jsonrpc 2.0 batch request limits required #649
Labels
C: proposal
Classification: Proposal for specification, algorithm, architecture, or communication
D: good first issue
Decision: Good for newcomers
Summary
jsonrpc 2.0 batch request limits required
Problem Definition
DDoS attach is possible by requesting multiple queries in one request through jsonrpc 2.0 batch request method.
So I think it's nice to control the jsonrpc 2.0 batch request limitation.
Proposal
JSONRPC2.0 only be handled in Ostracon's RPS server using 26657 port.
And batch requests are performed in the following codes.
ostracon/rpc/jsonrpc/server/http_json_handler.go
Lines 58 to 103 in 4127ae7
So we can control the requests size if we add a limitation feature in Octracon and config.toml for example the
max_request_batch_request
.For Admin Use
The text was updated successfully, but these errors were encountered: