Add a maximum size for well-known lookups. (#8950)

2025-05-03 02:34:50 -04:00 · 2020-12-16 17:25:24 -05:00 · 2020-12-16 17:25:24 -05:00 · ff5c4da128
commit ff5c4da128
parent e1b8e37f93
5 changed files with 80 additions and 18 deletions
--- a/synapse/http/client.py
+++ b/synapse/http/client.py
@ -720,11 +720,14 @@ class SimpleHttpClient:

        try:
            length = await make_deferred_yieldable(
-                readBodyToFile(response, output_stream, max_size)
+                read_body_with_max_size(response, output_stream, max_size)
+            )
+        except BodyExceededMaxSize:
+            SynapseError(
+                502,
+                "Requested file is too large > %r bytes" % (max_size,),
+                Codes.TOO_LARGE,
            )
-        except SynapseError:
-            # This can happen e.g. because the body is too large.
-            raise
        except Exception as e:
            raise SynapseError(502, ("Failed to download remote body: %s" % e)) from e

@ -748,7 +751,11 @@ def _timeout_to_request_timed_out_error(f: Failure):
    return f


-class _ReadBodyToFileProtocol(protocol.Protocol):
+class BodyExceededMaxSize(Exception):
+    """The maximum allowed size of the HTTP body was exceeded."""
+
+
+class _ReadBodyWithMaxSizeProtocol(protocol.Protocol):
    def __init__(
        self, stream: BinaryIO, deferred: defer.Deferred, max_size: Optional[int]
    ):
@ -761,13 +768,7 @@ class _ReadBodyToFileProtocol(protocol.Protocol):
        self.stream.write(data)
        self.length += len(data)
        if self.max_size is not None and self.length >= self.max_size:
-            self.deferred.errback(
-                SynapseError(
-                    502,
-                    "Requested file is too large > %r bytes" % (self.max_size,),
-                    Codes.TOO_LARGE,
-                )
-            )
+            self.deferred.errback(BodyExceededMaxSize())
            self.deferred = defer.Deferred()
            self.transport.loseConnection()

@ -782,12 +783,15 @@ class _ReadBodyToFileProtocol(protocol.Protocol):
            self.deferred.errback(reason)


-def readBodyToFile(
+def read_body_with_max_size(
    response: IResponse, stream: BinaryIO, max_size: Optional[int]
 ) -> defer.Deferred:
    """
    Read a HTTP response body to a file-object. Optionally enforcing a maximum file size.

+    If the maximum file size is reached, the returned Deferred will resolve to a
+    Failure with a BodyExceededMaxSize exception.
+
    Args:
        response: The HTTP response to read from.
        stream: The file-object to write to.
@ -798,7 +802,7 @@ def readBodyToFile(
    """

    d = defer.Deferred()
-    response.deliverBody(_ReadBodyToFileProtocol(stream, d, max_size))
+    response.deliverBody(_ReadBodyWithMaxSizeProtocol(stream, d, max_size))
    return d