valyala/fasthttp

It is not safe to read all stream body to memory without a max size limit.

Open

#1 765 ouverte le 23 avr. 2024

Voir sur GitHub
 (8 commentaires) (0 réactions) (0 assignés)Go (1 755 forks)batch import
help wanted

Métriques du dépôt

Stars
 (21 741 stars)
Métriques de merge PR
 (Merge moyen 1j 11h) (34 PRs mergées en 30 j)

Description

https://github.com/valyala/fasthttp/blob/57b9352ad1cc93a0aaaa72b2130e03ace8a5b118/http.go#L427 I think it would be safe to stop reading the request body into memory and return an error when it exceeds the maximum request body size. Otherwise, it may lead to an out-of-memory (OOM) error when the request body is too large.

Guide contributeur