Alexey Serbin has uploaded this change for review. ( http://gerrit.cloudera.org:8080/19158
Change subject: [rpc] avoid crashes on malicious negotiation attempts ...................................................................... [rpc] avoid crashes on malicious negotiation attempts This patch updates the code for RPC connection negotiation to change from CHECK() to LOG(DFATAL) and Status::IllegalState() when checking on some security constraint. This narrows the attack vector of potential DOS attacks for Kudu servers. Change-Id: I416e3e952a3ee928ed6c51389227184c73a96b0b --- M src/kudu/rpc/client_negotiation.cc M src/kudu/rpc/client_negotiation.h M src/kudu/rpc/server_negotiation.cc 3 files changed, 31 insertions(+), 8 deletions(-) git pull ssh://gerrit.cloudera.org:29418/kudu refs/changes/58/19158/1 -- To view, visit http://gerrit.cloudera.org:8080/19158 To unsubscribe, visit http://gerrit.cloudera.org:8080/settings Gerrit-Project: kudu Gerrit-Branch: master Gerrit-MessageType: newchange Gerrit-Change-Id: I416e3e952a3ee928ed6c51389227184c73a96b0b Gerrit-Change-Number: 19158 Gerrit-PatchSet: 1 Gerrit-Owner: Alexey Serbin <[email protected]>
