Skip to content

Fips distutils fix #2

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 2 commits into from
Closed

Fips distutils fix #2

wants to merge 2 commits into from

Conversation

frenzymadness
Copy link

Use SHA256 instead of MD5 in distutils upload command and update tests accordingly.

@encukou
Copy link
Owner

encukou commented Aug 19, 2019

I modified the patch a bit:

  • It always adds sha256
  • It also adds md5 (which older servers might need -- in which case we shouldn't break non-FIPS usage)

Could you please look at my fips branch again?

@encukou
Copy link
Owner

encukou commented Aug 19, 2019

The branch also has a fix for uuid; could you check that one as well?

@frenzymadness
Copy link
Author

Distutils patch looks good to me.

UUID patch also looks good to me. I was afraid about a version extension in a generated UUID v3 but it seems that libuuid adds it automatically (Python does not). Basically, I did a manual test that both ways of generating UUIDv3 produce the same result.

This PR has no additional value now.

encukou pushed a commit that referenced this pull request Jul 7, 2020
@tiran
bpo-40955: Fix memory leak in subprocess module (pythonGH-20825)
0d3350d 
```
Direct leak of 8 byte(s) in 1 object(s) allocated from:
    #0 0x7f008bf19667 in __interceptor_malloc (/lib64/libasan.so.6+0xb0667)
    #1 0x7f007a0bee4a in subprocess_fork_exec /home/heimes/dev/python/cpython/Modules/_posixsubprocess.c:774
    #2 0xe0305b in cfunction_call Objects/methodobject.c:546
```

Signed-off-by: Christian Heimes <[email protected]>
encukou pushed a commit that referenced this pull request Feb 10, 2021
@miss-islington @tiran
bpo-40955: Fix memory leak in subprocess module (pythonGH-20825)
ee3f7fe 
```
Direct leak of 8 byte(s) in 1 object(s) allocated from:
    GH-0 0x7f008bf19667 in __interceptor_malloc (/lib64/libasan.so.6+0xb0667)
    GH-1 0x7f007a0bee4a in subprocess_fork_exec /home/heimes/dev/python/cpython/Modules/_posixsubprocess.c:774
    GH-2 0xe0305b in cfunction_call Objects/methodobject.c:546
```

Signed-off-by: Christian Heimes <[email protected]>
(cherry picked from commit 0d3350d)

Co-authored-by: Christian Heimes <[email protected]>
encukou pushed a commit that referenced this pull request Apr 21, 2022
@gpshead
pythongh-89455: Fix an uninitialized bool in exception print context. (
861974b 
…python#91466)

Fix an uninitialized bool in exception print context.
    
`struct exception_print_context.need_close` was uninitialized.
    
Found by oss-fuzz in a test case running under the undefined behavior sanitizer.
    
https://oss-fuzz.com/testcase-detail/6217746058182656
    
```
Python/pythonrun.c:1241:28: runtime error: load of value 253, which is not a valid value for type 'bool'
    #0 0xbf2203 in print_chained cpython3/Python/pythonrun.c:1241:28
    #1 0xbea4bb in print_exception_cause_and_context cpython3/Python/pythonrun.c:1320:19
    #2 0xbea4bb in print_exception_recursive cpython3/Python/pythonrun.c:1470:13
    #3 0xbe9e39 in _PyErr_Display cpython3/Python/pythonrun.c:1517:9
```
    
Pretty obvious what the ommission was upon code inspection.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@frenzymadness @encukou