rpms/python3.6
3
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
557 commits 13 branches 0 tags 1.8 MiB
Commit graph

49 commits

Author SHA1 Message Date
Charalampos Stratakis
1fbd10cd98 Security fix for CVE-2023-24329 
Resolves: rhbz#2174013
 2023-05-26 02:16:15 +02:00
Fedora Release Engineering
055e00d4ab Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2023-01-20 18:45:28 +00:00
Miro Hrončok
60835d7222 Opt-out from https://fedoraproject.org/wiki/Changes/fno-omit-frame-pointer 
See https://lists.fedoraproject.org/archives/list/python-devel@lists.fedoraproject.org/thread/6TQYCHMX4FZLF27U5BCEC7IFV6XNBKJP/
for rationale, namely https://lists.fedoraproject.org/archives/list/python-devel@lists.fedoraproject.org/message/ZVDEXGPU6JQFXB3XHYZ4IXVQNNR3YM3V/

Summary: Python is currently slower with frame pointers
due to a slowdown in _PyEval_EvalFrameDefault,
but we expect this to be solved in Python 3.12.

Tracking bugzilla: https://bugzilla.redhat.com/2158729

This change does not require a release bump.
It is only needed to be here to prevent the next builds from including frame pointers.
 2023-01-11 15:47:08 +01:00
Miro Hrončok
8d2dded310 Ensure the source mtime is clamped to $SOURCE_DATE_EPOCH before bytecompilation 
This is part of https://fedoraproject.org/wiki/Changes/ReproducibleBuildsClampMtimes
 2023-01-03 12:37:02 +01:00
Charalampos Stratakis
7dc6fb6d8c CVE-2022-45061: CPU denial of service via inefficient IDNA decoder 2022-12-19 16:39:29 +01:00
Miro Hrončok
6d49aa0b1c CVE-2022-37454: Fix buffer overflows in _sha3 module 2022-11-10 13:59:56 +01:00
Victor Stinner
25e1d4a901 Fix CVE-2020-10735 
Resolves: rhbz#1834423
 2022-10-05 16:49:03 +02:00
Lumir Balhar
677649e034 Fix for CVE-2021-28861 2022-09-14 11:45:01 +02:00
Lumir Balhar
a86762f04c Return back global pip and setuptools versions 
They are ommited together with the patch if
the rpmwheels are disabled.
 2022-09-14 11:43:49 +02:00
Miro Hrončok
da1f948fa6 Remove no longer needed %apply_patch workaround 
All supported Fedora releases have RPM 4.17+,
so we can use %autopatch with a positional argument.
 2022-09-06 12:29:59 +02:00
Fedora Release Engineering
938eff126a Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2022-07-22 23:47:03 +00:00
Charalampos Stratakis
c8e87487b1 Fix test_tarfile on ppc64le 
Resolves: rhbz#2109120
 2022-07-21 01:24:48 +02:00
Charalampos Stratakis
b2e0ed1e1a Security fix for CVE-2015-20107 
Resolves: rhbz#2075390
 2022-06-10 03:41:08 +02:00
Charalampos Stratakis
f77352bc0e Fix the test suite support for Expat >= 2.4.5 
Resolves: rhbz#2056970
 2022-03-04 22:24:40 +01:00
Lumir Balhar
ca58751035 Switch from system wheels to bundled ones 2022-02-21 18:09:07 +01:00
Karolina Surma
8556254159 Fix precision in test_turtle to enable build with i686 
Resolves: https://bugzilla.redhat.com/show_bug.cgi?id=2038843
 2022-01-25 09:10:53 +01:00
Fedora Release Engineering
f87568f8ef - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2022-01-21 16:49:04 +00:00
Miro Hrončok
6dfa40e8ed Rebuilt for https://fedoraproject.org/wiki/Changes/LIBFFI34 2022-01-08 11:12:35 +01:00
Björn Esser
7a09f61e31
 		Rebuild(libnsl2) 
Signed-off-by: Björn Esser <besser82@fedoraproject.org>
 2021-11-12 22:26:57 +01:00
Miro Hrončok
5e29c038c1 Explicitly buildrequire OpenSSL 1.1, as Python 3.6 is not compatible with OpenSSL 3.0 2021-09-20 14:35:58 +02:00
Sahana Prasad
fe74dc2fdd Rebuilt with OpenSSL 3.0.0 2021-09-14 19:12:39 +02:00
Miro Hrončok
d70134e930 Update to 3.6.15 
Patch 343 was partially merged upstream.
 2021-09-05 19:41:04 +02:00
Fedora Release Engineering
481f4bcbf7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2021-07-23 10:31:56 +00:00
Tomas Hrnciar
85d33dcc0a Update to 3.6.14 2021-06-29 08:43:20 +02:00
Charalampos Stratakis
f0453369b7 Add virtual provides for the bundled libmpdec (rhbz#1943359) 2021-05-18 21:28:36 +02:00
Miro Hrončok
efad7fc71f Temporary workaround for missing %apply_patch in RPM 4.17 alpha 
See https://bugzilla.redhat.com/show_bug.cgi?id=1954999
 2021-05-18 17:53:44 +02:00
Petr Viktorin
c4909577da Fix alignment issue causing failures on x86-64 2021-02-25 13:14:30 +01:00
Tomas Hrnciar
8a9446a18e Update to 3.6.13 2021-02-16 09:48:59 +01:00
Fedora Release Engineering
04b480e3fd - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2021-01-27 14:28:00 +00:00
Miro Hrončok
2dffec9a74 BuildRequire make explicitly 
See https://fedoraproject.org/wiki/Changes/Remove_make_from_BuildRoot
 2020-12-07 21:27:15 +01:00
Miro Hrončok
3db3373165 Use upstream architecture names on Fedora 34+ 
https://fedoraproject.org/wiki/Changes/Python_Upstream_Architecture_Names

 - repalce patch 274 witch a sed call
 - update patch 353 to work both ways
 - add a new bcond to control the behavior: legacy_archnames
 2020-10-05 13:00:58 +02:00
Miro Hrončok
eea0dbbeae Rebuilt for new %extension flags 
Fixes https://bugzilla.redhat.com/show_bug.cgi?id=1877652
 2020-09-21 16:01:43 +02:00
Tomas Hrnciar
1d1c841d30 Update to 3.6.12 
Removes patches 351, 352 fixing CVEs since they are not necessary anymore.
 2020-08-19 12:49:39 +02:00
Petr Viktorin
015140f5f3 In sys.version and initial REPL message, list the source commit as "default" 
We create an artificial Git repo to apply patches.
Python build system thinks that it's building from Git and embeds a bogus
branch name into its version string:

$ python3
Python 3.9.0b5 (heads/master-dirty:24c7f56, Aug  3 2020, 00:00:00)
[GCC 10.2.1 20200804 (Red Hat 10.2.1-2)] on linux
Type "help", "copyright", "credits" or "license" for more information.

Tell configure that Git is not installed. This reverts that part
of sys.version to "default".
 2020-08-12 20:08:21 +02:00
Lumir Balhar
f4fc990cc5 Add support for upstream architectures' names (patch 353) 2020-08-10 09:08:33 +02:00
Miro Hrončok
d1c008697b Unify the %prerel macro comment to ... 
This makes it easier to cherry-pick commits back and forth between Fedora 31/32
where this was ... and Fedora 33+ where this was rc1.

I prefer to use ... as it is easy to overlook that the line is commented out.

See also https://src.fedoraproject.org/rpms/python36/pull-request/47#comment-52188
See also https://src.fedoraproject.org/rpms/python3.6/pull-request/6#comment-49189
 2020-08-03 15:00:28 +02:00
Charalampos Stratakis
f428f05bc4 Resolve hash collisions for IPv4Interface and IPv6Interface (CVE-2020-14422) 
Resolves: rhbz#1854926
 2020-07-31 14:28:52 +02:00
Charalampos Stratakis
88ca8db380 Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907) 
Resolves: rhbz#1856481
 2020-07-31 14:27:51 +02:00
Charalampos Stratakis
5f55304a07 Convert patches to use github.com/fedora-python/importpatches 2020-07-31 14:26:56 +02:00
Fedora Release Engineering
a4d152e894 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2020-07-29 04:54:32 +00:00
Miro Hrončok
c436608c59 Use %autosetup with git am 
Some patches are applied conditionally, so we need to use %autosetup with -N,
to prevent automatic patch application.

Later patches from 190 up are applied (with -m for minimum).

While not necessary shorter, this no longer requires adding/removing %patch XYZ
when adding/removing patches > 190.

While at it, we also use git am to apply the patches
since they are all generated from git anyway.
This makes it easier if we ever patch binary files.

This is partial backport of https://src.fedoraproject.org/rpms/python3.9/c/0a760f01ca
 2020-07-28 11:22:40 +02:00
Tom Stellard
e02dabbae8 Use make macros 
https://fedoraproject.org/wiki/Changes/UseMakeBuildInstallMacro
 2020-07-21 19:48:55 +02:00
Miro Hrončok
b386ab1de5 Define pip/setuptools versions in once place, provide bundled(python3dist(...)) 
This makes once obvious place where the versions need to be updated.
The twice listed versions were easy to miss.
 2020-07-07 12:10:22 +02:00
Petr Viktorin
85eac231b3 Update to 3.6.11 final 2020-06-30 14:28:42 +02:00
Victor Stinner
97479f1715 Remove 00178-dont-duplicate-flags-in-sysconfig.patch 
Remove downstream 00178-dont-duplicate-flags-in-sysconfig.patch which
introduced a bug on distutils.sysconfig.get_config_var('LIBPL').

Resolves: rhbz#1851008
 2020-06-29 19:05:56 +00:00
Miro Hrončok
6d94686605 Workaround failing test_ssl 
The failure:

    ======================================================================
    ERROR: test_protocol_sslv23 (test.test_ssl.ThreadedTests)
    Connecting to an SSLv23 server with various client options
    ----------------------------------------------------------------------
    Traceback (most recent call last):
      File "/builddir/build/BUILD/Python-3.6.11rc1/Lib/test/test_ssl.py", line 178, in f
        return func(*args, **kwargs)
      File "/builddir/build/BUILD/Python-3.6.11rc1/Lib/test/test_ssl.py", line 2696, in test_protocol_sslv23
        try_protocol_combo(ssl.PROTOCOL_SSLv23, ssl.PROTOCOL_TLSv1, 'TLSv1')
      File "/builddir/build/BUILD/Python-3.6.11rc1/Lib/test/test_ssl.py", line 2385, in try_protocol_combo
        chatty=False, connectionchatty=False)
      File "/builddir/build/BUILD/Python-3.6.11rc1/Lib/test/test_ssl.py", line 2310, in server_params_test
        s.connect((HOST, server.port))
      File "/builddir/build/BUILD/Python-3.6.11rc1/Lib/ssl.py", line 1065, in connect
        self._real_connect(addr, False)
      File "/builddir/build/BUILD/Python-3.6.11rc1/Lib/ssl.py", line 1056, in _real_connect
        self.do_handshake()
      File "/builddir/build/BUILD/Python-3.6.11rc1/Lib/ssl.py", line 1033, in do_handshake
        self._sslobj.do_handshake()
      File "/builddir/build/BUILD/Python-3.6.11rc1/Lib/ssl.py", line 645, in do_handshake
        self._sslobj.do_handshake()
    ssl.SSLError: [SSL: TLSV1_ALERT_PROTOCOL_VERSION] tlsv1 alert protocol version (_ssl.c:877)
    ======================================================================
    ERROR: test_protocol_tlsv1_1 (test.test_ssl.ThreadedTests)
    Connecting to a TLSv1.1 server with various client options.
    ----------------------------------------------------------------------
    Traceback (most recent call last):
      File "/builddir/build/BUILD/Python-3.6.11rc1/Lib/test/test_ssl.py", line 178, in f
        return func(*args, **kwargs)
      File "/builddir/build/BUILD/Python-3.6.11rc1/Lib/test/test_ssl.py", line 2771, in test_protocol_tlsv1_1
        try_protocol_combo(ssl.PROTOCOL_SSLv23, ssl.PROTOCOL_TLSv1_1, 'TLSv1.1')
      File "/builddir/build/BUILD/Python-3.6.11rc1/Lib/test/test_ssl.py", line 2385, in try_protocol_combo
        chatty=False, connectionchatty=False)
      File "/builddir/build/BUILD/Python-3.6.11rc1/Lib/test/test_ssl.py", line 2310, in server_params_test
        s.connect((HOST, server.port))
      File "/builddir/build/BUILD/Python-3.6.11rc1/Lib/ssl.py", line 1065, in connect
        self._real_connect(addr, False)
      File "/builddir/build/BUILD/Python-3.6.11rc1/Lib/ssl.py", line 1056, in _real_connect
        self.do_handshake()
      File "/builddir/build/BUILD/Python-3.6.11rc1/Lib/ssl.py", line 1033, in do_handshake
        self._sslobj.do_handshake()
      File "/builddir/build/BUILD/Python-3.6.11rc1/Lib/ssl.py", line 645, in do_handshake
        self._sslobj.do_handshake()
    ssl.SSLError: [SSL: TLSV1_ALERT_PROTOCOL_VERSION] tlsv1 alert protocol version (_ssl.c:877)
    ----------------------------------------------------------------------
    Ran 135 tests in 2.293s
    FAILED (errors=2, skipped=9)
    1 test failed again:
        test_ssl
    == Tests result: FAILURE then FAILURE ==

Started to occur after:

    -crypto-policies-20200610-1.git7f9d474.fc33.noarch
    +crypto-policies-20200625-1.gitb298a9e.fc33.noarch

> DEFAULT policy: Drop DH < 2048 bits, TLS 1.0, 1.1, SHA-1

Upstream fix:

 - https://bugs.python.org/issue38275
 - https://github.com/python/cpython/pull/16427
 2020-06-29 19:26:09 +02:00
Petr Viktorin
869be1a27a Update to 3.6.11rc1 2020-06-19 20:54:46 +02:00
Victor Stinner
e01caf2f03 Fix python3-config --configdir 
00205-make-libpl-respect-lib64.patch only modified LIBPL in
Makefile.pre.in which leads to an inconsistency in
python3-config --configdir which uses the unmodified LIBPL (use
/usr/lib instead of /usr/lib64).

00102-lib64.patch now updates LIBPL in configure.ac instead, as it is
done in Python 3.8 patch. Remove
00205-make-libpl-respect-lib64.patch.

Resolves: rhbz#1772988
 2020-05-28 02:59:57 +02:00
Miro Hrončok
6ed57557f7 Rename from python36 to python3.6 
See https://lists.fedoraproject.org/archives/list/python-devel@lists.fedoraproject.org/message/VIUS7WMQMDX6H2WEIH7TVTMBB6SUHY7E/
 2020-05-06 21:00:35 +02:00
Renamed from python36.spec (Browse further)