Make :class:~aioquic.h3.connection.H3Connection's
:meth:~aioquic.h3.connection.H3Connection.send_datagram and
:meth:~aioquic.h3.connection.H3Connection.send_push_promise methods raise an
:class:~aioquic.h3.exceptions.InvalidStreamTypeError exception if an
invalid stream ID is specified.
Improve the documentation for
:class:~aioquic.asyncio.QuicConnectionProtocol's
:meth:~aioquic.asyncio.QuicConnectionProtocol.transmit method.
Fix :meth:~datetime.datetime.utcnow deprecation warning on Python 3.12
by using cryptography_ 42.0 and timezone-aware :class:~datetime.datetime
instances when validating TLS certificates.
Build binary wheels against OpenSSL_ 3.2.0.
Ignore any non-ASCII ALPN values received.
Perform more extensive HTTP/3 header validation in
:class:~aioquic.h3.connection.H3Connection.
Fix exceptions when draining stream writers in the :doc:asyncio API <asyncio>.
Set the :class:~aioquic.quic.connection.QuicConnection idle timer according to
:rfc:9000 section 10.1.
Implement fairer stream scheduling in :class:~aioquic.quic.connection.QuicConnection
to avoid head-of-line blocking.
Only load certifi_ root certificates if none was specified in the
:class:~aioquic.quic.configuration.QuicConfiguration.
Improve padding of UDP datagrams containing Initial packets to comply with :rfc:9000
section 14.1.
Limit the number of pending connection IDs marked for retirement to prevent a possible
DoS attack.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Bumps aioquic from 0.9.25 to 1.0.0.
Changelog
Sourced from aioquic's changelog.
Commits
072eb4b
1.0.04f73f18
Limit the number of pending connection IDs marked for retirement.c32862a
Comply with RFC 9000 section 14.1 (#481)766645f
Update GitHub actions to their latest versions8b14b90
Only load certifi if none of cadata, cafile, or capath have been specified. [...ae282aa
Reformat code using latestruff
versione728bc2
Fairer stream write scheduling #125. (#475)fecdd59
Set the idle timer according to RFC 9000 section 10.1 #466. (#474)2b3d9b8
Fix stream writer draining exceptions. (#477)a5cdaa8
More H3 header validation #465. (#472)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show