partly to make it clear to external people looking at the patches that
these are now supported, and partly to discourage garbage-collecting
those bits of the patch until at least 7.4 is out (not required on
-current but still needed for -stable updates). ok tb@
This way Python will pick up the new hashes (truncated sha2, sha3)
once they will be enabled in the next libcrypto bump. Also make the
CHANGES.OpenBSD entry a bit more generic so it doesn't need constant
tweaking.
This and the Python 3.10 changes were ok sthen, maintainer timeout
This way Python will pick up the new hashes (truncated sha2, sha3)
once they will be enabled in the next libcrypto bump. Also make the
CHANGES.OpenBSD entry a bit more generic so it doesn't need constant
tweaking.
-current's python 3.10 needs to be adjusted (/usr/local/bin/python3
symlink and friends moved from 3.9 to 3.10 because the default version
was changed).
update problem found by and diff ok with landry@
setuptools (it's used as a package locator but importlib.metadata in
newer Python core or the external importlib_metadata are preferred).
So drop the RDEP in that case (it's still kept for py27) and bump
revisions.
with Python 3.9+'s definition of PyMODINIT_FUNC and our readline headers
https://github.com/openbsd/src/blob/master/gnu/lib/libreadline/rlstdc.h#L41
(Due to some other strangeness in the build system, on 3.9 it rebuilt a
working version after the first attempt failed and the file was moved out
of the way, but that no longer happens with 3.10+ where readline just
failed).
Fix up PLISTs and WANTLIB for Python 3.11 while there.
Joint work with landry@ tb@ kmos@, ok tb kmos
version in -stable of the previous release when plist is changed etc
(e.g. backporting updates to -stable after swotching the default
Python version during a release cycle means that -current needs
to keep ahead of -stable, to avoid problems with -stable packages
at the next release)
https://docs.python.org/release/3.9.15/whatsnew/changelog.html
gh-97616: Fix multiplying a list by an integer (list *= int): detect the
integer overflow when the new allocated length is close to the
maximum size. Issue reported by Jordan Limor. Patch by Victor
Stinner.
gh-97612: Fix a shell code injection vulnerability in the
get-remote-certificate.py example script. The script no longer
uses a shell to run openssl commands. Issue reported and
initial fix by Caleb Shortt. Patch by Victor Stinner.
Also a couple non-security fixes.
ok sthen
gh-97616: Fix multiplying a list by an integer (list *= int): detect the
integer overflow when the new allocated length is close to the
maximum size. Issue reported by Jordan Limor. Patch by Victor
Stinner.
gh-97612: Fix a shell code injection vulnerability in the
get-remote-certificate.py example script. The script no longer
uses a shell to run openssl commands. Issue reported and
initial fix by Caleb Shortt. Patch by Victor Stinner.
gh-68966: The deprecated mailcap module now refuses to inject unsafe text
(filenames, MIME types, parameters) into shell
commands. Instead of using such text, it will warn and act as
if a match was not found (or for test commands, as if the test
failed).
ok sthen
daniel