jingrow/gunicorn
1
0
Fork 0
mirror of https://github.com/frappe/gunicorn.git synced 2026-01-14 11:09:11 +08:00
Code Issues Packages Projects Releases Wiki Activity

update docs

Browse Source 
re-apply typo fix from 628a0bcb61ef3a211d67dfd68ad1ba161cccb3b8
reflect removal of setting from 555d2fa27f2d891f23bd03890e4a826b5018c6b4
This commit is contained in:
Paul J. Dorn 2024-05-22 06:07:36 +02:00
parent e3562c94d3
commit 6c3296e177
2 changed files with 5 additions and 31 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

32
docs/source/settings.rst
View File

@ -210,7 +210,7 @@ H protocol
s status s status
B response length B response length
b response length or ``'-'`` (CLF format) b response length or ``'-'`` (CLF format)
f referer f referrer (note: header is ``referer``)
a user agent a user agent
T request time in seconds T request time in seconds
M request time in milliseconds M request time in milliseconds
@ -314,7 +314,7 @@ file format.
The log config dictionary to use, using the standard Python The log config dictionary to use, using the standard Python
logging module's dictionary configuration format. This option logging module's dictionary configuration format. This option
takes precedence over the :ref:`logconfig` and :ref:`logConfigJson` options, takes precedence over the :ref:`logconfig` and :ref:`logconfig-json` options,
which uses the older file configuration format and JSON which uses the older file configuration format and JSON
respectively. respectively.
@ -569,7 +569,7 @@ Whether client certificate is required (see stdlib ssl module's)
=========== =========================== =========== ===========================
--cert-reqs Description --cert-reqs Description
=========== =========================== =========== ===========================
`0` no client veirifcation `0` no client verification
`1` ssl.CERT_OPTIONAL `1` ssl.CERT_OPTIONAL
`2` ssl.CERT_REQUIRED `2` ssl.CERT_REQUIRED
=========== =========================== =========== ===========================
@ -1504,32 +1504,6 @@ on a proxy in front of Gunicorn.
.. versionadded:: 22.0.0 .. versionadded:: 22.0.0
.. _tolerate-dangerous-framing:
``tolerate_dangerous_framing``
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
**Command line:** ``--tolerate-dangerous-framing``
**Default:** ``False``
Process requests with both Transfer-Encoding and Content-Length
This is known to induce vulnerabilities, but not strictly forbidden by RFC9112.
In any case, the connection is closed after the malformed request,
as it is unclear if and at which boundary additional requests start.
Use with care and only if necessary.
Temporary; will be changed or removed in a future version.
.. versionadded:: 22.0.0
.. versionchanged: 22.1.0
The newly added rejection of invalid and dangerous characters CR, LF and NUL in
header field values is also controlled with this setting. rfc9110 permits both
rejecting and SP-replacing. With this option set, Gunicorn passes the field value
unchanged. With this option unset, Gunicorn rejects the request.
Server Socket Server Socket
------------- -------------

4
gunicorn/config.py
View File

@ -1395,7 +1395,7 @@ class AccessLogFormat(Setting):
s status s status
B response length B response length
b response length or ``'-'`` (CLF format) b response length or ``'-'`` (CLF format)
f referer f referrer (note: header is ``referer``)
a user agent a user agent
T request time in seconds T request time in seconds
M request time in milliseconds M request time in milliseconds
@ -2154,7 +2154,7 @@ class CertReqs(Setting):
=========== =========================== =========== ===========================
--cert-reqs Description --cert-reqs Description
=========== =========================== =========== ===========================
`0` no client veirifcation `0` no client verification
`1` ssl.CERT_OPTIONAL `1` ssl.CERT_OPTIONAL
`2` ssl.CERT_REQUIRED `2` ssl.CERT_REQUIRED
=========== =========================== =========== ===========================