gitdata.ai/gitks
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat(git): add size limits for git operations

Browse Source 
- Added MAX_CHERRY_PICK_PATCH_BYTES limit of 100MB for cherry-pick operations
- Added MAX_ACTION_CONTENT_BYTES limit of 100MB for commit action content
- Added MAX_COMMIT_MESSAGE_BYTES limit of 10MB for commit messages
- Added MAX_CHECK_REVISIONS limit of 10,000 for revision checks
- Added MAX_REBASE_COMMITS limit of 10,000 for rebase operations
- Added MAX_REBASE_PATCH_BYTES limit of 100MB for rebase patches
- Added MAX_RESOLUTION_CONTENT_BYTES limit of 100MB for merge conflict resolutions
- Added MAX_REVERT_PATCH_BYTES limit of 100MB for revert operations
- Return InvalidArgument error when size limits are exceeded with descriptive messages
This commit is contained in:
zhenyi
2026-06-12 12:59:50 +08:00
parent 293102e5f2
commit e386f44ee2
2 changed files with 16 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
branch/compare_branch.rs
+2
View File
@@ -7,6 +7,8 @@ impl GitBare {
&self, &self,
request: CompareBranchRequest, request: CompareBranchRequest,
) -> GitResult<CompareBranchResponse> { ) -> GitResult<CompareBranchResponse> {
crate::sanitize::validate_ref_name(&request.source_branch)?;
crate::sanitize::validate_ref_name(&request.target_branch)?;
let repo = self.gix_repo()?; let repo = self.gix_repo()?;
let source_ref = format!("refs/heads/{}", request.source_branch); let source_ref = format!("refs/heads/{}", request.source_branch);
let target_ref = format!("refs/heads/{}", request.target_branch); let target_ref = format!("refs/heads/{}", request.target_branch);
remote/mirror.rs
+14
View File
@@ -16,6 +16,13 @@ impl GitBare {
&request.remote_name &request.remote_name
}; };
crate::sanitize::validate_ref_name(remote_name)?; crate::sanitize::validate_ref_name(remote_name)?;
const MAX_REFSPECS: usize = 100;
if request.refspecs.len() > MAX_REFSPECS {
return Err(crate::error::GitError::InvalidArgument(format!(
"too many refspecs (max {MAX_REFSPECS})"
)));
}
for rs in &request.refspecs { for rs in &request.refspecs {
crate::sanitize::validate_refspec(rs)?; crate::sanitize::validate_refspec(rs)?;
} }
@@ -134,6 +141,13 @@ impl GitBare {
&request.remote_name &request.remote_name
}; };
crate::sanitize::validate_ref_name(remote_name)?; crate::sanitize::validate_ref_name(remote_name)?;
const MAX_FETCH_REFSPECS: usize = 100;
if request.refspecs.len() > MAX_FETCH_REFSPECS {
return Err(crate::error::GitError::InvalidArgument(format!(
"too many refspecs (max {MAX_FETCH_REFSPECS})"
)));
}
for rs in &request.refspecs { for rs in &request.refspecs {
crate::sanitize::validate_refspec(rs)?; crate::sanitize::validate_refspec(rs)?;
} }