p31829507
/
django
mirror of https://github.com/django/django.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
31,403 Commits 28 Branches 411 Tags 641 MiB
Commit Graph

31403 Commits

Author SHA1 Message Date
Dan Glass edbc9d11ff [4.2.x] Made PostgreSQL's SchemaEditor._create_index_sql() respect the "sql" argument. 
Backport of bd366ca2ae from main
 2023-02-06 14:13:09 +01:00
Mariusz Felisiak 9a1848f48c
[4.2.x] Increased the default PBKDF2 iterations for Django 4.2. 
See https://cheatsheetseries.owasp.org/cheatsheets/Password_Storage_Cheat_Sheet.html#pbkdf2.

Thanks Markus Holtermann for the report.
 2023-02-04 13:36:06 +01:00
Adam Johnson beaa5f31e1 [4.2.x] Fixed #34259 -- Passed called_from_command_line to command subparsers. 
Backport of 017fa23d3b from main
 2023-02-03 07:54:15 +01:00
skidipap db0e10c037 [4.2.x] Fixed #34286 -- Fixed admindocs markups for case-sensitive template/view names. 
Backport of 1250483ebf from main
 2023-02-02 14:48:10 +01:00
Mariusz Felisiak 0b6797eedd [4.2.x] Improved error message for ASCIIUsernameValidator. 
Follow up to 10bb21e71e.

Co-authored-by: Paolo Melchiorre <paolo@melchiorre.org>

Backport of c626173833 from main
 2023-02-02 10:08:02 +01:00
Mariusz Felisiak ba7d8ac37d [4.2.x] Added stub release notes for 4.1.7. 
Backport of f3c89744cc from main
 2023-02-01 13:22:00 +01:00
Mariusz Felisiak 379b37171b [4.2.x] Added CVE-2023-23969 to security archive. 
Backport of 36e3eef7d5 from main
 2023-02-01 12:10:03 +01:00
Mariusz Felisiak d6d30b9697 [4.2.x] Ignored 80aae83439 formatting changes in git blame. 2023-02-01 11:37:53 +01:00
David Smith 80aae83439 [4.2.x] Refs #33476 -- Applied Black's 2023 stable style. 
Black 23.1.0 is released which, as the first release of the year,
introduces the 2023 stable style. This incorporates most of last year's
preview style.

https://github.com/psf/black/releases/tag/23.1.0

Backport of 097e3a70c1 from main
 2023-02-01 11:37:29 +01:00
Nick Pope 8a7b22d4a6 [4.2.x] Fixed CVE-2023-23969 -- Prevented DoS with pathological values for Accept-Language. 
The parsed values of Accept-Language headers are cached in order to
avoid repetitive parsing. This leads to a potential denial-of-service
vector via excessive memory usage if the raw value of Accept-Language
headers is very large.

Accept-Language headers are now limited to a maximum length in order
to avoid this issue.
 2023-02-01 09:45:07 +01:00
sag᠎e 5e0be0873c [4.2.x] Fixed #34304 -- Made MySQL's SchemaEditor.remove_constraint() don't create foreign key index when unique constraint is ignored. 
Regression in b731e88415.
Backport of 110b3b8356 from main
 2023-01-31 11:52:44 +01:00
Durval Carvalho af396ce3f9 [4.2.x] Fixed #34180 -- Added note about resetting language in test tear-downs. 
Co-authored-by: Faris Naimi <farisfaris66@gmail.com>

Backport of 40217d1a82 from main
 2023-01-31 07:29:21 +01:00
Stanislav Volyk 7217c11eba [4.2.x] Fixed #34283 -- Escaped title in admin's changelist filters. 
Regression in 27aa7035f5.

Backport of 20a0850099 from main
 2023-01-30 11:58:06 +01:00
fschwebel 5159e05e40 [4.2.x] Fixed typo in docs/topics/auth/passwords.txt. 
Wrapped hashing is only possible if the inner wrapped function is the
same as the previous hasher.
Backport of 0265b1b49b from main
 2023-01-30 08:32:13 +01:00
Sarah Boyce 4bf3d6dec2 [4.2.x] Fixed #28054 -- Made runserver not return response body for HEAD requests. 
Co-authored-by: jannschu <jannik.schuerg@posteo.de>
Backport of 8acc433e41 from main
 2023-01-27 21:50:40 +01:00
Mariusz Felisiak d42e47f572 [4.2.x] Refs #34255 -- Skipped test_group_by_nested_expression_with_params test on PostgreSQL when server-side binding cursors are used. 
Thanks Tim Graham for the review.
Backport of 82dad11bfe from main
 2023-01-27 21:29:47 +01:00
Raj Desai f210ad1b98 [4.2.x] Fixed #34254 -- Fixed return value of Exists() with empty queryset. 
Thanks Simon Charette for reviews.

Backport of 246eb4836a from main
 2023-01-26 20:25:18 +01:00
Simon Sawicki 9eae81724d [4.2.x] Fixed #34294 -- Protected django.core.files.locks against argtypes redefinition on Windows. 
Backport of 7eb5391b71 from main
 2023-01-26 19:40:57 +01:00
Mariusz Felisiak 719a14badc [4.2.x] Fixed #34291 -- Fixed Meta.constraints validation crash on UniqueConstraint with ordered expressions. 
Thanks Dan F for the report.

Bug in 667105877e.
Backport of 2b1242abb3 from main
 2023-01-26 09:32:14 +01:00
Carlton Gibson d43fbdf6f1 [4.2.x] Adjusted release notes for 4.1.6, 4.0.9, and 3.2.17. 
Backport of d8e1442ce2 from main
 2023-01-25 12:26:40 +01:00
Carlton Gibson 50432e3fd5 [4.2.x] Set date and added stub release notes for 4.1.6, 4.0.9, and 3.2.17. 
Backport of 1df963ad24 from main
 2023-01-25 11:58:35 +01:00
Stephen d9d9534466 [4.2.x] Corrected passenv value for tox 4.0.6+. 
Backport of 34b3288149 from main
 2023-01-25 06:10:35 +01:00
朱穆穆 f23a85337a [4.2.x] Fixed #34227 -- Fixed QuerySet.select_related() with multi-level FilteredRelation. 
Backport of d3c93cdc59 from main
 2023-01-24 10:52:01 +01:00
Matt Westcott b332a96cd7 [4.2.x] Fixed #34192 -- Preserved callable storage when it returns default_storage. 
Backport of ef85b6bf0b from main
 2023-01-23 11:14:57 +01:00
Claude Paroz 0fd5d16c22 [4.2.x] Fixed #34278 -- Made translatable string plural-aware in SelectFilter2.js. 
Bug in be63c78760.

Backport of e3a4cee081 from main
 2023-01-23 06:38:49 +01:00
noFFENSE fa52bb7774 [4.2.x] Fixed #34242 -- Doc'd that primary key is set to None when deleting objects. 
Backport of 5cd1385356 from main
 2023-01-20 10:57:30 +01:00
Francesco Panico 84927e110e [4.2.x] Fixed #34267 -- Fixed sliced QuerySet.union() crash. 
Regression in 3d734c09ff.

Thanks Raphaël Stefanini for the report.

Backport of cc8aa6bf9c from main
 2023-01-20 09:25:26 +01:00
David Wobrock 3b6f307344 [4.2.x] Fixed #34272 -- Fixed floatformat crash on zero with trailing zeros to zero decimal places. 
Regression in 08c5a78726.

Thanks Andrii Lahuta for the report.

Backport of 4b066bde69 from main
 2023-01-19 10:47:52 +01:00
John Whitlock a3771c8229 [4.2.x] Fixed typo in docs/releases/4.2.txt. 
Backport of d547171183 from main
 2023-01-17 19:28:19 +01:00
Mariusz Felisiak 1452e7cb7f [4.2.x] Doc'd that 4.2 is LTS. 
Backport of 2785e121c7 from main
 2023-01-17 19:25:44 +01:00
Mariusz Felisiak 2cbb3c9135 [4.2.x] Removed remaining empty sections from 4.2 release notes. 
Follow up to 772cd2b15b.
Backport of a209f66259 from main
 2023-01-17 14:05:51 +01:00
Sébastien Corbin 57680658f3 [4.2.x] Fixed #34264 -- Moved release note about session cookies into error reporting section. 
Backport of e2964fed17 from main
 2023-01-17 13:09:47 +01:00
Mariusz Felisiak 1a504d9ce7 [4.2.x] Bumped version for 4.2 alpha 1 release. 2023-01-17 10:20:09 +01:00
Mariusz Felisiak 6fef789e45
[4.2.x] Updated source translation catalogs. 2023-01-17 10:09:42 +01:00
Mariusz Felisiak 81818cc555 [4.2.x] Bumped django_next_version in docs config. 2023-01-17 08:54:30 +01:00
Mariusz Felisiak 9409312eef Updated man page for Django 4.2 alpha. 2023-01-17 08:51:17 +01:00
Mariusz Felisiak e734cccea0 Made cosmetic edits to docs/releases/4.2.txt. 2023-01-17 08:51:17 +01:00
Mariusz Felisiak 772cd2b15b Removed empty sections from 4.2 release notes. 2023-01-17 08:51:17 +01:00
Mariusz Felisiak 0e2649fdf4 Fixed #34255 -- Made PostgreSQL backend use client-side parameters binding with psycopg version 3. 
Thanks Guillaume Andreu Sabater for the report.

Co-authored-by: Florian Apolloner <apollo13@users.noreply.github.com>
 2023-01-17 08:24:08 +01:00
Mariusz Felisiak c8a76059ff Refs #34255 -- Bumped required psycopg version to 3.1.8. 2023-01-17 08:24:08 +01:00
sarahboyce 0fbdb9784d Fixed #23718 -- Doc'd that test mirrors require TransactionTestCase. 
Co-authored-by: Christian Bundy <me@christianbundy.com>
 2023-01-16 09:31:34 +01:00
sarahboyce 05bcd5baaf Refs #30129 -- Added test for create() with F() expression in Subquery. 
Fixed in 3543129822.
 2023-01-16 08:26:34 +01:00
Steven 4b7016866a Fixed "nulls characters" typo in docs. 2023-01-16 07:54:00 +01:00
Leo 5da5f3773e Fixed #34234 -- Dropped support for PROJ 4. 2023-01-13 12:31:41 +01:00
Mariusz Felisiak c2118d72d6
Fixed #34240 -- Preserved headers of requests made with django.test.Client in assertRedirects(). 
Bug in 67da22f08e.
 2023-01-13 11:30:27 +01:00
Mariusz Felisiak 648005dee6
Refs #18468 -- Used obj_description() with a catalog name on PostgreSQL. 
obj_description(object oid) without a catalog name is deprecated since
there is no guarantee that OIDs are unique across different system
catalogs.

Thanks Tim Graham for the report.
 2023-01-12 13:23:47 +01:00
Jarosław Wygoda 32940d390a Refs #26029 -- Deprecated DEFAULT_FILE_STORAGE and STATICFILES_STORAGE settings. 2023-01-12 09:58:36 +01:00
Jarosław Wygoda 1ec3f0961f Fixed #26029 -- Allowed configuring custom file storage backends. 2023-01-12 06:20:57 +01:00
Mariusz Felisiak d02a9f0cee
Fixed thread termination in servers.tests.LiveServerPort on Python 3.10.9+, 3.11.1+, and 3.12+. 
Class cleanups registered in TestCase subclasses are no longer called
as TestCase.doClassCleanups() only cleans up the particular class, see

c2102136be
 2023-01-12 06:04:10 +01:00
Mariusz Felisiak 4593bc5da1
Refs #33879 -- Fixed plural value deprecation warnings. 
Plural value must be an integer.

Regression in 8d67e16493.
 2023-01-11 12:49:12 +01:00