p15693087
/
django
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
25,327 Commits 25 Branches 361 Tags 501 MiB
Commit Graph

9221 Commits

Author SHA1 Message Date
Tim Graham 862ef796af [2.0.x] Fixed serializers test crash if PyYAML isn't installed. 
Follow up to a57c783dd4.

Backport of 55490ac746 from master
 2019-03-20 16:10:02 +01:00
Mariusz Felisiak 6b91c08839
[2.0.x] Fixed serializers tests for PyYAML 5.1+. 
Backport of a57c783dd4 from master
 2019-03-14 18:42:09 +01:00
Mariusz Felisiak ae91c0b892 [2.0.x] Reverted "Fixed relative paths imports per isort 4.3.5." 
This reverts commit 463fe11bc8 due to
restore of relative paths sorting from isort < 4.3.5 in isort 4.3.10.

Backport of b435f82939 from master.
 2019-03-03 19:40:15 +01:00
Mariusz Felisiak d39eb82af6 [2.0.x] Fixed relative paths imports per isort 4.3.5. 
Backport of 463fe11bc8 from master.
 2019-02-25 19:55:00 +01:00
Carlton Gibson 1f42f82566 [2.0.x] Fixed CVE-2019-6975 -- Fixed memory exhaustion in utils.numberformat.format(). 
Thanks Sjoerd Job Postmus for the report and initial patch.
Thanks Michael Manfre, Tim Graham, and Florian Apolloner for review.
 2019-02-11 11:14:09 +01:00
Tom Hacohen 9f4ed7c94c [2.0.x] Fixed #30070, CVE-2019-3498 -- Fixed content spoofing possiblity in the default 404 page. 
Co-Authored-By: Tim Graham <timograham@gmail.com>
Backport of 1ecc0a395b from master.
 2019-01-03 22:01:12 -05:00
Tim Graham f167f308ff [2.0.x] Added __init__.py for db_utils tests. 
Backport of b5fe97a34e from master.
 2019-01-02 18:20:19 -05:00
Tim Graham e7ec17bca6 [2.0.x] Pinned Pillow != 5.4.0 in test requirements. 
There's a bug that causes a test failure in forms_tests:
https://github.com/python-pillow/Pillow/pull/3501/files#r244651761.

Backport of e4a714b259 from master.
 2019-01-02 17:37:12 -05:00
CHI Cheng a3dfd38baa [2.0.x] Fixed broken links to PyYAML page. 
Backport of b7dbd5ff68 from master.
 2018-12-27 10:52:15 +01:00
Tim Graham 1b752d3493 [2.0.x] Removed unused imports in tests/test_runner/tests.py. 2018-12-20 22:15:55 -05:00
Simon Charette ecece1b22e [2.0.x] Fixed #30023 -- Prevented SQLite schema alterations while foreign key checks are enabled. 
Prior to this change foreign key constraint references could be left pointing
at tables dropped during operations simulating unsupported table alterations
because of an unexpected failure to disable foreign key constraint checks.

SQLite3 does not allow disabling such checks while in a transaction so they
must be disabled beforehand.

Thanks ezaquarii for the report and Carlton and Tim for the review.

Backport of 315357ad25 from master.
 2018-12-17 10:06:48 -05:00
Tim Graham 13501d162f
[2.0.x] Refs #30013 -- Doc'd that mysqlclient 1.3.14 and later isn't supported. 2018-12-05 15:48:24 -05:00
Tom Forbes a23d867628 [2.0.x] Removed obsolete and flaky GeoIP tests. 
Backport of 8f90593e6f from master.
 2018-11-10 16:29:52 -05:00
Mariusz Felisiak 7085247e2f
[2.0.x] Refs #29759 -- Doc'd that cx_Oracle < 7 is required. 2018-09-18 10:30:45 +02:00
Michael Sanders 4441826026 [2.0.x] Fixed #29499 -- Fixed race condition in QuerySet.update_or_create(). 
A race condition happened when the object didn't already exist and
another process/thread created the object before update_or_create()
did and then attempted to update the object, also before update_or_create()
saved the object. The update by the other process/thread could be lost.

Backport of 271542dad1 from master
 2018-08-02 17:25:15 -04:00
Andreas Hug 6fffc3c6d4 [2.0.x] Fixed CVE-2018-14574 -- Fixed open redirect possibility in CommonMiddleware. 2018-07-31 10:37:29 -04:00
Dražen Odobašić 253f1b74da [2.0.x] Fixed #29617 -- Fixed Template crash if template_string is lazy. 
Regression in 3a148f958d.
Backport of 9f3b9ffd51 from master.
 2018-07-31 10:11:18 -04:00
Tom 50e4f9adac [2.0.x] Refs #29451 -- Fixed test_isvalid_lookup on MySQL 8+. 
Backport of f98e1c01ea from master
 2018-07-06 09:06:08 -04:00
Tim Graham 4b3b9fab08 [2.0.x] Reverted "Fixed #29511 -- Added charset to JavaScriptCatalog's Content-Type header." 
This reverts commit 8e082a6e0b as it
doesn't qualify for a backport.
 2018-06-25 09:43:39 -04:00
Tim Graham 8e082a6e0b [2.0.x] Fixed #29511 -- Added charset to JavaScriptCatalog's Content-Type header. 
Backport of 7cdeb23ae7 from master
 2018-06-22 09:33:05 +02:00
Carlton Gibson 243f07bbb3 [2.0.x] Refs #29451 -- Fixed invalid SQL on MySQL in queries tests. 
Backport of c4f099de1d from master
 2018-06-20 11:00:19 -04:00
Tim Graham 83986af95d [2.0.x] Refs #29428 -- Fixed admin check crash when using a query expression in ModelAdmin.ordering. 
Backport of ec2c9c3531 from master
 2018-06-15 10:12:44 -04:00
Tim Graham 4bccfac36f [2.0.x] Fixed #29428 -- Fixed admin changelist crash when using a query expression without asc()/desc() in the ordering. 
Backport of 0d8e3e608e from master
 2018-06-15 10:12:40 -04:00
Tim Graham f4bd168452 [2.0.x] Fixed #29461 -- Fixed ogrinspect test_time_field failure on SpatiaLite. 
Backport of 666be7b994 from master
 2018-06-02 07:33:20 -04:00
Tim Graham 8f1692923f [2.0.x] Fixed #29462 -- Fixed ogrinspect test failures with GDAL 2.2. 
Backport of 55f4eee75d from master
 2018-06-01 22:32:31 -04:00
Adam Donaghy 22c7c2db1d [2.0.x] Fixed #28462 -- Decreased memory usage with ModelAdmin.list_editable. 
Regression in 917cc288a3.

Backport of b18650a263 from master
 2018-06-01 11:00:34 -04:00
Tim Graham 925f3219f5 [2.0.x] Relaxed a GDAL raster test. 
The exact metadata depends on the GDAL version.

Backport of 3dffcb5579 from master
 2018-05-31 12:07:03 -04:00
Mariusz Felisiak b57ea27d6b [2.0.x] Refs #29416 -- Fixed GeoExpressionsTests.test_multiple_annotation() on MySQL 5.7+. 
Failure introduced in b6e48f514e.

Backport of d0ad03cded from master
 2018-05-31 10:45:46 -04:00
Mariusz Felisiak 74bbef4ee0 [2.0.x] Fixed #29416 -- Removed unnecesary subquery from GROUP BY clause on MySQL when using a RawSQL annotation. 
Regression in 1d070d027c.

Backport of 4ab1f559e8 from master
 2018-05-27 18:59:35 -04:00
Xaroth Brook 1adac352d3 [2.0.x] Fixed #29415 -- Fixed detection of custom URL converters in included patterns. 
Backport of 39283c8edb from master
 2018-05-26 20:52:48 -04:00
Ryan Rubin c2a1af883e [2.0.x] Fixed #29400 -- Fixed crash in custom template filters that use decorated functions. 
Regression in 620e9dd31a.

Backport of a8d12bc280 from master
 2018-05-25 11:22:06 -04:00
CHI Cheng 482ba9246e [2.0.x] Fixed #29375 -- Removed empty action attribute on HTML forms. 
Backport of 4660ce5a69 from master
 2018-05-02 09:35:26 -04:00
Nick Pope 61fc315230 [2.0.x] Fixed #29212 -- Doc'd redirect loop if @permission_required used with redirect_authenticated_user. 
Backport of df90e462d9 from master
 2018-04-19 11:07:53 -04:00
Tim Graham 1d807b91dc [2.0.x] Fixed a test failure with the latest GeoIP2 database. 
Backport of 7a22d9f751 from master
 2018-04-17 21:30:36 -04:00
Brett Cannon b98fa241dd [2.0.x] Fixed #29334 -- Updated pypi.python.org URLs to pypi.org. 
Backport of 64b74804c5 from master
 2018-04-17 20:56:33 -04:00
Mariusz Felisiak 3619d32209
[2.0.x] Fixed #29286 -- Fixed column mismatch crash with QuerySet.values() or values_list() after combining an annotated and unannotated queryset with union(), difference(), or intersection(). 
Regression in a0c03c62a8.

Thanks Tim Graham and Carlton Gibson for reviews.
Backport of 0b66c3b442 from master
 2018-04-13 12:27:00 +02:00
Tim Graham 75a4576e5f [2.0.x] Fixed schema test failure when running tests in reverse. 
Follow up to 003334f8af.

Backport of 78f8b80f9b from master
 2018-04-12 20:21:06 -04:00
Paul Donohue 1ed31efb87 [2.0.x] Fixed #29296 -- Fixed crashes in admindocs when a view is a callable object. 
Backport of 33a0b7ac81 from master
 2018-04-12 13:11:53 -04:00
Jeremy Bowman d5018abf1c [2.0.x] Fixed #29193 -- Prevented unnecessary foreign key drops when altering a unique field. 
Stopped dropping and recreating foreign key constraints on other fields
in the same table as the one which is actually being altered in an
AlterField operation.

Regression in c3e0adcad8.

Backport of ee17bb8a67 from master
 2018-04-11 23:17:37 -04:00
Jeremy Bowman 95e1191690 [2.0.x] Tested altering a unique field when a reverse M2M relation exists. 
Backport of 003334f8af from master
 2018-04-11 23:17:30 -04:00
Alasdair Nicol 0eb71b85bf [2.0.x] Fixed #29307 -- Fixed inspectdb import paths for django.contrib.postgres fields. 
Thanks erindy for the report.

Backport of 65c44a5c1d from master
 2018-04-10 09:58:40 -04:00
Claude Paroz 357a48368a [2.0.x] Fixed #29116 -- Fixed OpenLayersWidget deserialization ignoring the widget map's SRID. 
Regression in 6ecccad711.

Backport of 2a2ed0e70a from master
 2018-04-02 10:31:39 -04:00
Claude Paroz 160829d35b [2.0.x] Fixed #29273 -- Prevented initial selection of empty choice in multiple choice widgets. 
Regression in b52c73008a.

Backport of f3b69f9757 from master.
 2018-04-02 09:17:38 -04:00
Amr Anwar 9123fd75ca [2.0.x] Fixed #29229 -- Fixed column mismatch crash when combining two annotated values_list() querysets with union(), difference(), or intersection(). 
Regression in 7316720603821ebb64dfe8fa592ba6edcef5f3e.

Backport of a0c03c62a8 from master
 2018-03-19 21:05:59 -04:00
Mattia Procopio 72667bc6ee [2.0.x] Fixed #29206 -- Fixed PasswordResetConfirmView crash when the URL contains a non-UUID where one is expected. 
Backport of aeb8c38178 from master
 2018-03-15 21:42:47 -04:00
Artem Tabolin 9bf8664bfd [2.0.x] Fixed #29221 -- Corrected admin's autocomplete widget to add a space after custom classes. 
Backport of a2f7433adc from master
 2018-03-15 10:56:06 -04:00
dzhuang 59f39ccad8 [2.0.x] Fixed #29213 -- Fixed autocomplete widget's translations for zh-hans/zh-hant. 
Backport of e17088a108 from master
 2018-03-13 11:09:31 -04:00
Simon Charette 0fd21febe7 [2.0.x] Fixed #29195 -- Fixed Exists.output_field resolution on single-valued queries. 
The Subquery class which Exists inherits from defaulted to using single-valued
querie's field if no output_field was explicitly specified on initialization
which was bypassing the Exists.output_field defined at the class level.

Moving Subquery's dynamic output_field resolution to _resolve_output_field
should make sure the fallback logic is only performed if required.

Regression in 08654a99bb.

Thanks Oli Warner for the detailed report.

Backport of 277ed07209 from master
 2018-03-08 14:06:10 -05:00
Tim Graham 94c5da1d17 [2.0.x] Fixed CVE-2018-7537 -- Fixed catastrophic backtracking in django.utils.text.Truncator. 
Thanks James Davis for suggesting the fix.
 2018-03-06 08:52:23 -05:00
Tim Graham e157315da3 [2.0.x] Fixed CVE-2018-7536 -- Fixed catastrophic backtracking in urlize and urlizetrunc template filters. 
Thanks Florian Apolloner for assisting with the patch.
 2018-03-06 08:52:23 -05:00