Comments (4)
tracyhenry
commented on May 22, 2024
been thinking about how to fix this.
In general, predicates are generated in two ways:
- Initial predicates specified using the declarative model;
- produced by the predicate function of a jump
Backend knows the initial predicates and the predicate functions. So to completely have the backend generate the predicates, we just need to have the client send the input (which is a data tuple) of the predicate function.
However, it is still possible for a hacker to send an "evil tuple" which causes the predicate function to generate an evil predicate. So I think we need to do some validations of the predicates generated... e.g. do not contain semicolons.
from kyrix.
asah
commented on May 22, 2024
nice. typically, best practice is to send no "code" from clients and only
fixed, parseable atomic values or very simple expressions.
one idea is to parse for simple (nested) function calls, then provide a
library of functions. For user defined functions, require a prefix, e.g.
udf_myfunc1(), e.g. OR(AND(UDF_MYFUNC1(arg1, arg2), expr1, expr2)).
the parser is trivial and generator is safe if you whitelist the functions
using the prefixes, so they can't call system internal functions that could
cause trouble or break-out of this jail.
…On Thu, Mar 28, 2019 at 10:10 PM Wenbo Tao ***@***.***> wrote:
been thinking about how to fix this.
In general, predicates are generated in two ways:
- Initial predicates specified using the declarative model;
- produced by the predicate function of a jump
Backend knows the initial predicates and the predicate functions. So to
completely have the backend generate the predicates, we just need to have
the client send the input (which is a data tuple) of the predicate function.
However, it is still possible for a hacker to send an "evil tuple" which
causes the predicate function to generate an evil predicate. So I think we
need to do some validations of the predicates generated... e.g. do not
contain semicolons.
—
You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub
<#60 (comment)>,
or mute the thread
<https://github.com/notifications/unsubscribe-auth/AAIi4v8KDoW86imVvq6-Xc3VXDibBs1kks5vbXYNgaJpZM4bXi6d>
.
from kyrix.
tracyhenry
commented on May 22, 2024
in the latest PR I basically did what you suggested -- writing a parser which only allows predicates conforming to a format like OR(AND(col1='str', col2='str'), AND(...)) no udf is allowed at the moment given no applications so far required it (most predicates we've seen are pk-fk).
from kyrix.
asah
commented on May 22, 2024
nice!!
from kyrix.
Related Issues (20)
- Implement rtrees with clustering optimization HOT 8
- make deltabox and fetching scheme per-layer
- Layer designated indexer using names of indexer class HOT 1
- start-kyrix.sh recomputes nba index on docker restart
- pg native box/cube indexers have scaling issues HOT 6
- multi-view zoom buttons overlap
- do not use "||" for setting default values in template-api
- run-kyrix.sh will hang if there is an error in starting up HOT 1
- docker-compose hardcodes shared_buffer
- docker build fail due to an official PG docker image update
- maven env variable fail due to an update in maven
- incorrect tooltip position when panning
- move compile.sh to compiler/examples
- new predicates for literal zooms are undefined
- indexes are gone if the server crashes HOT 1
- Map images are broken in a wildfire example HOT 3
- SSV custom cluster mode does not support hover
- postJump doesn't remove old stuff when new canvas only has static layers
- pageOnLoad should return a promise that resolves when all data is loaded
- [help wanted] index computing cause the java GC overhead limit exceeded HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from kyrix.