# # spec file for package python-base # # Copyright (c) 2021 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed # upon. The license for this file, and modifications and additions to the # file, is the same license as for the pristine package itself (unless the # license for the pristine package is not an Open Source License, in which # case the license is the MIT License). An "Open Source License" is a # license that conforms to the Open Source Definition (Version 1.9) # published by the Open Source Initiative. # Please submit bugfixes or comments via https://bugs.opensuse.org/ # %define so_version 2_7-1_0 Name: python-base Version: 2.7.18 Release: 7.1 Summary: Python Interpreter base package License: Python-2.0 Group: Development/Languages/Python URL: http://www.python.org/ %define tarversion %{version} %define tarname Python-%{tarversion} Source0: http://www.python.org/ftp/python/%{version}/%{tarname}.tar.xz Source4: http://www.python.org/ftp/python/%{version}/%{tarname}.tar.xz.asc Source6: python.keyring Source1: macros.python2 Source2: baselibs.conf Source3: README.SUSE Source5: local.pth Source99: python-base-rpmlintrc # COMMON-PATCH-BEGIN Patch1: python-2.7-dirs.patch Patch2: python-distutils-rpm-8.patch Patch3: python-2.7.5-multilib.patch Patch4: python-2.5.1-sqlite.patch Patch5: python-2.7.4-canonicalize2.patch Patch7: python-2.6-gettext-plurals.patch Patch8: python-2.6b3-curses-panel.patch Patch10: sparc_longdouble.patch Patch13: python-2.7.2-fix_date_time_compiler.patch Patch17: remove-static-libpython.patch # PATCH-FEATURE-OPENSUSE python-bundle-lang.patch bnc#617751 dimstar@opensuse.org -- gettext: when looking in default_localedir also check in locale-bundle. Patch20: python-bundle-lang.patch # PATCH-FIX-UPSTREAM Fix argument passing in libffi for aarch64 Patch22: python-2.7-libffi-aarch64.patch Patch24: python-bsddb6.patch # PATCH-FIX-UPSTREAM accept directory-based CA paths as well Patch33: python-2.7.9-ssl_ca_path.patch # PATCH-FEATURE-SLE disable SSL verification-by-default in http clients Patch34: python-2.7.9-sles-disable-verification-by-default.patch # PATCH-FIX-UPSTREAM do not use non-ASCII filename in test_ssl.py Patch35: do-not-use-non-ascii-in-test_ssl.patch # PATCH-FIX-UPSTREAM bmwiedemann@suse.de -- allow python packages to build reproducibly Patch38: reproducible.patch # bypass boo#1078485 random failing tests Patch40: python-skip_random_failing_tests.patch # PATCH-FIX-UPSTREAM sorted tar https://github.com/python/cpython/pull/2263 Patch41: python-sorted_tar.patch # https://github.com/python/cpython/pull/9624 (https://bugs.python.org/issue34834) Patch47: openssl-111-middlebox-compat.patch # PATCH-FIX-SUSE python default SSLContext doesn't contain OP_CIPHER_SERVER_PREFERENCE Patch48: openssl-111-ssl_options.patch # PATCH-FIX-UPSTREAM CVE-2019-5010-null-defer-x509-cert-DOS.patch bnc#1122191 mcepl@suse.com # gh#python/cpython#11569 # Fix segfault in ssl's cert parser Patch49: CVE-2019-5010-null-defer-x509-cert-DOS.patch # PATCH-FIX-UPSTREAM bpo36160-init-sysconfig_vars.patch gh#python/cpython#12131 mcepl@suse.com # Initialize sysconfig variables in test_site. Patch50: bpo36160-init-sysconfig_vars.patch # PATCH-FIX-UPSTREAM CVE-2017-18207.patch gh#python/cpython#4437 psimons@suse.com # Add check for channels of wav file in Lib/wave.py Patch51: CVE-2017-18207.patch # PATCH-FIX-UPSTREAM gh#python/cpython#12341 Patch55: bpo36302-sort-module-sources.patch # Fix installation in /usr/local (boo#1071941), adapted from Fedora # https://src.fedoraproject.org/rpms/python3/blob/master/f/00251-change-user-install-location.patch # Set values of prefix and exec_prefix in distutils install command # to /usr/local if executable is /usr/bin/python* and RPM build # is not detected to make pip and distutils install into separate location Patch56: adapted-from-F00251-change-user-install-location.patch # Switch couple of tests failing on acient SLE-12 Patch57: python-2.7.17-switch-off-failing-SSL-tests.patch # PATCH-FIX-UPSTREAM CVE-2020-8492-urllib-ReDoS.patch bsc#1162367 mcepl@suse.com # Fixes Python urrlib allowed an HTTP server to conduct Regular # Expression Denial of Service (ReDoS) Patch58: CVE-2020-8492-urllib-ReDoS.patch # PATCH-FIX-UPSTREAM CVE-2019-9674-zip-bomb.patch bsc#1162825 mcepl@suse.com # Improve documentation warning against the possible zip bombs Patch59: CVE-2019-9674-zip-bomb.patch # PATCH-FIX-UPSTREAM configure_PYTHON_FOR_REGEN.patch bsc#1078326 mcepl@suse.com # PYTHON_FOR_REGEN value is set very weird upstream Patch60: configure_PYTHON_FOR_REGEN.patch # PATCH-FIX-SLE CVE-2021-3177-buf_ovrfl_PyCArg_repr.patch bsc#1181126 mcepl@suse.com # buffer overflow in PyCArg_repr in _ctypes/callproc.c, which may lead to remote code execution Patch61: CVE-2021-3177-buf_ovrfl_PyCArg_repr.patch # PATCH-FIX-UPSTREAM CVE-2021-23336-only-amp-as-query-sep.patch bsc#[0-9]+ mcepl@suse.com # this patch makes things totally awesome Patch62: CVE-2021-23336-only-amp-as-query-sep.patch # PATCH-FIX-UPSTREAM CVE-2021-3737-fix-HTTP-client-infinite-line-reading-after-a-HTTP-100-Continue.patch boo#1189241 gh#python/cpython#25916 Patch63: CVE-2021-3737-fix-HTTP-client-infinite-line-reading-after-a-HTTP-100-Continue.patch # PATCH-FIX-UPSTREAM CVE-2021-3733-fix-ReDoS-in-request.patch boo#1189287 gh#python/cpython#24391 Patch64: CVE-2021-3733-fix-ReDoS-in-request.patch # PATCH-FIX-UPSTREAM sphinx-update-removed-function.patch bpo#35293 gh#python/cpython#22198 -- fix doc build Patch65: sphinx-update-removed-function.patch # COMMON-PATCH-END %define python_version %(echo %{tarversion} | head -c 3) BuildRequires: automake BuildRequires: fdupes BuildRequires: libbz2-devel %if %{suse_version} >= 1500 BuildRequires: libnsl-devel %endif BuildRequires: pkgconf-pkg-config BuildRequires: xz BuildRequires: zlib-devel #!BuildIgnore: python # for the test suite BuildRequires: netcfg libnss_usrfiles2 # explicitly, see bnc#697251: Requires: libpython%{so_version} = %{version}-%{release} Provides: %{name} = %{python_version} # bug437293 %ifarch ppc64 Obsoletes: python-64bit %endif Provides: python-ctypes = 1.1.0 Obsoletes: python-ctypes < 1.1.0 Provides: python-argparse = 1.4.0.1 Obsoletes: python-argparse < 1.4.0.1 Provides: python2-argparse = 1.4.0.1 BuildRoot: %{_tmppath}/%{name}-%{version}-build Provides: python2-base = %{version} %description Python is an interpreted, object-oriented programming language, and is often compared to Tcl, Perl, Scheme, or Java. You can find an overview of Python in the documentation and tutorials included in the python-doc (HTML) or python-doc-pdf (PDF) packages. This package contains all of stand-alone Python files, minus binary modules that would pull in extra dependencies. %package -n python-devel Summary: Include Files and Libraries Mandatory for Building Python Modules Group: Development/Languages/Python Requires: glibc-devel Requires: python = %{version} Requires: python-base = %{version}-%{release} Provides: python2-devel = %{version} # provide testsuite namespace that was split in python3 to ease dependencies Provides: python-testsuite = %{version} Provides: python2-testsuite = %{version} %description -n python-devel The Python programming language's interpreter can be extended with dynamically loaded extensions and can be embedded in other programs. This package contains header files, a static library, and development tools for building Python modules, extending the Python interpreter or embedding Python in applications. %package -n python-xml Summary: A Python XML Interface Group: Development/Libraries/Python Requires: python-base = %{version}-%{release} # pyxml used to live out of tree Provides: pyxml = 0.8.5 Obsoletes: pyxml < 0.8.5 Provides: python2-xml = %{version} %description -n python-xml The expat module is a Python interface to the expat XML parser. Since Python2.x, it is part of the core Python distribution. %package -n libpython%{so_version} Summary: Python Interpreter shared library Group: Development/Languages/Python %description -n libpython2_7-1_0 Python is an interpreted, object-oriented programming language, and is often compared to Tcl, Perl, Scheme, or Java. You can find an overview of Python in the documentation and tutorials included in the python-doc (HTML) or python-doc-pdf (PDF) packages. This package contains libpython2.7 shared library for embedding in other applications. %prep %setup -q -n %{tarname} # patching # COMMON-PREP-BEGIN %patch1 -p1 %patch2 -p1 %patch3 -p1 %patch4 -p1 %patch5 -p1 %patch7 -p1 %patch8 -p1 %patch10 -p1 %patch13 -p1 %patch17 -p1 %patch20 -p1 %patch22 -p1 %patch24 -p1 %patch33 -p1 %if %{suse_version} == 1315 && !0%{?is_opensuse} %patch34 -p1 %endif %patch35 -p1 %patch38 -p1 %ifarch ppc ppc64 ppc64le %patch40 -p1 %endif %patch41 -p1 %if %{suse_version} >= 1500 %patch47 -p1 %patch48 -p1 %else %patch57 -p1 %endif %patch49 -p1 %patch50 -p1 %patch51 -p1 %patch55 -p1 %patch56 -p1 %patch58 -p1 %patch59 -p1 %patch60 -p1 %patch61 -p1 %patch62 -p1 %patch63 -p1 %patch64 -p1 %patch65 -p1 # drop Autoconf version requirement sed -i 's/^version_required/dnl version_required/' configure.ac # COMMON-PREP-END %build %define _lto_cflags %{nil} export OPT="%{optflags} -DOPENSSL_LOAD_CONF -fwrapv" autoreconf -f -i . # Modules/_ctypes/libffi # provide a stable timestamp touch -r %{SOURCE0} Makefile.pre.in # prevent make from trying to rebuild asdl stuff, which requires existing # python installation touch Parser/asdl* Python/Python-ast.c Include/Python-ast.h %configure \ --docdir=%{_docdir}/python \ --with-fpectl \ --enable-ipv6 \ --enable-shared \ --enable-unicode=ucs4 %if 0%{?do_profiling} target=profile-opt %else target=all %endif LD_LIBRARY_PATH=$PWD:$LD_LIBRARY_PATH \ make %{?_smp_mflags} $target %check # on hppa, the threading of glibc is quite broken. The tests just stop # at some point, and the machine does not build anything more until a # timeout several hours later. %ifnarch hppa # test_file(2k) fails in autobuild env - "stdin.seek(-1)" wrongly succeeds. probably an issue with autobuild's stdin # test_urllib2 relies on being able to resolve local address, which is notoriously impossible in autobuild # test_urllib2_localnet randomly fails out EXCLUDE="test_urllib2 test_urllib2_localnet test_file test_file2k" # test_nis and test_threading are AWFULLY slow. EXCLUDE="$EXCLUDE test_nis test_threading" # test_gdb fails if gdb with (different) python support is part of the buildsystem EXCLUDE="$EXCLUDE test_gdb" %ifarch ia64 # test_smtplib's testSend is known to be broken and on ia64 it actually fails most of the time, preventing the build. EXCLUDE="$EXCLUDE test_smtplib" %endif # test_unicode fails in Factory EXCLUDE="$EXCLUDE test_unicode" %if 0%{?qemu_user_space_build} # test_asyncore fails because of unimplemented sockopt EXCLUDE="$EXCLUDE test_asyncore test_mmap" # emulation is unreliable EXCLUDE="$EXCLUDE test_multiprocessing test_thread" # qemu bug (siginterrupt handling) EXCLUDE="$EXCLUDE test_signal" %endif %ifarch s390 s390x # test_regrtest tries to segfault the interpreter by dereferencing a NULL pointer, but that doesn't # actually produce a segfault on S390 EXCLUDE="$EXCLUDE test_regrtest" %endif # This test (part of test_uuid) requires real network interfaces # so that ifconfig output has "HWaddr ". Some kvm instances # don't have any such interface breaking the uuid module test. EXCLUDE="$EXCLUDE test_uuid" # Build without on eisfair EXCLUDE="$EXCLUDE test_distutils" # bypass boo#1078485 # many flaky tests if osc build in loop on ppc64le %ifarch ppc ppc64 ppc64le EXCLUDE="$EXCLUDE test_asynchat test_asyncore test_dircache test_multiprocessing test_nntplib test_queue test_signal test_socket test_subprocess test_telnetlib test_xmlrpc " %endif # Limit virtual memory to avoid spurious failures if test $(ulimit -v) = unlimited || test $(ulimit -v) -gt 10000000; then ulimit -v 10000000 || : fi make test TESTOPTS="-l -x $EXCLUDE" TESTPYTHONOPTS="-R" # use network, be verbose: #make test TESTOPTS="-l -u network -v" %endif %install # replace rest of /usr/local/bin/python or /usr/bin/python2.5 with /usr/bin/python find . -name '*.py' -type f | grep -vE "^./Parser/|^./Python/" \ | xargs grep -lE '^#! *(/usr/.*bin/(env +)?)?python' \ | xargs sed -r -i -e '1s@^#![[:space:]]*(/usr/(local/)?bin/(env +)?)?python([0-9]+\.[0-9]+)?@#!/usr/bin/python@' # the grep inbetween makes it much faster ######################################## # install it ######################################## %make_install OPT="%{optflags} -fPIC" install -m 644 %{SOURCE5} %{buildroot}%{_libdir}/python%{python_version}/site-packages/_local.pth install -d -m 755 %{buildroot}%{_rpmconfigdir}/macros.d/ install -m 644 %{SOURCE1} %{buildroot}%{_rpmconfigdir}/macros.d/ # make sure /usr/lib/python/site-packages exists even on lib64 machines mkdir -p %{buildroot}%{_prefix}/lib/python%{python_version}/site-packages ######################################## # some cleanups ######################################## # remove hard links and replace them with symlinks for dir in bin include %{_lib} ; do rm -f %{buildroot}/%{_prefix}/$dir/python ln -s python%{python_version} %{buildroot}/%{_prefix}/$dir/python done CLEANUP_DIR="%{buildroot}%{_libdir}/python%{python_version}" # don't distribute precompiled windows installers (duh) rm -f $CLEANUP_DIR/distutils/command/*.exe # kill imageop.so - it used to be insecure and it is deprecated anyway rm -f $CLEANUP_DIR/lib-dynload/imageop.so # link shared library instead of static library that tools expect ln -s ../../libpython%{python_version}.so %{buildroot}%{_libdir}/python%{python_version}/config/libpython%{python_version}.so # remove various things that don't need to be in python-base rm %{buildroot}%{_bindir}/idle rm -rf $CLEANUP_DIR/{curses,bsddb,idlelib,lib-tk,sqlite3} rm $CLEANUP_DIR/ssl.py* # does not work without _ssl.so anyway # replace duplicate .pyo/.pyc with hardlinks %fdupes %{buildroot}/%{_libdir}/python%{python_version} ######################################## # documentation ######################################## export PDOCS=%{buildroot}%{_docdir}/%{name} install -d -m 755 $PDOCS install -c -m 644 %{SOURCE3} $PDOCS/ install -c -m 644 LICENSE $PDOCS/ install -c -m 644 README $PDOCS/ ln -s python%{python_version}.1.gz %{buildroot}%{_mandir}/man1/python.1.gz ######################################## # devel ######################################## # install Makefile.pre.in and Makefile.pre cp Makefile Makefile.pre.in Makefile.pre %{buildroot}%{_libdir}/python%{python_version}/config/ %post -n libpython2_7-1_0 -p %{run_ldconfig} %postun -n libpython2_7-1_0 -p %{run_ldconfig} %files -n python-devel %defattr(-, root, root) %{_libdir}/python%{python_version}/config/* %exclude %{_libdir}/python%{python_version}/config/Setup %exclude %{_libdir}/python%{python_version}/config/Makefile %defattr(644, root, root, 755) %{_libdir}/libpython*.so %{_libdir}/pkgconfig/python-%{python_version}.pc %{_libdir}/pkgconfig/python.pc %{_libdir}/pkgconfig/python2.pc %{_includedir}/python* %exclude %{_includedir}/python%{python_version}/pyconfig.h %{_libdir}/python%{python_version}/test %defattr(755, root, root) %{_bindir}/python-config %{_bindir}/python2-config %{_bindir}/python%{python_version}-config %files -n python-xml %defattr(644, root, root, 755) %{_libdir}/python%{python_version}/xml %{_libdir}/python%{python_version}/lib-dynload/pyexpat.so %files -n libpython2_7-1_0 %defattr(644, root, root) %{_libdir}/libpython*.so.* %files %defattr(644, root, root, 755) %{_rpmconfigdir}/macros.d/macros.python2 %dir %{_docdir}/%{name} %doc %{_docdir}/%{name}/README %doc %{_docdir}/%{name}/LICENSE %doc %{_docdir}/%{name}/README.SUSE %doc %{_mandir}/man1/python.1* %doc %{_mandir}/man1/python2.1* %doc %{_mandir}/man1/python%{python_version}.1* %dir %{_includedir}/python%{python_version} %{_includedir}/python%{python_version}/pyconfig.h %{_libdir}/python %dir %{_prefix}/lib/python%{python_version} %dir %{_prefix}/lib/python%{python_version}/site-packages %dir %{_libdir}/python%{python_version} %dir %{_libdir}/python%{python_version}/config %{_libdir}/python%{python_version}/config/Setup %{_libdir}/python%{python_version}/config/Makefile %{_libdir}/python%{python_version}/*.* %{_libdir}/python%{python_version}/compiler %{_libdir}/python%{python_version}/ctypes %{_libdir}/python%{python_version}/distutils %{_libdir}/python%{python_version}/email %{_libdir}/python%{python_version}/encodings %{_libdir}/python%{python_version}/ensurepip %{_libdir}/python%{python_version}/hotshot %{_libdir}/python%{python_version}/importlib %{_libdir}/python%{python_version}/json %{_libdir}/python%{python_version}/lib2to3 %{_libdir}/python%{python_version}/logging %{_libdir}/python%{python_version}/multiprocessing %{_libdir}/python%{python_version}/plat-* %{_libdir}/python%{python_version}/pydoc_data %{_libdir}/python%{python_version}/unittest %{_libdir}/python%{python_version}/wsgiref %dir %{_libdir}/python%{python_version}/site-packages %{_libdir}/python%{python_version}/site-packages/README %{_libdir}/python%{python_version}/site-packages/_local.pth %dir %{_libdir}/python%{python_version}/lib-dynload %{_libdir}/python%{python_version}/lib-dynload/_bisect.so #%%{_libdir}/python%%{python_version}/lib-dynload/_bytesio.so %{_libdir}/python%{python_version}/lib-dynload/_csv.so %{_libdir}/python%{python_version}/lib-dynload/_collections.so %{_libdir}/python%{python_version}/lib-dynload/_ctypes.so %{_libdir}/python%{python_version}/lib-dynload/_ctypes_test.so %{_libdir}/python%{python_version}/lib-dynload/_elementtree.so #%%{_libdir}/python%%{python_version}/lib-dynload/_fileio.so %{_libdir}/python%{python_version}/lib-dynload/_functools.so %{_libdir}/python%{python_version}/lib-dynload/_heapq.so %{_libdir}/python%{python_version}/lib-dynload/_hotshot.so %{_libdir}/python%{python_version}/lib-dynload/_io.so %{_libdir}/python%{python_version}/lib-dynload/_json.so %{_libdir}/python%{python_version}/lib-dynload/_locale.so %{_libdir}/python%{python_version}/lib-dynload/_lsprof.so %{_libdir}/python%{python_version}/lib-dynload/_md5.so %{_libdir}/python%{python_version}/lib-dynload/_multiprocessing.so %{_libdir}/python%{python_version}/lib-dynload/_random.so %{_libdir}/python%{python_version}/lib-dynload/_sha.so %{_libdir}/python%{python_version}/lib-dynload/_sha256.so %{_libdir}/python%{python_version}/lib-dynload/_sha512.so %{_libdir}/python%{python_version}/lib-dynload/_socket.so %{_libdir}/python%{python_version}/lib-dynload/_struct.so %{_libdir}/python%{python_version}/lib-dynload/_testcapi.so %{_libdir}/python%{python_version}/lib-dynload/array.so %{_libdir}/python%{python_version}/lib-dynload/audioop.so %{_libdir}/python%{python_version}/lib-dynload/binascii.so %{_libdir}/python%{python_version}/lib-dynload/bz2.so %{_libdir}/python%{python_version}/lib-dynload/cPickle.so %{_libdir}/python%{python_version}/lib-dynload/cStringIO.so %{_libdir}/python%{python_version}/lib-dynload/cmath.so %{_libdir}/python%{python_version}/lib-dynload/crypt.so %{_libdir}/python%{python_version}/lib-dynload/datetime.so %{_libdir}/python%{python_version}/lib-dynload/fcntl.so %{_libdir}/python%{python_version}/lib-dynload/future_builtins.so %{_libdir}/python%{python_version}/lib-dynload/grp.so %{_libdir}/python%{python_version}/lib-dynload/itertools.so %{_libdir}/python%{python_version}/lib-dynload/linuxaudiodev.so %{_libdir}/python%{python_version}/lib-dynload/math.so %{_libdir}/python%{python_version}/lib-dynload/mmap.so %{_libdir}/python%{python_version}/lib-dynload/nis.so %{_libdir}/python%{python_version}/lib-dynload/operator.so %{_libdir}/python%{python_version}/lib-dynload/ossaudiodev.so %{_libdir}/python%{python_version}/lib-dynload/parser.so %{_libdir}/python%{python_version}/lib-dynload/resource.so %{_libdir}/python%{python_version}/lib-dynload/select.so %{_libdir}/python%{python_version}/lib-dynload/spwd.so %{_libdir}/python%{python_version}/lib-dynload/strop.so %{_libdir}/python%{python_version}/lib-dynload/syslog.so %{_libdir}/python%{python_version}/lib-dynload/termios.so %{_libdir}/python%{python_version}/lib-dynload/time.so %{_libdir}/python%{python_version}/lib-dynload/unicodedata.so %{_libdir}/python%{python_version}/lib-dynload/zlib.so %{_libdir}/python%{python_version}/lib-dynload/_codecs*.so %{_libdir}/python%{python_version}/lib-dynload/_multibytecodec.so %{_libdir}/python%{python_version}/lib-dynload/Python-%{tarversion}-py%{python_version}.egg-info # these modules don't support 64-bit arches (disabled by setup.py) %ifnarch alpha ia64 x86_64 s390x ppc64 ppc64le sparc64 aarch64 # requires sizeof(int) == sizeof(long) == sizeof(char*) %{_libdir}/python%{python_version}/lib-dynload/dl.so %endif %attr(755, root, root) %{_bindir}/pydoc %attr(755, root, root) %{_bindir}/python %attr(755, root, root) %{_bindir}/python%{python_version} %attr(755, root, root) %{_bindir}/smtpd.py %{_bindir}/python2 %exclude %{_bindir}/2to3 %changelog * Thu Aug 26 2021 Fusion Future - Renamed patch for assigned CVE: * bpo44022-fix-http-client-infinite-line-reading-after-a-HTTP-100-Continue.patch -> CVE-2021-3737-fix-HTTP-client-infinite-line-reading-after-a-HTTP-100-Continue.patch (boo#1189241, CVE-2021-3737) * Mon Aug 23 2021 Fusion Future - Renamed patch for assigned CVE: * bpo43075-fix-ReDoS-in-request.patch -> CVE-2021-3733-fix-ReDoS-in-request.patch (boo#1189287, CVE-2021-3733) - Fix python-doc build (bpo#35293): * sphinx-update-removed-function.patch - Update documentation formatting for Sphinx 3.0 (bpo#40204). * Tue Aug 10 2021 Fusion Future - Add bpo43075-fix-ReDoS-in-request.patch which fixes ReDoS in request (bpo#43075, boo#1189287). - Add missing security announcement to bpo44022-fix-http-client-infinite-line-reading-after-a-HTTP-100-Continue.patch. * Mon Aug 9 2021 Fusion Future - Add bpo44022-fix-http-client-infinite-line-reading-after-a-HTTP-100-Continue.patch which fixes http client infinite line reading (DoS) after a http 100 (bpo#44022, boo#1189241). * Fri Feb 26 2021 Matej Cepl - Add CVE-2021-23336-only-amp-as-query-sep.patch which forbids use of semicolon as a query string separator (bpo#42967, bsc#1182379, CVE-2021-23336). * Mon Jan 25 2021 Matej Cepl - Add CVE-2021-3177-buf_ovrfl_PyCArg_repr.patch fixing bsc#1181126 (CVE-2021-3177) buffer overflow in PyCArg_repr in _ctypes/callproc.c, which may lead to remote code execution. * Tue Jan 5 2021 Matej Cepl - (bsc#1180125) We really don't Require python-rpm-macros package. Unnecessary dependency. * Sat May 30 2020 Matej Cepl - Add patch configure_PYTHON_FOR_REGEN.patch which makes configure.ac to consider the correct version of PYTHON_FO_REGEN (bsc#1078326). * Mon Apr 27 2020 Matej Cepl - Use python3-Sphinx on anything more recent than SLE-15 (inclusive). * Thu Apr 23 2020 Matej Cepl - Update to 2.7.18, final release of Python 2. Ever.: - Newline characters have been escaped when performing uu encoding to prevent them from overflowing into to content section of the encoded file. This prevents malicious or accidental modification of data during the decoding process. - Fixes a ReDoS vulnerability in :mod:`http.cookiejar`. Patch by Ben Caller. - Fixed line numbers and column offsets for AST nodes for calls without arguments in decorators. - Disallow control characters in hostnames in http.client, addressing CVE-2019-18348. Such potentially malicious header injection URLs now cause a InvalidURL to be raised. - Fix urllib.urlretrieve failing on subsequent ftp transfers from the same host. - Fix problems identified by GCC's -Wstringop-truncation warning. - AddRefActCtx() was needlessly being checked for failure in PC/dl_nt.c. - Prevent failure of test_relative_path in test_py_compile on macOS Catalina. - Fixed possible leak in :c:func:`PyArg_Parse` and similar functions for format units "es#" and "et#" when the macro :c:macro:`PY_SSIZE_T_CLEAN` is not defined. * Sat Feb 8 2020 Matej Cepl - Add CVE-2019-9674-zip-bomb.patch to improve documentation warning about dangers of zip-bombs and other security problems with zipfile library. (bsc#1162825 CVE-2019-9674) * Sat Feb 8 2020 Matej Cepl - Change to Requires: libpython%%{so_version} == %%{version}-%%{release} to python-base to keep both packages always synchronized (add %%{so_version}) (bsc#1162224). * Thu Feb 6 2020 Matej Cepl - Add CVE-2020-8492-urllib-ReDoS.patch fixing the security bug "Python urrlib allowed an HTTP server to conduct Regular Expression Denial of Service (ReDoS)" (bsc#1162367) * Mon Feb 3 2020 Tomáš Chvátal - Provide python-testsuite from devel subkg to ease py2->py3 dependencies * Mon Jan 27 2020 Matej Cepl - Add python-2.7.17-switch-off-failing-SSL-tests.patch to switch off tests coliding with the combination of modern Python and ancient OpenSSL on SLE-12. * Fri Jan 10 2020 Matej Cepl - libnsl is required only on more recent SLEs and openSUSE, older glibc supported NIS on its own. * Thu Jan 2 2020 Tomáš Chvátal - Add provides in gdbm subpackage to provide dbm symbols. This allows us to use %%%%{python_module dbm} as a dependency and have it properly resolved for both python2 and python3 * Thu Dec 19 2019 Dominique Leuenberger - Drop appstream-glib BuildRequires and no longer call appstream-util validate-relax: eliminate a build cycle between as-glib and python. The only thing would would gain by calling as-uril is catching if upstream breaks the appdata.xml file in a future release. Considering py2 is dying, chances for a new release, let alone one breaking the xml file, are slim. * Wed Dec 11 2019 Matej Cepl - Unify packages among openSUSE:Factory and SLE versions. (bsc#1159035) ; add missing records to this changelog. - Add idle.desktop and idle.appdata.xml to provide IDLE in menus (bsc#1153830) * Wed Dec 4 2019 Matej Cepl - Add python2_split_startup Provide to make it possible to conflict older packages by shared-python-startup. * Fri Nov 22 2019 Matej Cepl - Move /etc/pythonstart script to shared-python-startup package. * Tue Nov 5 2019 Matej Cepl - Add bpo-36576-skip_tests_for_OpenSSL-111.patch (originally from bpo#36576) skipping tests failing with OpenSSL 1.1.1. Fixes bsc#1149792 * Tue Nov 5 2019 Steve Kowalik - Add adapted-from-F00251-change-user-install-location.patch fixing pip/distutils to install into /usr/local. * Thu Oct 24 2019 Matej Cepl - Update to 2.7.17: - a bug fix release in the Python 2.7.x series. It is expected to be the penultimate release for Python 2.7. - Removed patches included upstream: - CVE-2018-20852-cookie-domain-check.patch - CVE-2019-16935-xmlrpc-doc-server_title.patch - CVE-2019-9636-netloc-no-decompose-characters.patch - CVE-2019-9947-no-ctrl-char-http.patch - CVE-2019-9948-avoid_local-file.patch - python-2.7.14-CVE-2018-1000030-1.patch - python-2.7.14-CVE-2018-1000030-2.patch - Renamed remove-static-libpython.diff and python-bsddb6.diff to remove-static-libpython.patch and python-bsddb6.patch to unify filenames. * Tue Oct 8 2019 Matej Cepl - Add CVE-2019-16935-xmlrpc-doc-server_title.patch fixing bsc#1153238 (aka CVE-2019-16935) fixing a reflected XSS in python/Lib/DocXMLRPCServer.py * Wed Sep 25 2019 Bernhard Wiedemann - Add bpo36302-sort-module-sources.patch (boo#1041090) * Mon Sep 16 2019 Matej Cepl - Add CVE-2019-16056-email-parse-addr.patch fixing the email module wrongly parses email addresses [bsc#1149955, CVE-2019-16056] * Thu Jul 25 2019 Matej Cepl - boo#1141853 (CVE-2018-20852) add CVE-2018-20852-cookie-domain-check.patch fixing http.cookiejar.DefaultPolicy.domain_return_ok which did not correctly validate the domain: it could be tricked into sending cookies to the wrong server. * Fri Jul 19 2019 Tomáš Chvátal - Skip test_urllib2_localnet that randomly fails in OBS * Wed Jul 3 2019 Matej Cepl - bsc#1138459: add CVE-2019-10160-netloc-port-regression.patch which fixes regression introduced by the previous patch. (CVE-2019-10160) Upstream gh#python/cpython#13812 * Wed May 29 2019 Martin Liška - Set _lto_cflags to nil as it will prevent to propage LTO for Python modules that are built in a separate package. * Thu May 2 2019 Matej Cepl - bsc#1130840 (CVE-2019-9947): add CVE-2019-9947-no-ctrl-char-http.patch Address the issue by disallowing URL paths with embedded whitespace or control characters through into the underlying http client request. Such potentially malicious header injection URLs now cause a ValueError to be raised. * Mon Apr 8 2019 Matej Cepl - bsc#1130847 (CVE-2019-9948) add CVE-2019-9948-avoid_local-file.patch removing unnecessary (and potentially harmful) URL scheme local-file://. * Mon Apr 8 2019 Matej Cepl - bsc#1129346: add CVE-2019-9636-netloc-no-decompose-characters.patch Characters in the netloc attribute that decompose under NFKC normalization (as used by the IDNA encoding) into any of ``/``, ``?``, ``#``, ``@``, or ``:`` will raise a ValueError. If the URL is decomposed before parsing, or is not a Unicode string, no error will be raised (CVE-2019-9636). Upstream commits e37ef41 and 507bd8c. * Thu Apr 4 2019 Matej Cepl - (bsc#1111793) Update to 2.7.16: * bugfix-only release: complete list of changes on https://github.com/python/cpython/blob/2.7/Misc/NEWS.d/2.7.16rc1.rst * Removed openssl-111.patch and CVE-2018-1000802-shutil_use_subprocess_no_spawn.patch which are fully included in the tarball. * Updated patches to apply cleanly: CVE-2019-5010-null-defer-x509-cert-DOS.patch bpo36160-init-sysconfig_vars.patch do-not-use-non-ascii-in-test_ssl.patch openssl-111-middlebox-compat.patch openssl-111-ssl_options.patch python-2.5.1-sqlite.patch python-2.6-gettext-plurals.patch python-2.7-dirs.patch python-2.7.2-fix_date_time_compiler.patch python-2.7.4-canonicalize2.patch python-2.7.5-multilib.patch python-2.7.9-ssl_ca_path.patch python-bsddb6.diff remove-static-libpython.patch * Update python-2.7.5-multilib.patch to pass with new platlib regime. * Fri Jan 25 2019 mcepl@suse.com - bsc#1109847: add CVE-2018-14647_XML_SetHashSalt-in_elementtree.patch fixing bpo-34623. * Fri Jan 25 2019 mcepl@suse.com - bsc#1073748: add bpo-29347-dereferencing-undefined-pointers.patch PyWeakref_NewProxy@Objects/weakrefobject.c creates new isntance of PyWeakReference struct and does not intialize wr_prev and wr_next of new isntance. These pointers can have garbage and point to random memory locations. Python should not crash while destroying the isntance created in the same interpreter function. As per my understanding, both wr_prev and wr_next of PyWeakReference instance should be initialized to NULL to avoid segfault. * Sat Jan 19 2019 mcepl@suse.com - bsc#1122191: add CVE-2019-5010-null-defer-x509-cert-DOS.patch fixing bpo-35746. An exploitable denial-of-service vulnerability exists in the X509 certificate parser of Python.org Python 2.7.11 / 3.7.2. A specially crafted X509 certificate can cause a NULL pointer dereference, resulting in a denial of service. An attacker can initiate or accept TLS connections using crafted certificates to trigger this vulnerability. * Wed Dec 19 2018 Todd R - Use upstream-recommended %%{_rpmconfigdir}/macros.d directory for the rpm macros. * Fri Oct 26 2018 Tomáš Chvátal - Add patch openssl-111.patch to work with openssl-1.1.1 (bsc#1113755) * Tue Sep 25 2018 Matěj Cepl - Apply "CVE-2018-1000802-shutil_use_subprocess_no_spawn.patch" which converts shutil._call_external_zip to use subprocess rather than distutils.spawn. [bsc#1109663, CVE-2018-1000802] * Fri Jun 29 2018 mcepl@suse.com - Apply "CVE-2018-1061-DOS-via-regexp-difflib.patch" to prevent low-grade poplib REDOS (CVE-2018-1060) and to prevent difflib REDOS (CVE-2018-1061). Prior to this patch mail server's timestamp was susceptible to catastrophic backtracking on long evil response from the server. Also, it was susceptible to catastrophic backtracking, which was a potential DOS vector. [bsc#1088004 and bsc#1088009, CVE-2018-1061 and CVE-2018-1060] * Thu Jun 7 2018 psimons@suse.com - Apply "CVE-2017-18207.patch" to add a check to Lib/wave.py that verifies that at least one channel is provided. Prior to this check, attackers could cause a denial of service (divide-by-zero error and application crash) via a crafted wav format audio file. [bsc#1083507, CVE-2017-18207] * Tue May 29 2018 mcepl@suse.com - Apply "python-sorted_tar.patch" (bsc#1086001, boo#1081750) sort tarfile output directory listing * Mon May 21 2018 michael@stroeder.com - update to 2.7.15 * dozens of bugfixes, see NEWS for details - removed obsolete patches: * python-ncurses-6.0-accessors.patch * python-fix-shebang.patch * gcc8-miscompilation-fix.patch - add patch from upstream: * do-not-use-non-ascii-in-test_ssl.patch * Fri Apr 6 2018 mliska@suse.cz - Add gcc8-miscompilation-fix.patch (boo#1084650). * Tue Mar 13 2018 psimons@suse.com - Apply "python-2.7.14-CVE-2017-1000158.patch" to prevent integer overflows in PyString_DecodeEscape that could have resulted in heap-based buffer overflow attacks and possible arbitrary code execution. [bsc#1068664, CVE-2017-1000158] * Mon Feb 5 2018 normand@linux.vnet.ibm.com - exclude test_socket & test_subprocess for PowerPC boo#1078485 (same ref as previous change) * Fri Feb 2 2018 normand@linux.vnet.ibm.com - Add python-skip_random_failing_tests.patch bypass boo#1078485 and exclude many tests for PowerPC * Tue Jan 30 2018 tchvatal@suse.com - Add patch python-fix-shebang.patch to fix bsc#1078326 * Fri Dec 22 2017 jmatejek@suse.com - exclude test_regrtest for s390, where it does not segfault as it should (fixes bsc#1073269) - fix segfault while creating weakref - bsc#1073748, bpo#29347 (this is actually fixed by the 2.7.14 update; mentioning this for purposes of bugfix tracking) * Mon Nov 20 2017 jmatejek@suse.com - update to 2.7.14 * dozens of bugfixes, see NEWS for details * fixed possible integer overflow in PyString_DecodeEscape (CVE-2017-1000158, bsc#1068664) * fixed segfaults with dict mutated during search * fixed possible free-after-use problems with buffer objects with custom indexing * fixed urllib.splithost to correctly parse fragments (bpo-30500) - drop upstreamed python-2.7.13-overflow_check.patch - drop unneeded python-2.7.12-makeopcode.patch - drop upstreamed 0001-2.7-bpo-30714-ALPN-changes-for-OpenSSL-1.1.0f-3094.patch - Apply "python-2.7.14-CVE-2018-1000030-1.patch" and "python-2.7.14-CVE-2018-1000030-2.patch" to remedy a bug that would crash the Python interpreter when multiple threads used the same I/O stream concurrently. This issue is not classified as a security vulnerability due to the fact that an attacker must be able to run code, however in some situations -- such as function as a service -- this vulnerability can potentially be used by an attacker to violate a trust boundary. [bsc#1079300, CVE-2018-1000030] * Thu Nov 2 2017 mpluskal@suse.com - Call python2 instead of python in macros * Thu Sep 14 2017 vcizek@suse.com - Fix test broken with OpenSSL 1.1 (bsc#1042670) * add 0001-2.7-bpo-30714-ALPN-changes-for-OpenSSL-1.1.0f-3094.patch * Mon Aug 28 2017 jmatejek@suse.com - drop SUSE_ASNEEDED=0 as it is not needed anymore * Thu Aug 17 2017 kukuk@suse.de - Add libnsl-devel build requires for glibc obsoleting libnsl * Mon May 15 2017 jmatejek@suse.com - obsolete/provide python-argparse and provide python2-argparse, because the argparse module is available from python 2.7 up * Tue Feb 28 2017 jmatejek@suse.com - SLE package update (bsc#1027282) - refresh python-2.7.5-multilib.patch - dropped upstreamed patches: python-fix-short-dh.patch python-2.7.7-mhlib-linkcount.patch python-2.7-urllib2-localnet-ssl.patch CVE-2016-0772-smtplib-starttls.patch CVE-2016-5699-http-header-injection.patch CVE-2016-5636-zipimporter-overflow.patch python-2.7-httpoxy.patch - Add python-ncurses-6.0-accessors.patch: Fix build with NCurses 6.0 and OPAQUE_WINDOW set to 1. (dimstar@opensuse.org) * Fri Feb 24 2017 bwiedemann@suse.com - Add reproducible.patch to allow reproducible builds of various python packages like python-amqp Upstream: https://github.com/python/cpython/pull/296 * Tue Jan 3 2017 jmatejek@suse.com - update to 2.7.13 * dozens of bugfixes, see NEWS for details * updated cipher lists for openssl wrapper, support openssl >= 1.1.0 * properly fix HTTPoxy (CVE-2016-1000110) * profile-opt build now applies PGO to modules as well - update python-2.7.10-overflow_check.patch with python-2.7.13-overflow_check.patch, incorporating upstream changes (bnc#964182) - add "-fwrapv" to optflags explicitly because upstream code still relies on it in many places * Fri Dec 2 2016 jmatejek@suse.com - provide python2-* symbols, for support of new packages built as python2-foo - rename macros.python to macros.python2 accordingly - require python-rpm-macros package, drop macro definitions from macros.python2 * Mon Sep 26 2016 jmatejek@suse.com - initial packaging of `python27` side-by-side variant (fate#321075, bsc#997436) - renamed `python` to `python27` in package names and requires - removed Provides and Obsoletes clauses - dropped SLE12-only patch python-2.7.9-sles-disable-verification-by-default.patch, companion sle_tls_checks_policy.py file and the python-strict-tls-checks subpackage - dropped profile files - removed /usr/bin/python and /usr/bin/python2, along with other unversioned aliases - rewrote macros file to enable stand-alone packages depending on py2.7 - re-included downloaded version of HTML documentation * Thu Jun 30 2016 jmatejek@suse.com - update to 2.7.12 * dozens of bugfixes, see NEWS for details * fixes multiple security issues: CVE-2016-0772 TLS stripping attack on smtplib (bsc#984751) CVE-2016-5636 zipimporter heap overflow (bsc#985177) CVE-2016-5699 httplib header injection (bsc#985348) (this one is actually fixed since 2.7.10) - removed upstreamed python-2.7.7-mhlib-linkcount.patch - refreshed multilib patch - python-2.7.12-makeopcode.patch - run newly-built python interpreter to make opcodes, in order not to require pre-built python - update LD_LIBRARY_PATH to use $PWD instead of "." because the test process escapes to its own directory - modify shebang-fixing scriptlet to ignore makeopcodetargets.py * Fri Jun 17 2016 jmatejek@suse.com - CVE-2016-0772-smtplib-starttls.patch: smtplib vulnerability opens startTLS stripping attack (CVE-2016-0772, bsc#984751) - CVE-2016-5636-zipimporter-overflow.patch: heap overflow when importing malformed zip files (CVE-2016-5636, bsc#985177) - CVE-2016-5699-http-header-injection.patch: incorrect validation of HTTP headers allow header injection (CVE-2016-5699, bsc#985348) - python-2.7-httpoxy.patch: HTTPoxy vulnerability in urllib, fixed by disregarding HTTP_PROXY when REQUEST_METHOD is also set (CVE-2016-1000110, bsc#989523) * Fri Jan 29 2016 rguenther@suse.com - Add python-2.7.10-overflow_check.patch to fix broken overflow checks. [bnc#964182] * Mon Sep 14 2015 jmatejek@suse.com - copy strict-tls-checks subpackage from SLE to retain future compatibility (not built in openSUSE) - do this properly to fix bnc#945401 - update SLE check to exclude Leap which also has version 1315, just to be sure * Wed Sep 9 2015 dimstar@opensuse.org - Add python-ncurses-6.0-accessors.patch: Fix build with NCurses 6.0 and OPAQUE_WINDOW set to 1. * Thu Aug 13 2015 jmatejek@suse.com - add missing ssl.pyc and ssl.pyo to package - implement python-strict-tls-checks subpackage * when present, Python will perform TLS certificate checking by default. it is possible to remove the package to turn off the checks for compatibility with legacy scripts. * as discussed in fate#318300 * this is not built for openSUSE, but retained here in case we want to build the package for a SLE system * Mon Jun 29 2015 meissner@suse.com - python-fix-short-dh.patch: Bump DH parameters to 2048 bit to fix logjam security issue. bsc#935856 * Wed Jun 10 2015 dmueller@suse.com - add __python2 compatibility macro (used by Fedora) (fate#318838) * Sun May 24 2015 michael@stroeder.com - update to 2.7.10 - removed obsolete python-2.7-urllib2-localnet-ssl.patch * Tue May 19 2015 schwab@suse.de - Reenable test_posix on aarch64 * Sun Dec 21 2014 schwab@suse.de - python-2.7.4-aarch64.patch: Remove obsolete patch - python-2.7-libffi-aarch64.patch: Fix argument passing in libffi for aarch64 * Fri Dec 12 2014 jmatejek@suse.com - update to 2.7.9 * contains full backport of ssl module from Python 3.4 (PEP466) * HTTPS certificate validation enabled by default (PEP476) * SSLv3 disabled by default (bnc#901715) * backported ensurepip module (PEP477) * fixes several missing CVEs from last release: CVE-2013-1752, CVE-2013-1753 * dozens of minor bugfixes - dropped upstreamed patches: python-2.7.6-poplib.patch, smtplib_maxline-2.7.patch, xmlrpc_gzip_27.patch - dropped patch python-2.7.3-ssl_ca_path.patch because we don't need it with ssl module from Python 3 - libffi was upgraded upstream, seems to contain our changes, so dropping libffi-ppc64le.diff as well - python-2.7-urllib2-localnet-ssl.patch - properly remove unconditional "import ssl" from test_urllib2_localnet that caused it to fail without ssl * Wed Oct 22 2014 dmueller@suse.com - skip test_thread in qemu_linux_user mode * Wed Oct 1 2014 jmatejek@suse.com - CVE-2014-7185-buffer-wraparound.patch: potential wraparound/overflow in buffer() (CVE-2014-7185, bnc#898572) * Tue Sep 30 2014 jmatejek@suse.com - update to 2.7.8 * bugfix-only release, dozens of bugs fixed * fixes CVE-2014-4650 directory traversal in CGIHTTPServer * fixes CVE-2014-7185 (bnc#898572) potential buffer overflow in buffer() - dropped upstreamed CVE-2014-4650-CGIHTTPserver-traversal.patch - dropped upstreamed CVE-2014-7185-buffer-wraparound.patch * Wed Jul 23 2014 jmatejek@suse.com - CVE-2014-4650-CGIHTTPServer-traversal.patch: CGIHTTPServer file disclosure and directory traversal through URL-encoded characters (CVE-2014-4650, bnc#885882) - python-2.7.7-mhlib-linkcount.patch: remove link count optimizations that are incorrect on btrfs (and possibly other filesystems) * Fri Jun 20 2014 jmatejek@suse.com - update to 2.7.7 * bugfix-only release, over a hundred bugs fixed * backported hmac.compare_digest from python3, first step of PEP 466 - drop upstreamed patches: * CVE-2014-1912-recvfrom_into.patch * python-2.7.4-no-REUSEPORT.patch * python-2.7.6-bdist-rpm.patch * python-2.7.6-imaplib.patch * python-2.7.6-sqlite-3.8.4-tests.patch - refresh patches: * python-2.7.3-ssl_ca_path.patch * python-2.7.4-canonicalize2.patch * xmlrpc_gzip_27.patch - added python keyring and signature for the main tarball * Sat Mar 15 2014 schwab@suse.de - Use profile-opt only when profiling is enabled - python-2.7.2-disable-tests-in-test_io.patch: removed, no longer needed - update testsuite exclusion list: * test_signal and test_posix fail due to qemu bugs * Fri Mar 14 2014 andreas.stieger@gmx.de - Fix build with SQLite 3.8.4 [bnc#867887], fixing SQLite tests, adding python-2.7.6-sqlite-3.8.4-tests.patch * Mon Feb 10 2014 jmatejek@suse.com - added patches for CVE-2013-1752 (bnc#856836) issues that are missing in 2.7.6: python-2.7.6-imaplib.patch python-2.7.6-poplib.patch smtplib_maxline-2.7.patch - CVE-2013-1753 (bnc#856835) gzip decompression bomb in xmlrpc client: xmlrpc_gzip_27.patch - python-2.7.6-bdist-rpm.patch: fix broken "setup.py bdist_rpm" command (bnc#857470, issue18045) - multilib patch: add "~/.local/lib64" paths to search path (bnc#637176) - CVE-2014-1912-recvfrom_into.patch: fix potential buffer overflow in socket.recvfrom_into (CVE-2014-1912, bnc#863741) * Tue Dec 10 2013 uweigand@de.ibm.com - Add Obsoletes/Provides for python-ctypes. * Sat Dec 7 2013 matz@suse.de - Ignore uuid testcase in the testsuite, it relies on unreliable ifconfig output. * Tue Dec 3 2013 mls@suse.de - adapt python-2.7.5-multilib.patch for ppc64le * Tue Dec 3 2013 dvaleev@suse.com - adjust %%files for ppc64le * Tue Dec 3 2013 matz@suse.de - Support for ppc64le in _ctypes libffi copy. - added patches: * libffi-ppc64le.diff * Tue Dec 3 2013 adrian@suse.de - add ppc64le rules - avoid errors from source-validator * Thu Nov 21 2013 jmatejek@suse.com - update to 2.7.6 * bugfix-only release * SSL-related fixes * upstream fix for CVE-2013-4238 * upstream fixes for CVE-2013-1752 - removed upstreamed patch CVE-2013-4238_py27.patch - reintroduce audioop.so as the problems with it seem to be fixed (bnc#831442) * Thu Oct 10 2013 dmueller@suse.com - exclude test_mmap under qemu_linux_user - emulation fails here as the tests mmap address conflicts with qemu * Mon Aug 26 2013 lnussel@suse.de - update python-2.7.3-ssl_ca_path.patch patch to load default verify locations if no ca_certs file is specified (bnc#827982, bnc#836739) * Fri Aug 16 2013 jmatejek@suse.com - handle NULL bytes in certain fields of SSL certificates (CVE-2013-4238, bnc#834601) * Tue Jul 9 2013 jengelh@inai.de - Add python-bsddb6.diff to support building against libdb-6.0 * Sat Jul 6 2013 coolo@suse.com - have python-devel require python: http://lists.opensuse.org/opensuse-factory/2013-06/msg00622.html * Sun Jun 30 2013 schwab@suse.de - Disable test_multiprocessing in QEmu build * Wed Jun 5 2013 schwab@suse.de - Disable test_asyncore in QEmu build - Reenable testsuite on arm * Thu May 30 2013 jmatejek@suse.com - python-2.7.4-aarch64.patch: add missing bits of aarch64 support - python-2.7.4-no-REUSEPORT.patch: disable test of missing kernel functionality - drop unnecessary patch: python-2.7.1-distutils_test_path.patch - switch to xz archive * Tue May 28 2013 speilicke@suse.com - Update to version 2.7.5: + bugfix-only release + fixes several important regressions introduced in 2.7.4 + Issue #15535: Fixed regression in the pickling of named tuples by removing the __dict__ property introduced in 2.7.4. + Issue #17857: Prevent build failures with pre-3.5.0 versions of sqlite3, such as was shipped with Centos 5 and Mac OS X 10.4. + Issue #17703: Fix a regression where an illegal use of Py_DECREF() after interpreter finalization can cause a crash. + Issue #16447: Fixed potential segmentation fault when setting __name__ on a class. + Issue #17610: Don't rely on non-standard behavior of the C qsort() function. 12 See http://hg.python.org/cpython/file/ab05e7dd2788/Misc/NEWS for more - Drop upstreamed patches: + python-2.7.3-fix-dbm-64bit-bigendian.patch + python-test_structmembers.patch - Rebased other patches * Mon May 13 2013 dmueller@suse.com - add aarch64 to the list of 64-bit platforms * Thu May 9 2013 jmatejek@suse.com - update to 2.7.4 * bugfix-only release - drop upstreamed patches: pypirc-secure.diff python-2.7.3-multiprocessing-join.patch ctypes-libffi-aarch64.patch - drop python-2.7rc2-configure.patch as it doesn't seem necessary anymore * Fri Apr 5 2013 idonmez@suse.com - Add Source URL, see https://en.opensuse.org/SourceUrls * Wed Feb 27 2013 schwab@suse.de - Add aarch64 to the list of lib64 platforms * Mon Feb 25 2013 jmatejek@suse.com - fix pythonstart failing on $HOME-less users (bnc#804978) * Sat Feb 9 2013 schwab@suse.de - Add ctypes-libffi-aarch64.patch: import aarch64 support for libffi in _ctypes module * Fri Feb 8 2013 jmatejek@suse.com - multiprocessing: thread joining itself (bnc#747794) - gettext: fix cases where no bundle is found (bnc#794139) * Thu Oct 25 2012 coolo@suse.com - add explicit buildrequire on libbz2-devel * Mon Oct 15 2012 coolo@suse.com - buildrequire explicitly netcfg for the test suite * Mon Oct 8 2012 jmatejek@suse.com - remove distutils.cfg (bnc#658604) * this changes default prefix for distutils to /usr * see ML for details: http://lists.opensuse.org/opensuse-packaging/2012-09/msg00254.html * Fri Aug 3 2012 dimstar@opensuse.org - Add python-bundle-lang.patch: gettext: If bindtextdomain is instructed to look in the default location of translations, we check additionally in locale-bundle. Fixes issues like bnc#617751 * Tue Jul 31 2012 jmatejek@suse.com - all subpackages require python-base=%%{version}-%%{release} explicitly (fixes bnc#766778 bug and similar that might arise in the future) * Tue Jun 26 2012 dvaleev@suse.com - Fix failing test_dbm on ppc64 * Thu May 17 2012 jfunk@funktronics.ca - Support directory-based certificate stores with the ca_certs parameter of SSL functions [bnc#761501] * Sat Apr 14 2012 dmueller@suse.com - update to 2.7.3: * no change - remove static libpython.a from build to avoid packages linking it statically * Wed Mar 28 2012 jmatejek@suse.com - update to 2.7.3rc2 * fixes several security issues: * CVE-2012-0845, bnc#747125 * CVE-2012-1150, bnc#751718 * CVE-2011-4944, bnc#754447 * CVE-2011-3389 - fix for insecure .pypirc (CVE-2011-4944, bnc#754447) !!important!! - disabled test_unicode which segfaults on 64bits. this should not happen, revisit in next RC! !!important!! * Thu Feb 16 2012 dvaleev@suse.com - skip broken test_io test on ppc * Mon Dec 12 2011 toddrme2178@gmail.com - Exclude /usr/bin/2to3 to prevent conflicts with python3-2to3 * Thu Dec 8 2011 jmatejek@suse.com - %%python_version now correctly refers to %%tarversion * Mon Nov 28 2011 saschpe@suse.de - Spec file cleanup: * Run spec-cleaner * Remove outdated %%clean section, AutoReqProv and authors from descr. - Fix license to Python-2.0 (also SPDX style) * Fri Sep 30 2011 adrian@suse.de - fix build for arm by removing an old hack for arm, bz2.so is built now * Fri Sep 16 2011 jmatejek@suse.com - dropped newslist.py from demos because of bad license (bnc#718009) * Fri Aug 19 2011 dmueller@suse.de - update to 2.7.2: * Bug fix only release, see http://hg.python.org/cpython/raw-file/eb3c9b74884c/Misc/NEWS for details - introduce a pre_checkin.sh file that synchronizes patches between python and python-base - rediff patches for 2.7.2 - replace kernel3 patch with the upstream solution * Fri Jul 22 2011 idonmez@novell.com - Copy Lib/plat-linux2 to Lix/plat-linux3 so that DLFCN module is also available for linux3 systems bnc#707667 * Sun Jul 10 2011 ro@suse.de - fix build on factory: setup reports linux3 not linux2 now, adapt checks * Tue May 31 2011 jmatejek@novell.com - added explicit requires to libpython-%%version-%%release to prevent bugs like bnc#697251 reappearing * Tue May 24 2011 jmatejek@novell.com - update to 2.7.1 * bugfix-only release, see NEWS for details - refreshed patches, dropped the upstreamed ones - dropped acrequire patch, replacing it with build-time sed - improved fix to bnc#673071 by defining the constants only for files that require it (as is done in python3) * Mon May 2 2011 jmatejek@novell.com - fixed a security flaw where malicious sites could redirect Python application from http to a local file (CVE-2011-1521, bnc#682554) - fixed race condition in Makefile which randomly failed parallel builds ( http://bugs.python.org/issue10013 ) * Thu Feb 17 2011 pth@suse.de - Prefix DATE and TIME with PY_BUILD_ and COMPILER with PYTHON_ as to not break external code (bnc#673071). * Mon Jan 17 2011 coolo@novell.com - provide pyxml to avoid touching tons of packages * Thu Nov 18 2010 coolo@novell.com - add patch from http://psf.upfronthosting.co.za/roundup/tracker/issue9960 to fix build on ppc64 * Fri Oct 1 2010 jmatejek@novell.com - moved unittest to python-base (it is a testing framework, not a testsuite, so it clearly belongs into stdlib) - fixed smtpd.py DoS (bnc#638233, CVE probably not assigned) * Tue Sep 21 2010 coolo@novell.com - fix baselibs.conf * Thu Aug 26 2010 suse-tux@gmx.de - fix for urllib2 (http://bugs.python.org/issue9639) * Thu Aug 26 2010 jmatejek@novell.com - fixed distutils test - dropped autoconf version requirement (it builds just fine with other versions) * Thu Aug 26 2010 jmatejek@novell.com - update to version 2.7 * improved handling of numeric types * deprecation warnings are now silent by default * new argparse module for command line arguments * many new features, see http://docs.python.org/dev/whatsnew/2.7.html for complete list * ** 2.7 is supposed to be the last version from the 2.x series, so its (upstream) maintenance period will probably be longer than usual. However, upstream development now focuses on 3.x series. - cleaned up spec and patches * Fri Jul 2 2010 jengelh@medozas.de - add patch from http://bugs.python.org/issue6029 - use %%_smp_mflags * Mon May 17 2010 matejcik@suse.cz - dropped audioop.so because of security vulnerabilities (bnc#603255) * Wed Apr 7 2010 matejcik@suse.cz - update to 2.6.5 (rpm version 2.6.5) - patched test_distutils to work * Thu Mar 11 2010 matejcik@suse.cz - update to 2.6.5rc2 (rpm version is 2.6.4.92) * bugfix-only release - removed fwrapv patch - no longer needed - removed expat patches (this version also fixes expat vulnerabilities from bnc#581765 ) - removed readline spacing patch - no longer needed - removed https_proxy patch - no longer needed - removed test_distutils patch - no longer needed - disabled test_distutils because of spurious failure, * TODO reenable at release * Thu Feb 4 2010 matejcik@suse.cz - removed precompiled exe files (as noted in bnc#577032) * Fri Jan 29 2010 matejcik@suse.cz - enabled ipv6 in configure (bnc#572673) * Wed Dec 23 2009 aj@suse.de - Apply patches with fuzz=0 * Mon Dec 14 2009 jengelh@medozas.de - add baselibs.conf as source * Wed Nov 4 2009 matejcik@suse.cz - readline shouldn't append space after completion (bnc#551715, python bug 5833) * Wed Oct 28 2009 crrodriguez@opensuse.org - python-devel Requires glibc-devel * Fri Sep 4 2009 matejcik@suse.cz - fixed potential DoS in python's copy of expat (bnc#534721) - added patch for potential SSL hangup during handshake (bnc#525295) * Sun Aug 2 2009 jansimon.moeller@opensuse.org - fix files section for ARM, as bz2.so isn't built on ARM. * Fri Jul 31 2009 matejcik@suse.cz - added /usr/lib/python2.6{,/site-packages} to the package even if it is on lib64 arch - added %%python_sitelib and %%python_sitearch for fedora compatibility * Thu Jul 30 2009 matejcik@suse.cz - fixed test in test_distutils suite that would generate a warning when the log threshold was set too low by preceding tests * Wed Jul 29 2009 matejcik@suse.cz - support noarch python packages (modified multilib patch to differentiate between purelib and platlib, added /usr/lib to search path in all cases * Thu Jul 16 2009 coolo@novell.com - disable as-needed to fix build * Mon Apr 27 2009 matejcik@suse.cz - update to 2.6.2 * bugfix-only release for 2.6 series * Fri Feb 6 2009 matejcik@suse.cz - excluded pyconfig.h and Makefile and Setup from -devel subpackage to prevent file conflicts of python-base and python-devel * Thu Jan 15 2009 matejcik@suse.cz - fixed gettext.py problem with empty plurals line (bnc#462375) * Wed Jan 7 2009 olh@suse.de - obsolete old -XXbit packages (bnc#437293) * Mon Dec 15 2008 matejcik@suse.cz - removed bsddb directory from python-base, reenabled in python ( bnc#441088 ) * Mon Oct 20 2008 matejcik@suse.cz - added libpython and python-base to baselibs.conf (bnc#432677) - disabled test_smtplib for ia64 so that the package actually gets built (bnc#436966) * Thu Oct 9 2008 matejcik@suse.cz - update to 2.6 final (version name is 2.6.0 to make upgrade from 2.6rc2 possible) - replaced site.py hack with a .pth file to do the same thing (cleaner solution that doesn't mess up documented behavior and also fixes virtualenv, bnc#430761) - enabled profile optimized build - fixed %%py_requires macro (bnc#346490) - provide %%name = 2.6 * Fri Sep 19 2008 matejcik@suse.cz - moved tests to %%check section - update to 2.6rc2, removing the last remaining security patch - included patch for https proxy support that resolves bnc#214983 (in a proper way) and bnc#298378 - included fix for socket.ssl() behavior regression, fixing bnc#426563 * Wed Sep 17 2008 matejcik@suse.cz - included /etc/rpm/macros.python to fix the split-caused breakage * Tue Sep 16 2008 matejcik@suse.cz - applied bug-no-proxy patch from python#3879, which should improve backwards compatibility (important i.e. for bzr) - moved python-xml to a subpackage of this (brings no additional dependencies, so it can as well stay) - moved Makefile and pyconfig.h to python-base, removing the need to have python-devel for installation - improved compatibility with older distros for 11.0 - moved ssl.py and sqlite3 module to python package - they won't work without their respective binary modules anyway * Mon Sep 15 2008 matejcik@suse.cz - updated to 2.6rc1 - bugfix-only pre-stable release - renamed python-base-devel to python-devel as it should be - removed macros from libpython package name * Fri Sep 12 2008 matejcik@suse.cz - moved python-devel to a subpackage of this - created libpython subpackage - moved essential files from -devel to -base, so that distutils should now be able to install without -devel package * Fri Sep 12 2008 matejcik@suse.cz - split package, as per fate#305065 - moved python-devel to be a subpackage of python-base - minor fixes & packaging cleanups * Wed Sep 10 2008 matejcik@suse.cz - fixed misapplied ssl-compat patch (caused segfaults when opening SSL connections, bnc#425138 ) * Wed Sep 3 2008 matejcik@suse.cz - updated to 2.6beta3 from BETA dist, summary of changes follows: * patches update/cleanup * removed failing tests (test_unicode, test_urllib2), those will be reworked later to not fail * fixed ncurses/panel.h include * removed most security fixes, as they are already included in this version * removed imageop/rgbimg (reasons: they only work in 32bit environment anyway, are deprecated by upstream and have inherent security problems) * fixed pythonstart script to trim history after 10000 lines (bnc#399190) - 2.6beta3 is mostly stable release of the 2.6 series, package will be updated to 2.6 final as soon as it comes out (in the beginning of October) * Wed Jul 30 2008 matejcik@suse.cz - security fixes for issues mentioned in bnc#406051: * CVE-2008-2315 - multiple integer overflows in basic types * CVE-2008-2316 - partial hashing of huge data with hashlib * CVE-2008-3142 - multiple buffer oveflows in unicode processing * CVE-2008-3144 - possible integer over/underflow in mysnprintf * buffer overflows in expandtabs() method (afaik no CVE assigned) - also mentioned CVE-2008-3143 is already fixed in python 2.5.2 * Mon Jun 30 2008 schwab@suse.de - Work around autoheader bug. * Fri Jun 13 2008 schwab@suse.de - Fix configure script. * Thu Apr 24 2008 matejcik@suse.cz - proper path for html documentation from python-doc, help text mentioning python-doc package in pydoc (bnc#380942) * Wed Apr 16 2008 matejcik@suse.cz - PyString_FromStringAndSize now checks size parameter (bnc#379534, CVE-2008-1721) * Tue Apr 15 2008 adrian@suse.de - disable DNS lookup test when running in build service. The XEN build hosts have no network. * Thu Apr 10 2008 ro@suse.de - added baselibs.conf file to build xxbit packages for multilib support * Mon Apr 7 2008 schwab@suse.de - Limit virtual memory to avoid spurious testsuite failures. * Mon Mar 10 2008 matejcik@suse.cz - bnc#367853 turned out to be invalid, upstream is already on to the real problem - forcing -fwrapv to compiler flags until upstream has a solution * Wed Feb 27 2008 matejcik@suse.cz - update to 2.5.2 - bugfix-only release, over 100 bugs fixed - removed hppa patch (already included) - disabled test_str until gcc issue bnc#367853 is resolved * Tue Nov 13 2007 matejcik@suse.cz - patched a bug in sqlite module that would cause segfault on call to executescript() - > TODO return and improve the patch * Mon Sep 3 2007 matejcik@suse.cz - replaced fdupes oneliner with %%fdupes macro - added /usr/bin/python2 symlink (#307097) - obsoletes python-elementtree and python-sqlite (#301182) (obsoletes, but doesn't provide - the modules that obsolete those packages are renamed and dependent packages need to be changed) * Fri Aug 24 2007 bg@suse.de - fix build on hppa * Fri Aug 3 2007 jmatejek@suse.cz - replaced duplicate files with hardlinks * Fri Jul 27 2007 jmatejek@suse.cz - removed emacs python-mode and dependency on emacs * Fri Jun 8 2007 jmatejek@suse.cz - revisited & explained failing tests - applied EINTR recovery patch (#278622) - experimental replacement of shebang strings, removing dependency on /usr/bin/env * Thu May 24 2007 jmatejek@suse.cz - update to 2.5.1 - bugfix only release, over 150 bugs fixed - fixes off-by-one memory leak in _localemodule.c (#276889, CVE-2007-2052) - unnecessary patches removed, minor build cleanup - warns when attempting to use https proxy (#214983) * Mon May 21 2007 ro@suse.de - make setup.py accept db-4.5 * Thu Mar 29 2007 aj@suse.de - Add ncurses-devel to BuildRequires. * Sat Mar 24 2007 aj@suse.de - Add libbz2-devel to BuildRequires. * Fri Mar 23 2007 rguenther@suse.de - add gdbm-devel BuildRequires * Mon Jan 8 2007 cthiel@suse.de - fix sqlite3 support (#228733) * Tue Sep 19 2006 jmatejek@suse.cz - update to 2.5 final, going into STABLE dist - issue with lib/python/config is not caused by dirs patch * Wed Sep 13 2006 jmatejek@suse.cz - update to 2.5c2 - 2.5 final is expected next week - removed testfiles.tar.bz2 from package due to copyright issues (see #204867). Reminder: enable urlfetch or put it back (or both, using Nosource) * Tue Sep 5 2006 jmatejek@suse.cz - update to 2.5c1 - many new features, see http://www.python.org/dev/peps/pep-0356/ - 64bit indices issue will require changes of modules, see http://www.python.org/dev/peps/pep-0353/ for transition guidelines - non-backwards-compatible changes, see http://docs.python.org/dev/whatsnew/section-other.html (this link is expected to die, so just search for "what's new in 2.5") - open issues in build process: - sed'ing out /usr/local/bin/python from files causes build to fail if not filtered by grep (see %%prep section) - might be a bug in sed - 2.3.3-dirs patch + --enable-shared + --libdir breaks build, because "-L/usr/lib*/python2.5/config" is added instead of "-L." Workaround in 2.5c1-dirs-fix, should be replaced soon - test_file fails in autobuild, but is OK when building manually - test_nis fails in autobuild, probably due to a misconfiguration on autobuild servers - it might be good to create python-sqlite3 subpackage * Mon Apr 24 2006 jmatejek@suse.cz - update to 2.4.3 - no big changes, bugfix-only release (about 50 bugs fixed) * Wed Mar 15 2006 jmatejek@suse.cz - moved -doc and -doc-pdf into separate noarch specfile * Mon Feb 27 2006 jmatejek@suse.cz - implemented /usr/local path schemes for bug #149809 - python now recognizes packages in /usr/local/lib/python2.4 - distutils install by default into /usr/local/lib/python2.4/site-packages - on 64bit systems that is of course lib64 * Wed Jan 25 2006 mls@suse.de - converted neededforbuild to BuildRequires * Sat Jan 14 2006 kukuk@suse.de - Add gmp-devel to nfb * Mon Nov 28 2005 jmatejek@suse.cz - reenabled optimization on ppc64 * Fri Nov 11 2005 nadvornik@suse.cz - fixed another bug in canonicalize patch [#133267] * Wed Oct 5 2005 jmatejek@suse.cz - update to 2.4.2 - additional fixes to canonicalize patch, restored interactive mode * Mon Sep 26 2005 jmatejek@suse.cz - replaced the previous patch with a new one - it now tries to use canonical_file_name(), falling back to realpath() and eventually readlink - canonical_file_name() branch now sets the buffer length * Fri Sep 23 2005 jmatejek@suse.cz - fixed to build with gcc's new buffer overflow checking - added patch from https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=169046 * Fri Apr 22 2005 schwab@suse.de - Always enable SSL bug workarounds. * Tue Apr 5 2005 mcihar@suse.cz - update to 2.4.1 * Thu Mar 24 2005 uli@suse.de - fixed to build on ARM * Tue Mar 1 2005 mcihar@suse.cz - skip some test on ia64 for now * Tue Feb 8 2005 mcihar@suse.cz - mark configuration files as %%config * Tue Feb 1 2005 mcihar@suse.cz - fix vulnerability in SimpleXMLRPCServer (bug #50321, CAN-2005-0089) * Tue Dec 28 2004 mcihar@suse.cz - disable bsddb tests, it fails probably on all 64-bit * Thu Dec 23 2004 mcihar@suse.cz - make lib64 installation also work on others than x86_64 * Mon Dec 20 2004 mcihar@suse.de - fixed build on ppc64 - update multiarch patch - do not test bsddb internals - remove optimalisation from flags, it breaks at least math * Mon Dec 20 2004 mcihar@suse.cz - added extra files needed for some tests (codecmaps and unicode normalisation) - enabled bsddb tests - reenabled test_shelve, as it works now * Thu Dec 16 2004 mcihar@suse.cz - update db 4.3 patch - fix bdist_rpm when spec file generates more than one rpm * Tue Dec 14 2004 bg@suse.de - disable tests for hppa * Mon Dec 6 2004 mcihar@suse.cz - fix bsddb module for current bsddb - improved readline detection * Fri Dec 3 2004 mcihar@suse.cz - updated documentation to 2.4 * Wed Dec 1 2004 mcihar@suse.cz - don't use wctype functions from glibc, it breaks at some situations - enable tests during compilation, removing currently known failures * Tue Nov 30 2004 mcihar@suse.cz - update to 2.4 final * Wed Nov 24 2004 mcihar@suse.cz - yet another ignore list update, ignore man and locale dirs * Wed Nov 24 2004 mcihar@suse.cz - ignore /etc and avoid infinite loop while generating directory list * Wed Nov 24 2004 mcihar@suse.cz - ignore one more directories in file list generating - handle correctly headers path in file list generating - handle extra_dir in file list generating - use same way as mandrake to support lib64, at least it's a bit cleaner solution than we had, so we now also have sys.lib - audioop is now enabled on 64-bit * Tue Nov 23 2004 mcihar@suse.cz - updated to 2.4c1 (2.4 release candidate 1) - dropped python-mpz package as it was dropped by upstream - completely rewritten and much simplified rpm file list generation, if you have problems with new version, please drop me a note - install also /etc/profile.d/python.csh * Tue Aug 24 2004 mcihar@suse.cz - updated README.SUSE - added startup script, which enables saving of history and completion for interactive usage * Thu May 27 2004 mcihar@suse.cz - update to 2.3.4 final (no changes from rc 1) * Wed May 19 2004 mcihar@suse.cz - update to 2.3.4 release candidate 1 (obsoletes some patches taken from cvs) - forcing of large file support is not needed (for quite a long time) - updated README.SUSE * Tue Mar 16 2004 mcihar@suse.cz - included some fixes from cvs: - fix possible segfault in bsddb - urllib2 supports non-anonymous ftp and absolute paths - fixed GC problems in PyWeakref_NewRef * Thu Mar 11 2004 mcihar@suse.cz - fix readline with utf-8 (bug #34302) * Wed Mar 3 2004 mcihar@suse.cz - obsoletes python21 * Thu Feb 26 2004 mcihar@suse.cz - all subpackages depend on current python version * Thu Feb 19 2004 mcihar@suse.cz - fix Lib/email/Charset.py for use in some locales - fix format string in zipimport module - use system readline - add more IPV6 socket options - use sed instead of perl for replacing - include LICENSE * Sat Jan 10 2004 adrian@suse.de - build as user * Mon Jan 5 2004 mcihar@suse.cz - updated to 2.3.3 (final) - call %%{run_ldconfig} in post and postun - libpython.2.3.so symlink moved to devel package (bug #33779) * Fri Dec 12 2003 mcihar@suse.cz - updated to 2.3.3 (release candidate 1) * Tue Nov 18 2003 mcihar@suse.cz - use wchar_t functions from libc, this reduces size of interpreter * Mon Oct 27 2003 kukuk@suse.de - Remove useless Requires - Remove not used packages from neededforbuild * Fri Oct 3 2003 mcihar@suse.cz - updated to 2.3.2 - A bug in autoconf that broke building on HP/UX systems is fixed. - A bug in the Python configure script that meant os.fsync() was never available is fixed. * Thu Oct 2 2003 mcihar@suse.cz - force use of directories passed to configure script (-dirs.patch), bug #31947 * Mon Sep 29 2003 mcihar@suse.cz - updated to 2.3.1, most of changes were alredy included in -cvs.patch - not so verbose untaring * Thu Sep 11 2003 mcihar@suse.cz - included fixes from cvs (branch release23-maint), this fixes some memory leaks and other bugs (-cvs.patch) - nicer output from pydoc (-pydoc.patch) - cleaned up configure parameters - compiling with -Wall * Wed Sep 10 2003 mcihar@suse.cz - build as shared * Wed Sep 3 2003 mcihar@suse.cz - python now obsoletes python-nothreads (bug #29907) * Thu Aug 14 2003 mcihar@suse.cz - fixed symlinks to configuration files - cleaned up spec file * Wed Aug 6 2003 mcihar@suse.cz - updated lib64 patch * Tue Aug 5 2003 mcihar@suse.cz - updated to final 2.3, some highlights: * Python 2.3 is about 20-30%% faster than Python 2.2.3 * Brand new IDLE * Some new or upgraded built-ins, includes better support for unicode, new bool type... * Lots of upgraded or new modules and packages. * PYTHONINSPECT variabale that can cause python to behave as it was executed with -i parameter. * Mon Jul 28 2003 ro@suse.de - added tk-devel to neededforbuild * Thu Jun 26 2003 mcihar@suse.cz - updated to cvs snapshot, mostly because of finally correct DESTDIR support, to avoid buildroot leftovers * Tue Jun 24 2003 mcihar@suse.cz - better excluding site-packages from generated dirlist * Tue Jun 17 2003 mcihar@suse.cz - ignore site-packages and share directories for filelists - include install dir if not site-packages in filelists * Tue Jun 17 2003 mcihar@suse.cz - better handle mutliple level of install directories when generating %%dir entries * Mon Jun 16 2003 mcihar@suse.cz - one more distutils patch update: * fix generating of dirs in chrooted installs for install_data * don't include directory for install_scripts * Mon Jun 16 2003 mcihar@suse.cz - updated patch to work around problems with self defined get_outputs * Mon Jun 16 2003 mcihar@suse.cz - modified distutils to allow generating complete file list for rpm (including directories with %%dir macro), to use this use - -record-rpm= instead of --record= * Thu Jun 5 2003 mcihar@suse.cz - move documentation where it was in 2.2 versions - fixed permissions for some scripts in devel package * Thu May 29 2003 mcihar@suse.cz - cleaned up specfile - make executable only files that should be * Mon May 19 2003 mcihar@suse.cz - removed .cvsignore files * Tue Apr 29 2003 mcihar@suse.cz - updated lib64 patch * Mon Apr 28 2003 mcihar@suse.cz - updated to 2.3b1, some highlights: - sum() builtin, adds a sequence of numbers, beats reduce(). - csv module, reads comma-separated-value files (and more). - timeit module, times code snippets. - os.walk(), a generator slated to replace os.path.walk(). - platform module, by Marc-Andre Lemburg, returns detailed platform information. * Thu Apr 10 2003 mcihar@suse.cz - added DEFS to config/Makefile as it was in 2.2 * Wed Apr 2 2003 mcihar@suse.cz - updated lib64 patch - fixed list of built modules for 64-bit arches * Tue Apr 1 2003 mcihar@suse.cz - updated to python 2.3 alpha 2 - updated many builtins and modules - new modules: bsddb, bz2, datetime, logging, optparse, sets, textwrap, zipimport, - some general things have changed: - Hex/oct literals prefixed with a minus sign were handled inconsistently. - Package index and metadata for distutils. - Encoding declarations - you can put a comment of the form "# -*- coding: -*-" in the first or second line of a Python source file to indicate the encoding (e.g. utf-8). - Import from zipfiles. - see Misc/NEWS in documentation or python website - http://python.org/2.3/highlights.html for more details - moved distutils into -devel package - cleaned up specfile * Tue Apr 1 2003 mcihar@suse.cz - removed RPM_BUILD_ROOT leftovers (bug #25963) * Thu Mar 6 2003 kukuk@suse.de - Provide/Obsolete python-tkinter * Tue Jan 28 2003 mcihar@suse.cz - idle symlink corrected for lib64 - fixed LIBDEST path for distutils, closes #22322 * Fri Jan 10 2003 mcihar@suse.cz - fixed distutils for lib64 * Wed Dec 18 2002 mcihar@suse.cz - improved blt detection for tkinter - build with detected version of tix - enabled SIGFPE catching - enabled signal module - enabled C++ support * Fri Nov 29 2002 mcihar@suse.cz - enabled ipv6 support - no apache is needed for building - python-nothreads is not built anymore as is seems that mod_python works correctly woth python 2.2.2 and threads - Makefile also copied to config directory in rpm * Wed Nov 27 2002 adrian@suse.de - Makefile.pre* to config directory (following the official spec file change) * Fri Nov 8 2002 mcihar@suse.cz - fixed bad source number for suse-start-python-mode.el * Thu Nov 7 2002 mcihar@suse.cz - fixed %%files section for idle on lib64 arches * Wed Nov 6 2002 mcihar@suse.cz - included python-mode.el for emacs - idle moved from demos to separate package - merged tk and tkinter * Wed Oct 30 2002 mcihar@suse.cz - removed not needed l2h and tetex from neededforbuild * Wed Oct 30 2002 ro@suse.de - changed neededforbuild to * Wed Oct 23 2002 mcihar@suse.cz - updated to 2.2.2 (bugfix release) - moved python-korean into separate source package * Tue Sep 17 2002 ro@suse.de - removed bogus self-provides * Tue Sep 10 2002 kukuk@suse.de - Add provides for correct update * Thu Sep 5 2002 ro@suse.de - remove l2h from neededforbuild (apparently no longer used) * Wed Aug 14 2002 ro@suse.de - no fpectl.so on alpha * Tue Aug 13 2002 uli@suse.de - rediffed lib64 patch * Thu Aug 8 2002 vinil@suse.de - new version 2.2.1 - new version of Korean codes 2.0.5 and splitted to standalone package 'python-korean' - get rid of Makefile.pre.in - clean part added to spec * Sun Jul 28 2002 kukuk@suse.de - removed termcap and tetex from neededforbuild (not used) * Fri Jul 26 2002 adrian@suse.de - fix neededforbuild * Tue Jun 11 2002 meissner@suse.de - add ppc64 to list of 64bit archs that don't compile 3 of the plugins. * Tue Jun 4 2002 stepan@suse.de - change more locations of lib to %%{_lib} on platforms that need it. - change Makefile to use install -d instead of mkdir to solve trouble when installing in buildroots. * Mon Jun 3 2002 stepan@suse.de - Change config/Makefile and config/Makefile.pre.in to use %%_lib instead of lib (fixes i.e. zope) * Fri May 17 2002 sf@suse.de - changed site.py to detect the correct location (is needed at least for postresql to build - it still needs to be corrected, as only 64-bit excutable shlibs have to reside in */lib64 * Wed May 15 2002 coolo@suse.de - fixing file list for s390x * Tue May 14 2002 ro@suse.de - use libdir - try to get this working with lib64 * Mon May 6 2002 schwab@suse.de - Build python library with -fPIC, for inclusion in shared library. * Wed Apr 17 2002 schwab@suse.de - Fix detection of readline library (use -lncurses instead of -ltermcap). * Sat Mar 23 2002 ro@suse.de - changed neededforbuild to * Thu Jan 31 2002 ro@suse.de - changed neededforbuild to * Wed Jan 9 2002 rvasice@suse.cz - used correct Makefile.pre.in * Wed Jan 9 2002 rvasice@suse.cz - added Makefile.pre.in to enable build other python packages * Mon Jan 7 2002 rvasice@suse.cz - update to version 2.2 - recreated modules list * Mon Dec 17 2001 ro@suse.de - fixed for gmp-4.x * Mon Sep 3 2001 rvasice@suse.cz - added patch for Large File Support * Mon Aug 27 2001 rvasice@suse.cz - removed conflicting file /etc/susehelp.d/pythonhtml.conf from subpackage python-doc * Fri Aug 17 2001 schwab@suse.de - Compile python library with -fPIC to allow inclusion in shared libraries. - Fix configure check for rl_completion_matches. - Replace use of config.guess by %%ifarch. * Mon Aug 13 2001 ro@suse.de - added regex module (needed for yodl) - filelist probably needs re-check * Mon Jul 30 2001 rvasice@suse.cz - fix /usr/local path * Fri Jul 27 2001 rvasice@suse.cz - update to version 2.1.1 * Tue May 8 2001 mfabian@suse.de - bzip2 sources * Fri Apr 13 2001 kukuk@suse.de - fix build with new readline library * Wed Apr 11 2001 utuerk@suse.de - added pythonhtml.conf for susehelp * Fri Feb 23 2001 ro@suse.de - changed neededforbuild to * Thu Feb 22 2001 ro@suse.de - added readline/readline-devel to neededforbuild (split from bash) * Mon Jan 22 2001 kukuk@suse.de - Use -fPIC * Tue Jan 16 2001 schwab@suse.de - Compile python library with -fpic so that it can be included in a shared library (for mod_python). * Mon Jan 15 2001 mt@suse.de - added uc-kr codec, thanks to Hwang, SangJin * Sun Dec 31 2000 schwab@suse.de - Fix filelist for ia64. * Mon Dec 18 2000 mt@suse.de - added sub-package python-nothreads for mod_python apache-module - added Obsoletes for old 8.3 packages names * Wed Dec 6 2000 mt@suse.de - cleaned up pythons tk dependencies * Thu Nov 30 2000 ro@suse.de - fixed tix-link * Wed Nov 29 2000 ro@suse.de - changed neededforbuild to * Mon Nov 27 2000 mt@suse.de - changed libnetpb to libnetpbm in neededforbuild - changed file-list in python-devel * Thu Nov 23 2000 mt@suse.de - added openssl-devel to neededforbuild * Wed Nov 22 2000 mt@suse.de - removed site-packages from Setup.in patch - python-64bit.patch should be used on all 64bit platforms * Sun Nov 19 2000 mt@suse.de - updated to BeOpen-Python-2.0 * Fri Oct 27 2000 kukuk@suse.de - Use long filenames - Fix some paths - Include * Wed Jul 5 2000 mt@suse.de - added anydbm (whichdb.py) patch from www.tummy.com * Sat May 27 2000 kukuk@suse.de - Use libtk8.3.so and libtcl8.3.so * Thu May 4 2000 kukuk@suse.de - Fix filelist for new doc dir * Mon Mar 13 2000 ro@suse.de - fixed filelist for alpha * Wed Mar 1 2000 werner@suse.de - Fix config.guess selection * Wed Feb 16 2000 uli@suse.de - passing MANDIR to "make install libinstall" (seems like it gets lost somewhere) * Tue Feb 15 2000 ro@suse.de - man to /usr/share using macro * Tue Feb 15 2000 mt@suse.de - stripped the python binary * Mon Oct 11 1999 max@suse.de - ready for the new Tcl/Tk packages * Mon Sep 27 1999 bs@suse.de - fixed requirements for sub packages * Mon Sep 20 1999 ro@suse.de - added python_image_lib as requires to pyth_tk and as provides to pyth_tkl * Mon Sep 13 1999 bs@suse.de - ran old prepare_spec on spec file to switch to new prepare_spec. * Mon Jun 7 1999 mt@suse.de - disabled pyth_dvi module in spec-file * Wed May 26 1999 ro@suse.de - added libpng to neededforbuild * Wed May 26 1999 ro@suse.de - added blt to neededforbuild * Tue May 25 1999 mt@suse.de - new version 1.5.2 - splited into sub-packages: pyth_doc, pyth_ps, pyth_pdf, pyth_dvi, pyth_dmo, pyth_tk, pyth_tkl, pyth_cur, pythgdbm to have better base-package compatibility to andrich.net. * Thu Mar 18 1999 ro@suse.de - don't set POSIXLY_CORRECT for second patch * Mon Jan 18 1999 ro@suse.de - added automake to neededforbuild - alpha-fix: don't mix up dec-osf with linux-alpha * Tue Dec 1 1998 mt@suse.de - removed TkInter into a separate package - pyth_tk - to make it possible to replace it with a PIL based TkInter (Python Imaging Lib) and better package dependecies (not each app needs TkInter) - removed Makefile.Linux - all build is done from spec file now - more /usr/local path fixes * Fri Nov 6 1998 ro@suse.de - added automake to neededforbuild - configure with threads * Thu Nov 5 1998 ro@suse.de - use db_185.h only for glibc-2.1 * Wed Sep 23 1998 ro@suse.de - two hacks to compile for glibc: Modules/bsddbmodule.c include db_185.h for glibc Modules/mpzmodule.c gmp-mparam.h dont exist for glibc / use define * Sun Aug 23 1998 ke@suse.de - Compress PostScript docu. * Mon Aug 17 1998 mt@suse.de - linked readline- and curses-modules with ncurses * Fri Aug 7 1998 mt@suse.de - python modules - file permissions changed (-x) * Sat Jul 11 1998 bs@suse.de - fixed neededforbuild * Wed Jul 8 1998 mt@suse.de - new revision 1.5.1 - docu in a separate package (pyth_doc) - Tkinter uses tk8.0/tcl8.0 now - first attempt to make it "alpha ready" (spec- & dif-file) * Mon Mar 2 1998 ro@suse.de - fixed dependency to /usr/local/bin/python * Mon Feb 9 1998 ro@suse.de - added some in neededforbuild * Wed Feb 4 1998 mt@suse.de - new Version 1.5 with more features, html documentation and new modules * Mon Sep 15 1997 mt@suse.de - added support for readline and (shared) modules: tkinter, dbm, gdbm, syslog, ncurses, ... - see /usr/lib/python1.4/config/Setup for details * Thu Jun 5 1997 mt@suse.de - new Version 1.4 - a symlink (python -> python1.4) will be used instead of a hardlink