ActivePython released, fixing the debug bug

activepython blog hero

We just released ActivePython (download it here, release notes here).

One fun change in this build is a fix for the debug bug: a buglet that dates back to 1999 (!) that could potentially have meant any SSL read or write with Python’s OpenSSL bindings would result in a helpful one second sleep(1). Benjamin Peterson succinctly pronounced on the single errant line of code:

Let it die.

Personifying that line of code as Robin’s Minstrels: There was much rejoicing.

Thankfully, as Antoine (on the bug report) and dredge (on Hacker News) pointed out, most OpenSSL builds will not be affected (because of a #ifdef PKT_DEBUG guard). Indeed, ActivePython’s included OpenSSL builds are not affected.

Recent Posts

Webinar - Securing Python and Open Source Ecosystems
Securing Python and Open Source Ecosystems

Dustin Ingram, Fellow at the Python Software Foundation (PSF), joins us to discuss trust and security for PyPI and other repositories in light of recent supply chain attacks, and steps being taken to secure the open source ecosystem.

Read More
Scroll to Top