Skip to content

M
MBetterd
Commit b840a724 authored by Stefy Lanza (nextime / spora )'s avatar Stefy Lanza (nextime / spora )
Browse files
Options

Fix upload size limit

parent 3ee190b3
Show whitespace changes
Inline Side-by-side
Showing with 7 additions and 5 deletions
app/upload/file_handler.py
View file @ b840a724
...@@ -73,7 +73,7 @@ class FileUploadHandler: ...@@ -73,7 +73,7 @@ class FileUploadHandler:
file.seek(0) file.seek(0)
if not validate_file_size(file_size): if not validate_file_size(file_size):
max_size_mb = current_app.config.get('MAX_CONTENT_LENGTH', 500 * 1024 * 1024) // (1024 * 1024) max_size_mb = current_app.config.get('MAX_CONTENT_LENGTH', 5 * 1024 * 1024 * 1024)
return False, f"File too large. Maximum size: {max_size_mb}MB" return False, f"File too large. Maximum size: {max_size_mb}MB"
return True, None return True, None
......
app/utils/security.py
View file @ b840a724
...@@ -315,7 +315,9 @@ def detect_malicious_content(file_path): ...@@ -315,7 +315,9 @@ def detect_malicious_content(file_path):
# Check file size (extremely large files might be suspicious) # Check file size (extremely large files might be suspicious)
import os import os
file_size = os.path.getsize(file_path) file_size = os.path.getsize(file_path)
if file_size > 1024 * 1024 * 1024: # 1GB # Allow up to 5GB for ZIP files (configurable)
max_safe_size = current_app.config.get('MAX_CONTENT_LENGTH', 5 * 1024 * 1024 * 1024)
if file_size > max_safe_size:
return True return True
# Check for executable signatures in first few bytes # Check for executable signatures in first few bytes
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment