Crash on deserialize_from() with malformed data (attempting to allocate about 6.6 exabytes) #239
Comments
|
Can you post the code that you are using to deserialize? |
|
I have a struct definition: #[derive(Debug, PartialEq, Deserialize)]
struct GeneVariant {
gene: String,
p_dot_name: Option<String>,
c_dot_name: Option<String>,
}This is deserialized in a loop: loop {
match bincode::deserialize_from(&mut rdr) {
Ok(variant) => {
// Do things with the variant
}
Err(error) => match *error {
bincode::ErrorKind::Io(ioerror) => match ioerror.kind() {
io::ErrorKind::UnexpectedEof => break,
_ => panic!("Error ingesting variants from bincode: {}", ioerror)
}
error => error!("Unable to parse variant: {}", error)
}
}
} |
|
try using the limit method.
|
|
This fixes the issue, but I don't really understand why. Where is it getting that extra data from? |
|
It's not getting extra data, it's preallocating a vector with way too much memory in expectation of a huge payload. The first couple bytes that are decoded tell the String how long it's going to be, and it tries to pre-allocate all that memory for performance reasons. This is why the After reading through the code that does the pre-allocation, I think bincode can be much smarter about preallocation in the non-limited areas. I'll look into making this better. In the meantime, I highly recommend using the |
|
Understood, thank you! |
|
I've filed a new bug for the feature if you want to follow that one! |
Hi! The attached input (un-gzipped; github won't let me upload it raw) causes
deserialize_from()to attempt to allocate 6.6 EB of memory.test.bincode.gz
The text was updated successfully, but these errors were encountered: