[THRIFT-2937] Allow setting a maximum frame size in TFramedTransport - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 0.9.3
Fix Version/s: 0.9.3
Component/s: C++ - Library
Labels:
- feature
- newbie
- patch
- security
Environment:

Ubuntu 14.04.1 LTS

Patch Info:

Patch Available

Description

To secure Thrift servers against malicious attacks or corrupted data, an often requested feature is to limit the maximum size of a frame at receive. TNonblockingServer already has such a feature. The attached patch imposes a maximum frame size in TFramedTransport. The default value is very conservative (1MiB), to make sure that memory cannot be easily exhausted. The user can then increase the maximum frame size, as required.

Example usage:

Good Client -> Server: I want to send you a 100MiB file;
Server -> Good Client: Maximum frame size adjusted go ahead;
Good Client -> Server: Here comes the file ...

Bad Client -> Server: Here is a 100MiB frame to exhaust your memory;
Server -> Bad Client: [connection dropped]

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

0001-THRIFT-2937-Allow-setting-a-maximum-frame-size.patch
09/Jan/15 09:01
2 kB
Cristian Klein

Activity

People

Assignee:: Roger Meier

Reporter:: Cristian Klein

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 09/Jan/15 09:00

Updated:: 21/Jul/15 02:21

Resolved:: 15/Feb/15 18:28

Time Tracking

Estimated:

Remaining:

Logged:

Not Specified