Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

fix(server): Finish decoding compressed requests correctly [INGEST-619] #1123

Merged
merged 2 commits into from
Nov 12, 2021
Merged

fix(server): Finish decoding compressed requests correctly [INGEST-619] #1123

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
70b708f
fix(server): Finish decoding compressed requests correctly
jan-auer Nov 12, 2021
a49ae8c
meta: Changelog
jan-auer Nov 12, 2021
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion CHANGELOG.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -9,7 +9,7 @@

**Bug Fixes**:

- Avoid unbounded decompression of encoded requests. A particular request crafted to inflate to large amounts of memory, such as a zip bomb, could put Relay out of memory. ([#1117](https://github.com/getsentry/relay/pull/1117), [#1122](https://github.com/getsentry/relay/pull/1122))
- Avoid unbounded decompression of encoded requests. A particular request crafted to inflate to large amounts of memory, such as a zip bomb, could put Relay out of memory. ([#1117](https://github.com/getsentry/relay/pull/1117), [#1122](https://github.com/getsentry/relay/pull/1122), [#1123](https://github.com/getsentry/relay/pull/1123))
- Avoid unbounded decompression of UE4 crash reports. Some crash reports could inflate to large amounts of memory before being checked for size, which could put Relay out of memory. ([#1121](https://github.com/getsentry/relay/pull/1121))

**Internal**:
Expand Down
17 changes: 8 additions & 9 deletions relay-server/src/body/peek_line.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -43,8 +43,8 @@ impl PeekLine {
}
}

fn finish(&mut self, overflow: bool) -> Async<Option<Bytes>> {
let buffer = self.decoder.take();
fn finish(&mut self, overflow: bool) -> std::io::Result<Option<Bytes>> {
let buffer = self.decoder.finish()?;

let line = match buffer.iter().position(|b| *b == b'\n') {
Some(pos) => Some(buffer.slice_to(pos)),
Expand All @@ -53,7 +53,7 @@ impl PeekLine {
};

self.revert_chunks();
Async::Ready(line.filter(|line| !line.is_empty()))
Ok(line.filter(|line| !line.is_empty()))
}
}

Expand All @@ -63,16 +63,15 @@ impl Future for PeekLine {

fn poll(&mut self) -> Poll<Self::Item, Self::Error> {
loop {
let chunk = match self.payload.poll() {
Ok(Async::Ready(Some(chunk))) => chunk,
Ok(Async::Ready(None)) => return Ok(self.finish(false)),
Ok(Async::NotReady) => return Ok(Async::NotReady),
Err(error) => return Err(error),
let chunk = match self.payload.poll()? {
Async::Ready(Some(chunk)) => chunk,
Async::Ready(None) => return Ok(Async::Ready(self.finish(false)?)),
Async::NotReady => return Ok(Async::NotReady),
};

self.chunks.push(chunk.clone());
if self.decoder.decode(chunk)? {
return Ok(self.finish(true));
return Ok(Async::Ready(self.finish(true)?));
}
}
}
Expand Down
9 changes: 4 additions & 5 deletions relay-server/src/body/request_body.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -41,17 +41,16 @@ impl Future for RequestBody {

if let Some((ref mut payload, ref mut decoder)) = self.stream {
loop {
return match payload.poll() {
Ok(Async::Ready(Some(encoded))) => {
return match payload.poll()? {
Async::Ready(Some(encoded)) => {
if decoder.decode(encoded)? {
Err(PayloadError::Overflow)
} else {
continue;
}
}
Ok(Async::Ready(None)) => Ok(Async::Ready(decoder.take())),
Ok(Async::NotReady) => Ok(Async::NotReady),
Err(error) => Err(error),
Async::Ready(None) => Ok(Async::Ready(decoder.finish()?)),
Async::NotReady => Ok(Async::NotReady),
};
}
}
Expand Down
54 changes: 39 additions & 15 deletions relay-server/src/extractors/decoder.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -76,6 +76,7 @@ fn write_overflowing<W: Write>(write: &mut W, slice: &[u8]) -> io::Result<bool>
match write.write_all(slice).and_then(|()| write.flush()) {
Ok(()) => Ok(false),
Err(e) => match e.kind() {
io::ErrorKind::WouldBlock => Ok(false), // effectively continue
io::ErrorKind::WriteZero => Ok(true),
_ => Err(e),
},
Expand Down Expand Up @@ -146,11 +147,30 @@ impl Decoder {
}
}

/// Finish decoding the output stream and validate checksums, returning the final bytes.
///
/// This may only be called a single time at the end of decoding. Attempts to write data to this
/// decoder may result in a panic after this function is called.
pub fn finish(&mut self) -> io::Result<Bytes> {
Ok(match &mut self.inner {
DecoderInner::Identity(inner) => inner.take(),
DecoderInner::Br(inner) => inner.finish()?.take(),
DecoderInner::Gzip(inner) => {
inner.try_finish()?;
inner.get_mut().take()
}
DecoderInner::Deflate(inner) => {
inner.try_finish()?;
inner.get_mut().take()
}
})
}

/// Returns decoded bytes from the Decoder's buffer.
///
/// This can be called at any time during decoding. However, the limit stated during
/// initialization remains in effect across the entire decoded payload.
pub fn take(&mut self) -> Bytes {
fn take(&mut self) -> Bytes {
match &mut self.inner {
DecoderInner::Identity(inner) => inner.take(),
DecoderInner::Br(inner) => inner.get_mut().take(),
Expand Down Expand Up @@ -195,22 +215,26 @@ impl Stream for DecodingPayload {
type Error = <SharedPayload as Stream>::Error;

fn poll(&mut self) -> Poll<Option<Self::Item>, Self::Error> {
let encoded = match self.payload.poll() {
Ok(Async::Ready(Some(encoded))) => encoded,
Ok(Async::Ready(None)) => return Ok(Async::Ready(None)),
Ok(Async::NotReady) => return Ok(Async::NotReady),
Err(error) => return Err(error),
};
loop {
Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is the largest change. To summarize the diff:

  • If the payload returns None, finish the decoder. This may return None again or another chunk of bytes; both is fine at that point
  • If the decoder doesn't yield a result, continue looping to poll the next chunk

let encoded = match self.payload.poll()? {
Async::Ready(Some(encoded)) => encoded,
Async::Ready(None) => {
let chunk = self.decoder.finish()?;
return Ok(Async::Ready(Some(chunk).filter(|c| !c.is_empty())));
}
Async::NotReady => return Ok(Async::NotReady),
};

if self.decoder.decode(encoded)? {
return Err(PayloadError::Overflow);
}

if self.decoder.decode(encoded)? {
Err(PayloadError::Overflow)
} else {
let chunk = self.decoder.take();
Ok(Async::Ready(if chunk.is_empty() {
None
} else {
Some(chunk)
}))
if !chunk.is_empty() {
return Ok(Async::Ready(Some(chunk)));
}

// loop until the input stream is exhausted
}
}
}
Expand Down