Closed Bug 1212600 Opened 9 years ago Closed 9 years ago

No upper limit on digest256 list file size

Tracking

()

Status:

RESOLVED FIXED

Milestone:

mozilla43

Tracking Flags:

Tracking

Status

firefox48

---

fixed

People

(Reporter: mwobensmith, Assigned: dimi)

References

Details

(Whiteboard: tpe-seceng)

Attachments

(1 file)

MozReview Request: Bug 1212600 - No upper limit on digest256 list file size. r=francois 9 years ago Dimi Lee [:dimi] (deleted), text/x-review-board-request	francois : review+ gcp : review+	Details

Matt Wobensmith [:mwobensmith][:matt:]

Reporter

Description

•

9 years ago

Some error/boundary tests revealed that Firefox accepted and parsed an 88mb list file. We don't anticipate ever supporting a list file that big, and in fact would like to limit the list size to something more reasonable, such as 32mb. As per discussion with François, we'd probably want to reject this condition at download time, parse time, or both.

François Marier [:francois]

Updated

•

9 years ago

Blocks: 1149867

Component: DOM: Security → Safe Browsing

Product: Core → Toolkit

Summary: No upper limit on shaver list file size → No upper limit on digest256 list file size

Matt Wobensmith [:mwobensmith][:matt:]

Reporter

Comment 1

•

9 years ago

Updated

•

9 years ago

Assignee: francois → nobody

Whiteboard: tpe-seceng

Dimi Lee [:dimi]

Assignee

Updated

•

9 years ago

Assignee: nobody → dlee

Dimi Lee [:dimi]

Assignee

Comment 2

•

9 years ago

Attached file MozReview Request: Bug 1212600 - No upper limit on digest256 list file size. r=francois (deleted) — Details

Review commit: https://reviewboard.mozilla.org/r/42765/diff/#index_header See other reviews: https://reviewboard.mozilla.org/r/42765/

Attachment #8735383 - Flags: review?(francois)

François Marier [:francois]

Comment 3

•

9 years ago

Comment on attachment 8735383 [details] MozReview Request: Bug 1212600 - No upper limit on digest256 list file size. r=francois https://reviewboard.mozilla.org/r/42765/#review39233

Attachment #8735383 - Flags: review?(francois) → review+

François Marier [:francois]

Comment 4

•

9 years ago

Comment on attachment 8735383 [details] MozReview Request: Bug 1212600 - No upper limit on digest256 list file size. r=francois gcp, does that look reasonable to you too?

Attachment #8735383 - Flags: review?(gpascutto)

Gian-Carlo Pascutto [:gcp]

Comment 5

•

9 years ago

Comment on attachment 8735383 [details] MozReview Request: Bug 1212600 - No upper limit on digest256 list file size. r=francois https://reviewboard.mozilla.org/r/42765/#review39479 Looks fine, but we should consider gathering these limits together. (i.e. this + MAX_CHUNK_SIZE, MAX_CHUNK_RANGE, etc)

Attachment #8735383 - Flags: review?(gpascutto) → review+

Dimi Lee [:dimi]

Assignee

Updated

•

9 years ago

Keywords: checkin-needed

Pulsebot

Comment 6

•

9 years ago

https://hg.mozilla.org/integration/fx-team/rev/7c857bd36bc2

Keywords: checkin-needed

Wes Kocher (:KWierso) (Not reading bugmail; email directly if needed)

Comment 7

•

9 years ago

bugherder

https://hg.mozilla.org/mozilla-central/rev/7c857bd36bc2

Status: NEW → RESOLVED

Closed: 9 years ago

status-firefox48: --- → fixed

Resolution: --- → FIXED

You need to log in before you can comment on or make changes to this bug.

Bugzilla

No upper limit on digest256 list file size

Categories

(Toolkit :: Safe Browsing, defect)

Tracking

()

People

(Reporter: mwobensmith, Assigned: dimi)

References

Details

(Whiteboard: tpe-seceng)

Crash Data

Security

(public)

User Story

Attachments

(1 file)

Description

Updated

Comment 1

Updated

Updated

Comment 2

Comment 3

Comment 4

Comment 5

Updated

Comment 6

Comment 7

Attachment

General

Description

File Name

Content Type