Mikaela/Limnoria
1
0
Fork 0
mirror of https://github.com/Mikaela/Limnoria.git synced 2025-02-03 08:04:07 +01:00
Code Issues Projects Releases Wiki Activity

Web: Disable the fetch sandbox on Python versions with the _MAXHEADERS fix.

Browse Source 
Partial fix to GH-1271.
This commit is contained in:
Valentin Lorentz 2016-11-11 12:12:40 +01:00
parent 0b93ab60a0
commit 9c57199838
1 changed files with 37 additions and 20 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

57
plugins/Web/plugin.py
View File

@ -46,9 +46,11 @@ _ = PluginInternationalization('Web')
if minisix.PY3: if minisix.PY3:
from html.parser import HTMLParser from html.parser import HTMLParser
from html.entities import entitydefs from html.entities import entitydefs
import http.client as http_client
else: else:
from HTMLParser import HTMLParser from HTMLParser import HTMLParser
from htmlentitydefs import entitydefs from htmlentitydefs import entitydefs
import httplib as http_client
class Title(utils.web.HtmlToText): class Title(utils.web.HtmlToText):
entitydefs = entitydefs.copy() entitydefs = entitydefs.copy()
@ -90,26 +92,41 @@ class DelayedIrc:
assert name not in ('reply', 'error', '_irc', '_msg', '_replies') assert name not in ('reply', 'error', '_irc', '_msg', '_replies')
return getattr(self._irc, name) return getattr(self._irc, name)
def fetch_sandbox(f): if hasattr(http_client, '_MAXHEADERS'):
"""Runs a command in a forked process with limited memory resources def fetch_sandbox(f):
to prevent memory bomb caused by specially crafted http responses.""" """Runs a command in a forked process with limited memory resources
def process(self, irc, msg, *args, **kwargs): to prevent memory bomb caused by specially crafted http responses.
delayed_irc = DelayedIrc(irc)
f(self, delayed_irc, msg, *args, **kwargs) On CPython versions with support for limiting the number of headers,
return delayed_irc._replies this is the identity function"""
def newf(self, irc, *args): return f
try: else:
replies = commands.process(process, self, irc, *args, # For the following CPython versions (as well as the matching Pypy
timeout=10, heap_size=10*1024*1024, # versions):
pn=self.name(), cn=f.__name__) # * 2.6 before 2.6.9
except (commands.ProcessTimeoutError, MemoryError): # * 2.7 before 2.7.9
raise utils.web.Error(_('Page is too big or the server took ' # * 3.2 before 3.2.6
'too much time to answer the request.')) # * 3.3 before 3.3.3
else: def fetch_sandbox(f):
for (method, args, kwargs) in replies: """Runs a command in a forked process with limited memory resources
getattr(irc, method)(*args, **kwargs) to prevent memory bomb caused by specially crafted http responses."""
newf.__doc__ = f.__doc__ def process(self, irc, msg, *args, **kwargs):
return newf delayed_irc = DelayedIrc(irc)
f(self, delayed_irc, msg, *args, **kwargs)
return delayed_irc._replies
def newf(self, irc, *args):
try:
replies = commands.process(process, self, irc, *args,
timeout=10, heap_size=10*1024*1024,
pn=self.name(), cn=f.__name__)
except (commands.ProcessTimeoutError, MemoryError):
raise utils.web.Error(_('Page is too big or the server took '
'too much time to answer the request.'))
else:
for (method, args, kwargs) in replies:
getattr(irc, method)(*args, **kwargs)
newf.__doc__ = f.__doc__
return newf
def catch_web_errors(f): def catch_web_errors(f):
"""Display a nice error instead of "An error has occurred".""" """Display a nice error instead of "An error has occurred"."""