search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
(parent: 3cee07d) | patch
max_body: rewrite wrappers to be safer
commitc6ffae22748bc22d5ef88fea2a3ca67f480ee74b
authorEric Wong <normalperson@yhbt.net>
Fri, 19 Nov 2010 10:19:45 +0000 (19 10:19 +0000)
committerEric Wong <normalperson@yhbt.net>
Sat, 20 Nov 2010 00:59:01 +0000 (19 16:59 -0800)
treed64947098657f2bbdbca04a6db2e43645060a223tree | snapshot (tar.gz zip)
parent3cee07d750f678af92318c14110c803be3f9b97fcommit | diff
max_body: rewrite wrappers to be safer

To avoid denial-of-service attacks, the wrappers need to
intercept requests *before* they hit the memory allocator, so we
need to reimplement the read(all) and gets cases to use
smaller buffers whenever the application does not specify one.
lib/rainbows/max_body/rewindable_wrapper.rb diff | blob | blame | history
lib/rainbows/max_body/wrapper.rb diff | blob | blame | history
t/sha1-random-size.ru diff | blob | blame | history
t/t0104-rack-input-limit-tiny.sh diff | blob | blame | history
t/t0105-rack-input-limit-bigger.sh diff | blob | blame | history
Unicorn for slow clients and sleepy apps