2026-1-6

2026-01-06 14:18:39 +08:00
commit 5a384b694e
10345 changed files with 2050918 additions and 0 deletions
--- a/venv/Lib/site-packages/waitress-2.1.2.dist-info/INSTALLER
+++ b/venv/Lib/site-packages/waitress-2.1.2.dist-info/INSTALLER
@@ -0,0 +1 @@
+pip
--- a/venv/Lib/site-packages/waitress-2.1.2.dist-info/LICENSE.txt
+++ b/venv/Lib/site-packages/waitress-2.1.2.dist-info/LICENSE.txt
@@ -0,0 +1,44 @@
+Zope Public License (ZPL) Version 2.1
+
+A copyright notice accompanies this license document that identifies the
+copyright holders.
+
+This license has been certified as open source. It has also been designated as
+GPL compatible by the Free Software Foundation (FSF).
+
+Redistribution and use in source and binary forms, with or without
+modification, are permitted provided that the following conditions are met:
+
+1. Redistributions in source code must retain the accompanying copyright
+notice, this list of conditions, and the following disclaimer.
+
+2. Redistributions in binary form must reproduce the accompanying copyright
+notice, this list of conditions, and the following disclaimer in the
+documentation and/or other materials provided with the distribution.
+
+3. Names of the copyright holders must not be used to endorse or promote
+products derived from this software without prior written permission from the
+copyright holders.
+
+4. The right to distribute this software or to use it for any purpose does not
+give you the right to use Servicemarks (sm) or Trademarks (tm) of the
+copyright
+holders. Use of them is covered by separate agreement with the copyright
+holders.
+
+5. If any files are modified, you must cause the modified files to carry
+prominent notices stating that you changed the files and the date of any
+change.
+
+Disclaimer
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS ``AS IS'' AND ANY EXPRESSED
+OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
+OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO
+EVENT SHALL THE COPYRIGHT HOLDERS BE LIABLE FOR ANY DIRECT, INDIRECT,
+INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
+PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
+LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
+NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE,
+EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
--- a/venv/Lib/site-packages/waitress-2.1.2.dist-info/METADATA
+++ b/venv/Lib/site-packages/waitress-2.1.2.dist-info/METADATA
@@ -0,0 +1,170 @@
+Metadata-Version: 2.1
+Name: waitress
+Version: 2.1.2
+Summary: Waitress WSGI server
+Home-page: https://github.com/Pylons/waitress
+Author: Zope Foundation and Contributors
+Author-email: zope-dev@zope.org
+Maintainer: Pylons Project
+Maintainer-email: pylons-discuss@googlegroups.com
+License: ZPL 2.1
+Project-URL: Documentation, https://docs.pylonsproject.org/projects/waitress/en/latest/index.html
+Project-URL: Changelog, https://docs.pylonsproject.org/projects/waitress/en/latest/index.html#change-history
+Project-URL: Issue Tracker, https://github.com/Pylons/waitress/issues
+Keywords: waitress wsgi server http
+Classifier: Development Status :: 6 - Mature
+Classifier: Environment :: Web Environment
+Classifier: Intended Audience :: Developers
+Classifier: License :: OSI Approved :: Zope Public License
+Classifier: Programming Language :: Python
+Classifier: Programming Language :: Python :: 3
+Classifier: Programming Language :: Python :: 3.7
+Classifier: Programming Language :: Python :: 3.8
+Classifier: Programming Language :: Python :: 3.9
+Classifier: Programming Language :: Python :: 3.10
+Classifier: Programming Language :: Python :: Implementation :: CPython
+Classifier: Programming Language :: Python :: Implementation :: PyPy
+Classifier: Operating System :: OS Independent
+Classifier: Topic :: Internet :: WWW/HTTP
+Classifier: Topic :: Internet :: WWW/HTTP :: WSGI
+Requires-Python: >=3.7.0
+Description-Content-Type: text/x-rst
+License-File: LICENSE.txt
+Provides-Extra: docs
+Requires-Dist: Sphinx (>=1.8.1) ; extra == 'docs'
+Requires-Dist: docutils ; extra == 'docs'
+Requires-Dist: pylons-sphinx-themes (>=1.0.9) ; extra == 'docs'
+Provides-Extra: testing
+Requires-Dist: pytest ; extra == 'testing'
+Requires-Dist: pytest-cover ; extra == 'testing'
+Requires-Dist: coverage (>=5.0) ; extra == 'testing'
+
+Waitress
+========
+
+.. image:: https://img.shields.io/pypi/v/waitress.svg
+    :target: https://pypi.org/project/waitress/
+    :alt: latest version of waitress on PyPI
+
+.. image:: https://github.com/Pylons/waitress/workflows/Build%20and%20test/badge.svg
+    :target: https://github.com/Pylons/waitress/actions?query=workflow%3A%22Build+and+test%22
+
+.. image:: https://readthedocs.org/projects/waitress/badge/?version=master
+        :target: https://docs.pylonsproject.org/projects/waitress/en/master
+        :alt: master Documentation Status
+
+.. image:: https://img.shields.io/badge/irc-freenode-blue.svg
+        :target: https://webchat.freenode.net/?channels=pyramid
+        :alt: IRC Freenode
+
+Waitress is a production-quality pure-Python WSGI server with very acceptable
+performance. It has no dependencies except ones which live in the Python
+standard library. It runs on CPython on Unix and Windows under Python 3.7+. It
+is also known to run on PyPy 3 (version 3.7 compatible python) on UNIX. It
+supports HTTP/1.0 and HTTP/1.1.
+
+For more information, see the "docs" directory of the Waitress package or visit
+https://docs.pylonsproject.org/projects/waitress/en/latest/
+
+2.1.2
+-----
+
+Bugfix
+~~~~~~
+
+- When expose_tracebacks is enabled waitress would fail to properly encode
+  unicode thereby causing another error during error handling. See
+  https://github.com/Pylons/waitress/pull/378
+
+- Header length checking had a calculation that was done incorrectly when the
+  data was received across multple socket reads. This calculation has been
+  corrected, and no longer will Waitress send back a 413 Request Entity Too
+  Large. See https://github.com/Pylons/waitress/pull/376
+
+Security Bugfix
+~~~~~~~~~~~~~~~
+
+- in 2.1.0 a new feature was introduced that allowed the WSGI thread to start
+  sending data to the socket. However this introduced a race condition whereby
+  a socket may be closed in the sending thread while the main thread is about
+  to call select() therey causing the entire application to be taken down.
+  Waitress will no longer close the socket in the WSGI thread, instead waking
+  up the main thread to cleanup. See https://github.com/Pylons/waitress/pull/377
+
+2.1.1
+-----
+
+Security Bugfix
+~~~~~~~~~~~~~~~
+
+- Waitress now validates that chunked encoding extensions are valid, and don't
+  contain invalid characters that are not allowed. They are still skipped/not
+  processed, but if they contain invalid data we no longer continue in and
+  return a 400 Bad Request. This stops potential HTTP desync/HTTP request
+  smuggling. Thanks to Zhang Zeyu for reporting this issue. See
+  https://github.com/Pylons/waitress/security/advisories/GHSA-4f7p-27jc-3c36
+
+- Waitress now validates that the chunk length is only valid hex digits when
+  parsing chunked encoding, and values such as ``0x01`` and ``+01`` are no
+  longer supported. This stops potential HTTP desync/HTTP request smuggling.
+  Thanks to Zhang Zeyu for reporting this issue. See
+  https://github.com/Pylons/waitress/security/advisories/GHSA-4f7p-27jc-3c36
+
+- Waitress now validates that the Content-Length sent by a remote contains only
+  digits in accordance with RFC7230 and will return a 400 Bad Request when the
+  Content-Length header contains invalid data, such as ``+10`` which would
+  previously get parsed as ``10`` and accepted. This stops potential HTTP
+  desync/HTTP request smuggling Thanks to Zhang Zeyu for reporting this issue. See
+  https://github.com/Pylons/waitress/security/advisories/GHSA-4f7p-27jc-3c36
+
+2.1.0
+-----
+
+Python Version Support
+~~~~~~~~~~~~~~~~~~~~~~
+
+- Python 3.6 is no longer supported by Waitress
+
+- Python 3.10 is fully supported by Waitress
+
+Bugfix
+~~~~~~
+
+- ``wsgi.file_wrapper`` now sets the ``seekable``, ``seek``, and ``tell``
+  attributes from the underlying file if the underlying file is seekable. This
+  allows WSGI middleware to implement things like range requests for example
+
+  See https://github.com/Pylons/waitress/issues/359 and
+  https://github.com/Pylons/waitress/pull/363
+
+- In Python 3 ``OSError`` is no longer subscriptable, this caused failures on
+  Windows attempting to loop to find an socket that would work for use in the
+  trigger.
+
+  See https://github.com/Pylons/waitress/pull/361
+
+- Fixed an issue whereby ``BytesIO`` objects were not properly closed, and
+  thereby would not get cleaned up until garbage collection would get around to
+  it.
+
+  This led to potential for random memory spikes/memory issues, see
+  https://github.com/Pylons/waitress/pull/358 and
+  https://github.com/Pylons/waitress/issues/357 .
+
+  With thanks to Florian Schulze for testing/vaidating this fix!
+
+Features
+~~~~~~~~
+
+- When the WSGI app starts sending data to the output buffer, we now attempt to
+  send data directly to the socket. This avoids needing to wake up the main
+  thread to start sending data. Allowing faster transmission of the first byte.
+  See https://github.com/Pylons/waitress/pull/364
+
+  With thanks to Michael Merickel for being a great rubber ducky!
+
+- Add REQUEST_URI to the WSGI environment.
+
+  REQUEST_URI is similar to ``request_uri`` in nginx. It is a string that
+  contains the request path before separating the query string and
+  decoding ``%``-escaped characters. 
--- a/venv/Lib/site-packages/waitress-2.1.2.dist-info/RECORD
+++ b/venv/Lib/site-packages/waitress-2.1.2.dist-info/RECORD
@@ -0,0 +1,41 @@
+../../Scripts/waitress-serve.exe,sha256=eRYF9NqMCq6Q_A4UN_aYoCzuuXm75m-Y6QASN6w3WqA,108364
+waitress-2.1.2.dist-info/INSTALLER,sha256=zuuue4knoyJ-UwPPXg8fezS7VCrXJQrAP7zeNuwvFQg,4
+waitress-2.1.2.dist-info/LICENSE.txt,sha256=PmcdsR32h1FswdtbPWXkqjg-rKPCDOo_r1Og9zNdCjw,2070
+waitress-2.1.2.dist-info/METADATA,sha256=D9wgJMxaEAHSpOpioR1D_VcLwRZivGmb-XtiYZQJ7aU,7026
+waitress-2.1.2.dist-info/RECORD,,
+waitress-2.1.2.dist-info/REQUESTED,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+waitress-2.1.2.dist-info/WHEEL,sha256=G16H4A3IeoQmnOrYV4ueZGKSjhipXx8zc8nu9FGlvMA,92
+waitress-2.1.2.dist-info/entry_points.txt,sha256=tDR8epG2g4I70Lak9d-1qTHbCfBzZd5FDEScAkVuH_E,106
+waitress-2.1.2.dist-info/top_level.txt,sha256=_kFnXYtDXvRWHSXprH53h56AM2jDfY-Y7sgIakVEImI,9
+waitress/__init__.py,sha256=XucLsghawSMTlUAAZ6ToN5qKZyJNv3iolYYgx812a5o,1370
+waitress/__main__.py,sha256=52WJIrYKadsGi0G93jEMCfaBXaVQluHy4XBmfTLT-6o,75
+waitress/__pycache__/__init__.cpython-312.pyc,,
+waitress/__pycache__/__main__.cpython-312.pyc,,
+waitress/__pycache__/adjustments.cpython-312.pyc,,
+waitress/__pycache__/buffers.cpython-312.pyc,,
+waitress/__pycache__/channel.cpython-312.pyc,,
+waitress/__pycache__/compat.cpython-312.pyc,,
+waitress/__pycache__/parser.cpython-312.pyc,,
+waitress/__pycache__/proxy_headers.cpython-312.pyc,,
+waitress/__pycache__/receiver.cpython-312.pyc,,
+waitress/__pycache__/rfc7230.cpython-312.pyc,,
+waitress/__pycache__/runner.cpython-312.pyc,,
+waitress/__pycache__/server.cpython-312.pyc,,
+waitress/__pycache__/task.cpython-312.pyc,,
+waitress/__pycache__/trigger.cpython-312.pyc,,
+waitress/__pycache__/utilities.cpython-312.pyc,,
+waitress/__pycache__/wasyncore.cpython-312.pyc,,
+waitress/adjustments.py,sha256=BJZRp58HkNNpss9ciu7hImORd2tsZPObjq_N4lkCkog,18463
+waitress/buffers.py,sha256=VNnalAyjrQgDPHtKwQnrYwnjmuDB5tOz6sri-sK6p24,9404
+waitress/channel.py,sha256=aG2MsWF1ohan7AZjNKg8_UcII_n61N4VVjzW_grHqOY,19004
+waitress/compat.py,sha256=ye7vBv0SLXicjJ62ALYrl863MUwis9PKqbhsjiASSSA,867
+waitress/parser.py,sha256=_gTudwcH26Nb6wkUwgnowg5mT2qLOrnt4YkspAD45ZA,15570
+waitress/proxy_headers.py,sha256=658TlTIuDIss_A3BdTSmImjB8wSj5LzshfkYULiATKw,11811
+waitress/receiver.py,sha256=omcWVjWq61xQ3HmEi6p1OGLsv2RaAym10NQ-suHCncM,5899
+waitress/rfc7230.py,sha256=D1_kVeCJa3G-u4jAniZieFTMe3xrMavTjQDEbj9SBfo,2525
+waitress/runner.py,sha256=a9bNwYAxl_rgXSi--JVQpwvDIArwuZBGgVDxFMwuamE,9334
+waitress/server.py,sha256=DeNr_Ge4bePVTvTkhMxkbHu_pbwLB5aY-ZNemyuNAms,13489
+waitress/task.py,sha256=-ICjfzGBS0x7IddtnLq8wIOdvN_hFotE-WnAkqxoSGw,21665
+waitress/trigger.py,sha256=mPyHW_yUC3Yn-ibIIWwTWYqRe0DJeuaTK6ivOY2o_3E,7811
+waitress/utilities.py,sha256=ZKyQXjQrcyhS-SCbKUo9sb8WvrRMWYSe-Sb6WGsR16Y,6297
+waitress/wasyncore.py,sha256=hanHyxAAtdbbjfcp9dh056HzJoyfY1eL_sJeMQzYxOY,21039
--- a/venv/Lib/site-packages/waitress-2.1.2.dist-info/REQUESTED
+++ b/venv/Lib/site-packages/waitress-2.1.2.dist-info/REQUESTED
--- a/venv/Lib/site-packages/waitress-2.1.2.dist-info/WHEEL
+++ b/venv/Lib/site-packages/waitress-2.1.2.dist-info/WHEEL
@@ -0,0 +1,5 @@
+Wheel-Version: 1.0
+Generator: bdist_wheel (0.37.1)
+Root-Is-Purelib: true
+Tag: py3-none-any
+
--- a/venv/Lib/site-packages/waitress-2.1.2.dist-info/entry_points.txt
+++ b/venv/Lib/site-packages/waitress-2.1.2.dist-info/entry_points.txt
@@ -0,0 +1,5 @@
+[console_scripts]
+waitress-serve = waitress.runner:run
+
+[paste.server_runner]
+main = waitress:serve_paste
--- a/venv/Lib/site-packages/waitress-2.1.2.dist-info/top_level.txt
+++ b/venv/Lib/site-packages/waitress-2.1.2.dist-info/top_level.txt
@@ -0,0 +1 @@
+waitress