Change by Alex Gaynor :
--
components: +Interpreter Core
nosy: +Mark.Shannon, alex
___
Python tracker
<https://bugs.python.org/issue46159>
___
___
Python-bug
Alex Gaynor added the comment:
Sticking with 100k is not scientific though ;-) Empiricism is science!
I'm probably the person responsible for Django's process, which is to increase
by some % (10% or 20% IIRC) every release.
As you point out, the exact value one should use is a f
Alex Gaynor added the comment:
It seems to no longer be crashing with alpha5. Hopefully it's actually fixed
and not merely having a more subtle failure mode.
--
___
Python tracker
<https://bugs.python.org/is
Changes by Alex Gaynor :
--
nosy: +alex
___
Python tracker
<http://bugs.python.org/issue1621>
___
___
Python-bugs-list mailing list
Unsubscribe:
http://mail.pyth
Alex Gaynor added the comment:
This is caused by a cache which is kept of array's for different (Structure,
length) pairs.
--
nosy: +alex
___
Python tracker
<http://bugs.python.org/is
Alex Gaynor added the comment:
Personally, I regard every C function which, for obscure internal details,
doesn't take keyword arguments as a sad bug, which should of course be fixed :)
--
nosy: +alex
___
Python tracker
<http://bugs.py
Alex Gaynor added the comment:
These feel like a shell injection waiting to happen to me.
--
nosy: +alex
___
Python tracker
<http://bugs.python.org/issue13
Changes by Alex Gaynor :
--
nosy: +alex
___
Python tracker
<http://bugs.python.org/issue13274>
___
___
Python-bugs-list mailing list
Unsubscribe:
http://mail.pyth
Changes by Alex Gaynor :
--
nosy: +alex
___
Python tracker
<http://bugs.python.org/issue13340>
___
___
Python-bugs-list mailing list
Unsubscribe:
http://mail.pyth
Alex Gaynor added the comment:
This already exists, as functools.partial:
http://docs.python.org/library/functools.html#functools.partial
--
nosy: +alex
resolution: -> invalid
status: open -> closed
___
Python tracker
<http://bugs.p
New submission from Alex Gaynor :
I don't have a particularly minimal test case for this, however I am able to
reproduce it consistently (so far reproduced on multiple machines, 32-bit and
64-bit on 2.6 and 2.7), using these steps:
First get a checkout of the PyPy repository:
hg clon
Alex Gaynor added the comment:
Antoine asked for a gdb bt, here's the last couple of useful frames:
#0 _PyWeakref_ClearRef (self=0x4000) at Objects/weakrefobject.c:97
#1 0x004d4c66 in handle_weakrefs (old=0x78a2b0,
unreachable=0x7fff87b0) at Modules/gcmodule.
Alex Gaynor added the comment:
Turns out this was a subtle bug in some raw memory manipulation code, which
amaury spotted.
--
resolution: -> invalid
status: open -> closed
___
Python tracker
<http://bugs.python.org/i
New submission from Alex Gaynor :
In 2.7 ast.literal_eval blows up with a set for input:
>>> import ast
>>> ast.literal_eval("{1}")
--
messages: 148897
nosy: alex
priority: low
severity: normal
status: open
title: ast.literal_eval fails
Alex Gaynor added the comment:
Patch with tests
--
keywords: +patch
Added file: http://bugs.python.org/file23859/x.diff
___
Python tracker
<http://bugs.python.org/issue13
Alex Gaynor added the comment:
There's no support for comprehensions of any sort, and confusingly limited
support for arithmetic ops, I'd like to keep the scope of this issue small,
basically backporting 90bf0631bfb8 and adding the tests (which I can also add
Alex Gaynor added the comment:
I'll chip in my 2 cents as well and say this also seems too domain specific and
not useful enough for the stdlib.
--
nosy: +alex
___
Python tracker
<http://bugs.python.org/is
Alex Gaynor added the comment:
Raymond, Antoine: I don't see your claims as contradictory, it's definitely
true that the Python standardlib has historically tried to keep reprs as being
eval-able, I think Antoine's correct that the vast majority of 3rd-party code
does not
Alex Gaynor added the comment:
For what it's worth I proposed this on -ideas a while ago, the sticking points
were what does `not in` do (no one had an answer anyone was happy with for
this), and do we need a way to override it from the other perspective (e.g. if
I want to do `Speci
Changes by Alex Gaynor :
--
nosy: +alex
___
Python tracker
<http://bugs.python.org/issue13704>
___
___
Python-bugs-list mailing list
Unsubscribe:
http://mail.pyth
Changes by Alex Gaynor :
--
nosy: +alex
___
Python tracker
<http://bugs.python.org/issue13703>
___
___
Python-bugs-list mailing list
Unsubscribe:
http://mail.pyth
Changes by Alex Gaynor :
--
nosy: +alex
___
Python tracker
<http://bugs.python.org/issue13707>
___
___
Python-bugs-list mailing list
Unsubscribe:
http://mail.pyth
Changes by Alex Gaynor :
--
nosy: +alex
___
Python tracker
<http://bugs.python.org/issue13697>
___
___
Python-bugs-list mailing list
Unsubscribe:
http://mail.pyth
Alex Gaynor added the comment:
Except, it's a totally non-scalable approach. People have vulnerabilities all
over their sites which they don't realize. Some examples:
django-taggit (an application I wrote for handling tags) parses tags out an
input, it stores these in a set to
Alex Gaynor added the comment:
Perl is so paranoid they obscure their variable names! In all seriousness,
both Perl and Ruby are vulnerable to the timing attacks, and as far as I know
the JVM is not patching this themselves, but telling applications to fix it
themselves (I know JRuby
Changes by Alex Gaynor :
--
nosy: +alex
___
Python tracker
<http://bugs.python.org/issue13723>
___
___
Python-bugs-list mailing list
Unsubscribe:
http://mail.pyth
Alex Gaynor added the comment:
You're seriously underestimating the number of vulnerable dicts. It has
nothing to do with the module, and everything to do with the origin of the
data. There's tons of user code that's
Alex Gaynor added the comment:
I don't see why this is incorrect, type(a) -> type, and object is a superclass
of type.
--
nosy: +alex
___
Python tracker
<http://bugs.python.org
Changes by Alex Gaynor :
--
nosy: +alex
___
Python tracker
<http://bugs.python.org/issue12370>
___
___
Python-bugs-list mailing list
Unsubscribe:
http://mail.pyth
New submission from Alex Gaynor :
All storing immutable objects in the memo dict does is slow stuff down, due to
having a larger hash table, and on some other Python's causing hilarious levels
of GC pressure. Using http://paste.pocoo.org/show/421310/ as a benchmark,
CPython get&#
Alex Gaynor added the comment:
A slightly cleverer version (or less clever, depending on how you approach the
issue) that also works with tuples of immutable content.
--
Added file: http://bugs.python.org/file22499/d.diff
___
Python tracker
<h
Alex Gaynor added the comment:
Switched to using assertIs, as merwok suggested.
--
Added file: http://bugs.python.org/file22500/d.diff
___
Python tracker
<http://bugs.python.org/issue12
Alex Gaynor added the comment:
Amaury points out: this is not strictly about immutable objects, but rather
objects who's deepcopy is themselves (identity-wise), in some (rare I think)
cases this could provide a slowdown. Specifically a case of [(1, 2, 3)] *
1 would be slower, becau
Changes by Alex Gaynor :
--
nosy: +alex
___
Python tracker
<http://bugs.python.org/issue12575>
___
___
Python-bugs-list mailing list
Unsubscribe:
http://mail.pyth
New submission from Alex Gaynor :
>From python-ideas:
introduce array.zeroes, a new classmethod that provides an alternative
constructor, its signature is zeroes(typecode, length), which allows for
preallocating an array, with a lower overhead than methods such as
array(typecode,
Alex Gaynor added the comment:
1) Yes, it address a real concern that arose during Armin's GSOC project which
has been developing a unified template compilation architecture (via the AST
module) for Django and Jinja2.
2) Asking speed questions about this is silly IMO, if compiling func
Changes by Alex Gaynor :
--
nosy: +alex
___
Python tracker
<http://bugs.python.org/issue12957>
___
___
Python-bugs-list mailing list
Unsubscribe:
http://mail.pyth
Changes by Alex Gaynor :
--
nosy: +alex
___
Python tracker
<http://bugs.python.org/issue11549>
___
___
Python-bugs-list mailing list
Unsubscribe:
http://mail.pyth
Changes by Alex Gaynor :
--
nosy: +alex
___
Python tracker
<http://bugs.python.org/issue11477>
___
___
Python-bugs-list mailing list
Unsubscribe:
http://mail.pyth
Alex Gaynor added the comment:
Yes, this is known as catastrophic backtracking, and there isn't really a
solution for it, some regexps can't be efficiently matched.
--
nosy: +alex
___
Python tracker
<http://bugs.python.o
Changes by Alex Gaynor :
--
nosy: +alex
___
Python tracker
<http://bugs.python.org/issue11682>
___
___
Python-bugs-list mailing list
Unsubscribe:
http://mail.pyth
New submission from Alex Gaynor :
This is related to the discussion we had at the PyCon language summit about C
vs Python function binding. If you create a partial instance and put it on a
class it doesn't create bound instances. This behavior is a tad surprising in
my view. At a mi
Alex Gaynor added the comment:
Indeed I completely missed the section at the bottom. A note in the above
section would be a useful addition.
--
___
Python tracker
<http://bugs.python.org/issue11
Changes by Alex Gaynor :
--
nosy: +alex
___
Python tracker
<http://bugs.python.org/issue11743>
___
___
Python-bugs-list mailing list
Unsubscribe:
http://mail.pyth
Alex Gaynor added the comment:
FWIW in PyPy we have
https://bitbucket.org/pypy/pypy/src/default/lib_pypy/disassembler.py which we
use for some of our tools.
--
nosy: +alex
___
Python tracker
<http://bugs.python.org/issue11
Changes by Alex Gaynor :
--
nosy: +alex
___
Python tracker
<http://bugs.python.org/issue9269>
___
___
Python-bugs-list mailing list
Unsubscribe:
http://mail.pyth
Changes by Alex Gaynor :
--
nosy: +alex
___
Python tracker
<http://bugs.python.org/issue1062277>
___
___
Python-bugs-list mailing list
Unsubscribe:
Alex Gaynor added the comment:
The C standard (and/or the POSIX one, I forget) says sqrt(-0.0) returns -0.0.
--
nosy: +alex
___
Python tracker
<http://bugs.python.org/issue11
Alex Gaynor added the comment:
It returns "PyPy" on pypy.
--
nosy: +alex
___
Python tracker
<http://bugs.python.org/issue11985>
___
___
Python-bugs-l
Alex Gaynor added the comment:
Why not use Py_EnterRecursiveCall?
--
nosy: +alex
___
Python tracker
<http://bugs.python.org/issue12017>
___
___
Python-bugs-list m
Alex Gaynor added the comment:
This bug tracker is for filing bugs in Python itself, for support with 3rd
party libraries you should try their mailing lists or IRC channels.
--
nosy: +alex
resolution: -> invalid
status: open -> closed
___
Alex Gaynor added the comment:
I am someone who is interested in having this, but FWIW my motivation is
slightly more narrow, I only really need abi3-friendly buffer support with
contiguous 1d buffers. Not sure if there'd be interest in doing a smaller
version before figuring out the e
Change by Alex Gaynor :
--
keywords: +security_issue
nosy: +alex
___
Python tracker
<https://bugs.python.org/issue39421>
___
___
Python-bugs-list mailin
Alex Gaynor added the comment:
Here's my suggestion:
End of line reached without finding the end of string literal. Are you missing
a closing quote?
--
nosy: +alex
___
Python tracker
<https://bugs.python.org/is
Change by Alex Gaynor :
--
nosy: +alex
___
Python tracker
<https://bugs.python.org/issue42486>
___
___
Python-bugs-list mailing list
Unsubscribe:
New submission from Alex Gaynor :
This function is incredibly useful for efficient interoperability between
Python and other languages with UTF-8 based strings (e.g. Rust). Right now it's
not possible to do interop without several copies/allocations if you're trying
to build an
Change by Alex Gaynor :
--
assignee: -> alex
___
Python tracker
<https://bugs.python.org/issue41784>
___
___
Python-bugs-list mailing list
Unsubscrib
Change by Alex Gaynor :
--
keywords: +patch
pull_requests: +21307
stage: -> patch review
pull_request: https://github.com/python/cpython/pull/22252
___
Python tracker
<https://bugs.python.org/issu
Alex Gaynor added the comment:
I think less is more, one API is plenty :-)
It looks to me like the API is already supported on PyPy, so I think it's fine
from that perspective:
https://foss.heptapod.net/pypy/pypy/-/blob/branch/py3.7/pypy/module/cpyext/unicodeobject.py
Alex Gaynor added the comment:
Py_buffer is not part of the limited API at all, so I don't think it's usable
for this.
--
___
Python tracker
<https://bugs.python.o
Alex Gaynor added the comment:
It's a big project I think :-) Py_Buffer is allocated on the stack, so either
we'd have to agree to never change it's ABI (size, alignment, etc.) or we'd
need to completely change the interface.
--
__
New submission from Alex Gaynor :
Currently PyObject_GenericSetDict is part of the stable API, but
PyObject_GenericGetDict is not. I noticed this while working on
https://github.com/PyO3/pyo3/pull/1207
Because of the symmetry here, it seems appropriate to promote Get.
--
components
Alex Gaynor added the comment:
This looks like a bug to me. While
https://github.com/python/cpython/commit/2ff58a24e8a1c7e290d025d69ebaea0bbead3b8c
added it to the header, it did not add it to
https://github.com/python/cpython/blob/master/PC/python3dll.c which is required
Change by Alex Gaynor :
--
components: +C API
___
Python tracker
<https://bugs.python.org/issue42415>
___
___
Python-bugs-list mailing list
Unsubscribe:
Change by Alex Gaynor :
--
versions: +Python 3.10
___
Python tracker
<https://bugs.python.org/issue42415>
___
___
Python-bugs-list mailing list
Unsubscribe:
Changes by Alex Gaynor :
--
nosy: +alex
___
Python tracker
<http://bugs.python.org/issue13819>
___
___
Python-bugs-list mailing list
Unsubscribe:
http://mail.pyth
Alex Gaynor added the comment:
Django's tests will *not* be run with HASHEED=0, if they're broken with hash
randomization then they are likely broken on random.choice(["32-bit", "64-bit",
"pypy", "jython", "ironpython"]) and we s
Alex Gaynor added the comment:
On Sat, Jan 21, 2012 at 5:42 PM, Gregory P. Smith wrote:
>
> Gregory P. Smith added the comment:
>
> On Sat, Jan 21, 2012 at 2:45 PM, Antoine Pitrou
> wrote:
> >
> > Antoine Pitrou added the comment:
> >
> >> You sai
New submission from Alex Gaynor :
ATM there's no tests (at least in 2.x, I haven't checked 3.x yet) for this
behavior:
>>> os.path.exists("/tmp\x00abcds")
Traceback (most recent call last):
File "", line 1, in
File "/usr/lib/python3.2/genericp
Changes by Alex Gaynor :
--
nosy: +alex
___
Python tracker
<http://bugs.python.org/issue13848>
___
___
Python-bugs-list mailing list
Unsubscribe:
http://mail.pyth
Alex Gaynor added the comment:
On Wed, Jan 25, 2012 at 7:45 AM, Dave Malcolm wrote:
>
> Dave Malcolm added the comment:
>
> I've found a bug in my patch; insertdict writes the old non-randomized
> hash value into me_hash at:
>ep->me_hash = hash;
> rather t
Alex Gaynor added the comment:
On Thu, Jan 26, 2012 at 4:00 PM, Martin v. Löwis wrote:
>
> Martin v. Löwis added the comment:
>
> I'd like to propose an entirely different approach: use AVL trees for
> colliding strings, for dictionaries containing only unicode or
Alex Gaynor added the comment:
On Thu, Jan 26, 2012 at 5:42 PM, Martin v. Löwis wrote:
>
> Martin v. Löwis added the comment:
>
> > What happens if, instead of putting strings in a dictionary directly, I
> > have them wrapped in something. For example, the classes Ant
Alex Gaynor added the comment:
I'm sorry then, but I'm a little confused. I think we pretty clearly
established earlier that requiring users to make changes anywhere they
stored user data would be dangerous, because these locations are often in
libraries or other places where the cod
Alex Gaynor added the comment:
So, to my reading of teh compatibility PEP this cannot be added wholesale,
unless there is a pure Python version as well. However, if it replaced re
(read: patched) it would be valid.
On Sun, Jan 29, 2012 at 1:26 AM, Nick Coghlan wrote:
>
> Nick Coghlan
Alex Gaynor added the comment:
On Mon, Feb 6, 2012 at 4:41 PM, Marc-Andre Lemburg
wrote:
>
> Marc-Andre Lemburg added the comment:
>
> Gregory P. Smith wrote:
> >
> > Gregory P. Smith added the comment:
> >
> >>
> >>> The release man
Alex Gaynor added the comment:
On Mon, Feb 6, 2012 at 5:04 PM, Marc-Andre Lemburg
wrote:
>
> Marc-Andre Lemburg added the comment:
>
> Alex Gaynor wrote:
> > Can't randomization just be applied to integers as well?
>
> A simple seed xor'ed with the hash
New submission from Alex Gaynor :
http://paste.pocoo.org/show/550884/ will reliably segfault Python3 on all
platforms (similar versions for Python2 using itertools work)
--
components: Interpreter Core
messages: 153344
nosy: alex, benjamin.peterson
priority: normal
severity: normal
New submission from Alex Gaynor :
This is inconsistant with regular functions, which unfortunately prevents them
from being used interchangeably.
--
messages: 153649
nosy: alex
priority: normal
severity: normal
status: open
title: Cannot set attributes on staticmethod
Changes by Alex Gaynor :
--
nosy: +alex
___
Python tracker
<http://bugs.python.org/issue2377>
___
___
Python-bugs-list mailing list
Unsubscribe:
http://mail.pyth
New submission from Alex Gaynor :
This adds a new opcode which for certain list comprehensions (ones with no if
statements and only a single comprehension), preallocates the list to the
appropriate size.
Patch is against 2.7, because it was a bit easier. On:
def f():
for i in range
Changes by Alex Gaynor :
--
nosy: +alex
___
Python tracker
<http://bugs.python.org/issue14212>
___
___
Python-bugs-list mailing list
Unsubscribe:
http://mail.pyth
Alex Gaynor added the comment:
FWIW pypy has an __buffer__ method (used exclusively internally, AFAIK), which
has semantics similar to your first proposal.
--
nosy: +alex
___
Python tracker
<http://bugs.python.org/issue13
Alex Gaynor added the comment:
This shouldn't be a problem for PyPy, in fact I'm almost positive that we
implement this already (since Django has a test that uses this "feature").
If/when the spec is changed please make sure there are tests for all these
cases so we *k
Change by Alex Gaynor :
--
nosy: +alex
___
Python tracker
<https://bugs.python.org/issue37461>
___
___
Python-bugs-list mailing list
Unsubscribe:
Changes by Alex Gaynor :
--
nosy: -alex
___
Python tracker
<http://bugs.python.org/issue30319>
___
___
Python-bugs-list mailing list
Unsubscribe:
Changes by Alex Gaynor :
--
nosy: +alex
___
Python tracker
<http://bugs.python.org/issue30879>
___
___
Python-bugs-list mailing list
Unsubscribe:
Alex Gaynor added the comment:
This came up on m.d.s.p. today:
https://groups.google.com/d/msg/mozilla.dev.security.policy/K3sk5ZMv2DE/fx6c3WWFBgAJ
I haven't dug in deeply, but it sounds like we handle IDNs in CNs and SANs
differently?
I think we should look for a way to solve that spe
Changes by Alex Gaynor :
--
nosy: +dstufft, janssen
___
Python tracker
<http://bugs.python.org/issue28414>
___
___
Python-bugs-list mailing list
Unsubscribe:
Alex Gaynor added the comment:
+1 Christian, we should not be expanding our usage of CNs at all.
--
status: pending -> open
___
Python tracker
<http://bugs.python.org/issu
Alex Gaynor added the comment:
+1 on making sure we have a concrete use case before expanding the API
--
nosy: +Alex Gaynor
___
Python tracker
<http://bugs.python.org/issue25
Alex Gaynor added the comment:
An additional problem in (2) is that a cert for *.google _is_ legal if the CA
can prove that a single organization controls the entire TLD:
https://crt.sh/?id=7668286
--
nosy: +Alex Gaynor
___
Python tracker
<h
Alex Gaynor added the comment:
Mmmm, my understanding is that ignoring TCP-FIN/RST-without-TLS-closenotify is
pretty common for a lot of different clients.
We should probably survey the landscape, see what both browsers and non-browse
clients (e.g. curl) do before making a decision
Alex Gaynor added the comment:
For the use case of "I want to trust this CA, but I don't want to trust any of
it's sub CAs" I think there's a simpler solution than expanding our API:
Create your own cross-sign of the root you want, and add a pathLenConstraint: 0
Alex Gaynor added the comment:
What operating system are you on?
--
nosy: +Alex Gaynor
___
Python tracker
<https://bugs.python.org/issue31453>
___
___
Python-bug
Alex Gaynor added the comment:
An FYI for the future, it would have been very helpful if this had been
documented in the whats-changed file for 3.5.
--
nosy: +alex
___
Python tracker
<http://bugs.python.org/issue23
Alex Gaynor added the comment:
Yeah, this got me (happy to explain what I was trying to do in more detail, if
it'd be helpful), took me longer to understand why my tests passed on
{26,27,33,34} but failed on 35 since the public "what's changed" docs page is
where I we
New submission from Alex Gaynor:
The names are super misleading. First, they're written in a way that's the
opposite of how people think about these things (CLIENT_AUTH -> server socket;
SERVER_AUTH -> client socket). Second, they're misleading, you can have TL
Changes by Alex Gaynor :
--
nosy: +christian.heimes, dstufft, janssen
___
Python tracker
<http://bugs.python.org/issue29810>
___
___
Python-bugs-list mailin
Alex Gaynor added the comment:
Ah, so instead of PROTOCOL_SSLv23 using PROTOCOL_TLS_CLIENT and deprecating the
Purpose bits entirely? That sounds good to me!
--
___
Python tracker
<http://bugs.python.org/issue29
1 - 100 of 465 matches
Mail list logo
