Uploaded image for project: 'Flume'
  1. Flume
  2. FLUME-2404

Default maxReadBufferBytes might cause OOM and cause scribe source exit

    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 1.5.0
    • Fix Version/s: 1.6.0
    • Component/s: Sinks+Sources
    • Labels:
      None

      Description

      We're using scribe source, some hacker like infosec guys send some malicious frames to flume with the frame size field set to a very big integer, then the thrift server inside scribe source will exit due to OOM. Then scribe source will keep wait_close state and can not accept any connection.

        Attachments

        1. FLUME-2404.patch
          4 kB
          chenshangan
        2. FLUME-2404-2.patch
          3 kB
          chenshangan

          Issue Links

          is duplicated by

          Bug - A problem which impairs or prevents the functions of the product. FLUME-2405 Flume stops working on arbitrary Frame Size more than 16 MB on ScribeSource

          • Critical - Crashes, loss of data, severe memory leak.
          • Resolved
          relates to

          Bug - A problem which impairs or prevents the functions of the product. FLUME-2984 Default maxReadBufferBytes might cause OOM and cause thrift source exit

          • Major - Major loss of function.
          • Patch Available

            Activity

              People

              • Assignee:
                chenshangan521@163.com chenshangan
                Reporter:
                chenshangan521@163.com chenshangan
              • Votes:
                0 Vote for this issue
                Watchers:
                5 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: