Benoit Chesneau
112d5353c1
fix: enforce proxy_allow_ips and tighten PROXY parsing in ASGI
...
Three findings against the ASGI PROXY protocol path:
- High: an untrusted peer could send a PROXY v1/v2 header and have the
client address surfaced to the app. _setup_callback_parser now passes
proxy_protocol='off' to the parser when the peer is not in
proxy_allow_ips. _effective_peername adds a defensive re-check.
- Medium: PROXY v1 TCP4/TCP6 addresses were copied as strings without
validation. Validate with socket.inet_pton, mirroring the WSGI parser.
- Medium: PROXY v2 quietly mapped non-STREAM (DGRAM) protocols to
UDP4/UDP6. gunicorn is an HTTP server; reject non-STREAM with
InvalidProxyHeader, mirroring the WSGI parser.
2026-05-03 22:28:48 +02:00
..
2010-06-03 16:11:18 -04:00
2026-02-06 08:21:18 +01:00
2010-06-03 16:11:18 -04:00
2026-02-06 08:21:18 +01:00
2023-12-15 13:33:31 +01:00
2026-02-06 08:21:18 +01:00
2023-12-15 13:33:31 +01:00
2026-02-06 08:21:18 +01:00
2023-12-15 13:33:31 +01:00
2026-02-06 08:21:18 +01:00
2010-06-03 16:11:18 -04:00
2026-02-06 08:21:18 +01:00
2010-06-03 16:11:18 -04:00
2026-02-06 08:21:18 +01:00
2012-02-20 09:56:06 +01:00
2026-02-06 08:21:18 +01:00
2012-02-20 10:36:13 +01:00
2026-02-06 08:21:18 +01:00
2012-05-24 12:13:34 +02:00
2026-02-06 08:21:18 +01:00
2012-02-20 10:36:13 +01:00
2026-02-06 08:21:18 +01:00
2012-05-24 12:13:34 +02:00
2026-02-06 08:21:18 +01:00
2012-05-24 12:13:34 +02:00
2026-02-06 08:21:18 +01:00
2012-05-24 12:13:34 +02:00
2026-02-06 08:21:18 +01:00
2012-05-24 12:13:34 +02:00
2026-02-06 08:21:18 +01:00
2012-09-27 19:14:40 +02:00
2026-02-06 08:21:18 +01:00
2012-09-27 19:14:40 +02:00
2026-02-06 08:21:18 +01:00
2017-12-28 11:32:47 +03:00
2026-02-06 08:21:18 +01:00
2016-09-17 12:49:05 +03:00
2026-02-06 08:21:18 +01:00
2016-11-04 21:16:01 +03:00
2026-02-06 08:21:18 +01:00
2018-01-10 12:10:35 -08:00
2026-02-06 08:21:18 +01:00
2019-11-18 19:44:01 -05:00
2026-02-06 08:21:18 +01:00
2019-11-18 21:16:12 -05:00
2026-02-06 08:21:18 +01:00
2023-05-30 20:42:13 -05:00
2026-02-06 08:21:18 +01:00
2023-05-30 20:42:13 -05:00
2026-02-06 08:21:18 +01:00
2023-05-30 20:42:13 -05:00
2026-02-06 08:21:18 +01:00
2023-12-15 13:33:31 +01:00
2026-02-06 08:21:18 +01:00
2023-12-15 13:33:31 +01:00
2026-02-06 08:21:18 +01:00
2023-12-15 13:33:31 +01:00
2026-02-06 08:21:18 +01:00
2023-12-15 13:33:31 +01:00
2026-02-06 08:21:18 +01:00
2023-12-15 13:33:31 +01:00
2026-02-06 08:21:18 +01:00
2023-12-15 13:33:31 +01:00
2026-02-06 08:21:18 +01:00
2023-12-15 13:33:31 +01:00
2026-02-06 08:21:18 +01:00
2023-12-15 13:33:31 +01:00
2026-02-06 08:21:18 +01:00
2023-12-15 13:33:31 +01:00
2026-02-06 08:21:18 +01:00
2023-12-17 17:46:56 +01:00
2026-02-06 08:21:18 +01:00
2023-12-17 17:46:56 +01:00
2026-02-06 08:21:18 +01:00
2023-12-17 17:46:56 +01:00
2026-02-06 08:21:18 +01:00
2024-07-31 19:21:07 +02:00
2026-02-06 08:21:18 +01:00
2024-07-31 19:21:07 +02:00
2026-02-06 08:21:18 +01:00
2026-03-26 15:46:51 +01:00
2026-03-26 15:46:51 +01:00
2024-07-31 01:28:30 +02:00
2026-02-06 08:21:18 +01:00
2026-03-22 16:17:55 +01:00
2026-03-22 16:17:55 +01:00
2023-12-15 13:33:31 +01:00
2026-02-06 08:21:18 +01:00
2023-12-15 13:33:31 +01:00
2026-02-06 08:21:18 +01:00
2023-12-15 13:33:31 +01:00
2026-02-06 08:21:18 +01:00
2023-12-15 13:33:31 +01:00
2026-02-06 08:21:18 +01:00
2024-08-07 19:42:16 +02:00
2026-02-06 08:21:18 +01:00
2012-09-27 19:14:40 +02:00
2026-02-06 08:21:18 +01:00
2012-09-27 19:14:40 +02:00
2026-02-06 08:21:18 +01:00
2026-05-03 22:28:48 +02:00
2026-05-03 22:28:48 +02:00
2023-12-15 13:33:31 +01:00
2026-02-06 08:21:18 +01:00
2023-12-15 13:33:31 +01:00
2026-02-06 08:21:18 +01:00
2023-12-15 13:33:31 +01:00
2026-02-06 08:21:18 +01:00
2023-12-15 13:33:31 +01:00
2026-02-06 08:21:18 +01:00
2023-12-15 13:33:31 +01:00
2026-02-06 08:21:18 +01:00
2023-12-15 13:33:31 +01:00
2026-02-06 08:21:18 +01:00
2026-04-19 12:05:00 +02:00
2026-04-19 23:40:58 +02:00
2026-04-19 12:05:00 +02:00
2026-04-19 23:40:58 +02:00
2026-04-19 11:38:05 +02:00
2026-04-19 23:40:58 +02:00
2026-04-19 11:38:05 +02:00
2026-04-19 23:40:58 +02:00
2026-04-19 11:38:05 +02:00
2026-04-19 23:40:58 +02:00
2026-04-19 13:21:20 +02:00
2026-04-19 13:21:20 +02:00
2026-04-19 13:21:20 +02:00
2026-04-19 13:21:20 +02:00
2026-04-19 20:49:32 +02:00
2026-04-20 07:29:47 +02:00
2026-04-19 09:52:15 +02:00
2026-04-19 09:52:15 +02:00
2026-04-19 10:37:14 +02:00
2026-04-19 23:40:58 +02:00
2026-04-19 11:09:29 +02:00
2026-04-19 23:40:58 +02:00
2026-04-19 11:23:00 +02:00
2026-04-19 23:40:58 +02:00
2023-12-15 13:33:31 +01:00
2026-02-06 08:21:18 +01:00
2023-12-15 13:33:31 +01:00
2026-02-06 08:21:18 +01:00