[Python-Dev] pycache creation (original) (raw)

Antoine Pitrou solipsis at pitrou.net
Mon Mar 22 18:14:29 CET 2010

• Previous message: [Python-Dev] PEP 3147, __pycache__ directories and umask
• Next message: [Python-Dev] __pycache__ creation
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Oh, and by the way, there can be a race condition between pycache creation and deletion (if it fails the test), where an attacker can stuff a hostile pyc file in the directory in the meantime (and the deletion then fails because the directory isn't empty).

IMO, all these issues militate for putting pycache creation out of the interpreter core, and in the hands of third-party package-time/ install-time tools (or distutils).

Le Mon, 22 Mar 2010 14:30:12 +0000, Antoine Pitrou a écrit :

pycache should only be created if explicitly activated (for example by distutils when installing stuff). Otherwise, if not present, the "legacy" mechanism (writing an untagged pyc file along the py file) should be used. Actually, pycache creation doesn't have to be part of the import mechanism. It can be part of distutils instead (or whatever third-party tool such as distribute, or distro-specific packaging scripts). This would relax complexity of core Python a bit. Regards Antoine.

• Previous message: [Python-Dev] PEP 3147, __pycache__ directories and umask
• Next message: [Python-Dev] __pycache__ creation
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Python-Dev mailing list