[Python-Dev] Adding a maximum element count to parse_qs?
Antoine Pitrou
solipsis at pitrou.net
Sun Feb 12 22:55:33 CET 2012
On Sun, 12 Feb 2012 21:44:22 +0100
"Martin v. Löwis" <martin at v.loewis.de> wrote:
> > Given the randomization fix will ship disabled, I thought it would be
> > nice to add a maximum element count argument to urlparse.parse_qs, with
> > a default value of e.g. 1000 (including in bugfix releases). What do
> > you think?
>
> It's an API change, so it is
> a) in violation with current practice for bug fix releases, and
We are already violating a lot of things in order to fix this issue.
> b) of limited use for existing installations which won't use the API.
Obviously it won't fix vulnerabilities due to some other API. If you
propose other APIs we can also fix them.
Regards
Antoine.
More information about the Python-Dev
mailing list