Skip to content

Commit

Permalink
update docs
Browse files Browse the repository at this point in the history
re-apply typo fix from 628a0bc
reflect removal of setting from 555d2fa
  • Loading branch information
pajod committed Aug 7, 2024
1 parent ba46685 commit 1357aa7
Show file tree
Hide file tree
Showing 2 changed files with 5 additions and 31 deletions.
32 changes: 3 additions & 29 deletions docs/source/settings.rst
Original file line number Diff line number Diff line change
Expand Up @@ -210,7 +210,7 @@ H protocol
s status
B response length
b response length or ``'-'`` (CLF format)
f referer
f referrer (note: header is ``referer``)
a user agent
T request time in seconds
M request time in milliseconds
Expand Down Expand Up @@ -314,7 +314,7 @@ file format.

The log config dictionary to use, using the standard Python
logging module's dictionary configuration format. This option
takes precedence over the :ref:`logconfig` and :ref:`logConfigJson` options,
takes precedence over the :ref:`logconfig` and :ref:`logconfig-json` options,
which uses the older file configuration format and JSON
respectively.

Expand Down Expand Up @@ -569,7 +569,7 @@ Whether client certificate is required (see stdlib ssl module's)
=========== ===========================
--cert-reqs Description
=========== ===========================
`0` no client veirifcation
`0` no client verification
`1` ssl.CERT_OPTIONAL
`2` ssl.CERT_REQUIRED
=========== ===========================
Expand Down Expand Up @@ -1504,32 +1504,6 @@ on a proxy in front of Gunicorn.

.. versionadded:: 22.0.0

.. _tolerate-dangerous-framing:

``tolerate_dangerous_framing``
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

**Command line:** ``--tolerate-dangerous-framing``

**Default:** ``False``

Process requests with both Transfer-Encoding and Content-Length

This is known to induce vulnerabilities, but not strictly forbidden by RFC9112.

In any case, the connection is closed after the malformed request,
as it is unclear if and at which boundary additional requests start.

Use with care and only if necessary.
Temporary; will be changed or removed in a future version.

.. versionadded:: 22.0.0
.. versionchanged: 22.1.0
The newly added rejection of invalid and dangerous characters CR, LF and NUL in
header field values is also controlled with this setting. rfc9110 permits both
rejecting and SP-replacing. With this option set, Gunicorn passes the field value
unchanged. With this option unset, Gunicorn rejects the request.
Server Socket
-------------

Expand Down
4 changes: 2 additions & 2 deletions gunicorn/config.py
Original file line number Diff line number Diff line change
Expand Up @@ -1395,7 +1395,7 @@ class AccessLogFormat(Setting):
s status
B response length
b response length or ``'-'`` (CLF format)
f referer
f referrer (note: header is ``referer``)
a user agent
T request time in seconds
M request time in milliseconds
Expand Down Expand Up @@ -2154,7 +2154,7 @@ class CertReqs(Setting):
=========== ===========================
--cert-reqs Description
=========== ===========================
`0` no client veirifcation
`0` no client verification
`1` ssl.CERT_OPTIONAL
`2` ssl.CERT_REQUIRED
=========== ===========================
Expand Down

0 comments on commit 1357aa7

Please sign in to comment.