diff options
author | Dan McGee <dan@archlinux.org> | 2011-08-25 02:58:14 +0200 |
---|---|---|
committer | Dan McGee <dan@archlinux.org> | 2011-08-25 23:09:52 +0200 |
commit | f7a3c4c8df95ad99e05dfd29c61d6877b13b09da (patch) | |
tree | 383d401a7ee8bd9d27f2a1d6a72c69c997986af6 /m4 | |
parent | 2e7d002315066400ccb1e62dacb3500fa3aa6015 (diff) | |
download | pacman-f7a3c4c8df95ad99e05dfd29c61d6877b13b09da.tar.gz pacman-f7a3c4c8df95ad99e05dfd29c61d6877b13b09da.tar.xz |
Finish large file download attack prevention
This handles the no Content-Length header problem as stated in the
comments of FS#23413. We add a quick check to the callback that will
force an abort if the downloaded data exceeds the payload size, and then
check for this error in the post-download cleanup code.
Signed-off-by: Dan McGee <dan@archlinux.org>
Diffstat (limited to 'm4')
0 files changed, 0 insertions, 0 deletions