[47wOlqLp] Adds documentation about decompression ratio

neo4j-contrib · Jan 10, 2024 · 4595701 · 4595701
1 parent 3aa6695
commit 4595701
Show file tree

Hide file tree

Showing 2 changed files with 37 additions and 0 deletions.
diff --git a/docs/asciidoc/modules/ROOT/pages/config/index.adoc b/docs/asciidoc/modules/ROOT/pages/config/index.adoc
@@ -49,6 +49,7 @@ The meta-configuration is located in `src/main/resources/apoc-config.xml`.
 - link:#_apoc_couchbase_key_uri[apoc.couchbase.<key>.uri]: Stores CouchBase URLs to be used.
 - link:#_apoc_es_key_uri[apoc.es.<key>.uri]: Store ElasticSearch URLs to be used.
 - link:#_apoc_mongodb_key_uri[apoc.mongodb.<key>.uri]: Store MongoDB URLs to be used.
+- link:#_apoc_max_decompression_ratio[apoc.max.decompression.ratio]: Limits the relative size a decompressed file can reach with respect to the compressed file in the loading procedures.
 
 [#_apoc_export_file_enabled]
 .apoc.export.file.enabled
@@ -375,3 +376,15 @@ a|URL
 |Default value
 m|+++None+++
 |===
+
+[#_apoc_max_decompression_ratio]
+.apoc.max.decompression.ratio
+[cols="<1s,<4"]
+|===
+|Description
+a|Limits the relative size a decompressed file can reach with respect to the compressed file in the loading procedures. If negative, no limit to the decompressed size is imposed.
+|Valid values
+a|Integers different from 0
+|Default value
+m|+++200+++
+|===
diff --git a/docs/asciidoc/modules/ROOT/pages/import/web-apis.adoc b/docs/asciidoc/modules/ROOT/pages/import/web-apis.adoc
@@ -26,6 +26,30 @@ Adding `failOnError:false` (by default `true`) to the config map when using any
 CALL apoc.load.json('http://example.com/test.json', null, {failOnError:false})
 ----
 
+== Load from Compressed File (zip/tar/tar.gz/tgz)
+
+When loading a file that has been compressed, the compression algorithm has to be provided in the configuration options.
+For example, in the following case, if `xmlCompressed` was a `.gzip` extension file, the configuration options `{compression: 'GZIP'}`
+need to be supplied to the procedure call to load the root of the document `/` into a Cypher map in memory:
+
+----
+CALL apoc.load.xml(xmlCompressed, '/', {compression: 'GZIP'})
+----
+
+For other valid compression configuration values, refer to the xref::import/xml.adoc[documentation of apoc.load.xml,role=more information].
+
+By default, the size of a decompressed file is limited to 200 times its compressed size.
+That number can be changed by adjusting the configuration option `apoc.max.decompression.ratio` in  the `apoc.conf` (it cannot be 0 as that would make decompression impossible).
+If a negative number is given, there is no limit to how big a decompressed size can be.
+This exposes the database to potential zip bomb attacks.
+
+Trying to load an uncompressed file that exceeds the relative ratio with respect to the original compressed file will generate the following message:
+
+----
+The file dimension exceeded maximum size in bytes, 250000,
+which is 250 times the width of the original file.
+The InputStream has been blocked because the file could be a compression bomb attack.
+----
 
 == Load Single File From Compressed File (zip/tar/tar.gz/tgz)