diff options
author | Bert JW Regeer <bertjw@regeer.org> | 2022-05-30 15:16:37 -0600 |
---|---|---|
committer | Bert JW Regeer <bertjw@regeer.org> | 2022-05-30 15:16:37 -0600 |
commit | 479df63fb087189c2f5b377bc8f61b6acb900d81 (patch) | |
tree | 0e86ef07d7b118bc4827ff400bd3caecfe1c2c00 | |
parent | 4f6789b035610e0552738cdc4b35ca809a592d48 (diff) | |
download | waitress-479df63fb087189c2f5b377bc8f61b6acb900d81.tar.gz |
Prep 2.1.2
-rw-r--r-- | CHANGES.txt | 31 | ||||
-rw-r--r-- | setup.cfg | 2 |
2 files changed, 32 insertions, 1 deletions
diff --git a/CHANGES.txt b/CHANGES.txt index eb7093c..b2b4385 100644 --- a/CHANGES.txt +++ b/CHANGES.txt @@ -1,3 +1,34 @@ +2.1.2 +----- + +Updated Defaults +~~~~~~~~~~~~~~~~ + +- clear_untrusted_proxy_headers is set to True by default. See + https://github.com/Pylons/waitress/pull/370 + +Bugfix +~~~~~~ + +- When expose_tracebacks is enabled waitress would fail to properly encode + unicode thereby causing another error during error handling. See + https://github.com/Pylons/waitress/pull/378 + +- Header length checking had a calculation that was done incorrectly when the + data was received across multple socket reads. This calculation has been + corrected, and no longer will Waitress send back a 413 Request Entity Too + Large. See https://github.com/Pylons/waitress/pull/376 + +Security Bugfix +~~~~~~~~~~~~~~~ + +- in 2.1.0 a new feature was introduced that allowed the WSGI thread to start + sending data to the socket. However this introduced a race condition whereby + a socket may be closed in the sending thread while the main thread is about + to call select() therey causing the entire application to be taken down. + Waitress will no longer close the socket in the WSGI thread, instead waking + up the main thread to cleanup. See https://github.com/Pylons/waitress/pull/377 + 2.1.1 ----- @@ -1,6 +1,6 @@ [metadata] name = waitress -version = 2.1.1 +version = 2.1.2 description = Waitress WSGI server long_description = file: README.rst, CHANGES.txt long_description_content_type = text/x-rst |