[
https://issues.apache.org/jira/browse/ZOOKEEPER-2797?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16032415#comment-16032415
]
Patrick White commented on ZOOKEEPER-2797:
------------------------------------------
The client doing it is nice, but the server should always be validating all
fields of all requests.
Kazoo doesn't support TTL and containers at the moment. I'll have a diff up
soon. I also validate client side. Guess how I figured out how to kill ZK via
TTLs :)
> Invalid TTL from misbehaving client nukes zookeeper
> ---------------------------------------------------
>
> Key: ZOOKEEPER-2797
> URL: https://issues.apache.org/jira/browse/ZOOKEEPER-2797
> Project: ZooKeeper
> Issue Type: Bug
> Components: security, server
> Affects Versions: 3.6.0
> Reporter: Patrick White
> Assignee: Patrick White
> Fix For: 3.5.4, 3.6.0
>
>
> I was adding container and TTL support to kazoo, and managed to screw
> something up which set the TTL to a negative value. This invalid TTL blew up
> the commit processor, and got written to the log, preventing the zookeepers
> from starting back up.
--
This message was sent by Atlassian JIRA
(v6.3.15#6346)
