Issue 815019 link

Starred by 1 user

Issue metadata

Status:	Fixed
Owner:	kouhei@chromium.org
Closed:	Jun 2018
Cc:	kinuko@chromium.org ksakamoto@chromium.org horo@chromium.org
EstimatedDays:	----
NextAction:	----
OS:	----
Pri:	3
Type:	Bug

Blocking:
issue 803774

SignedExchangeHandler can cause browser-side DoS

Project Member Reported by horo@chromium.org, Feb 23 2018

Issue description

Currently SignedExchangeHandler stores the all response body to |original_body_string_|.
This can cause browser-side DoS.
We must fix it before shipping.

Comment 1 by horo@chromium.org, Feb 23 2018

Blocking: 803774

Comment 2 by ksakamoto@chromium.org, Jun 7 2018

Status: Fixed (was: Assigned)

Now Signed Exchange uses simpler envelope format which does not require stream parsing, and browser bounds the maximum header size.

I think we can close this.

►

Issue 815019 link

Issue metadata

SignedExchangeHandler can cause browser-side DoS

Issue description

Comment 1 by horo@chromium.org, Feb 23 2018

Comment 1 Deleted

Comment 2 by ksakamoto@chromium.org, Jun 7 2018

Comment 2 Deleted

Sign in to add a comment