Accepting request 1184077 from devel:languages:python
- update to 3.0.0:
* Fixed testing of vendored asyncore code to not rely on
particular naming for errno's.
* HTTP Request methods and versions are now validated to meet
the HTTP standards thereby dropping invalid requests on the floor.
* No longer close the connection when sending a HEAD request
response.
* Always attempt to send the Connection: close response header
when we are going to close the connection to let the remote
know in more instances.
* Document that trusted_proxy may be set to a wildcard value to
trust all proxies.
* clear_untrusted_proxy_headers is set to True by default.
https://github.com/Pylons/waitress/security/advisories/GHSA-4f7p-27jc-3c36
* Waitress did not properly validate that the HTTP headers it received
were properly formed, thereby potentially allowing a front-end server
to treat a request different from Waitress. This could lead to HTTP
* Waitress won’t accidentally throw away part of the path if it
- Initial package (0.8.3)
OBS-URL: https://build.opensuse.org/request/show/1184077
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/python-waitress?expand=0&rev=32
This commit is contained in:
Git OBS Bridge
@@ -1,3 +1,20 @@
|
|||||||
|
-------------------------------------------------------------------
|
||||||
|
Sun Jun 30 07:59:06 UTC 2024 - Dirk Müller <dmueller@suse.com>
|
||||||
|
|
||||||
|
- update to 3.0.0:
|
||||||
|
* Fixed testing of vendored asyncore code to not rely on
|
||||||
|
particular naming for errno's.
|
||||||
|
* HTTP Request methods and versions are now validated to meet
|
||||||
|
the HTTP standards thereby dropping invalid requests on the floor.
|
||||||
|
* No longer close the connection when sending a HEAD request
|
||||||
|
response.
|
||||||
|
* Always attempt to send the Connection: close response header
|
||||||
|
when we are going to close the connection to let the remote
|
||||||
|
know in more instances.
|
||||||
|
* Document that trusted_proxy may be set to a wildcard value to
|
||||||
|
trust all proxies.
|
||||||
|
* clear_untrusted_proxy_headers is set to True by default.
|
||||||
|
|
||||||
-------------------------------------------------------------------
|
-------------------------------------------------------------------
|
||||||
Mon Dec 4 15:20:28 UTC 2023 - Ana Guerrero <ana.guerrero@suse.com>
|
Mon Dec 4 15:20:28 UTC 2023 - Ana Guerrero <ana.guerrero@suse.com>
|
||||||
|
|
||||||
@@ -76,7 +93,7 @@ Thu Mar 17 17:42:42 UTC 2022 - Dirk Müller <dmueller@suse.com>
|
|||||||
previously get parsed as 10 and accepted. This stops potential HTTP
|
previously get parsed as 10 and accepted. This stops potential HTTP
|
||||||
desync/HTTP request smuggling Thanks to Zhang Zeyu for reporting this issue.
|
desync/HTTP request smuggling Thanks to Zhang Zeyu for reporting this issue.
|
||||||
See
|
See
|
||||||
https://github.com/Pylons/waitress/security/advisories/GHSA-4f7p-27jc-3c36
|
https://github.com/Pylons/waitress/security/advisories/GHSA-4f7p-27jc-3c36
|
||||||
|
|
||||||
-------------------------------------------------------------------
|
-------------------------------------------------------------------
|
||||||
Fri Aug 27 12:27:31 UTC 2021 - Stefan Schubert <schubi@suse.de>
|
Fri Aug 27 12:27:31 UTC 2021 - Stefan Schubert <schubi@suse.de>
|
||||||
@@ -157,9 +174,9 @@ Mon May 18 07:25:32 UTC 2020 - Petr Gajdos <pgajdos@suse.com>
|
|||||||
Thu Feb 6 17:29:20 UTC 2020 - Marketa Calabkova <mcalabkova@suse.com>
|
Thu Feb 6 17:29:20 UTC 2020 - Marketa Calabkova <mcalabkova@suse.com>
|
||||||
|
|
||||||
- update to 1.4.3
|
- update to 1.4.3
|
||||||
* Waitress did not properly validate that the HTTP headers it received
|
* Waitress did not properly validate that the HTTP headers it received
|
||||||
were properly formed, thereby potentially allowing a front-end server
|
were properly formed, thereby potentially allowing a front-end server
|
||||||
to treat a request different from Waitress. This could lead to HTTP
|
to treat a request different from Waitress. This could lead to HTTP
|
||||||
request smuggling/splitting.
|
request smuggling/splitting.
|
||||||
- drop patch local-intersphinx-inventories.patch
|
- drop patch local-intersphinx-inventories.patch
|
||||||
* it was commented out, anyway
|
* it was commented out, anyway
|
||||||
@@ -186,7 +203,7 @@ Fri Dec 20 18:28:24 UTC 2019 - Dirk Mueller <dmueller@suse.com>
|
|||||||
Thu Aug 29 13:35:14 UTC 2019 - Marketa Calabkova <mcalabkova@suse.com>
|
Thu Aug 29 13:35:14 UTC 2019 - Marketa Calabkova <mcalabkova@suse.com>
|
||||||
|
|
||||||
- update to 1.3.1
|
- update to 1.3.1
|
||||||
* Waitress won’t accidentally throw away part of the path if it
|
* Waitress won’t accidentally throw away part of the path if it
|
||||||
starts with a double slash
|
starts with a double slash
|
||||||
|
|
||||||
-------------------------------------------------------------------
|
-------------------------------------------------------------------
|
||||||
@@ -412,10 +429,10 @@ Tue Aug 13 10:15:30 UTC 2013 - dmueller@suse.com
|
|||||||
- update to 0.8.6:
|
- update to 0.8.6:
|
||||||
- Do alternate type of checking for UNIX socket support, instead of checking
|
- Do alternate type of checking for UNIX socket support, instead of checking
|
||||||
for platform == windows.
|
for platform == windows.
|
||||||
|
|
||||||
- Functional tests now use multiprocessing module instead of subprocess module,
|
- Functional tests now use multiprocessing module instead of subprocess module,
|
||||||
speeding up test suite and making concurrent execution more reliable.
|
speeding up test suite and making concurrent execution more reliable.
|
||||||
|
|
||||||
- Runner now appends the current working directory to ``sys.path`` to support
|
- Runner now appends the current working directory to ``sys.path`` to support
|
||||||
running WSGI applications from a directory (i.e., not installed in a
|
running WSGI applications from a directory (i.e., not installed in a
|
||||||
virtualenv).
|
virtualenv).
|
||||||
@@ -451,5 +468,5 @@ Mon Apr 29 14:14:25 UTC 2013 - speilicke@suse.com
|
|||||||
-------------------------------------------------------------------
|
-------------------------------------------------------------------
|
||||||
Mon Apr 29 13:06:10 UTC 2013 - dmueller@suse.com
|
Mon Apr 29 13:06:10 UTC 2013 - dmueller@suse.com
|
||||||
|
|
||||||
- Initial package (0.8.3)
|
- Initial package (0.8.3)
|
||||||
|
|
||||||
|
|||||||
@@ -1,7 +1,7 @@
|
|||||||
#
|
#
|
||||||
# spec file
|
# spec file for package python-waitress
|
||||||
#
|
#
|
||||||
# Copyright (c) 2023 SUSE LLC
|
# Copyright (c) 2024 SUSE LLC
|
||||||
#
|
#
|
||||||
# All modifications and additions to the file contributed by third parties
|
# All modifications and additions to the file contributed by third parties
|
||||||
# remain the property of their copyright owners, unless otherwise agreed
|
# remain the property of their copyright owners, unless otherwise agreed
|
||||||
@@ -31,7 +31,7 @@
|
|||||||
%endif
|
%endif
|
||||||
%{?sle15_python_module_pythons}
|
%{?sle15_python_module_pythons}
|
||||||
Name: python-waitress%{psuffix}
|
Name: python-waitress%{psuffix}
|
||||||
Version: 2.1.2
|
Version: 3.0.0
|
||||||
Release: 0
|
Release: 0
|
||||||
Summary: Waitress WSGI server
|
Summary: Waitress WSGI server
|
||||||
License: ZPL-2.1
|
License: ZPL-2.1
|
||||||
@@ -42,7 +42,9 @@ Source: https://files.pythonhosted.org/packages/source/w/waitress/waitre
|
|||||||
# https://docs.python.org/3/objects.inv -> python3.inv
|
# https://docs.python.org/3/objects.inv -> python3.inv
|
||||||
Source1: python3.inv
|
Source1: python3.inv
|
||||||
Source2: fetch-intersphinx-inventories.sh
|
Source2: fetch-intersphinx-inventories.sh
|
||||||
|
BuildRequires: %{python_module pip}
|
||||||
BuildRequires: %{python_module setuptools}
|
BuildRequires: %{python_module setuptools}
|
||||||
|
BuildRequires: %{python_module wheel}
|
||||||
BuildRequires: fdupes
|
BuildRequires: fdupes
|
||||||
BuildRequires: python-rpm-macros >= 20210929
|
BuildRequires: python-rpm-macros >= 20210929
|
||||||
BuildArch: noarch
|
BuildArch: noarch
|
||||||
@@ -53,7 +55,7 @@ BuildRequires: alts
|
|||||||
Requires: alts
|
Requires: alts
|
||||||
%else
|
%else
|
||||||
Requires(post): update-alternatives
|
Requires(post): update-alternatives
|
||||||
Requires(postun):update-alternatives
|
Requires(postun): update-alternatives
|
||||||
%endif
|
%endif
|
||||||
%else
|
%else
|
||||||
# Documentation requirements
|
# Documentation requirements
|
||||||
@@ -87,10 +89,10 @@ http://docs.pylonsproject.org/projects/waitress/en/latest/ .
|
|||||||
sed -i '/addopts/d' setup.cfg
|
sed -i '/addopts/d' setup.cfg
|
||||||
|
|
||||||
%build
|
%build
|
||||||
%python_build
|
%pyproject_wheel
|
||||||
|
|
||||||
%install
|
%install
|
||||||
%python_install
|
%pyproject_install
|
||||||
%python_clone -a %{buildroot}%{_bindir}/waitress-serve
|
%python_clone -a %{buildroot}%{_bindir}/waitress-serve
|
||||||
%python_expand %fdupes %{buildroot}%{$python_sitelib}
|
%python_expand %fdupes %{buildroot}%{$python_sitelib}
|
||||||
|
|
||||||
@@ -113,7 +115,7 @@ sed -i '/addopts/d' setup.cfg
|
|||||||
%doc COPYRIGHT.txt README.rst
|
%doc COPYRIGHT.txt README.rst
|
||||||
%python_alternative %{_bindir}/waitress-serve
|
%python_alternative %{_bindir}/waitress-serve
|
||||||
%{python_sitelib}/waitress
|
%{python_sitelib}/waitress
|
||||||
%{python_sitelib}/waitress-%{version}*-info
|
%{python_sitelib}/waitress-%{version}.dist-info
|
||||||
|
|
||||||
%else
|
%else
|
||||||
|
|
||||||
|
|||||||
BIN
waitress-2.1.2.tar.gz
(Stored with Git LFS)
BIN
waitress-2.1.2.tar.gz
(Stored with Git LFS)
Binary file not shown.
3
waitress-3.0.0.tar.gz
Normal file
3
waitress-3.0.0.tar.gz
Normal file
@@ -0,0 +1,3 @@
|
|||||||
|
version https://git-lfs.github.com/spec/v1
|
||||||
|
oid sha256:005da479b04134cdd9dd602d1ee7c49d79de0537610d653674cc6cbde222b8a1
|
||||||
|
size 179393
|
||||||
Reference in New Issue
Block a user