exp/api/remote: added const comment

makasim · makasim · commit caec660bf800 · 2025-11-25T18:57:12.000+02:00
diff --git a/exp/api/remote/remote_api.go b/exp/api/remote/remote_api.go
@@ -448,6 +448,12 @@ func WithWriteHandlerMiddlewares(middlewares ...func(http.Handler) http.Handler)
 	}
 }
 
+// maxDecodedSize limits the maximum allowed size of decompressed snappy payloads.
+// This protects against maliciously crafted payloads that could cause excessive memory
+// allocation and potentially lead to out-of-memory (OOM) conditions.
+// All usual payloads should be much smaller than this limit and pass without any problems.
+//
+// See more in https://github.com/prometheus/client_golang/pull/1917
 const maxDecodedSize = 32 * 1024 * 1024
 
 // SnappyDecodeMiddleware returns a middleware that checks if the request body is snappy-encoded and decompresses it.

Original file line number	Diff line number	Diff line change
`@@ -448,6 +448,12 @@ func WithWriteHandlerMiddlewares(middlewares ...func(http.Handler) http.Handler)`
`448`	`448`	`}`
`449`	`449`	`}`
`450`	`450`
	`451`	`+// maxDecodedSize limits the maximum allowed size of decompressed snappy payloads.`
	`452`	`+// This protects against maliciously crafted payloads that could cause excessive memory`
	`453`	`+// allocation and potentially lead to out-of-memory (OOM) conditions.`
	`454`	`+// All usual payloads should be much smaller than this limit and pass without any problems.`
	`455`	`+//`
	`456`	`+// See more in https://github.com/prometheus/client_golang/pull/1917`
`451`	`457`	`const maxDecodedSize = 32 * 1024 * 1024`
`452`	`458`
`453`	`459`	`// SnappyDecodeMiddleware returns a middleware that checks if the request body is snappy-encoded and decompresses it.`