pjfanning commented on PR #2977:
URL: https://github.com/apache/drill/pull/2977#issuecomment-2615408782
looks like hbase is one of biggest issues - hbase has old generated protobuf
code
```
Caused By (java.lang.UnsupportedOperationException) As of 2022/09/29
(release 21.7) makeExtensionsImmutable should not be called from protobuf
gencode. If you are seeing this message, your gencode is vulnerable to a denial
of service attack. You should regenerate your code using protobuf 25.6 or
later. Use the latest version that meets your needs. However, if you understand
the risks and wish to continue with vulnerable gencode, you can set the system
property `-Dcom.google.protobuf.use_unsafe_pre22_gencode` on the command line.
See security vulnerability:
https://github.com/protocolbuffers/protobuf/security/advisories/GHSA-h4h5-3hr4-j3g2
com.google.protobuf.GeneratedMessage.warnPre22Gencode():327
com.google.protobuf.GeneratedMessage.makeExtensionsImmutable():333
org.apache.hadoop.hbase.protobuf.generated.FilterProtos$Filter.<init>():109
org.apache.hadoop.hbase.protobuf.generated.FilterProtos$Filter.<init>():42
org.apache.hadoop.hbase.protobuf.generated.FilterProtos$Filter$1.parsePartialFrom():130
org.apache.hadoop.hbase.protobuf.generated.FilterProtos$Filter$1.parsePartialFrom():125
com.google.protobuf.AbstractParser.parsePartialFrom():135
com.google.protobuf.AbstractParser.parseFrom():168
com.google.protobuf.AbstractParser.parseFrom():180
com.google.protobuf.AbstractParser.parseFrom():185
com.google.protobuf.AbstractParser.parseFrom():25
org.apache.hadoop.hbase.protobuf.generated.FilterProtos$Filter.parseFrom():314
```
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: dev-unsubscr...@drill.apache.org
For queries about this service, please contact Infrastructure at:
us...@infra.apache.org
