otp.git/lib, branch OTP-17.5 Mirror of Erlang/OTP repository. Prepare release 2015-03-31T10:24:04+00:00 Erlang/OTP otp@erlang.org 2015-03-31T10:24:04+00:00 62870c998955e1498e71bfc90607885e96ecaa27 






Merge branch 'dgud/observer/fix-atom-tostr/OTP-12634' into maint
2015-03-30T07:04:16+00:00

Dan Gudmundsson
dgud@erlang.org

2015-03-30T07:04:16+00:00

64bebeaf45403feeac45a8c2b6226d6bc8b71b72

* dgud/observer/fix-atom-tostr/OTP-12634:
  observer: Fix crash in process_window





* dgud/observer/fix-atom-tostr/OTP-12634:
  observer: Fix crash in process_window







observer: Fix crash in process_window
2015-03-27T16:49:27+00:00

Dan Gudmundsson
dgud@erlang.org

2015-03-27T15:23:11+00:00

21a1802064b3c2293687f2ba4171eb2389377e47

Links can be to named processes, convert atom to list





Links can be to named processes, convert atom to list







Merge branch 'anders/diameter/hardening/OTP-12628' into maint
2015-03-27T16:02:26+00:00

Anders Svensson
anders@erlang.org

2015-03-27T16:02:26+00:00

45f33f09d56af793a2142ab402d73868be30b223

* anders/diameter/hardening/OTP-12628:
  Remove potentially large error reason in call to diameter_lib:log/4
  Limit FQDN in DiameterURI to 255 octets
  Limit DiameterURI ports to 0-65535 digits on decode
  Add service_opt() incoming_maxlen
  Add guard to reject {spawn_opt, false} as transport/service_opt()





* anders/diameter/hardening/OTP-12628:
  Remove potentially large error reason in call to diameter_lib:log/4
  Limit FQDN in DiameterURI to 255 octets
  Limit DiameterURI ports to 0-65535 digits on decode
  Add service_opt() incoming_maxlen
  Add guard to reject {spawn_opt, false} as transport/service_opt()







Remove potentially large error reason in call to diameter_lib:log/4
2015-03-27T12:52:29+00:00

Anders Svensson
anders@erlang.org

2015-03-26T22:07:59+00:00

39acfdb005626ae1bf2f68808f9e8116637c7121

The function is intended to be traced on, to see abnormalities (mostly)
without producing excessive output. In the case of decode failure, the
error reason can be things like {badmatch, HugeBinary}.

Missed in commit 0058430.





The function is intended to be traced on, to see abnormalities (mostly)
without producing excessive output. In the case of decode failure, the
error reason can be things like {badmatch, HugeBinary}.

Missed in commit 0058430.







Limit FQDN in DiameterURI to 255 octets
2015-03-27T06:21:27+00:00

Anders Svensson
anders@erlang.org

2015-03-26T11:52:04+00:00

7edb0dd681b09df8865855eda1150e4a92b54a0a

As for the port number in the parent commit, a FQDN can't be arbitrarily
long, at most 255 octets. Make decode fail if it's more.





As for the port number in the parent commit, a FQDN can't be arbitrarily
long, at most 255 octets. Make decode fail if it's more.







Limit DiameterURI ports to 0-65535 digits on decode
2015-03-27T06:21:27+00:00

Anders Svensson
anders@erlang.org

2015-03-24T12:20:36+00:00

f3e95a4d4278fda5a0648943020bdf0026219f7c

A port number is a 16-bit integer, but the regexp used to parse it in
commit 1590920 slavishly followed the RFC 6733 grammar in matching an
arbitrary number of digits. Make decode fail if it's anything more than
5, to avoid doing erlang:list_to_integer/1 on arbitrarily large lists.
Also make it fail if the resulting integer is outside of the expected
range.





A port number is a 16-bit integer, but the regexp used to parse it in
commit 1590920 slavishly followed the RFC 6733 grammar in matching an
arbitrary number of digits. Make decode fail if it's anything more than
5, to avoid doing erlang:list_to_integer/1 on arbitrarily large lists.
Also make it fail if the resulting integer is outside of the expected
range.







Add service_opt() incoming_maxlen
2015-03-27T06:21:26+00:00

Anders Svensson
anders@erlang.org

2015-03-25T06:21:46+00:00

545ff7783cebddc2ca5b2af67a6f13b1a01a4d03

To bound the length of incoming messages that will be decoded. A message
longer than the specified number of bytes is discarded. An
incoming_maxlen_exceeded counter is incremented to make note of the
occurrence.

The motivation is to prevent a sufficiently malicious peer from
generating significant load by sending long messages with many AVPs for
diameter to decode. The 24-bit message length header accomodates

  (16#FFFFFF - 20) div 12 = 1398099

Unsigned32 AVPs for example, which the current record-valued decode is
too slow with in practice. A bound of 16#FFFF bytes allows for 5461
small AVPs, which is probably more than enough for the majority of
applications, but the default is the full 16#FFFFFF.





To bound the length of incoming messages that will be decoded. A message
longer than the specified number of bytes is discarded. An
incoming_maxlen_exceeded counter is incremented to make note of the
occurrence.

The motivation is to prevent a sufficiently malicious peer from
generating significant load by sending long messages with many AVPs for
diameter to decode. The 24-bit message length header accomodates

  (16#FFFFFF - 20) div 12 = 1398099

Unsigned32 AVPs for example, which the current record-valued decode is
too slow with in practice. A bound of 16#FFFF bytes allows for 5461
small AVPs, which is probably more than enough for the majority of
applications, but the default is the full 16#FFFFFF.







stdlib: Support upgrading from and to stdlib-2.3
2015-03-26T11:23:41+00:00

Björn Gustavsson
bjorn@erlang.org

2015-03-26T11:23:41+00:00

d477e5978d165d7496fa6b983f8933f5105f901f












Add guard to reject {spawn_opt, false} as transport/service_opt()
2015-03-26T07:08:40+00:00

Anders Svensson
anders@erlang.org

2015-03-25T05:27:05+00:00

aaff5f36b836c65a72fb38a27e31a88d199a3155

It was possible to configure the option, but doing so caused the service
to fail when starting a watchdog process:

   {function_clause,
       [{diameter_service,'-spawn_opts/1-lc$^0/1-0-',
            [false],
            [{file,"base/diameter_service.erl"},{line,846}]},
        {diameter_service,start,5,
            [{file,"base/diameter_service.erl"},{line,820}]},
        {diameter_service,start,3,
            [{file,"base/diameter_service.erl"},{line,782}]},
        {diameter_service,handle_call,3,
            [{file,"base/diameter_service.erl"},{line,385}]},
        {gen_server,try_handle_call,4,[{file,"gen_server.erl"},{line,607}]},
        {gen_server,handle_msg,5,[{file,"gen_server.erl"},{line,639}]},
        {proc_lib,init_p_do_apply,3,[{file,"proc_lib.erl"},{line,237}]}]}

Tests for the option in the config suite were also missing.

Bungled in commit 78b3dc6.





It was possible to configure the option, but doing so caused the service
to fail when starting a watchdog process:

   {function_clause,
       [{diameter_service,'-spawn_opts/1-lc$^0/1-0-',
            [false],
            [{file,"base/diameter_service.erl"},{line,846}]},
        {diameter_service,start,5,
            [{file,"base/diameter_service.erl"},{line,820}]},
        {diameter_service,start,3,
            [{file,"base/diameter_service.erl"},{line,782}]},
        {diameter_service,handle_call,3,
            [{file,"base/diameter_service.erl"},{line,385}]},
        {gen_server,try_handle_call,4,[{file,"gen_server.erl"},{line,607}]},
        {gen_server,handle_msg,5,[{file,"gen_server.erl"},{line,639}]},
        {proc_lib,init_p_do_apply,3,[{file,"proc_lib.erl"},{line,237}]}]}

Tests for the option in the config suite were also missing.

Bungled in commit 78b3dc6.