mirrors/scylladb
1
0
Fork 0
mirror of https://github.com/scylladb/scylladb.git synced 2026-04-21 09:00:35 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
db7b1014ffd7018ec0041d2ecf5c78749c7a53e8
scylladb/alternator
History
Nadav Har'El 15f8046fcb alternator ttl: fix use-after-free 
The Alternator TTL scanning code uses an object "scan_ranges_context"
to hold the scanning context. One of the members of this object is
a service::query_state, and that in turn holds a reference to a
service::client_state. The existing constructor created a temporary
client_state object and saved a reference to it - which can result
in use after free as the temporary object is freed as soon as the
constructor ends.

The fix is to save a client_state in the scan_ranges_context object,
instead of a temporary object.

Fixes #19988

Signed-off-by: Nadav Har'El <nyh@scylladb.com>

Closes scylladb/scylladb#20418
2024-09-03 22:15:18 +03:00
..
auth.cc
alternator: do not allow authentication with a non-"login" role
2024-07-24 08:20:23 +02:00
auth.hh
alternator: add support for auth-v2
2024-03-01 16:25:14 +01:00
CMakeLists.txt
build: bring abseil submodule back
2024-05-05 23:31:09 +03:00
conditions.cc
alternator: not include unused headers
2024-01-12 10:53:32 +02:00
conditions.hh
alternator: not include unused headers
2024-01-12 10:53:32 +02:00
controller.cc
code: Switch to sched group in request_stop_server()
2024-05-24 18:00:01 +03:00
controller.hh
code: Add scheduling group to controllers
2024-05-24 17:53:16 +03:00
error.hh
Typos: fix typos in comments
2023-12-02 22:37:22 +02:00
executor.cc
alternator: improve RBAC access denied error messages
2024-09-03 14:39:30 +03:00
executor.hh
alternator: improve RBAC access denied error messages
2024-09-03 14:39:30 +03:00
expressions_types.hh
alternator: drop unused friend declaration
2024-06-14 09:58:09 +03:00
expressions.cc
treewide: replace std::result_of_t with std::invoke_result_t
2024-05-26 16:45:42 +03:00
expressions.g
alternator: limit expression length and recursion depth
2023-07-31 08:57:54 +03:00
expressions.hh
alternator: add formatter for alternator::calculate_value_caller
2024-02-11 11:49:46 +02:00
rmw_operation.hh
Typos: fix typos in comments
2023-12-02 22:37:22 +02:00
serialization.cc
alternator: not include unused headers
2024-01-12 10:53:32 +02:00
serialization.hh
alternator: add validation of numbers' magnitude and precision
2023-05-02 11:04:05 +03:00
server.cc
alternator: stop using an "internal" client_state
2024-08-19 09:45:22 +02:00
server.hh
alternator: stop using an "internal" client_state
2024-08-19 09:45:22 +02:00
stats.cc
Add metrics for Alternator get and write batch operations
2024-08-18 12:09:46 +03:00
stats.hh
Add metrics for Alternator get and write batch operations
2024-08-18 12:09:46 +03:00
streams.cc
alternator: improve RBAC access denied error messages
2024-09-03 14:39:30 +03:00
ttl.cc
alternator ttl: fix use-after-free
2024-09-03 22:15:18 +03:00
ttl.hh
alternator: ttl: pass gossiper& to expiration_service
2022-08-04 12:12:43 +02:00