Change default for parseHuge to false to avoid OOM on xml expansion #11094
Conversation
Codecov Report
@@ Coverage Diff @@
## master #11094 +/- ##
============================================
+ Coverage 94.87% 94.92% +0.05%
- Complexity 12838 13059 +221
============================================
Files 437 437
Lines 32732 33060 +328
============================================
+ Hits 31053 31381 +328
Misses 1679 1679
Continue to review full report at Codecov.
|
|
Doesn't look BC to me, is it? |
|
Correct, in most cases people won't notice the changed default. The
docblock already stated that you had to enable parseHuge, but the code
defaulted to true. This default behavior is an insecure one, so it is now
changed to false.
2017-08-28 3:42 GMT+02:00 inoas <notifications@github.com>:
… Doesn't look BC to me, is it?
—
You are receiving this because you were assigned.
Reply to this email directly, view it on GitHub
<#11094 (comment)>,
or mute the thread
<https://github.com/notifications/unsubscribe-auth/AAGzWO00FzD21E7pKZ3DnBEG7bXAIt6jks5schrsgaJpZM4PCEZf>
.
|
|
@markstory This should be shown very prominently in the release notes, then. So pepole don't trip over it. |
|
I doubt if many users will trip. First off, Most users don't use Xml, those that do use it would only need parseHuge in edge cases. The docs already stated to set parseHuge option to true, even though the code itself didnt need it, because of the default. So most likely for those edge cases people are passing the parseHuge option as true already. |
|
@ceeram thanks for the clarification. |
The option was added to allow for enabling (#10034) parseHuge as the docblock also decribes, having this enabled though by default is not recommended.