Skip to content

Fix RecyclerBytesStreamOutput allocating unlimited heap for some capacities#90632

Merged
original-brownbear merged 2 commits intoelastic:mainfrom
original-brownbear:gigantic-recyler-unlucky
Oct 4, 2022
Merged

Fix RecyclerBytesStreamOutput allocating unlimited heap for some capacities#90632
original-brownbear merged 2 commits intoelastic:mainfrom
original-brownbear:gigantic-recyler-unlucky

Conversation

@original-brownbear
Copy link
Copy Markdown
Contributor

@original-brownbear original-brownbear commented Oct 4, 2022

We'd allocate infinite memory here because we'd overflow to negative capacities for newPosition close to Integer.MAX_VALUE.

@original-brownbear
Fix RecyclerBytesStreamOutput allocating unlimited heap for some capa…
c6ff3ff 
…cities

We'd allocate infinite memory here because we'd overflow to negative
capacities for newPosition close to `Integer.MAX_VALUE`.
@original-brownbear original-brownbear added >bug :Distributed/Network Http and internode communication implementations v8.5.0 v7.17.7 v8.6.0 labels Oct 4, 2022
@elasticsearchmachine elasticsearchmachine added the Team:Distributed Meta label for distributed team. label Oct 4, 2022
@elasticsearchmachine
Copy link
Copy Markdown
Collaborator

elasticsearchmachine commented Oct 4, 2022

Pinging @elastic/es-distributed (Team:Distributed)

@elasticsearchmachine
Copy link
Copy Markdown
Collaborator

elasticsearchmachine commented Oct 4, 2022

Hi @original-brownbear, I've created a changelog YAML for you.

idegtiarenko
idegtiarenko reviewed Oct 4, 2022
View reviewed changes
server/src/main/java/org/elasticsearch/common/io/stream/RecyclerBytesStreamOutput.java
// than Integer.MAX_VALUE
if (newPosition > Integer.MAX_VALUE - (Integer.MAX_VALUE % pageSize)) {
throw new IllegalArgumentException(getClass().getSimpleName() + " cannot hold more than 2GB of data");
}
Copy link
Copy Markdown
Contributor

@idegtiarenko idegtiarenko Oct 4, 2022

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should we convert org.elasticsearch.common.io.stream.RecyclerBytesStreamOutput#currentCapacity to long to prevent this overflow? It looks like it is not used anywhere else. Such change would also allow us to make above limit configurable when needed.

idegtiarenko
idegtiarenko approved these changes Oct 4, 2022
View reviewed changes
Copy link
Copy Markdown
Contributor

@idegtiarenko idegtiarenko left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Left a suggestion, otherwise LGTM 👍

@original-brownbear
Copy link
Copy Markdown
Contributor Author

original-brownbear commented Oct 4, 2022

Thanks Ievgen, as discussed will address the suggestion in a follow-up.

@original-brownbear original-brownbear merged commit 7876282 into elastic:main Oct 4, 2022
@original-brownbear original-brownbear deleted the gigantic-recyler-unlucky branch October 4, 2022 09:17
@original-brownbear original-brownbear mentioned this pull request Oct 4, 2022
Merged
@elasticsearchmachine
Copy link
Copy Markdown
Collaborator

elasticsearchmachine commented Oct 4, 2022

💔 Backport failed

Status Branch Result
8.5
7.17 Commit could not be cherrypicked due to conflicts

You can use sqren/backport to manually backport by running backport --upstream elastic/elasticsearch --pr 90632

elasticsearchmachine pushed a commit that referenced this pull request Oct 4, 2022
@original-brownbear
Fix RecyclerBytesStreamOutput allocating unlimited heap for some capa…
154292b 
…cities (#90632) (#90636)

We'd allocate infinite memory here because we'd overflow to negative
capacities for newPosition close to `Integer.MAX_VALUE`.
DaveCTurner added a commit to DaveCTurner/elasticsearch that referenced this pull request Oct 4, 2022
@DaveCTurner
Add overflow behaviour test for RecyclerBytesStreamOutput
9626073 
Relates elastic#90632
@DaveCTurner DaveCTurner mentioned this pull request Oct 4, 2022
Merged
@DaveCTurner
Copy link
Copy Markdown
Member

DaveCTurner commented Oct 4, 2022
edited
Loading

Technically this wouldn't allocate unlimited heap because if currentCapacity wraps around enough then eventually it hits something ≥ newPosition. But we probably went OOM first... Edit: ah no I see it is genuinely unlimited for a 16kiB page size.

I think this deserves a test and it doesn't look too hard to do so without actually allocating GBs of heap - see #90638.

elasticsearchmachine pushed a commit that referenced this pull request Nov 2, 2022
@DaveCTurner
Add overflow behaviour test for RecyclerBytesStreamOutput (#90638)
f0de052 
Relates #90632
DaveCTurner added a commit to DaveCTurner/elasticsearch that referenced this pull request Nov 2, 2022
@DaveCTurner
Add overflow behaviour test for RecyclerBytesStreamOutput (elastic#90638
e63929e 
)

Relates elastic#90632
@DaveCTurner
Copy link
Copy Markdown
Member

DaveCTurner commented Nov 2, 2022

@original-brownbear this is labelled 7.17 but I don't think RecyclerBytesStreamOutput exists in that branch. Did this bug affect something else there or is it mislabelled?

elasticsearchmachine pushed a commit that referenced this pull request Nov 2, 2022
@DaveCTurner
Add overflow behaviour test for RecyclerBytesStreamOutput (#90638) (#…
4ff8d7f 
…91252)

Relates #90632
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@idegtiarenko idegtiarenko idegtiarenko approved these changes

Assignees

No one assigned

Labels

>bug :Distributed/Network Http and internode communication implementations Team:Distributed Meta label for distributed team. v7.17.7 v8.5.0 v8.6.0

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@original-brownbear @elasticsearchmachine @DaveCTurner @idegtiarenko