copyleftie/gajim-plural
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity

let's freeze even less

Browse source
This commit is contained in:
Yann Leboulanger 2007-02-03 18:06:47 +00:00
parent 5d2257f4a6
commit 736007f704
1 changed files with 20 additions and 6 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

26
src/htmltextview.py
View file

@ -36,6 +36,7 @@ import re
import warnings import warnings
from cStringIO import StringIO from cStringIO import StringIO
import socket import socket
import time
import urllib2 import urllib2
import operator import operator
@ -689,18 +690,31 @@ class HtmlHandler(xml.sax.handler.ContentHandler):
gajim.log.debug(str('Error loading image %s ' % attrs['src'] + ex)) gajim.log.debug(str('Error loading image %s ' % attrs['src'] + ex))
pixbuf = None pixbuf = None
alt = attrs.get('alt', 'Broken image') alt = attrs.get('alt', 'Broken image')
try:
loader.close()
except:
pass
else: else:
# Wait 10ms between each byte # Wait 10ms between each byte
try: try:
f.fp._sock.fp._sock.settimeout(0.01) f.fp._sock.fp._sock.settimeout(0.01)
except: except:
pass pass
# Max image size = 2 MB (to try to prevent DoS) # Max image size = 2 MB (to try to prevent DoS) in Max 3s
mem = f.read(2*1024*1024) mem = ''
deadline = time.time() + 3
while True:
if time.time() > deadline:
gajim.log.debug(str('Timeout loading image %s ' % \
attrs['src'] + ex))
pixbuf = None
alt = attrs.get('alt', 'Timeout loading image')
break
temp = f.read(100)
if temp:
mem += temp
else:
break
if len(mem) > 2*1024*1024:
alt = attrs.get('alt', 'Image is too big')
break
# Caveat: GdkPixbuf is known not to be safe to load # Caveat: GdkPixbuf is known not to be safe to load
# images from network... this program is now potentially # images from network... this program is now potentially
# hackable ;) # hackable ;)