Mailman 3 October 2012 - Python-Dev

PEP 427 comment: code signing
by martin＠v.loewis.de 23 Oct '12

23 Oct '12

I'm -1 on the usage of ed25519 in PEP 427. While the PEP proposes to use JSON Web signatures, this algorithm is not supported by the current JWS draft [1]. Instead, I suggest to use the ES256 algorithm from JWS, i.e. ECDSA with the NIST P-256 curve and SHA-256. This has the advantage of using standard algorithms [2]. I don't know what the rationale for suggesting ed25519 is; I suppose that existence of a pure-Python implementation played a role. However: - ECDSA also has a pure-Python implementation - ECDSA is well-supported by OpenSSL, i.e. a signature generator may also invoke the OpenSSL command line for efficient implementation. I believe M2Crypto also exposes enough of OpenSSL tp perform ECDSA signing and verification. I'm -0 on the use of JWS; I would prefer a signature format that is already an established internet standard (such a PGP or S/MIME). However, it does look that this may become a proper internet standard in the near future, so it's an ok choice. If it really must be ed25519, I request that this is registered with IANA once the PEP is accepted, the RFC is accepted, and the JWS algorithm registry is open. Regards, Martin [1] http://tools.ietf.org/html/draft-ietf-jose-json-web-signature-06 [2] http://tools.ietf.org/html/draft-ietf-jose-json-web-algorithms-06

5 17

PEP 427: pure / plat distinction
by Antoine Pitrou 22 Oct '12

22 Oct '12

Hello, How does the pure / plat distinction as outlined in PEP 427 cope with Debian's system of separating installed files into pyshared (for *.py and *.egg-info files) and pythonX.Y/dist-packages (for *.pyc and *.so files)? Thanks, Antoine.

2 4

Re: [Python-Dev] cpython: Build the _sha3 module with VS 2008.
by Christian Heimes 22 Oct '12

22 Oct '12

Am 21.10.2012 17:23, schrieb antoine.pitrou: > http://hg.python.org/cpython/rev/ce9c9cbd1b11 > changeset: 79875:ce9c9cbd1b11 > user: Antoine Pitrou <solipsis(a)pitrou.net> > date: Sun Oct 21 17:21:04 2012 +0200 > summary: > Build the _sha3 module with VS 2008. For VS 2010 I decided against this approach and built the extension as a separate .pyd extension because the _sha3 module is rather large (> 200 kB). I think your change is going to break VS 2010. What do the other think? Should the code by built-in by default?

3 6

return type of __complex__
by Antonio Cuni 22 Oct '12

22 Oct '12

Hi, while fixing pypy to pass CPython 3.2 tests, I found what I think it's a inconsistency in how CPython (both 2.7 and 3.2) handles __complex__: >>> class Obj: ... def __complex__(self): ... return 2.0 ... >>> obj = Obj() >>> complex(obj) (2+0j) >>> >>> import cmath >>> cmath.acos(obj) Traceback (most recent call last): File "<stdin>", line 1, in <module> TypeError: __complex__ should return a complex object i.e., the complex constructor does not check that __complex__ returns an actual complex, while the cmath functions do. To me it looks like a bug in complex_new which should do the check as well; however, there is a test in test_complex.test_constructor which checks that returning a float actually works. Is that the real intended behavior? ciao, Anto

19 59

Web accessible core code search and other devguide questions
by anatoly techtonik 22 Oct '12

22 Oct '12

Hi again, http://docs.python.org/devguide/faq.html?highlight=search What can I use to browse, search and troubleshoot core Python sources online? Why the question "Where do I find Python core code?" is not the first in the dev. guide? =) There is clearly a lot of stuff on http://hg.python.org/ that requires some guidance. I'd also include some more technical information at the top. And FAQ is very strange. "What standards of behaviour are expected in these communication channels?" - is that really the question people frequently ask? IMHO the question should be "Where can I get help with development?" and the answer include a link to dev.guide chapter on this matter. -- anatoly t.

1 0

Interest in seeing sh.py in the stdlib
by Andrew Moffat 21 Oct '12

21 Oct '12

Hi, I'm the author of sh.py, a subprocess module rewrite for Linux and OSX. It serves as a powerful and intuitive interface to launching subprocesses http://amoffat.github.com/sh/. It has been maintained on github https://github.com/amoffat/sh for about 10 months and currently has about 25k installs, according to pythonpackages.com. Andy Grover maintains the Fedora rpm for sh.py http://arm.koji.fedoraproject.org/koji/buildinfo?buildID=94247 and Nick Moffit has submitted an older version of sh.py (which was called pbs) to be included in Debian distros http://pkgs.org/debian-wheezy/debian-main-i386/python-pbs_0.95-1_all.deb.ht… I'm interested in making sh.py more accessible to help bring Python forward in the area of shell scripting, so I'm interested in seeing if sh would be suitable for the standard library. Is there any other interest in something like this? Thanks Andrew Moffat

3 2

Improved evaluator added to ast module
by Vinay Sajip 20 Oct '12

20 Oct '12

In response to http://bugs.python.org/issue15452, I've created an improved evaluator in the ast module in my sandbox repo. The evaluator supports lookup of names in a supplied namespace. The basic interface is def lookup_eval(source_string_or_ast_node, namespace, allow_imports=False): # perform limited evaluation of Python expressions Function calls are not allowed in expressions, but the following are: * Names (looked up in namespace, and imported if not found there and allow_imports is True) * Literals, just as literal_eval() does * Array indexing and slicing * Attribute access * Arithmetic operators * Bitwise operators * Comparison operators * in / not in * and / or * Unary operators The patch is attached to the issue, and includes changes to replace the use of eval() by logging.config.fileConfig() to use ast.lookup_eval(). I would welcome review of the patch, particularly as there may be security implications (the issue is titled "Improve the security model for logging listener"). Barring objections, I plan to commit it in a week or so. Regards, Vinay Sajip

6 13

Summary of Python tracker Issues
by Python tracker 19 Oct '12

19 Oct '12

ACTIVITY SUMMARY (2012-10-12 - 2012-10-19) Python tracker at http://bugs.python.org/ To view or respond to any of the issues listed below, click on the issue. Do NOT respond to this message. Issues counts and deltas: open 3815 (+26) closed 24249 (+48) total 28064 (+74) Open issues with patches: 1701 Issues opened (58) ================== #2350: 'exceptions' import fixer http://bugs.python.org/issue2350 reopened by brett.cannon #11009: urllib.splituser is not documented http://bugs.python.org/issue11009 reopened by techtonik #16215: Possible double memory free in str.replace http://bugs.python.org/issue16215 opened by serhiy.storchaka #16216: Arithmetic operations with NULL http://bugs.python.org/issue16216 opened by serhiy.storchaka #16217: Tracebacks are unnecessarily verbose when using 'python -m' http://bugs.python.org/issue16217 opened by mattheww #16218: Python launcher does not support non ascii characters http://bugs.python.org/issue16218 opened by turncc #16219: segfault when using xml.etree.ElementTree.XMLTreeBuilder http://bugs.python.org/issue16219 opened by scottmax #16220: wsgiref does not call close() on iterable response http://bugs.python.org/issue16220 opened by btubbs #16221: tokenize.untokenize() "compat" mode misses the encoding when u http://bugs.python.org/issue16221 opened by eric.snow #16222: some terms not found by devguide's search box http://bugs.python.org/issue16222 opened by chris.jerdonek #16223: untokenize returns a string if no encoding token is recognized http://bugs.python.org/issue16223 opened by eric.snow #16224: tokenize.untokenize() misbehaves when moved to "compatiblity m http://bugs.python.org/issue16224 opened by eric.snow #16228: JSON crashes during encoding resized lists http://bugs.python.org/issue16228 opened by serhiy.storchaka #16229: Demo *redemo.py* lacking in Windows installation http://bugs.python.org/issue16229 opened by fgracia #16230: select.select crashes on resized lists http://bugs.python.org/issue16230 opened by serhiy.storchaka #16231: pickle persistent_id return value http://bugs.python.org/issue16231 opened by pschaafsma #16232: curses.textpad.Textbox backtrace support http://bugs.python.org/issue16232 opened by emeaudroid.emeaudroid #16233: IDLE: conceptual problems with *Class browser* http://bugs.python.org/issue16233 opened by fgracia #16234: Implement correct block_size and tests for HMAC-SHA3 http://bugs.python.org/issue16234 opened by christian.heimes #16235: Add python-config.sh for use during cross compilation. http://bugs.python.org/issue16235 opened by Ray.Donnelly #16236: Doc/Makefile should have $PYTHON=python2 http://bugs.python.org/issue16236 opened by maker #16237: bdist_rpm SPEC files created with distutils may be distro spec http://bugs.python.org/issue16237 opened by ncoghlan #16238: Automatically remove build directory when build options change http://bugs.python.org/issue16238 opened by techtonik #16239: PEP8 arithmetic operator examples http://bugs.python.org/issue16239 opened by pwuertz #16240: Document a way to escape metacharacters in glob/fnmatch http://bugs.python.org/issue16240 opened by serhiy.storchaka #16241: "-X faulthandler" is not documented in -X option docs http://bugs.python.org/issue16241 opened by ramchandra.apte #16242: Pickle and __getattr__ http://bugs.python.org/issue16242 opened by powderflask #16243: Regression in inspect module http://bugs.python.org/issue16243 opened by belopolsky #16245: Update html.entities.html5 dictionary and parseentities.py http://bugs.python.org/issue16245 opened by ezio.melotti #16246: Multiprocessing infinite loop on Windows http://bugs.python.org/issue16246 opened by stoneleaf #16247: Report failing url in URLError? http://bugs.python.org/issue16247 opened by ncoghlan #16248: Security bug in tkinter allows for untrusted, arbitrary code e http://bugs.python.org/issue16248 opened by ramchandra.apte #16250: URLError invoked with reason as filename http://bugs.python.org/issue16250 opened by chris.jerdonek #16251: pickle special methods are looked up on the instance rather th http://bugs.python.org/issue16251 opened by eric.snow #16252: bytes and bytearray methods are undocumented http://bugs.python.org/issue16252 opened by pitrou #16253: Docs for PyArg_ParseTupleAndKeywords say it doesn't accept nes http://bugs.python.org/issue16253 opened by rupole #16254: PyUnicode_AsWideCharString() increases string size http://bugs.python.org/issue16254 opened by dabeaz #16255: subrocess.Popen needs /bin/sh but Android only has /system/bin http://bugs.python.org/issue16255 opened by brousch #16256: permissions wrong on Mac doc dir http://bugs.python.org/issue16256 opened by Chris.Barker #16258: test_local.TestEnUSCollection failures on Solaris 10 http://bugs.python.org/issue16258 opened by trent #16259: Replace exec() in test.regrtest with __import__ http://bugs.python.org/issue16259 opened by ramchandra.apte #16261: Fix bare excepts in various places in std lib http://bugs.python.org/issue16261 opened by ramchandra.apte #16262: srcdir != builddir builds fail, if hg is not installed http://bugs.python.org/issue16262 opened by doko #16263: sendmsg, recvmsg, recvmsg_into et al not being detected on Sol http://bugs.python.org/issue16263 opened by trent #16264: test_logging failure on Windows 7 buildbot http://bugs.python.org/issue16264 opened by pitrou #16267: order of decorators @abstractmethod and @classmethod is signif http://bugs.python.org/issue16267 opened by christopherthemagnificent #16268: dir(closure) does not find __dir__ http://bugs.python.org/issue16268 opened by christopherthemagnificent #16271: weird dual behavior with changing __qualname__; different valu http://bugs.python.org/issue16271 opened by christopherthemagnificent #16272: C-API documentation clarification for tp_dictoffset http://bugs.python.org/issue16272 opened by Chris.Colbert #16273: f.tell() returning negative number on Windows build http://bugs.python.org/issue16273 opened by rhettinger #16275: test_ctypes fails on Solaris 10 SPARC 2.7 (nitrogen/s10) (Sun http://bugs.python.org/issue16275 opened by trent #16278: os.rename documentation slightly inaccurate http://bugs.python.org/issue16278 opened by David.Benjamin #16281: TODO in tailmatch(): it does not support backward in all cases http://bugs.python.org/issue16281 opened by haypo #16283: ctypes.util.find_library does not find all DLLs anymore http://bugs.python.org/issue16283 opened by marcusva #16284: concurrent.futures ThreadPoolExecutor keeps unnecessary refere http://bugs.python.org/issue16284 opened by mark.dickinson #16285: Update urllib to RFC 3986 http://bugs.python.org/issue16285 opened by Matteo.Parrucci #16286: Optimize a==b and a!=b for bytes and str http://bugs.python.org/issue16286 opened by haypo #16287: Sporadic test_utime() failures on Solaris http://bugs.python.org/issue16287 opened by trent Most recent 15 issues with no replies (15) ========================================== #16287: Sporadic test_utime() failures on Solaris http://bugs.python.org/issue16287 #16284: concurrent.futures ThreadPoolExecutor keeps unnecessary refere http://bugs.python.org/issue16284 #16283: ctypes.util.find_library does not find all DLLs anymore http://bugs.python.org/issue16283 #16281: TODO in tailmatch(): it does not support backward in all cases http://bugs.python.org/issue16281 #16278: os.rename documentation slightly inaccurate http://bugs.python.org/issue16278 #16272: C-API documentation clarification for tp_dictoffset http://bugs.python.org/issue16272 #16271: weird dual behavior with changing __qualname__; different valu http://bugs.python.org/issue16271 #16253: Docs for PyArg_ParseTupleAndKeywords say it doesn't accept nes http://bugs.python.org/issue16253 #16245: Update html.entities.html5 dictionary and parseentities.py http://bugs.python.org/issue16245 #16242: Pickle and __getattr__ http://bugs.python.org/issue16242 #16241: "-X faulthandler" is not documented in -X option docs http://bugs.python.org/issue16241 #16240: Document a way to escape metacharacters in glob/fnmatch http://bugs.python.org/issue16240 #16238: Automatically remove build directory when build options change http://bugs.python.org/issue16238 #16237: bdist_rpm SPEC files created with distutils may be distro spec http://bugs.python.org/issue16237 #16235: Add python-config.sh for use during cross compilation. http://bugs.python.org/issue16235 Most recent 15 issues waiting for review (15) ============================================= #16286: Optimize a==b and a!=b for bytes and str http://bugs.python.org/issue16286 #16284: concurrent.futures ThreadPoolExecutor keeps unnecessary refere http://bugs.python.org/issue16284 #16262: srcdir != builddir builds fail, if hg is not installed http://bugs.python.org/issue16262 #16245: Update html.entities.html5 dictionary and parseentities.py http://bugs.python.org/issue16245 #16240: Document a way to escape metacharacters in glob/fnmatch http://bugs.python.org/issue16240 #16236: Doc/Makefile should have $PYTHON=python2 http://bugs.python.org/issue16236 #16235: Add python-config.sh for use during cross compilation. http://bugs.python.org/issue16235 #16230: select.select crashes on resized lists http://bugs.python.org/issue16230 #16228: JSON crashes during encoding resized lists http://bugs.python.org/issue16228 #16224: tokenize.untokenize() misbehaves when moved to "compatiblity m http://bugs.python.org/issue16224 #16221: tokenize.untokenize() "compat" mode misses the encoding when u http://bugs.python.org/issue16221 #16220: wsgiref does not call close() on iterable response http://bugs.python.org/issue16220 #16216: Arithmetic operations with NULL http://bugs.python.org/issue16216 #16215: Possible double memory free in str.replace http://bugs.python.org/issue16215 #16202: sys.path[0] security issues http://bugs.python.org/issue16202 Top 10 most discussed issues (10) ================================= #16212: mmap() dumps core upon resizing the underlying file http://bugs.python.org/issue16212 19 msgs #16203: Proposal: add re.fullmatch() method http://bugs.python.org/issue16203 14 msgs #15745: Numerous utime ns tests fail on FreeBSD w/ ZFS (update: and Ne http://bugs.python.org/issue15745 13 msgs #16202: sys.path[0] security issues http://bugs.python.org/issue16202 13 msgs #8402: Add a function to escape metacharacters in glob/fnmatch http://bugs.python.org/issue8402 9 msgs #10836: urllib.request.urlretrieve calls URLError with 3 args http://bugs.python.org/issue10836 9 msgs #16220: wsgiref does not call close() on iterable response http://bugs.python.org/issue16220 9 msgs #13538: Improve doc for str(bytesobject) http://bugs.python.org/issue13538 8 msgs #16213: Expose private functions in marshal used by importlib http://bugs.python.org/issue16213 8 msgs #16248: Security bug in tkinter allows for untrusted, arbitrary code e http://bugs.python.org/issue16248 8 msgs Issues closed (45) ================== #6074: .pyc files created readonly if .py file is readonly, python wo http://bugs.python.org/issue6074 closed by ncoghlan #9583: Document startup option/environment interaction http://bugs.python.org/issue9583 closed by asvetlov #10834: Python 2.7 x86 IDLE fails to run in Windows 7 http://bugs.python.org/issue10834 closed by serwy #12321: documentation of ElementTree.find http://bugs.python.org/issue12321 closed by eli.bendersky #12686: argparse - document (and improve?) use of SUPPRESS with help= http://bugs.python.org/issue12686 closed by bethard #13440: Explain the "status quo wins a stalemate" principle in the dev http://bugs.python.org/issue13440 closed by python-dev #13843: Python doesn't compile anymore on our Solaris buildbot: undefi http://bugs.python.org/issue13843 closed by trent #14120: ARM Ubuntu 3.x buildbot failing test_dbm http://bugs.python.org/issue14120 closed by nadeem.vawda #14214: test_concurrent_futures hangs http://bugs.python.org/issue14214 closed by nadeem.vawda #14229: On KeyboardInterrupt, the exit code should mirror the signal n http://bugs.python.org/issue14229 closed by nadeem.vawda #14774: _sysconfigdata.py doesn't support multiple build configuration http://bugs.python.org/issue14774 closed by trent #15145: Faster *_find_max_char http://bugs.python.org/issue15145 closed by serhiy.storchaka #15200: Faster os.walk http://bugs.python.org/issue15200 closed by serhiy.storchaka #15378: Underported Tools/unicode/comparecodecs.py http://bugs.python.org/issue15378 closed by pitrou #15586: Provide some examples for usage of ElementTree methods/attribu http://bugs.python.org/issue15586 closed by eli.bendersky #15744: missing tests for {RawIO,BufferedIO,TextIO}.writelines http://bugs.python.org/issue15744 closed by pitrou #15811: ElementTree.write() raises TypeError when xml_declaration = Tr http://bugs.python.org/issue15811 closed by eli.bendersky #15833: most failures to write byte-compiled file no longer suppressed http://bugs.python.org/issue15833 closed by trent #15936: Add link from os.urandom to random.SystemRandom http://bugs.python.org/issue15936 closed by asvetlov #15958: bytes.join() should allow arbitrary buffer objects http://bugs.python.org/issue15958 closed by pitrou #16044: xml.etree.ElementTree.Element: append method iterator param is http://bugs.python.org/issue16044 closed by eli.bendersky #16103: sys.stdin.readline 'unsupported' (IDLE 2.7.3, Win7, pythonw) http://bugs.python.org/issue16103 closed by terry.reedy #16106: antigravity tests http://bugs.python.org/issue16106 closed by ezio.melotti #16160: subclassing types.SimpleNamespace does not work http://bugs.python.org/issue16160 closed by python-dev #16166: Add PY_BYTE_ORDER macro to get endianess of platform http://bugs.python.org/issue16166 closed by christian.heimes #16186: shlex bug? http://bugs.python.org/issue16186 closed by serwy #16206: dict() docs should display multiple signatures http://bugs.python.org/issue16206 closed by chris.jerdonek #16214: 2to3 does not remove exceptions import http://bugs.python.org/issue16214 closed by brett.cannon #16225: add to "looping techniques" tutorial a note about modifying se http://bugs.python.org/issue16225 closed by chris.jerdonek #16226: IDLE crashes on *File / Path browser* http://bugs.python.org/issue16226 closed by ned.deily #16227: Add link to 3.3 version in unicode howto http://bugs.python.org/issue16227 closed by chris.jerdonek #16244: TimedRotatingFileHandler forces "write" mode, should use "appe http://bugs.python.org/issue16244 closed by python-dev #16249: unicode name accepts a punctuation glyph http://bugs.python.org/issue16249 closed by ezio.melotti #16257: test_socket.test_create_connection tests for wrong errno on So http://bugs.python.org/issue16257 closed by trent #16260: change bare except in locale.py http://bugs.python.org/issue16260 closed by ramchandra.apte #16265: Code sample does not collapse correctly http://bugs.python.org/issue16265 closed by asvetlov #16266: Rephrase sentence in tutorial about universal newlines http://bugs.python.org/issue16266 closed by chris.jerdonek #16269: multiprocessing.Queue uses select() http://bugs.python.org/issue16269 closed by giampaolo.rodola #16270: urllib hangs when closing connection http://bugs.python.org/issue16270 closed by giampaolo.rodola #16274: test_asyncore failing on Solaris 10 2.7 (nitrogen/s10) http://bugs.python.org/issue16274 closed by trent #16276: OrderedDict constructor do not keep items order http://bugs.python.org/issue16276 closed by ezio.melotti #16277: Objects/longobject.c not compiled without long long http://bugs.python.org/issue16277 closed by serhiy.storchaka #16279: namedtuple should compare equality with field names taken into http://bugs.python.org/issue16279 closed by ncoghlan #16280: Inconsistency with PyLong_FromVoidPtr() and PyLong_AsVoidPtr() http://bugs.python.org/issue16280 closed by mark.dickinson #16282: The Python Tutorial the previous link needs updating http://bugs.python.org/issue16282 closed by chris.jerdonek

1 0

Rejecting PEPs 407 and 413?
by Nick Coghlan 19 Oct '12

19 Oct '12

With the 3.4 release PEP published using a traditional schedule, perhaps MvL would care to do the honours as BDFL-Delegate in rejecting the two "faster release cycle for the standard library" PEPs? (I know I asked to hold off on that when MvL last brought it up, but I've since realised that "do the first alpha early" isn't a stand-alone PEP, it's just a matter of convincing Larry it's worthwhile and negotiating timing with the release team after there are some release-worthy features on trunk) Cheers, Nick. -- Nick Coghlan | ncoghlan(a)gmail.com | Brisbane, Australia

3 4

PEP 426 comment: field order
by martin＠v.loewis.de 19 Oct '12

19 Oct '12

I'd like to request that PEP 426 is extended to talk about the order of fields. In particular, for the Extension field, is it necessary that all "additional tags" follow immediately the respective Extension field? I also request that RFC 2119 terminology is followed strictly. In particular, the phrasing "Additional tags defined by the extension should be of the form string/Name:" is unclear - under what "particular circumstances" can I deviate from that requirement, i.e. use some form other than string/Name? Regards, Martin

3 4