Default enable header_read_timeout_buffered_io

This enables a HeaderReadTimeout protection for custom HTTP requests Changelog: security

Default enable header_read_timeout_buffered_io
This enables a HeaderReadTimeout protection for custom HTTP requests Changelog: security
4dde99e1 · Andy Soiron · d85eee06 · 4dde99e1 · 4dde99e1
Commit 4dde99e1 authored Mar 01, 2022 by Andy Soiron
Showing with 2 additions and 2 deletions

config/feature_flags/development/header_read_timeout_buffered_io.yml ...ure_flags/development/header_read_timeout_buffered_io.yml +1 -1

lib/gitlab/http_connection_adapter.rb lib/gitlab/http_connection_adapter.rb +1 -1

No files found.
--- a/config/feature_flags/development/header_read_timeout_buffered_io.yml
+++ b/config/feature_flags/development/header_read_timeout_buffered_io.yml
@@ -5,4 +5,4 @@ rollout_issue_url: https://gitlab.com/gitlab-org/gitlab/-/issues/350233
 milestone: '14.8'
 type: development
 group: group::integrations
-default_enabled: false
+default_enabled: true
--- a/lib/gitlab/http_connection_adapter.rb
+++ b/lib/gitlab/http_connection_adapter.rb
@@ -29,7 +29,7 @@ module Gitlab
      http = super
      http.hostname_override = hostname if hostname

-      if Feature.enabled?(:header_read_timeout_buffered_io)
+      if Feature.enabled?(:header_read_timeout_buffered_io, default_enabled: :yaml)
        gitlab_http = Gitlab::NetHttpAdapter.new(http.address, http.port)

        http.instance_variables.each do |variable|