Skip to content

This release fixes two denial-of-service bugs:

  • CVE-2019-11937 in the carbon protocol reader
  • CVE-2019-11923 in the deprecated ASCII parser.
Assets 2
Nov 4, 2019
Attempt to make CarbonProtocolReader::skip tail recursive
Reviewed By: edenzik

Differential Revision: D17967570

fbshipit-source-id: fdc32e190a521349c7c8f4d6081902fa18eb0284

@andreazevedo andreazevedo released this Dec 15, 2018 · 261 commits to master since this release

Add getTotalBufferedBytes() method fo AsyncTransport

Summary:
When BufferCallback::onEgressBuffered() is called, applications usually want to
know how many bytes were buffered so that can take actions (such as avoiding
that connection, failing fast, etc).
This diff adds getTotalPendingBytes() to AsyncTransport to allow applications
to easily query how many bytes were actually buffered.

Reviewed By: spalamarchuk

Differential Revision: D13252677

fbshipit-source-id: 8ec203f6764e00f52d471321afb549376397eb84
Assets 2
Jun 6, 2018
Fix possible move eval issue
Summary: Some static analysis tools/linters complained about eval order and doing std::move.  Also complained about shadowing the keepAlive var.  Fix both.

Reviewed By: andreazevedo

Differential Revision: D8287675

fbshipit-source-id: ee20b7c2afe9bb79b835fb4b3e6ca09cc2b0042d
Jan 29, 2018
Allow using EagerShardSelectionRoute with LatestRoute
Summary: Add support for nesting LatestRoute in EagerShardSelectionRoute.

Reviewed By: glamtechie

Differential Revision: D6832737

fbshipit-source-id: 94f8f7d9b78d76d470e19923c2ccb23f16c94a7d
  • f473934 fixes a security issue. Updating to a version that includes that fix (i.e. version 36 or greater) is highly recommended.
  • New option in MissFailoverRoute allows returning the “best” reply instead of the last reply. Check this wiki page for more information.
  • New feature that saves the last valid configuration to disk and falls back to it when mcrouter starts with an invalid config. Mcrouter will trust this saved config for up to one hour (configurable). More information in this wiki page.
  • Bug fixes and performance improvements.
Assets 2
Mar 16, 2017
Log failure to dump configs less frequently
Summary: It's not necessary to log every single failure to dump last valid configs.

Reviewed By: jmswen

Differential Revision: D4711040

fbshipit-source-id: 774f2659213dcdfe23ef927092397f2b1e71cc5e
You can’t perform that action at this time.