Loading...

XML

Word

Printable

Type: Task
Resolution: Done
Priority: P2: Important
Fix Version/s: 6.2.0 Alpha
Affects Version/s: 6.2
Component/s: Network: HTTP
Labels:
None

Platform/s:

All
Story Points:
5
Commits:
69982182a394618d4f121d2938d7d76196fe78f6 (qt/qtbase/dev)
Sprint:
Qt6_Foundation_Sprint 34

Preferably on a per-request basis it should be possible to set the minimum size before the archive bomb checker kicks in. Currently it's 10MB, but for a 'trusted website' users may want to increase it if they know some files may have 'suspicious' decompression ratios. Or they know the systems their code will run on is guaranteed to have more RAM available than this so decompressing e.g. >100MB of an archive bomb would not be considered a problem.

resulted from

QTBUG-91392 ProtocolFailure with certain HTTP requests to transmission-daemon

Closed

- Issue Only
- Show All Reviews
- Show Open Reviews
- Show All Issues
- Show Open Issues

For Gerrit Dashboard: QTBUG-91870
#	Subject	Branch	Project	Status	CR	V
350325,5	QNetworkRequest: Add API to set a minimum archive bomb size	dev	qt/qtbase	Status: MERGED	+2	0

Assignee:: Mårten Nordheim

Reporter:: Mårten Nordheim

PM Owner:: Vladimir Minenko

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 16 Mar '21 10:56

Updated:: 31 May '21 18:17

Resolved:: 31 May '21 18:17

There are no open Gerrit changes

Show There is 1 closed Gerrit change

Hide There is 1 closed Gerrit change

QNetworkRequest: Add API to set a minimum archive bomb size: Gerrit Review:

Details

Description

Attachments

Issue Links

Gerrit Reviews

Activity

People

Dates

Gerrit Reviews