[GitHub] [cassandra] jacek-lewandowski opened a new pull request, #2368: Track the amount of read data per row

Fri, 26 May 2023 00:30:39 -0700 


jacek-lewandowski opened a new pull request, #2368:
URL: https://github.com/apache/cassandra/pull/2368

   If an sstable is corrupted in a nasty way, we may read invalid cell sizes 
and try to read much more data for a row than we should. In rare scenarios this 
can lead even to OOMs.
   
   This simple fix adds tracking and limiting the amount of data that is read 
per row. Row has its size stored in preamble which can be used as a limit. If 
the deserialization code tries to read more than that, it will simply fail with 
EOF which will prevent more serious problems later.
   
   Thanks for sending a pull request! Here are some tips if you're new here:
    
    * Ensure you have added or run the [appropriate 
tests](https://cassandra.apache.org/_/development/testing.html) for your PR.
    * Be sure to keep the PR description updated to reflect all changes.
    * Write your PR title to summarize what this PR proposes.
    * If possible, provide a concise example to reproduce the issue for a 
faster review.
    * Read our [contributor 
guidelines](https://cassandra.apache.org/_/development/index.html)
    * If you're making a documentation change, see our [guide to documentation 
contribution](https://cassandra.apache.org/_/development/documentation.html)
    
   Commit messages should follow the following format:
   
   ```
   <One sentence description, usually Jira title or CHANGES.txt summary>
   
   <Optional lengthier description (context on patch)>
   
   patch by <Authors>; reviewed by <Reviewers> for CASSANDRA-#####
   
   Co-authored-by: Name1 <email1>
   Co-authored-by: Name2 <email2>
   
   ```
   
   The [Cassandra 
Jira](https://issues.apache.org/jira/projects/CASSANDRA/issues/)
   
   


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: [email protected]

For queries about this service, please contact Infrastructure at:
[email protected]


---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to