated patch per review comments.
I also corrected the order of the lines in the new block. If _must_cancel is
True, it would have tried to call cancel() on _fut_waiter before it was set.
Now the code matches that of the original block.
The docs don't
Alex Grönholm added the comment:
+1. It was specifically SQLAlchemy (but not limited to it -- there are many
other blocking APIs) that made me look for a way to easily use threads with
native coroutines.
The best workaround I've come up with:
from asyncio import wrap_future
async de
New submission from Alex Grönholm:
Since Python 3.5 will not support awaiting for concurrent.futures.Futures
natively, one has to use the asyncio.futures.wrap_future() function in
coroutines like this:
async def foo():
await wrap_future(executor.submit(...))
The wrap_future() function is
Alex Grönholm added the comment:
Created issue 24785 for the documentation of wrap_future().
--
___
Python tracker
<http://bugs.python.org/issue24383>
___
___
Changes by Alex Grönholm :
--
nosy: +alex.gronholm
___
Python tracker
<http://bugs.python.org/issue24755>
___
___
Python-bugs-list mailing list
Unsubscribe:
Alex Grönholm added the comment:
Why do you want to keep threads separate from asyncio? What's the downside here?
The use of helper functions is justifiable when integrating a third party
framework or similar with asyncio, but standard library components should just
integrate well with
Alex Grönholm added the comment:
Where do we stand with this then? Should I start a thread on python-dev to get
the ball rolling?
--
___
Python tracker
<http://bugs.python.org/issue24
Alex Grönholm added the comment:
I've already made my case on python-ideas, so let's talk it over there.
--
___
Python tracker
<http://bugs.python.o
Changes by Alex Grönholm :
--
nosy: +alex.gronholm
___
Python tracker
<http://bugs.python.org/issue23749>
___
___
Python-bugs-list mailing list
Unsubscribe:
New submission from Alex Budovski:
This means initialize/run script/finalize will crash the second time, since the
inittab can have stale entries.
--
messages: 248495
nosy: Alex Budovski
priority: normal
severity: normal
status: open
title: Py_Finalize doesn't clean up PyImport_In
Alex Shkop added the comment:
@rbcollins that is exactly what was trying to say in previous comment. We can
make a change to current patch that won't affect behavior. In old API in this
sequence of filters last filter was never used:
simplefilter("ignore")
simplefilter("
Alex Shkop added the comment:
This is updated patch that doesn't alter warn_explicit behavior.
So the following:
simplefilter("ignore")
simplefilter("error", append=True)
simplefilter("ignore", append=True)
will ignore all warnings with this patc
Alex Budovski added the comment:
Interestingly enough, some of the leaked memory came from the finalize routine
itself! Here's one example:
0:004> !heap -p -a 0x00DB144346F0
address 00db144346f0 found in
_HEAP @ db0cae
HEAP_ENTRY Size Pr
Alex Grönholm added the comment:
I've implemented my background-calling code in my framework via
run_in_executor() now, so this has become a non-issue for me. I have no more
interest in this patch.
--
___
Python tracker
<http://bugs.py
Changes by Alex Grönholm :
--
nosy: +alex.gronholm
___
Python tracker
<http://bugs.python.org/issue24900>
___
___
Python-bugs-list mailing list
Unsubscribe:
New submission from Alex Etling:
Consider the following lines of code:
def test_mock(val):
fake_mock = Mock()
a = {}
fake_mock.func(a)
a['val'] = 5
fake_mock.func.assert_has_calls([call({})])
What i would expect would be for this statement to pass. What I actua
Alex Etling added the comment:
I attempted to fix this by just deepcopying on creation of the _call object, on
line 927 of mock.py but this caused a lot of strange errors I did not expect.
If you could advise on how best to proceed to fix, I would greatly appreciate
it
New submission from Alex Willmer:
The maxsize argument when initializing a Queue is expected to be an int
(technically anything that can be compared to an int). However the class takes
any value. In Python 3 this throws "TypeError: unorderable types" once e.g.
.put() is called.
On
Alex Warhawk added the comment:
I encountered this problem recently and could not find a fix, so i tried fixing
it myself.
Note that the patch attached is my first contribution to cpython as well as the
first time I used the C extension mechanism. Therefore I do not consider the
patch
New submission from alex wieder:
Hi,
This is my first bug report, so please be gentle if I don't stick to protocol
correctly. I'm also tired from spending about 8 hours tracking down this
problem.
OS Affected: XP SP3 (maybe others as well, and I'm aware that python does
alex wieder added the comment:
Terry, thanks for your feedback.
By crash, I mean python crashing with a Windows c005 error. I can't even
capture that exception in a try...except structure.
This is on an Intel Core2Duo 2.7GHz with 4 GB of RAM, with Acrobat Reader X
installed, which
alex wieder added the comment:
wish pickfile.tcl? Sorry. Too cryptic for me.
I ran the following code from the python interpreter:
import tkinter as tk
tk.TclVersion
tk.TkVersion
Both return 8.6.
--
___
Python tracker
<http://bugs.python.
Alex Warhawk added the comment:
Based on the proof-of-concept patch I submitted a few days ago I have built a
more sophisticated patch. Please review it and let me know about necessary
changes.
--
Added file: http://bugs.python.org/file40708/implement_ssl_session_reuse.patch
Alex Warhawk added the comment:
I have re-targeted the patch for 3.6. It is not a 1 to 1 port of the prior one,
but quite similar.
--
Added file:
http://bugs.python.org/file40716/implement_ssl_session_reuse_3.6.patch
___
Python tracker
<h
Alex Warhawk added the comment:
Thanks for the heads up Christian I'll try enabling client session caching. If
this does not work I'll try to adapt the patch to only allow session reusing
within the same context.
--
___
Python trac
Alex Warhawk added the comment:
Even after enabling client cache one still has to call SSL_set_session. See
documentation of SSL_CTX_set_session_cache_mode point SSL_SESS_CACHE_CLIENT.
I started thinking about not exposing a SSL_SESSION object to the user but
rather extending wrap_socket to
New submission from Alex Gaynor:
Right now uuid4 can be implemented one of 3 ways:
- If there's a libuuid (and it's not OS X's) it uses that.
- Fallback to os.urandom
- If that raises an exception, fall back to the random module
I propose to simplify this to _just_ use os
Alex Gaynor added the comment:
(Note that the speed difference would be even bigger on a recent python, 2.7.3
was before the file descriptor was cached for os.urandom)
--
___
Python tracker
<http://bugs.python.org/issue25
New submission from Alex Gaynor:
SSLv3 is broken, both _create_unverified_context and create_default_context
turn it off, but we should make all contexts turn it off, like we do for SSLv2.
A patch is attached.
--
components: Library (Lib)
files: sslv3.diff
keywords: needs review
Alex Gaynor added the comment:
Oops, there were a few failing tests on that patch. New one is green
--
Added file: http://bugs.python.org/file40927/sslv3.diff
___
Python tracker
<http://bugs.python.org/issue25
Alex Champandard added the comment:
I agree this makes --system-site-packages a useless option unless it's fixed.
We just had many beginners install pyvenv's and get very confused because of
this.
Passing ensurepip a new option to force it to install within a venv I think
would
New submission from Alex Gaynor:
Run the following code:
import socket
import ssl
import sys
def main():
ctx = ssl.create_default_context()
s = socket.create_connection(('www.bing.com', 443))
s = ctx.wrap_socket(s, server_hostname='www.bing.com
Changes by Alex Gaynor :
--
nosy: +christian.heimes, dstufft, giampaolo.rodola, janssen, pitrou
___
Python tracker
<http://bugs.python.org/issue25569>
___
___
Alex Gaynor added the comment:
A probably source of the leak is here:
https://github.com/python/cpython/blob/master/Modules/_ssl.c#L1073-L1076 `dps`
is never freed. (This is with OpenSSL 0.9.8zg)
--
___
Python tracker
<http://bugs.python.
Alex Gaynor added the comment:
I think you want sk_DIST_POINT_free actually.
--
___
Python tracker
<http://bugs.python.org/issue25569>
___
___
Python-bugs-list m
Alex Gaynor added the comment:
Tests pass and the original script runs without a leak using this patch. It
could probably be shorter if we converted from local returns to `goto fail` or
something, but I don't really have an opinion.
--
___
P
1401 - 1500 of 1613 matches
Mail list logo