Skip to content

[9.0] Don't apply saferEval default length cap to workflow XML values#8630

Open
sfayer wants to merge 1 commit into
DIRACGrid:rel-v9r0from
sfayer:bp_wfevalv9
Open

[9.0] Don't apply saferEval default length cap to workflow XML values#8630
sfayer wants to merge 1 commit into
DIRACGrid:rel-v9r0from
sfayer:bp_wfevalv9

Conversation

@sfayer

@sfayer sfayer commented Jun 18, 2026

Copy link
Copy Markdown
Member

v9 backport of #8628.

BEGINRELEASENOTES
*Workflow
FIX: increased saferEval limit to 1 MiB for Workflow XML handling
ENDRELEASENOTES

@ryuwd @sfayer
fix: Don't apply saferEval default length cap to workflow XML values
b559f71 
Commit bf6858d replaced eval() with saferEval() in WorkflowReader to avoid
evaluating arbitrary code. saferEval enforces a 2048-byte cap, but non-string
workflow parameters (lists/dicts serialised as repr()) are KB-scale and
routinely exceed it, so parsing legitimate workflows failed with
"Object string is too long (>2048 bytes)".

Pass a generous finite cap (1 MiB) at this call site instead of the 2048
default. literal_eval still prevents code execution regardless of content;
the ceiling remains as defence-in-depth against pathological/malicious input,
bounding literal_eval's object-allocation blow-up. Legitimate workflow values
never approach it. SaferEval's default is left unchanged for its other callers.
@sfayer sfayer requested review from atsareg and fstagni as code owners June 18, 2026 08:17
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@fstagni fstagni Awaiting requested review from fstagni fstagni is a code owner

@atsareg atsareg Awaiting requested review from atsareg atsareg is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@sfayer @ryuwd