Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Preview: bugfix release v22.1.0 #2

Closed
wants to merge 34 commits into from
Closed

Preview: bugfix release v22.1.0 #2

wants to merge 34 commits into from

Conversation

pajod
Copy link
Owner

@pajod pajod commented Jul 31, 2024
edited
Loading

The following PRs merge fine. I recommend these go into a 22.1.0 bugfix release.

OUTSTANDING PROBLEM: 3210 need rebase, it was meant to be used on top of 3127 initially, right now git merges it fine but the code is inappropriate.

Please do not actually octopus merge though, sequential merges produce clearer output in common git tools. Created using this script:

#!/bin/sh
# assuming .git/config fetches pull requests from GitHub, e.g:
# [remote "benoitc"]
#         url = https://github.com/benoitc/gunicorn.git
#         fetch = +refs/heads/*:refs/remotes/benoitc/*
#         fetch = +refs/pull/*/head:refs/remotes/benoitc/pr/*
set -e
echo "preparing branch"
git checkout -B integration-v22.1.0 benoitc/master
git reset --hard benoitc/master
echo "octopus merge"
git merge --verbose --no-edit benoitc/pr/3217 benoitc/pr/3110 benoitc/pr/3157 \
 benoitc/pr/3192 benoitc/pr/3210 benoitc/pr/3253 benoitc/pr/3254 benoitc/pr/3255 \
 benoitc/pr/3257 benoitc/pr/3258
echo "version commit"
sed -i -e 's/22, 0, 0/22, 1, 0/' gunicorn/__init__.py
git commit -m "bump version 22.1.0" -- gunicorn/__init__.py
echo "building"
pip install -U build
python -m build
echo "searching for expected file in sdist"
tar -tf dist/gunicorn-22.1.0.tar.gz  | grep -m 1 gunicorn/__main__.py
echo "searching for unexpected file in sdist"
tar -tf dist/gunicorn-22.1.0.tar.gz  | grep -m 1 docs/build || echo 'none found (good!)'
echo "done"

sylt and others added 30 commits July 3, 2024 23:33
@sylt
workers/gthread: Remove locks + one event queue + general cleanup
36bcf51 
The main purpose is to remove complexity from gthread by:

* Removing the lock for handling self._keep and self.poller. This is
  possible since we now do all such manipulation on the main thread
  instead. When a connection is done, it posts a callback through the
  PollableMethodCaller which gets executed on the main thread.

* Having a single event queue (self.poller), as opposed to also
  managing a set of futures. This fixes benoitc#3146 (although there are
  more minimal ways of doing it).

There are other more minor things as well:

* Renaming some variables, e.g. self._keep to self.keepalived_conns.
* Remove self-explanatory comments (what the code does, not why).
* Just decide that socket is blocking.
* Use time.monotonic() for timeouts in gthread.

Some complexity has been added to the shutdown sequence, but hopefully
for good reason: it's to make sure that all already accepted
connections are served within the grace period.
@pajod
fcntl(fd, FD_CLOEXEC) => os.set_inheritable(fd, False)
db6c48f
@pajod
fcntl(fd, O_NONBLOCK) => os.set_blocking(fd, False)
efe2c6f
@pajod
doc: remove mentions of no longer directly referenced fcntl
bc4fc46
@pajod
update docs
e3fa50d
@pajod
forbid lone CR/LF and NUL in headers
eda9d45 
New parser rule: refuse HTTP requests where a header field value
contains characters that
a) should never appear there in the first place,
b) might have lead to incorrect treatment in a proxy in front, and
c) might lead to unintended behaviour in applications.

From RFC 9110 section 5.5:
"Field values containing CR, LF, or NUL characters are invalid and
dangerous, due to the varying ways that implementations might parse
and interpret those characters; a recipient of CR, LF, or NUL within
a field value MUST either reject the message or replace each of those
characters with SP before further processing or forwarding of that
message."
@pajod
whitespace handling in header field values
8fdb839 
Strip whitespace also *after* header field value.

Intoduce a default-off option to simply refuse obsolete
header folding. While we are at it, explicitly handle recently
introduced http error classes with intended status code.
@pajod
refuse empty request-target in HTTP request
9ca4f1f 
A single slash is valid, but nothing at all can be safely refused.

Python stdlib explicitly tells us it will not perform validation.
https://docs.python.org/3/library/urllib.parse.html#url-parsing-security
There are *four* `request-target` forms in rfc9112, none of them can be empty.
@pajod
modify inotify import branching
2cbf9e7 
just to ease static code analysis, no functional change intended
@pajod
pylint: shut up about method-scope cyclic import
b8fcabf
@pajod
no docs/build in sdist
4b48ebe 
alternate spelling _build covers new defaults of regenerated sphinx Makefile
@pajod
docs: https-capable sphinx homepage entry point
2669016
@pajod
docs: clarify Makefile is generated
7c3e9c9
@pajod
forbid lone CR/LF and NUL in headers (docs)
70a1e43
@pajod
CI: verify docs up to date
c7ded1c
@pajod
docs: unresolved reference (the reference is not named after the clas…
75fd202 
…s name)
@pajod
doc: news for 2024
6a1f284
@pajod
re-apply typo fix from 628a0bc
2152f3d
@pajod
Exempt SCRIPT_NAME from newly introduced --header-map treatment
5aff4a4
@pajod
Configurable list of forwarder headers
07389be
@pajod
undocumented allow-all for forwarder-headers
9a69eda
@pajod
docs: explain trouble with underscores in headers
14b6b43
@pajod
docs: forwarder-headers is list, not mapping
3c7bb99
@pajod
CI: test against Pylint 3.x
fe52f39 
Pylint 3.0 is the first version to officially support Python 12
@pajod
docs: remove references to EoL software
427d9eb 
Debian buster EoL since 2022-09-10
@pajod
tell pylint if/elif covers all intended cases
46cbe40
@pajod
lint: ignore import/method name clash
a6a66df
@pajod
lint: stop messing with gid
63d0010
@pajod
lint: stop linting against tornado<5
03b8356
@pajod
lint: tighter scope of ignores
c613240
@pajod
gracefully handle chunked encoding missing size
a3d130a 
Treat it the same as invalid characters where size should be.
@pajod
chunked encoding: example invalid requests
cabc666
@pajod
Merge remote-tracking branches 'benoitc/pr/3217', 'benoitc/pr/3110', …
998a078 
…'benoitc/pr/3157', 'benoitc/pr/3192', 'benoitc/pr/3210', 'benoitc/pr/3253', 'benoitc/pr/3254', 'benoitc/pr/3255', 'benoitc/pr/3257' and 'benoitc/pr/3258' into integration-v22.1.0
@pajod
bump version 22.1.0
2443d33
@pajod pajod closed this Aug 14, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@pajod @sylt