Flume
  1. Flume
  2. FLUME-2404

Default maxReadBufferBytes might cause OOM and cause scribe source exit

    Details

    • Type: Bug Bug
    • Status: Resolved
    • Priority: Major Major
    • Resolution: Fixed
    • Affects Version/s: v1.5.0
    • Fix Version/s: v1.6.0
    • Component/s: Sinks+Sources
    • Labels:
      None

      Description

      We're using scribe source, some hacker like infosec guys send some malicious frames to flume with the frame size field set to a very big integer, then the thrift server inside scribe source will exit due to OOM. Then scribe source will keep wait_close state and can not accept any connection.

      1. FLUME-2404-2.patch
        3 kB
        chenshangan
      2. FLUME-2404.patch
        4 kB
        chenshangan

        Issue Links

          Activity

          chenshangan created issue -
          chenshangan made changes -
          Field Original Value New Value
          Status Open [ 1 ] Patch Available [ 10002 ]
          chenshangan made changes -
          Attachment FLUME-2404.patch [ 12650535 ]
          Mike Percy made changes -
          Link This issue is related to FLUME-2405 [ FLUME-2405 ]
          chenshangan made changes -
          Attachment FLUME-2404.patch.2 [ 12654043 ]
          chenshangan made changes -
          Attachment FLUME-2404-2.patch [ 12654044 ]
          chenshangan made changes -
          Attachment FLUME-2404.patch.2 [ 12654043 ]
          Mike Percy made changes -
          Link This issue is duplicated by FLUME-2405 [ FLUME-2405 ]
          Mike Percy made changes -
          Status Patch Available [ 10002 ] Resolved [ 5 ]
          Fix Version/s v1.6.0 [ 12327047 ]
          Resolution Fixed [ 1 ]
          Mike Percy made changes -
          Link This issue is related to FLUME-2405 [ FLUME-2405 ]

            People

            • Assignee:
              chenshangan
              Reporter:
              chenshangan
            • Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:

                Development