summaryrefslogtreecommitdiff
path: root/lib/rack/utils.rb
diff options
context:
space:
mode:
Diffstat (limited to 'lib/rack/utils.rb')
-rw-r--r--lib/rack/utils.rb8
1 files changed, 5 insertions, 3 deletions
diff --git a/lib/rack/utils.rb b/lib/rack/utils.rb
index e7d6a131..c00cec25 100644
--- a/lib/rack/utils.rb
+++ b/lib/rack/utils.rb
@@ -22,7 +22,9 @@ module Rack
class << self
attr_accessor :default_query_parser
end
- self.default_query_parser = QueryParser::DEFAULT
+ # The default number of bytes to allow parameter keys to take up.
+ # This helps prevent a rogue client from flooding a Request.
+ self.default_query_parser = QueryParser.make_default(65536)
# URI escapes. (CGI style space to +)
def escape(s)
@@ -55,11 +57,11 @@ module Rack
self.multipart_part_limit = (ENV['RACK_MULTIPART_PART_LIMIT'] || ENV['RACK_MULTIPART_LIMIT'] || 128).to_i
def self.key_space_limit
- default_query_parser.params_class.limit
+ default_query_parser.key_space_limit
end
def self.key_space_limit=(v)
- default_query_parser.params_class.limit = v
+ self.default_query_parser = self.default_query_parser.new(v)
end
def parse_query(qs, d = nil, &unescaper)
View Lorry Controller Status