Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | gh-99418: Make urllib.parse.urlparse enforce that a scheme must begin with ↵gentoo-3.9-7.3.16 | Miss Islington (bot) | 2024-04-24 | 2 | -1/+19 |
| | | | | | | | | | | | | | | | an alphabetical ASCII character. (GH-99421) Prevent urllib.parse.urlparse from accepting schemes that don't begin with an alphabetical ASCII character. RFC 3986 defines a scheme like this: `scheme = ALPHA *( ALPHA / DIGIT / "+" / "-" / "." )` RFC 2234 defines an ALPHA like this: `ALPHA = %x41-5A / %x61-7A` The WHATWG URL spec defines a scheme like this: `"A URL-scheme string must be one ASCII alpha, followed by zero or more of ASCII alphanumeric, U+002B (+), U+002D (-), and U+002E (.)."` (cherry picked from commit 439b9cfaf43080e91c4ad69f312f21fa098befc7) Co-authored-by: Ben Kallus <49924171+kenballus@users.noreply.github.com> | ||||
* | gh-79096: Protect cookie file created by {LWP,Mozilla}CookieJar.save() ↵ | Pascal Wittmann | 2024-04-24 | 2 | -2/+33 |
| | | | | | | | | | | | | | | | | | | | | | (GH-93463) Note: This change is not effective on Microsoft Windows. Cookies can store sensitive information and should therefore be protected against unauthorized third parties. This is also described in issue #79096. The filesystem permissions are currently set to 644, everyone can read the file. This commit changes the permissions to 600, only the creater of the file can read and modify it. This improves security, because it reduces the attack surface. Now the attacker needs control of the user that created the cookie or a ways to circumvent the filesystems permissions. This change is backwards incompatible. Systems that rely on world-readable cookies will breake. However, one could argue that those are misconfigured in the first place. (backported to 3.9 by Michał Górny) | ||||
* | bpo-42856: Add --with-wheel-pkg-dir=PATH configure option (GH-24210) | Victor Stinner | 2024-04-24 | 2 | -9/+62 |
| | | | | | | | | | | | | | | | | Add --with-wheel-pkg-dir=PATH option to the ./configure script. If specified, the ensurepip module looks for setuptools and pip wheel packages in this directory: if both are present, these wheel packages are used instead of ensurepip bundled wheel packages. Some Linux distribution packaging policies recommend against bundling dependencies. For example, Fedora installs wheel packages in the /usr/share/python-wheels/ directory and don't install the ensurepip._bundled package. ensurepip: Remove unused runpy import. backported to pypy3.9 and Gentoo-hacked by Michał Górny | ||||
* | _sysconfigdata: strip default CFLAGS and OPT | Michał Górny | 2024-04-24 | 1 | -2/+2 |
| | |||||
* | distutils: make -OO enable both opt-1 and opt-2 optimization | Michał Górny | 2024-04-24 | 2 | -10/+10 |
| | | | | | Bug: http://bugs.python.org/issue27226 Bug: https://bugs.gentoo.org/585060 | ||||
* | update version to 7.3.16release-pypy3.9-v7.3.16 | Matti Picus | 2024-04-21 | 4 | -5/+5 |
| | |||||
* | Merge branch 'py3.9' into release-pypy3.9-v7.x | Matti Picus | 2024-04-21 | 342 | -3507/+21229 |
|\ | |||||
| * | Merge branch 'main' into py3.9 | Matti Picus | 2024-04-21 | 0 | -0/+0 |
| |\ | |||||
| | * | try harder to disable host JIT for aarch64 backend tests on macos-arm64 | Matti Picus | 2024-04-21 | 2 | -1/+15 |
| | | | |||||
| | * | restore single-file skipping for aarch64 jit backend, remove splitting ↵ | Matti Picus | 2024-04-21 | 3 | -9/+10 |
| | | | | | | | | | | | | unused architectures | ||||
| * | | try harder to disable host JIT for aarch64 backend tests on macos-arm64 | Matti Picus | 2024-04-21 | 2 | -1/+15 |
| | | | |||||
| * | | restore single-file skipping for aarch64 jit backend, remove splitting ↵ | Matti Picus | 2024-04-21 | 3 | -9/+10 |
| | | | | | | | | | | | | unused architectures | ||||
| * | | fix sys/test_sysmodule for darwin | Matti Picus | 2024-04-19 | 1 | -2/+4 |
| | | | |||||
| * | | Merge branch 'main' into py3.9 | Matti Picus | 2024-04-19 | 8 | -16/+232 |
| |\| | |||||
| | * | skip variadic cffi test | Matti Picus | 2024-04-19 | 1 | -0/+2 |
| | | | |||||
| | * | use /sys/devices/system/cpu/cpu?/index? to get L3 cache size on aarch64 ↵ | Matti Picus | 2024-04-19 | 1 | -3/+3 |
| | | | | | | | | | | | | | | | | | | (issue 4939) Signed-off-by: Matti Picus <matti.picus@gmail.com> | ||||
| | * | disable JIT in rpython tests when using PyPy host on macos arm64 | Matti Picus | 2024-04-19 | 3 | -4/+39 |
| | | | |||||
| | * | disable JIT on macos-arm64 for jit backend tests (issue 4940) | Matti Picus | 2024-04-19 | 1 | -5/+8 |
| | | | |||||
| | * | skip variadic cffi test due to issue 4937 | Matti Picus | 2024-04-18 | 1 | -0/+2 |
| | | | |||||
| | * | fix _cppyy tests on macos-arm64 | Matti Picus | 2024-04-18 | 3 | -2/+4 |
| | | | |||||
| | * | create 7.3.16 release note | Matti Picus | 2024-04-17 | 2 | -0/+177 |
| | | | |||||
| | * | raise default gc nursery size to 4MB (issue 4939) | Matti Picus | 2024-04-17 | 2 | -4/+5 |
| | | | |||||
| * | | skip variadic cffi test | Matti Picus | 2024-04-17 | 1 | -0/+2 |
| | | | |||||
| * | | Merge pull request #4893 from pypy/branch/issue4876 | Matti Picus | 2024-04-16 | 3 | -2/+35 |
| |\ \ | | | | | | | | | WIN: Disable WINENV work-around since PyPy does not have a launcher, fix venv creation from a source build | ||||
| | * | | fix for running on bulldbot | Matti Picus | 2024-02-11 | 1 | -1/+8 |
| | | | | |||||
| | * | | revert debug cruft, fix venv.__init__.py for running in a src build | Matti Picus | 2024-02-11 | 2 | -6/+11 |
| | | | | |||||
| | * | | add debug cruft to tests | Matti Picus | 2024-02-08 | 1 | -0/+6 |
| | | | | |||||
| | * | | PyPy is not affected by bpo-35797 | Nulano | 2024-01-24 | 2 | -2/+17 |
| | | | | |||||
| * | | | skip variadic cffi test due to issue 4937 | Matti Picus | 2024-04-16 | 1 | -0/+2 |
| | | | | |||||
| * | | | shrink max_size in extra_tests/test_bufferedreader to make hypothesis happy | Matti Picus | 2024-04-16 | 1 | -1/+1 |
| | | | | |||||
| * | | | fix _cppyy tests on macos-arm64 | Matti Picus | 2024-04-16 | 3 | -2/+4 |
| | | | | |||||
| * | | | add gc.collect to apptest so subsequent leak checking works | Matti Picus | 2024-04-16 | 2 | -2/+11 |
| | | | | |||||
| * | | | sync pure-python stat.py with upstream to match C _stat implementation of ↵ | Matti Picus | 2024-04-15 | 1 | -5/+17 |
| | | | | | | | | | | | | | | | | filemode | ||||
| * | | | fix for cpython issue gh-111695 | Matti Picus | 2024-04-15 | 2 | -4/+18 |
| | | | | |||||
| * | | | unicode.__mul__ raises when called with non-int | Matti Picus | 2024-04-15 | 2 | -6/+6 |
| | | | | |||||
| * | | | fix test | Matti Picus | 2024-04-12 | 1 | -3/+7 |
| | | | | |||||
| * | | | close connection to avoid resource leak | Matti Picus | 2024-04-12 | 1 | -0/+1 |
| | | | | |||||
| * | | | skip/unskip tests | Matti Picus | 2024-04-12 | 2 | -1/+2 |
| | | | | |||||
| * | | | test hangs on PyPy | Matti Picus | 2024-04-10 | 1 | -0/+1 |
| | | | | |||||
| * | | | tweak test_asyncio tests | Matti Picus | 2024-04-10 | 3 | -2/+4 |
| | | | | |||||
| * | | | add missing import | Matti Picus | 2024-04-10 | 1 | -1/+1 |
| | | | | |||||
| * | | | add and test sys._git | Matti Picus | 2024-04-10 | 3 | -0/+15 |
| | | | | |||||
| * | | | fix translation on linux32 | Matti Picus | 2024-04-10 | 1 | -16/+16 |
| | | | | |||||
| * | | | remove vestiges of deleted test file | Matti Picus | 2024-04-08 | 1 | -1/+0 |
| | | | | |||||
| * | | | typo | Matti Picus | 2024-04-08 | 1 | -1/+1 |
| | | | | |||||
| * | | | use xz-tools 5.4.6 from sourceforce | Matti Picus | 2024-04-08 | 1 | -6/+6 |
| | | | | |||||
| * | | | skip crashing test on macos | Matti Picus | 2024-04-08 | 1 | -1/+2 |
| | | | | |||||
| * | | | Merge branch 'main' into py3.9 | Matti Picus | 2024-04-08 | 7 | -222/+541 |
| |\ \ \ | | | |/ | | |/| | |||||
| | * | | unskip test that passes when using pypy2.7 as test runner | Matti Picus | 2024-04-08 | 1 | -3/+7 |
| | | | | |||||
| | * | | update vendored pycparser for its 2.22 release | Matti Picus | 2024-04-07 | 4 | -3/+6 |
| | | | |