Uploaded image for project: 'Apache Cassandra'
  1. Apache Cassandra
  2. CASSANDRA-9402

Implement proper sandboxing for UDFs

    XMLWordPrintableJSON

Details

    • Task
    • Status: Resolved
    • Urgent
    • Resolution: Fixed
    • 3.0 alpha 1
    • None
    • Docs

    Description

      We want to avoid a security exploit for our users. We need to make sure we ship 2.2 UDFs with good defaults so someone exposing it to the internet accidentally doesn't open themselves up to having arbitrary code run.

      Attachments

        1. 9402-warning.txt
          2 kB
          Jonathan Ellis
        2. 9402-post-disable.txt
          2 kB
          Robert Stupp

        Issue Links

          blocks

          New Feature - A new feature of the product, which has yet to be developed. CASSANDRA-9481 FENCED UDFs

          • Normal -
          • Resolved
          relates to

          New Feature - A new feature of the product, which has yet to be developed. CASSANDRA-9892 Add support for unsandboxed UDF

          • Low -
          • Open

          Task - A task that needs to be done. CASSANDRA-9404 Add a flag in cassandra.yaml to enable UDFs

          • Urgent - This issue should block release until it is resolved, and trigger immediate release once resolved.
          • Resolved
          links to

          Web Link Git branch

          Activity

            People

              snazy Robert Stupp
              tjake T Jake Luciani
              Robert Stupp
              T Jake Luciani
              Votes:
              0 Vote for this issue
              Watchers:
              13 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: