Skip to content

Avoid corruption when deserializing booleans#22152

Merged
jasontedor merged 1 commit intoelastic:masterfrom
jasontedor:read-boolean-corruption
Dec 14, 2016
Merged

Avoid corruption when deserializing booleans#22152
jasontedor merged 1 commit intoelastic:masterfrom
jasontedor:read-boolean-corruption

Conversation

@jasontedor
Copy link
Copy Markdown
Member

@jasontedor jasontedor commented Dec 13, 2016
edited
Loading

Today we write 0x00 or 0x01 for false or true when serializing a boolean
(and 0x02 for null when serializing an optional boolean) but we
deserialize any non-zero byte to true (except when deserializing an
optional boolean in which case we deserialize 0x02 to null, 0x01 to
true, and any other non-zero byte to false). This too easily allows
corruption into the stream. Instead, we should mark the stream as
corrupted and stop deserializing. This catches when we try to
deserialize something as a boolean that is not a boolean.

nik9000
nik9000 approved these changes Dec 13, 2016
View reviewed changes
Copy link
Copy Markdown
Member

@nik9000 nik9000 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Sounds like a good idea to me.

@jasontedor
Avoid corruption when deserializing booleans
a378b5a 
Today we write 0x00 or 0x01 for false or true when serializing a boolean
(and 0x02 for null when serializing an optional boolean) but we
deserialize any non-zero byte to true (except when deserializing an
optional boolean in which case we deserialize 0x02 to null, 0x01 to
true, and any other non-zero byte to false). This too easily allows
corruption into the stream. Instead, we should mark the stream as
corrupted and stop deserializing. This catches when we try to
deserialize something as a boolean that is not a boolean.
@jasontedor jasontedor force-pushed the read-boolean-corruption branch from 77f7be9 to a378b5a Compare December 14, 2016 01:09
@jasontedor jasontedor merged commit 0d195f1 into elastic:master Dec 14, 2016
jasontedor added a commit that referenced this pull request Dec 14, 2016
@jasontedor
Avoid corruption when deserializing booleans
29244c0 
Today we write 0x00 or 0x01 for false or true when serializing a boolean
(and 0x02 for null when serializing an optional boolean) but we
deserialize any non-zero byte to true (except when deserializing an
optional boolean in which case we deserialize 0x02 to null, 0x01 to
true, and any other non-zero byte to false). This too easily allows
corruption into the stream. Instead, we should mark the stream as
corrupted and stop deserializing. This catches when we try to
deserialize something as a boolean that is not a boolean.

Relates #22152
@jasontedor jasontedor deleted the read-boolean-corruption branch December 14, 2016 01:10
@jasontedor
Copy link
Copy Markdown
Member Author

jasontedor commented Dec 14, 2016

Thanks @nik9000 and @jaymode.

@jasontedor jasontedor mentioned this pull request Dec 20, 2016
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@nik9000 nik9000 nik9000 approved these changes

@jaymode jaymode jaymode approved these changes

Assignees

No one assigned

Labels

:Core/Infra/Core Core issues without another label >enhancement v5.2.0 v6.0.0-alpha1

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@jasontedor @nik9000 @jaymode @clintongormley