You can subscribe to this list here.
2000 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
(6) |
Nov
(8) |
Dec
(51) |
---|---|---|---|---|---|---|---|---|---|---|---|---|
2001 |
Jan
(105) |
Feb
(93) |
Mar
(194) |
Apr
(145) |
May
(100) |
Jun
(111) |
Jul
(117) |
Aug
(126) |
Sep
(233) |
Oct
(138) |
Nov
(164) |
Dec
(109) |
2002 |
Jan
(216) |
Feb
(175) |
Mar
(216) |
Apr
(194) |
May
(157) |
Jun
(140) |
Jul
(158) |
Aug
(73) |
Sep
(105) |
Oct
(164) |
Nov
(104) |
Dec
(95) |
2003 |
Jan
(72) |
Feb
(69) |
Mar
(81) |
Apr
(151) |
May
(101) |
Jun
(139) |
Jul
(99) |
Aug
(118) |
Sep
(115) |
Oct
(151) |
Nov
(161) |
Dec
(102) |
2004 |
Jan
(120) |
Feb
(175) |
Mar
(106) |
Apr
(111) |
May
(54) |
Jun
(78) |
Jul
(76) |
Aug
(105) |
Sep
(94) |
Oct
(143) |
Nov
(75) |
Dec
(85) |
2005 |
Jan
(99) |
Feb
(77) |
Mar
(164) |
Apr
(97) |
May
(79) |
Jun
(57) |
Jul
(65) |
Aug
(102) |
Sep
(95) |
Oct
(129) |
Nov
(123) |
Dec
(52) |
2006 |
Jan
(48) |
Feb
(99) |
Mar
(90) |
Apr
(51) |
May
(81) |
Jun
(136) |
Jul
(56) |
Aug
(109) |
Sep
(50) |
Oct
(44) |
Nov
(74) |
Dec
(75) |
2007 |
Jan
(92) |
Feb
(137) |
Mar
(93) |
Apr
(79) |
May
(52) |
Jun
(74) |
Jul
(143) |
Aug
(175) |
Sep
(154) |
Oct
(137) |
Nov
(88) |
Dec
(90) |
2008 |
Jan
(58) |
Feb
(113) |
Mar
(167) |
Apr
(88) |
May
(105) |
Jun
(37) |
Jul
(87) |
Aug
(72) |
Sep
(56) |
Oct
(41) |
Nov
(102) |
Dec
(70) |
2009 |
Jan
(115) |
Feb
(113) |
Mar
(126) |
Apr
(58) |
May
(125) |
Jun
(45) |
Jul
(90) |
Aug
(125) |
Sep
(84) |
Oct
(61) |
Nov
(111) |
Dec
(61) |
2010 |
Jan
(85) |
Feb
(86) |
Mar
(130) |
Apr
(58) |
May
(57) |
Jun
(32) |
Jul
(25) |
Aug
(50) |
Sep
(41) |
Oct
(65) |
Nov
(63) |
Dec
(24) |
2011 |
Jan
(43) |
Feb
(31) |
Mar
(28) |
Apr
(68) |
May
(53) |
Jun
(42) |
Jul
(58) |
Aug
(26) |
Sep
(51) |
Oct
(76) |
Nov
(60) |
Dec
(9) |
2012 |
Jan
(16) |
Feb
(32) |
Mar
(32) |
Apr
(39) |
May
(16) |
Jun
(19) |
Jul
(3) |
Aug
(11) |
Sep
(35) |
Oct
(47) |
Nov
(28) |
Dec
(18) |
2013 |
Jan
(18) |
Feb
(36) |
Mar
(10) |
Apr
(7) |
May
(7) |
Jun
(27) |
Jul
(17) |
Aug
(35) |
Sep
(19) |
Oct
(31) |
Nov
(8) |
Dec
(22) |
2014 |
Jan
(5) |
Feb
(11) |
Mar
(18) |
Apr
(23) |
May
(26) |
Jun
(14) |
Jul
(18) |
Aug
(26) |
Sep
(20) |
Oct
(48) |
Nov
(13) |
Dec
(9) |
2015 |
Jan
(9) |
Feb
(15) |
Mar
(25) |
Apr
(10) |
May
(26) |
Jun
(6) |
Jul
(13) |
Aug
(5) |
Sep
(14) |
Oct
(36) |
Nov
(24) |
Dec
(18) |
2016 |
Jan
(24) |
Feb
(11) |
Mar
(1) |
Apr
(6) |
May
(7) |
Jun
(3) |
Jul
(9) |
Aug
(15) |
Sep
(22) |
Oct
(5) |
Nov
(5) |
Dec
(2) |
2017 |
Jan
(20) |
Feb
(4) |
Mar
(4) |
Apr
(1) |
May
(5) |
Jun
(7) |
Jul
(14) |
Aug
(9) |
Sep
(18) |
Oct
(2) |
Nov
(3) |
Dec
(3) |
2018 |
Jan
(7) |
Feb
(6) |
Mar
(1) |
Apr
(2) |
May
|
Jun
|
Jul
(1) |
Aug
(18) |
Sep
(8) |
Oct
(9) |
Nov
(4) |
Dec
(6) |
2019 |
Jan
(5) |
Feb
|
Mar
(2) |
Apr
(4) |
May
(6) |
Jun
(8) |
Jul
(11) |
Aug
(10) |
Sep
(6) |
Oct
|
Nov
(1) |
Dec
|
2020 |
Jan
(8) |
Feb
(3) |
Mar
(1) |
Apr
(4) |
May
(1) |
Jun
(1) |
Jul
|
Aug
|
Sep
(1) |
Oct
(5) |
Nov
(2) |
Dec
(1) |
2021 |
Jan
|
Feb
|
Mar
(5) |
Apr
(2) |
May
|
Jun
(1) |
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
2022 |
Jan
|
Feb
(2) |
Mar
(1) |
Apr
|
May
|
Jun
|
Jul
(7) |
Aug
(1) |
Sep
(1) |
Oct
|
Nov
|
Dec
|
2023 |
Jan
|
Feb
|
Mar
|
Apr
|
May
(3) |
Jun
(5) |
Jul
(15) |
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
2024 |
Jan
|
Feb
(1) |
Mar
|
Apr
(2) |
May
|
Jun
(5) |
Jul
|
Aug
(1) |
Sep
|
Oct
|
Nov
|
Dec
|
2025 |
Jan
|
Feb
|
Mar
(1) |
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
From: Santhosh K. J <san...@ou...> - 2019-07-27 19:01:10
|
Hi Hasan, Apologies, I missed your previous email. I'm using jython 2.7.0 Thanks, Santhosh On 20-Jul-2019, at 2:22 AM, Hasan Diwan <has...@gm...<mailto:has...@gm...>> wrote: Santhosh, On Fri, 19 Jul 2019 at 13:08, Santhosh Kumar J <san...@ou...<mailto:san...@ou...>> wrote: I followed the steps in, https://wiki.python.org/jython/JythonFaq/DistributingJythonScripts to create a jar out of python file. but getting below error while compiling Main.java file. any help on the same will be a great help. What version of jython are you using? -- H -- OpenPGP: https://sks-keyservers.net/pks/lookup?op=get&search=0xFEBAD7FFD041BBA1 If you wish to request my time, please do so using bit.ly/hd1AppointmentRequest<http://bit.ly/hd1AppointmentRequest>. Si vous voudrais faire connnaisance, allez a bit.ly/hd1AppointmentRequest<http://bit.ly/hd1AppointmentRequest>. <https://sks-keyservers.net/pks/lookup?op=get&search=0xFEBAD7FFD041BBA1>Sent from my mobile device Envoye de mon portable |
From: Stefan R. <ste...@gm...> - 2019-07-27 18:52:03
|
> Are we talking weeks or or over a year away from a release? On Jython-dev mailing list, Jeff recently started a thread about Jython 2.7.2 beta phase details. So I assumed in my vote that the release is reasonably close. I agree that supporting Java 7 does not make sense if that's not the case. I also assumed that Jython 2.7.2 would be forward compatible as work went into supporting Java 9+. It runs well also on Java 8 right now. And if not in some aspects, I doubt that it would do much good just to say "J7 is not supported any more" without doing actual changes beyond stopping building and testing on J7. Actually and significantly leveraging Java 8 advantages requires additional work and wouldn't be feasible for a soonish release. Better cut here (like it was the plan) and do a proper Java 8(+?) integration for 2.7.3 and/or 3. > ...seems more important that trying to support people who decided not to upgrade 3-4 years ago from J7. I also agree here. My point was not to support them; just not to "intentionally" hurt them without compelling reason. Regarding the elephant - I'll postpone that topic for now. Am Sa., 27. Juli 2019 um 18:32 Uhr schrieb James Klo <ji...@sr...>: > This seems to be the most credible argument for not changing to J8 for > 2.7.2. > > However lets unpack that a bit. > > Dropping Java 7 support just "one second" before 2.7.2 release looks > rushed to me. > > > While I agree in theory - “one second” in Jython time appears to be in the > year range given the amount of resources that I have observed to supporting > advancement of the project. Are we talking weeks or or over a year away > from a release? If latter I think in the best interests of both the current > and future community that would like to utilize 2.7.2 - J8 is a better > choice. That opens the door wider community wanting to incorporate. For us, > we’ve had to stifle development on a custom lexer library that we access > via pygments in order to retain Jython support. If we’re saying a release > is eminent within a few weeks to a month I say just wrap up with J7, and > the next version makes J8 the minimum. But Jython is quickly advancing into > irrelevance as fewer and fewer projects are left that will work with J7. > Modern projects won’t want to refactor libraries backwards just to gain > Jython support - they’ll start looking for alternatives that are more > modern. > > I personally know a company where still Java 6 is floating around and I > suspect there are plenty. So the EOL argument > is more a virtual one. > > > OpenJDK is where the world is at in the post-apocalyptic world known as > Oracle Java. Those companies that have chosen to stick with 6 (and even 7 > at this point) have concluded that they have the resources to support their > back porting modern frameworks to fit their circumstances. I hate sounding > like a dick, but given the number of developer resources available to > support the Jython project - that already moves at a snails pace - growing > adoption and the developer community around a solution that a wider > audience can use seems more important that trying to support people who > decided not to upgrade 3-4 years ago from J7. > > Jeff mentions: > > We currently build and test >>> on Java 7 but some things would resolve themselves if we could move on. >> >> > Could there be some elaboration here? What issues on the 2.7.2 milestone > would be solved by moving to J8? Pluses and minuses here would be helpful. > > The other elephant in the room is certainly around Python 3. The looming > end of life for Python 2 is fast approaching. While I concede this isn’t > necessarily a problem for Jython but it does define what a final 2.7.x > features would need to be supported. How long does this project intend to > support the Python 2.7 language spec? When do we support Python 3? I’m > already seeing a fair number of modules not being supported for Python 2. > The last time I had to build our runtime environment I had to go and pull > package dependencies from sources as I could no longer download compatible > versions for Jython. With the vast majority of new Python scripting > happening around Python 3 - this is only going to get worse Furthering J7 > much longer furthers an ecosystem of frameworks that is all but obsolete > and difficult to incorporate into modern projects. > > My vote. If 2.7.2 is close to release (meaning days to weeks) stick to J7 > for the sake of getting it done. If we’re talking more than a month or more > - I vote J8 as IMO throws out a lifeline for the Jython project as a whole. > > - jk > > |
From: James K. <ji...@sr...> - 2019-07-27 16:46:51
|
This seems to be the most credible argument for not changing to J8 for 2.7.2. However lets unpack that a bit. Dropping Java 7 support just "one second" before 2.7.2 release looks rushed to me. While I agree in theory - “one second” in Jython time appears to be in the year range given the amount of resources that I have observed to supporting advancement of the project. Are we talking weeks or or over a year away from a release? If latter I think in the best interests of both the current and future community that would like to utilize 2.7.2 - J8 is a better choice. That opens the door wider community wanting to incorporate. For us, we’ve had to stifle development on a custom lexer library that we access via pygments in order to retain Jython support. If we’re saying a release is eminent within a few weeks to a month I say just wrap up with J7, and the next version makes J8 the minimum. But Jython is quickly advancing into irrelevance as fewer and fewer projects are left that will work with J7. Modern projects won’t want to refactor libraries backwards just to gain Jython support - they’ll start looking for alternatives that are more modern. I personally know a company where still Java 6 is floating around and I suspect there are plenty. So the EOL argument is more a virtual one. OpenJDK is where the world is at in the post-apocalyptic world known as Oracle Java. Those companies that have chosen to stick with 6 (and even 7 at this point) have concluded that they have the resources to support their back porting modern frameworks to fit their circumstances. I hate sounding like a dick, but given the number of developer resources available to support the Jython project - that already moves at a snails pace - growing adoption and the developer community around a solution that a wider audience can use seems more important that trying to support people who decided not to upgrade 3-4 years ago from J7. Jeff mentions: We currently build and test on Java 7 but some things would resolve themselves if we could move on. Could there be some elaboration here? What issues on the 2.7.2 milestone would be solved by moving to J8? Pluses and minuses here would be helpful. The other elephant in the room is certainly around Python 3. The looming end of life for Python 2 is fast approaching. While I concede this isn’t necessarily a problem for Jython but it does define what a final 2.7.x features would need to be supported. How long does this project intend to support the Python 2.7 language spec? When do we support Python 3? I’m already seeing a fair number of modules not being supported for Python 2. The last time I had to build our runtime environment I had to go and pull package dependencies from sources as I could no longer download compatible versions for Jython. With the vast majority of new Python scripting happening around Python 3 - this is only going to get worse Furthering J7 much longer furthers an ecosystem of frameworks that is all but obsolete and difficult to incorporate into modern projects. My vote. If 2.7.2 is close to release (meaning days to weeks) stick to J7 for the sake of getting it done. If we’re talking more than a month or more - I vote J8 as IMO throws out a lifeline for the Jython project as a whole. - jk |
From: Stefan R. <ste...@gm...> - 2019-07-27 12:02:12
|
AFAIK, the current Jython 2.7 master still compiles and runs with Java 7. So why would we drop that support right now? At least I think we shouldn't explicitly/on purpose destroy Java 7 compatibility e.g. by inserting a lambda or so somewhere. Dropping Java 7 support just "one second" before 2.7.2 release looks rushed to me. IMO the right moment to drop support for something is right after a release not in the last moment before a release. It's usually good practice to have a designated last release to support something. For 2.7.2 it was decided some time ago that it would be that last release to support Java 7 IIRC. I personally know a company where still Java 6 is floating around and I suspect there are plenty. So the EOL argument is more a virtual one. Anyway, I'm not fanatic for Java 7, it just appears to be a low-hanging fruit to keep the compatibility just on these last meters till the release. And all the named reasons sum up for me to vote for Java 7 support in 2.7.2. At least, let's make Java 7 support "on best effort", i.e. avoid to break it explicitly, and Java 8 can be the official support. That's my view. Best Stefan Am Sa., 27. Juli 2019 um 01:48 Uhr schrieb Jim Baker <jim...@py...>: > Previously we resolved this issue based on what version of Java is > publicly and currently supported. Given Java 7 was end of lifed a few years > ago, and these problems, it makes sense to require Java 8 (or 11, for > similar reasons). > > On Fri, Jul 26, 2019, 1:54 PM Jeff Allen <ja...@fa...> wrote: > >> When the project set out to create Jython 2.7.2, it was reasonable still >> to support Java 7. Now we find ourselves on the verge of a 2.7.2 beta >> release, Java 8 seems the logical minimum. We currently build and test >> on Java 7 but some things would resolve themselves if we could move on. >> We intend to support "before and after Jigsaw" JVMs (say 8 and 11). >> >> Straw poll: does anyone amongst our users have a good reason why Jython >> 2.7.2 should run on Java 7? >> >> -- >> Jeff Allen >> >> >> >> _______________________________________________ >> Jython-dev mailing list >> Jyt...@li... >> https://lists.sourceforge.net/lists/listinfo/jython-dev >> > _______________________________________________ > Jython-users mailing list > Jyt...@li... > https://lists.sourceforge.net/lists/listinfo/jython-users > |
From: Jim B. <jim...@py...> - 2019-07-26 23:48:17
|
Previously we resolved this issue based on what version of Java is publicly and currently supported. Given Java 7 was end of lifed a few years ago, and these problems, it makes sense to require Java 8 (or 11, for similar reasons). On Fri, Jul 26, 2019, 1:54 PM Jeff Allen <ja...@fa...> wrote: > When the project set out to create Jython 2.7.2, it was reasonable still > to support Java 7. Now we find ourselves on the verge of a 2.7.2 beta > release, Java 8 seems the logical minimum. We currently build and test > on Java 7 but some things would resolve themselves if we could move on. > We intend to support "before and after Jigsaw" JVMs (say 8 and 11). > > Straw poll: does anyone amongst our users have a good reason why Jython > 2.7.2 should run on Java 7? > > -- > Jeff Allen > > > > _______________________________________________ > Jython-dev mailing list > Jyt...@li... > https://lists.sourceforge.net/lists/listinfo/jython-dev > |
From: Jeff A. <ja...@fa...> - 2019-07-26 20:54:38
|
When the project set out to create Jython 2.7.2, it was reasonable still to support Java 7. Now we find ourselves on the verge of a 2.7.2 beta release, Java 8 seems the logical minimum. We currently build and test on Java 7 but some things would resolve themselves if we could move on. We intend to support "before and after Jigsaw" JVMs (say 8 and 11). Straw poll: does anyone amongst our users have a good reason why Jython 2.7.2 should run on Java 7? -- Jeff Allen |
From: Hasan D. <has...@gm...> - 2019-07-19 20:52:08
|
Santhosh, On Fri, 19 Jul 2019 at 13:08, Santhosh Kumar J <san...@ou...> wrote: > I followed the steps in, > https://wiki.python.org/jython/JythonFaq/DistributingJythonScripts to > create a jar out of python file. but getting below error while compiling > Main.java file. any help on the same will be a great help. > What version of jython are you using? -- H -- OpenPGP: https://sks-keyservers.net/pks/lookup?op=get&search=0xFEBAD7FFD041BBA1 If you wish to request my time, please do so using *bit.ly/hd1AppointmentRequest <http://bit.ly/hd1AppointmentRequest>*. Si vous voudrais faire connnaisance, allez a *bit.ly/hd1AppointmentRequest <http://bit.ly/hd1AppointmentRequest>*. <https://sks-keyservers.net/pks/lookup?op=get&search=0xFEBAD7FFD041BBA1>Sent from my mobile device Envoye de mon portable |
From: Santhosh K. J <san...@ou...> - 2019-07-19 20:08:16
|
Hi Team, I followed the steps in, https://wiki.python.org/jython/JythonFaq/DistributingJythonScripts to create a jar out of python file. but getting below error while compiling Main.java file. any help on the same will be a great help. Operating system: Mac Mojave 10.14.5 Java version : Java(TM) SE Runtime Environment 12.0.1 $ javac ../Main.java -d . ../Main.java:29: error: constructor JLineConsole in class JLineConsole cannot be applied to given types; return new JLineConsole(); ^ required: String found: no arguments reason: actual and formal argument lists differ in length Note: ../Main.java uses or overrides a deprecated API. Note: Recompile with -Xlint:deprecation for details. 1 error Thanks, Santhosh |
From: Jeff A. <ja...@fa...> - 2019-06-28 20:02:13
|
I assume you tried this at an interactive prompt and it worked? As in Python generally, Jython looks for a module along sys.path. But as in CPython, sys.path varies somewhat with how you start the interpreter. In particular, sys.path might not contain '.', or the current working directory, where it does so interactively. If that's the problem, just insert it at the front of sys.path before your own import. Jeff Jeff Allen On 28/06/2019 12:29, Евгений Король wrote: > Hello. I use PythonInterpreter in Java to run Jython. How i can import > my modules in code? When i trying to run, i have ImportError: No > module named code1, but i does interp.exec(code); code from code1 > module before i run code with import: > import sys > from code1 import * > > for param in sys.argv: > print (param) > print('Hello, World type 2') > print(add(1, 2)) > > > _______________________________________________ > Jython-users mailing list > Jyt...@li... > https://lists.sourceforge.net/lists/listinfo/jython-users > |
From: Евгений К. <ff...@gm...> - 2019-06-28 11:29:37
|
Hello. I use PythonInterpreter in Java to run Jython. How i can import my modules in code? When i trying to run, i have ImportError: No module named code1, but i does interp.exec(code); code from code1 module before i run code with import: import sys from code1 import * for param in sys.argv: print (param) print('Hello, World type 2') print(add(1, 2)) |
From: Jeff A. <ja...@fa...> - 2019-06-27 08:43:13
|
Hi Евгений: sys.argv is a bridge from the command line to your code. If you want it to appear that arguments come from a command line, you can assign/append to it. Just going by the docs and code, one way is to assign the attribute named by ScriptEngine.ARGV in the ScriptContext of the engine. If it exists, this gets copied as sys.argv on every eval(). (This seems a slightly odd design to me. Why not once at engine creation?) Jeff Allen On 27/06/2019 07:31, Евгений Король wrote: > Hello. How to pass arguments from Java args to jython using JSR-223? > For example when i use code like this: > > ScriptEngine engine = new ScriptEngineManager().getEngineByName("python"); > > // Using the eval() method on the engine causes a direct > // interpretataion and execution of the code string passed into it > engine.eval("import sys"); > > How can i pass args to Jython? > > > _______________________________________________ > Jython-users mailing list > Jyt...@li... > https://lists.sourceforge.net/lists/listinfo/jython-users > |
From: Евгений К. <ff...@gm...> - 2019-06-27 06:31:16
|
Hello. How to pass arguments from Java args to jython using JSR-223? For example when i use code like this: ScriptEngine engine = new ScriptEngineManager().getEngineByName("python"); // Using the eval() method on the engine causes a direct // interpretataion and execution of the code string passed into it engine.eval("import sys"); How can i pass args to Jython? |
From: Jeff M. <jef...@za...> - 2019-06-21 14:41:48
|
Without knowing anything about your project let me throw out there.. people can write their own py scripts and run them on your server? Is that sandboxed at all? specific packages only? (shoudl be jailed hard somehow...) Because pythin has many packages for say.. - executing binaries (running external programs); wouldn't take more than an exec/system to rm -rf / :) - read or write over system config files - pull in any old system shared library and invoke calls to it (ctypes etc) So, without knowing details, no one can provide advice; but 'run python scripts' basicly means 'wide open' in my book :) On Fri, Jun 21, 2019 at 8:33 AM Samuel Schober <sam...@we...> wrote: > Hello Adam, > > thank you for quick response. > > Basicly we have a java application which provides as a part of it a python > code editor so you can execute your own python scripts. > > I think if you only can inject python code the issue should be not a > critical issue, because the user has the possibility to write the code > directly in the script. > But if there could be executed any code to attack the server, it would be > much worse. > > In the new version of our application we use the 2.7.1 version, but one of > our customers uses a 2 years old version of our application and there is > still the 2.5.3 version of jython in use. > To upgrade to 2.7.1 would be my last choice, because the application grew > quite big and sadly there would be very many changes required in the old > code. > > Best regards, > Samuel > > *Gesendet:* Freitag, 21. Juni 2019 um 13:26 Uhr > *Von:* "Adam Burke" <ada...@gm...> > *An:* "Samuel Schober" <sam...@we...>, " > jyt...@li..." <jyt...@li...> > *Betreff:* Re: [Jython-users] CVE-2016-4000 > Going from the bug report, I didn’t work on it, and a core dev could > correct me, but it’s specifically about deserializing Python objects. > > https://hg.python.org/jython/rev/d06e29d100c0 > > It would depend on whether your app had an exposed endpoint that accepted > Python objects. All the usual caveats about eg web form data hygiene apply. > > Without knowing your exact organizational or technical constraint, I would > mention that security bugs can be excellent sticks for pushing through > needed, but delayed, upgrades to current versions of infrastructure and > libraries, like upgrading to Jython 2.7.1. Priorities can suddenly realign. > > Cheers > Adam > > 在 2019年6月21日,下午9:19,Adam Burke <ada...@gm...> 写道: > > > Going from the bug report, it’s specifically about deserializing Python > objects. > > https://hg.python.org/jython/rev/d06e29d100c0 > > It would depend on whether your app had an exposed endpoint that accepted > Python objects. All the usual caveats about eg web form data hygiene apply. > > Without knowing your exact organizational or technical constraint, I would > say that security bugs can be excellent sticks for pushing through needed, > but delayed, upgrades to current versions of infrastructure and libraries, > like upgrading to Jython 2.7.1. Priorities can suddenly realign. > > Cheers > Adam > > 在 2019年6月21日,下午8:57,Samuel Schober <sam...@we...> 写道: > > > Hello, > > > > I am using the jython package for an project and have a question about an > issue you had. > > > > The used version is 2.5.3 and unfortunally it can not be updated to 2.7.1. > Now I found the following issue: > > http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4000 > > > > It notices that jython allows attackers to execute arbitrary code and I > wanted to ask what kind of code could be executed? > > Is it only python code which could be executed or is it possible to > execute any kind of binary code? > > And is it possible to have influence on the server outside of the > application or does it just affect my application? > > > > I hope you can help me with that question. > > > > Best regards, > > Samuel Schober > > > > _______________________________________________ > Jython-users mailing list > Jyt...@li... > https://lists.sourceforge.net/lists/listinfo/jython-users > > _______________________________________________ > Jython-users mailing list > Jyt...@li... > https://lists.sourceforge.net/lists/listinfo/jython-users > |
From: Samuel S. <sam...@we...> - 2019-06-21 12:32:46
|
<html><head></head><body><div style="font-family: Verdana;font-size: 12.0px;"><div>Hello Adam,</div> <div> </div> <div>thank you for quick response.</div> <div> </div> <div>Basicly we have a java application which provides as a part of it a python code editor so you can execute your own python scripts.</div> <div> </div> <div>I think if you only can inject python code the issue should be not a critical issue, because the user has the possibility to write the code directly in the script.</div> <div>But if there could be executed any code to attack the server, it would be much worse.</div> <div> </div> <div> <div>In the new version of our application we use the 2.7.1 version, but one of our customers uses a 2 years old version of our application and there is still the 2.5.3 version of jython in use.</div> To upgrade to 2.7.1 would be my last choice, because the application grew quite big and sadly there would be very many changes required in the old code.</div> <div> </div> <div>Best regards,</div> <div>Samuel</div> <div> <div name="quote" style="margin:10px 5px 5px 10px; padding: 10px 0 10px 10px; border-left:2px solid #C3D9E5; word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space;"> <div style="margin:0 0 10px 0;"><b>Gesendet:</b> Freitag, 21. Juni 2019 um 13:26 Uhr<br/> <b>Von:</b> "Adam Burke" <ada...@gm...><br/> <b>An:</b> "Samuel Schober" <sam...@we...>, "jyt...@li..." <jyt...@li...><br/> <b>Betreff:</b> Re: [Jython-users] CVE-2016-4000</div> <div name="quoted-content"> <div><span>Going from the bug report, I didn’t work on it, and a core dev could correct me, but it’s specifically about deserializing Python objects.</span> <div> </div> <div><a href="https://hg.python.org/jython/rev/d06e29d100c0" target="_blank"><font color="#000000">https://hg.python.org/jython/rev/d06e29d100c0</font></a></div> <div> </div> <div><span>It would depend on whether your app had an exposed endpoint that accepted Python objects. All the usual caveats about eg web form data hygiene apply.</span></div> <div> </div> <div><span>Without knowing your exact organizational or technical constraint, I would mention</span><span> that security bugs can be excellent sticks for pushing through needed, but delayed, upgrades to current versions of infrastructure and libraries, like upgrading to Jython 2.7.1. Priorities can suddenly realign.</span></div> <div> </div> Cheers <div id="AppleMailSignature">Adam</div> <div><br/> 在 2019年6月21日,下午9:19,Adam Burke <<a href="mailto:ada...@gm..." onclick="parent.window.location.href='mailto:ada...@gm...'; return false;" target="_blank">ada...@gm...</a>> 写道:<br/> </div> <blockquote> <div>Going from the bug report, it’s specifically about deserializing Python objects. <div> </div> <div><a href="https://hg.python.org/jython/rev/d06e29d100c0" target="_blank">https://hg.python.org/jython/rev/d06e29d100c0</a></div> <div> </div> <div>It would depend on whether your app had an exposed endpoint that accepted Python objects. All the usual caveats about eg web form data hygiene apply.</div> <div> </div> <div>Without knowing your exact organizational or technical constraint, I would say that security bugs can be excellent sticks for pushing through needed, but delayed, upgrades to current versions of infrastructure and libraries, like upgrading to Jython 2.7.1. Priorities can suddenly realign.</div> <div> </div> <div>Cheers <div id="AppleMailSignature">Adam</div> <div><br/> 在 2019年6月21日,下午8:57,Samuel Schober <<a href="mailto:sam...@we..." onclick="parent.window.location.href='mailto:sam...@we...'; return false;" target="_blank">sam...@we...</a>> 写道:<br/> </div> <blockquote> <div> <div style="font-family: Verdana;font-size: 12.0px;"> <div> <p><span style="font-size: 11.0pt;"><span style="font-family: Calibri , sans-serif;">Hello,</span></span></p> <p> </p> <p><span style="font-size: 11.0pt;"><span style="font-family: Calibri , sans-serif;">I am using the jython package for an project and have a question about an issue you had.</span></span></p> <p> </p> <p><span style="font-size: 11.0pt;"><span style="font-family: Calibri , sans-serif;">The used version is 2.5.3 and unfortunally it can not be updated to 2.7.1. Now I found the following issue: </span></span></p> <p><span style="font-size: 11.0pt;"><span style="font-family: Calibri , sans-serif;"><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4000" style="color: rgb(5,99,193);text-decoration: underline;" target="_blank">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4000</a></span></span></p> <p> </p> <p><span style="font-size: 11.0pt;"><span style="font-family: Calibri , sans-serif;">It notices that jython allows attackers to execute arbitrary code and I wanted to ask what kind of code could be executed?</span></span></p> <p><span style="font-size: 11.0pt;"><span style="font-family: Calibri , sans-serif;">Is it only python code which could be executed or is it possible to execute any kind of binary code? </span></span></p> <p><span style="font-size: 11.0pt;"><span style="font-family: Calibri , sans-serif;">And is it possible to have influence on the server outside of the application or does it just affect my application?</span></span></p> <p> </p> <p><span style="font-size: 11.0pt;"><span style="font-family: Calibri , sans-serif;">I hope you can help me with that question.</span></span></p> <p> </p> <p><span style="font-size: 11.0pt;"><span style="font-family: Calibri , sans-serif;">Best regards,</span></span></p> <p><span style="font-size: 11.0pt;"><span style="font-family: Calibri , sans-serif;">Samuel Schober</span></span></p> </div> </div> </div> </blockquote> <blockquote> <div> </div> </blockquote> <blockquote> <div><span>_______________________________________________</span><br/> <span>Jython-users mailing list</span><br/> <span><a href="mailto:Jyt...@li..." onclick="parent.window.location.href='mailto:Jyt...@li...'; return false;" target="_blank">Jyt...@li...</a></span><br/> <span><a href="https://lists.sourceforge.net/lists/listinfo/jython-users" target="_blank">https://lists.sourceforge.net/lists/listinfo/jython-users</a></span></div> </blockquote> </div> </div> </blockquote> </div> </div> </div> </div></div></body></html> |
From: Adam B. <ada...@gm...> - 2019-06-21 11:26:31
|
Going from the bug report, I didn’t work on it, and a core dev could correct me, but it’s specifically about deserializing Python objects. https://hg.python.org/jython/rev/d06e29d100c0 It would depend on whether your app had an exposed endpoint that accepted Python objects. All the usual caveats about eg web form data hygiene apply. Without knowing your exact organizational or technical constraint, I would mention that security bugs can be excellent sticks for pushing through needed, but delayed, upgrades to current versions of infrastructure and libraries, like upgrading to Jython 2.7.1. Priorities can suddenly realign. Cheers Adam > 在 2019年6月21日,下午9:19,Adam Burke <ada...@gm...> 写道: > > Going from the bug report, it’s specifically about deserializing Python objects. > > https://hg.python.org/jython/rev/d06e29d100c0 > > It would depend on whether your app had an exposed endpoint that accepted Python objects. All the usual caveats about eg web form data hygiene apply. > > Without knowing your exact organizational or technical constraint, I would say that security bugs can be excellent sticks for pushing through needed, but delayed, upgrades to current versions of infrastructure and libraries, like upgrading to Jython 2.7.1. Priorities can suddenly realign. > > Cheers > Adam > >> 在 2019年6月21日,下午8:57,Samuel Schober <sam...@we...> 写道: >> >> Hello, >> >> >> >> I am using the jython package for an project and have a question about an issue you had. >> >> >> >> The used version is 2.5.3 and unfortunally it can not be updated to 2.7.1. Now I found the following issue: >> >> http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4000 >> >> >> >> It notices that jython allows attackers to execute arbitrary code and I wanted to ask what kind of code could be executed? >> >> Is it only python code which could be executed or is it possible to execute any kind of binary code? >> >> And is it possible to have influence on the server outside of the application or does it just affect my application? >> >> >> >> I hope you can help me with that question. >> >> >> >> Best regards, >> >> Samuel Schober >> >> _______________________________________________ >> Jython-users mailing list >> Jyt...@li... >> https://lists.sourceforge.net/lists/listinfo/jython-users |
From: Samuel S. <sam...@we...> - 2019-06-21 10:57:58
|
<html><head></head><body><div style="font-family: Verdana;font-size: 12.0px;"><div> <p><span style="font-size:11pt"><span style="font-family:Calibri,sans-serif">Hello,</span></span></p> <p> </p> <p><span style="font-size:11pt"><span style="font-family:Calibri,sans-serif">I am using the jython package for an project and have a question about an issue you had.</span></span></p> <p> </p> <p><span style="font-size:11pt"><span style="font-family:Calibri,sans-serif">The used version is 2.5.3 and unfortunally it can not be updated to 2.7.1. Now I found the following issue: </span></span></p> <p><span style="font-size:11pt"><span style="font-family:Calibri,sans-serif"><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4000" style="color:#0563c1; text-decoration:underline">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4000</a></span></span></p> <p> </p> <p><span style="font-size:11pt"><span style="font-family:Calibri,sans-serif">It notices that jython allows attackers to execute arbitrary code and I wanted to ask what kind of code could be executed?</span></span></p> <p><span style="font-size:11pt"><span style="font-family:Calibri,sans-serif">Is it only python code which could be executed or is it possible to execute any kind of binary code? </span></span></p> <p><span style="font-size:11pt"><span style="font-family:Calibri,sans-serif">And is it possible to have influence on the server outside of the application or does it just affect my application?</span></span></p> <p> </p> <p><span style="font-size:11pt"><span style="font-family:Calibri,sans-serif">I hope you can help me with that question.</span></span></p> <p> </p> <p><span style="font-size:11pt"><span style="font-family:Calibri,sans-serif">Best regards,</span></span></p> <p><span style="font-size:11pt"><span style="font-family:Calibri,sans-serif">Samuel Schober</span></span></p> </div></div></body></html> |
From: Niemann, H. <har...@si...> - 2019-05-14 09:21:36
|
Hi Jeff and Stefan, THANKSALOT! calling the interpreter class instead of it's jar file %java32% -cp %CLASSPATH% -Dpython.path=%CLASSPATH% org.python.util.jython diagtest.py works perfectly. The jython.exe --print helped me, too. Mit freundlichen Grüßen Dr. Hartmut Niemann Siemens Mobility GmbH MO RS LM EN CCI1 SRD -----Ursprüngliche Nachricht----- Von: Jeff Allen <ja...@fa...> Gesendet: Montag, 13. Mai 2019 22:18 An: jyt...@li... Betreff: Re: [Jython-users] calling Jython in Windows7: difference between calling jython.exe and jython.jar The class path ought to be ignored (by Java) if you supply -jar. [...] Stefan's solution of putting the Jython JAR on the path and invoking the main program looks good to me. The jython.exe launcher takes a --print option that shows you fairly accurately what it would have launched had you not given that option, and this is a good way to get a prototype Java command line. It is not quite accurate for PowerShell: it seems more elements have to be protected by quoting (e.g. "-Dprop=val"). Jeff Allen On 13/05/2019 19:54, Stefan Richthofer wrote: > It seems that one has to avoid the -jar option (not only on Windows). > Instead, put jython.jar on the classpath and execute the class > org.python.util.jython: > > java -cp whatever...;jython.jar org.python.util.jython someFile.py > > Hope this helps! > > Best > > -Stefan > > Am Mo., 13. Mai 2019 um 20:45 Uhr schrieb Niemann, Hartmut > <har...@si... <mailto:har...@si...>>: > > Hello! > > I have a jython program that uses some in-house java libraries. > > It works if I call it with > > jython.exe diagtest.py > > but if I try to start the jar file > > %java32% -cp %CLASSPATH% -jar > c:\SIBAS32\JAVA_LIBS\jython\jython.jar -Dpython.path=%CLASSPATH% > diagtest.py > > (with identical classpath), that classpath seems to be ignored: > > Traceback (most recent call last): > > File "diagtest.py", line 8, in <module> > > from com.siemens.sibas.softsibas import SsbsController > > ImportError: No module named sibas > |
From: Jeff A. <ja...@fa...> - 2019-05-13 20:18:24
|
The class path ought to be ignored (by Java) if you supply -jar. (https://docs.oracle.com/javase/8/docs/technotes/tools/windows/java.html#BABDJJFI) It is possible that changes to the way we look for imports has changed to be more like Java e.g. to use the System properties rather than the environment variable. Or maybe Java changed. (Was it always like this?) Stefan's solution of putting the Jython JAR on the path and invoking the main program looks good to me. The jython.exe launcher takes a --print option that shows you fairly accurately what it would have launched had you not given that option, and this is a good way to get a prototype Java command line. It is not quite accurate for PowerShell: it seems more elements have to be protected by quoting (e.g. "-Dprop=val"). Jeff Allen On 13/05/2019 19:54, Stefan Richthofer wrote: > I once encountered the same problem but never found the time to > investigate it further. > However I can tell you how I solved it (c.f. > https://github.com/Stewori/JyNI#running-jyni): > It seems that one has to avoid the -jar option (not only on Windows). > Instead, put jython.jar on the classpath and execute the class > org.python.util.jython: > > java -cp whatever...;jython.jar org.python.util.jython someFile.py > > Hope this helps! > > Best > > -Stefan > > Am Mo., 13. Mai 2019 um 20:45 Uhr schrieb Niemann, Hartmut > <har...@si... <mailto:har...@si...>>: > > Hello! > > I have a jython program that uses some in-house java libraries. > > It works if I call it with > > jython.exe diagtest.py > > but if I try to start the jar file > > %java32% -cp %CLASSPATH% -jar > c:\SIBAS32\JAVA_LIBS\jython\jython.jar -Dpython.path=%CLASSPATH% > diagtest.py > > (with identical classpath), that classpath seems to be ignored: > > Traceback (most recent call last): > > File "diagtest.py", line 8, in <module> > > from com.siemens.sibas.softsibas import SsbsController > > ImportError: No module named sibas > > JAVA32=C:\DEVTOOLS\Java\1.8-32\bin\java.exe > > JAVA64=C:\DEVTOOLS\Java\1.8\bin\java.exe > > JAVAC=C:\DEVTOOLS\Java\1.8\bin\javac.exe > > JAVADOC=C:\DEVTOOLS\Java\1.8\bin\javadoc.exe > > JAVA_HOME=C:\devtools\Java\1.8-32\jre > > JYTHON=C:\DEVTOOLS\Jython\2.7.0\bin\jython.exe > > CLASSPATH=D:\PRJ\Tools\030_projects\020_Tools\DPS2\050_Tests\..\030_Src\egalsubrdir;D:\PRJ\Tools\030_projects\020_Tools\DPS2\050_Tests\..\030_Src\lib\java\com.siemens.tools;D:\PRJ\Tools\030_projects\0 > > 20_Tools\DPS2\050_Tests\..\030_Src\lib\java\com.siemens.sibas.v4.dm.ctrl;D:\PRJ\Tools\030_projects\020_Tools\DPS2\050_Tests\..\030_Src\lib\java\com.siemens.sibas.v4.dm.tcn;D:\PRJ\Tools\030_projects\02 > > 0_Tools\DPS2\050_Tests\..\030_Src\lib\java\com.siemens.sibas.v4.dm.train;C:\SIBAS32\JAVA_LIBS\SAMAPI4J\SAMAPI4J.030000\*;C:\SIBAS32\JAVA_LIBS\softsibas\*;C:\SIBAS32\JAVA_LIBS\argparse_\*;C:\SIBAS32\JA > > VA_LIBS\com.sun.jna\*;C:\SIBAS32\JAVA_LIBS\jython\*;C:\SIBAS32\JAVA_LIBS\net.ucanaccess\*;C:\SIBAS32\JAVA_LIBS\org.apache.commons.cli\*;C:\SIBAS32\JAVA_LIBS\org.apache.commons.lang3\*;C:\SIBAS32\JAVA_ > > LIBS\org.apache.poi\*;C:\SIBAS32\JAVA_LIBS\org.apache.xmlbeans\*;C:\SIBAS32\JAVA_LIBS\org.ini4j\*;C:\SIBAS32\JAVA_LIBS\services\*;C:\SIBAS32\JAVA_LIBS\sibas\*;C:\SIBAS32\JAVA_LIBS\y\*;C:\SIBAS32\DLLS\ > > SOFTSIBAS\SOFTSIBAS.010000\32 > > The second possibility used to work, so probably I made a mistake > somewhere. Does anybody have an idea what is wrong? > > Mit freundlichen Grüßen > Dr. Hartmut Niemann > > Siemens Mobility GmbH > MO RS LM EN CCI1 SRD > Werner-von-Siemens-Str. 67 > 91052 Erlangen, Deutschland > Tel.: +49 9131 17-50518 > Mobil: +49 173 5342327 > mailto:har...@si... > www.siemens.com/ingenuityforlife > <https://siemens.com/ingenuityforlife> > www.siemens.com/ingenuityforlife > Siemens Mobility GmbH: Vorsitzender des Aufsichtsrats: Anton > Steiger; Geschäftsführer: Karl Blaim, Michael Peter, Sabrina > Soussan; Sitz der Gesellschaft: München, Deutschland; Amtsgericht > München, HRB 237219; WEEE-Reg.-Nr. DE 92917817 > > _______________________________________________ > Jython-users mailing list > Jyt...@li... > <mailto:Jyt...@li...> > https://lists.sourceforge.net/lists/listinfo/jython-users > > > > _______________________________________________ > Jython-users mailing list > Jyt...@li... > https://lists.sourceforge.net/lists/listinfo/jython-users |
From: Stefan R. <ste...@gm...> - 2019-05-13 18:55:16
|
I once encountered the same problem but never found the time to investigate it further. However I can tell you how I solved it (c.f. https://github.com/Stewori/JyNI#running-jyni): It seems that one has to avoid the -jar option (not only on Windows). Instead, put jython.jar on the classpath and execute the class org.python.util.jython: java -cp whatever...;jython.jar org.python.util.jython someFile.py Hope this helps! Best -Stefan Am Mo., 13. Mai 2019 um 20:45 Uhr schrieb Niemann, Hartmut < har...@si...>: > Hello! > > > > I have a jython program that uses some in-house java libraries. > > > > It works if I call it with > > jython.exe diagtest.py > > but if I try to start the jar file > > %java32% -cp %CLASSPATH% -jar > c:\SIBAS32\JAVA_LIBS\jython\jython.jar -Dpython.path=%CLASSPATH% diagtest.py > > (with identical classpath), that classpath seems to be ignored: > > Traceback (most recent call last): > > File "diagtest.py", line 8, in <module> > > from com.siemens.sibas.softsibas import SsbsController > > ImportError: No module named sibas > > > > > > JAVA32=C:\DEVTOOLS\Java\1.8-32\bin\java.exe > > JAVA64=C:\DEVTOOLS\Java\1.8\bin\java.exe > > JAVAC=C:\DEVTOOLS\Java\1.8\bin\javac.exe > > JAVADOC=C:\DEVTOOLS\Java\1.8\bin\javadoc.exe > > JAVA_HOME=C:\devtools\Java\1.8-32\jre > > JYTHON=C:\DEVTOOLS\Jython\2.7.0\bin\jython.exe > > > CLASSPATH=D:\PRJ\Tools\030_projects\020_Tools\DPS2\050_Tests\..\030_Src\egalsubrdir;D:\PRJ\Tools\030_projects\020_Tools\DPS2\050_Tests\..\030_Src\lib\java\com.siemens.tools;D:\PRJ\Tools\030_projects\0 > > > 20_Tools\DPS2\050_Tests\..\030_Src\lib\java\com.siemens.sibas.v4.dm.ctrl;D:\PRJ\Tools\030_projects\020_Tools\DPS2\050_Tests\..\030_Src\lib\java\com.siemens.sibas.v4.dm.tcn;D:\PRJ\Tools\030_projects\02 > > > 0_Tools\DPS2\050_Tests\..\030_Src\lib\java\com.siemens.sibas.v4.dm.train;C:\SIBAS32\JAVA_LIBS\SAMAPI4J\SAMAPI4J.030000\*;C:\SIBAS32\JAVA_LIBS\softsibas\*;C:\SIBAS32\JAVA_LIBS\argparse_\*;C:\SIBAS32\JA > > > VA_LIBS\com.sun.jna\*;C:\SIBAS32\JAVA_LIBS\jython\*;C:\SIBAS32\JAVA_LIBS\net.ucanaccess\*;C:\SIBAS32\JAVA_LIBS\org.apache.commons.cli\*;C:\SIBAS32\JAVA_LIBS\org.apache.commons.lang3\*;C:\SIBAS32\JAVA_ > > > LIBS\org.apache.poi\*;C:\SIBAS32\JAVA_LIBS\org.apache.xmlbeans\*;C:\SIBAS32\JAVA_LIBS\org.ini4j\*;C:\SIBAS32\JAVA_LIBS\services\*;C:\SIBAS32\JAVA_LIBS\sibas\*;C:\SIBAS32\JAVA_LIBS\y\*;C:\SIBAS32\DLLS\ > > SOFTSIBAS\SOFTSIBAS.010000\32 > > > > The second possibility used to work, so probably I made a mistake > somewhere. Does anybody have an idea what is wrong? > > > > Mit freundlichen Grüßen > Dr. Hartmut Niemann > > Siemens Mobility GmbH > MO RS LM EN CCI1 SRD > Werner-von-Siemens-Str. 67 > 91052 Erlangen, Deutschland > Tel.: +49 9131 17-50518 > Mobil: +49 173 5342327 > mailto:har...@si... <har...@si...> > www.siemens.com/ingenuityforlife <https://siemens.com/ingenuityforlife> > [image: www.siemens.com/ingenuityforlife] > Siemens Mobility GmbH: Vorsitzender des Aufsichtsrats: Anton Steiger; > Geschäftsführer: Karl Blaim, Michael Peter, Sabrina Soussan; Sitz der > Gesellschaft: München, Deutschland; Amtsgericht München, HRB 237219; > WEEE-Reg.-Nr. DE 92917817 > _______________________________________________ > Jython-users mailing list > Jyt...@li... > https://lists.sourceforge.net/lists/listinfo/jython-users > |
From: Niemann, H. <har...@si...> - 2019-05-13 18:44:47
|
Hello! I have a jython program that uses some in-house java libraries. It works if I call it with jython.exe diagtest.py but if I try to start the jar file %java32% -cp %CLASSPATH% -jar c:\SIBAS32\JAVA_LIBS\jython\jython.jar -Dpython.path=%CLASSPATH% diagtest.py (with identical classpath), that classpath seems to be ignored: Traceback (most recent call last): File "diagtest.py", line 8, in <module> from com.siemens.sibas.softsibas import SsbsController ImportError: No module named sibas JAVA32=C:\DEVTOOLS\Java\1.8-32\bin\java.exe JAVA64=C:\DEVTOOLS\Java\1.8\bin\java.exe JAVAC=C:\DEVTOOLS\Java\1.8\bin\javac.exe JAVADOC=C:\DEVTOOLS\Java\1.8\bin\javadoc.exe JAVA_HOME=C:\devtools\Java\1.8-32\jre JYTHON=C:\DEVTOOLS\Jython\2.7.0\bin\jython.exe CLASSPATH=D:\PRJ\Tools\030_projects\020_Tools\DPS2\050_Tests\..\030_Src\egalsubrdir;D:\PRJ\Tools\030_projects\020_Tools\DPS2\050_Tests\..\030_Src\lib\java\com.siemens.tools;D:\PRJ\Tools\030_projects\0 20_Tools\DPS2\050_Tests\..\030_Src\lib\java\com.siemens.sibas.v4.dm.ctrl;D:\PRJ\Tools\030_projects\020_Tools\DPS2\050_Tests\..\030_Src\lib\java\com.siemens.sibas.v4.dm.tcn;D:\PRJ\Tools\030_projects\02 0_Tools\DPS2\050_Tests\..\030_Src\lib\java\com.siemens.sibas.v4.dm.train;C:\SIBAS32\JAVA_LIBS\SAMAPI4J\SAMAPI4J.030000\*;C:\SIBAS32\JAVA_LIBS\softsibas\*;C:\SIBAS32\JAVA_LIBS\argparse_\*;C:\SIBAS32\JA VA_LIBS\com.sun.jna\*;C:\SIBAS32\JAVA_LIBS\jython\*;C:\SIBAS32\JAVA_LIBS\net.ucanaccess\*;C:\SIBAS32\JAVA_LIBS\org.apache.commons.cli\*;C:\SIBAS32\JAVA_LIBS\org.apache.commons.lang3\*;C:\SIBAS32\JAVA_ LIBS\org.apache.poi\*;C:\SIBAS32\JAVA_LIBS\org.apache.xmlbeans\*;C:\SIBAS32\JAVA_LIBS\org.ini4j\*;C:\SIBAS32\JAVA_LIBS\services\*;C:\SIBAS32\JAVA_LIBS\sibas\*;C:\SIBAS32\JAVA_LIBS\y\*;C:\SIBAS32\DLLS\ SOFTSIBAS\SOFTSIBAS.010000\32 The second possibility used to work, so probably I made a mistake somewhere. Does anybody have an idea what is wrong? Mit freundlichen Grüßen Dr. Hartmut Niemann Siemens Mobility GmbH MO RS LM EN CCI1 SRD Werner-von-Siemens-Str. 67 91052 Erlangen, Deutschland Tel.: +49 9131 17-50518 Mobil: +49 173 5342327 mailto:har...@si... www.siemens.com/ingenuityforlife<https://siemens.com/ingenuityforlife> [www.siemens.com/ingenuityforlife] Siemens Mobility GmbH: Vorsitzender des Aufsichtsrats: Anton Steiger; Geschäftsführer: Karl Blaim, Michael Peter, Sabrina Soussan; Sitz der Gesellschaft: München, Deutschland; Amtsgericht München, HRB 237219; WEEE-Reg.-Nr. DE 92917817 |
From: Jeff A. <ja...@fa...> - 2019-05-11 05:51:59
|
Our next goal is 2.7.2b1 and it looks within our grasp in the next month. This is taking longer than expected. Building now from the development tip is always available. It is interesting what you say about the usefulness of tags to those who do that, so we should remember to do that, in moderation, at useful way-points. I had only thought of them in relation to official or semi-official JARs. Jeff Allen On 10/05/2019 14:55, Dhellemmes, JC wrote: > Hello, > > I am using Jython standalone 2.7.1 and I think I am impacted by issue https://bugs.jython.org/issue2650 (missing message in PyException). > > In the repo (https://hg.python.org/jython), I see: > * A fix was done on 03 Jan 2018. > * The latest tag (v2.7.2a1) is from 23 Nov 2017. > * The latest commit is from 04 May 2019. > > Is there a plan to tag the current state, and/or release 2.7.2 and provide an official JAR, or is my only option to download the source and build myself? If I build myself, a new tag would help traceability (v2.7.2a2?). > > Regards, > > JC > > > > _______________________________________________ > Jython-users mailing list > Jyt...@li... > https://lists.sourceforge.net/lists/listinfo/jython-users > |
From: Dhellemmes, J. <jcd...@hi...> - 2019-05-10 15:29:54
|
Hello, I am using Jython standalone 2.7.1 and I think I am impacted by issue https://bugs.jython.org/issue2650 (missing message in PyException). In the repo (https://hg.python.org/jython), I see: * A fix was done on 03 Jan 2018. * The latest tag (v2.7.2a1) is from 23 Nov 2017. * The latest commit is from 04 May 2019. Is there a plan to tag the current state, and/or release 2.7.2 and provide an official JAR, or is my only option to download the source and build myself? If I build myself, a new tag would help traceability (v2.7.2a2?). Regards, JC |
From: Jeff A. <ja...@fa...> - 2019-04-30 22:00:39
|
Cross-posting to jython-users for obvious reasons. Jeff Allen On 30/04/2019 10:26, Chris Withers wrote: > [resending to python-dev in case there are Jython users here...] > > Hi All, > > If you need Jython support in the mock backport, please shout now: > > https://github.com/testing-cabal/mock/issues/453 > > cheers, > > Chris > |
From: Chris C. <Chr...@ac...> - 2019-04-19 15:46:13
|
>…. > So my inclination is not to change the code to fit the documentation, but to change the documentation to fit the code. > I will do exactly that. > Does that answer the question Chris? Thanks Alan for the quick response! Sounds good to me :-) Chris |
From: Alan K. <jyt...@xh...> - 2019-04-17 10:13:42
|
Hi Chris. [Chris] > the [modjy] initial_env setting ... I believe the documentation is incorrect on variable separators: I think you're right there. [Chris] > It claims a semi-colon should be used for the separator. Checking code .. and .. tests > it looks like it a new line is expected (and testing this out works fine, semi-colon does not). > Can anyone confirm/deny this? You're right about the code using newlines as a separator, so you should definitely consider the code authoritative, not the documentation. It's been 15 years since I wrote it, so I can't specifically remember my thought processes back then. But I'm thinking that semicolons make more sense as a separator, when all of the values are on a single line. Using newline as a separator works for more forgiving textual formats. Since the modjy parameters we're talking about are set in an XML file (web.xml), newline as a separator works fine. So although semicolons may be more suitable in a single line situation, newline is a not problem here. So my inclination is not to change the code to fit the documentation, but to change the documentation to fit the code. I will do exactly that. Does that answer the question Chris? Alan. |