Limit server header response length #9
No reviewers
Labels
No Label
bug
duplicate
enhancement
help wanted
invalid
question
wontfix
No Milestone
No Assignees
2 Participants
Notifications
Due Date
No due date set.
Dependencies
No dependencies set.
Reference: solderpunk/AV-98#9
Loading…
Reference in New Issue
No description provided.
Delete Branch "jprjr/AV-98:header-limit"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Hi there -
I wrote a quick "malicious" Gemini server that sends a never-ending header, it just spams the space character after writing a response code. AV-98 will keep reading and is eventually killed. On a default Linux install without security limits configured, this can consume all memory and swap before finally being killed by the OS.
The spec doesn't state a maximum length for the total header line, just a maximum length for the meta portion of the header line. This adds a maximum total length, and checks that the meta portion is <= 1024 characters.
Thanks very much for this. Good catch! I'll definitely add this to the list of things which need to be changed in the spec.