Skip to content

Commit

Permalink
Reject invalid SearchBackpressureMode (opensearch-project#6832) (open…
Browse files Browse the repository at this point in the history
…search-project#7541)

* Reject invalid SearchBackpressureMode (opensearch-project#6832)

ClusterState updates of SearchBackpressureMode are persisted without
validation which causes the entire cluster to become unstable or
corrupted when a cluster tries to load invalid mode.

Signed-off-by: Austin Lee <[email protected]>
  • Loading branch information
austintlee authored May 15, 2023
1 parent f581ee2 commit ba35781
Show file tree
Hide file tree
Showing 5 changed files with 78 additions and 4 deletions.
2 changes: 2 additions & 0 deletions CHANGELOG.md
Original file line number Diff line number Diff line change
Expand Up @@ -74,6 +74,7 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
- Fix compression support for h2c protocol ([#4944](https://github.com/opensearch-project/OpenSearch/pull/4944))
- Support OpenSSL Provider with default Netty allocator ([#5460](https://github.com/opensearch-project/OpenSearch/pull/5460))
- Replaces ZipInputStream with ZipFile to fix Zip Slip vulnerability ([#7230](https://github.com/opensearch-project/OpenSearch/pull/7230))
- Add missing validation/parsing of SearchBackpressureMode of SearchBackpressureSettings ([#7541](https://github.com/opensearch-project/OpenSearch/pull/7541))

### Security

Expand Down Expand Up @@ -119,6 +120,7 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),

### Fixed
- Replaces ZipInputStream with ZipFile to fix Zip Slip vulnerability ([#7230](https://github.com/opensearch-project/OpenSearch/pull/7230))
- Add missing validation/parsing of SearchBackpressureMode of SearchBackpressureSettings ([#7541](https://github.com/opensearch-project/OpenSearch/pull/7541))

### Security

Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -69,3 +69,32 @@
include_defaults: true

- match: {defaults.node.attr.testattr: "test"}

---
"Test set search backpressure mode":

- do:
cluster.put_settings:
body:
persistent:
search_backpressure.mode: "monitor_only"

- match: {persistent: {search_backpressure: {mode: "monitor_only"}}}

---
"Test set invalid search backpressure mode":

- skip:
version: "- 2.9.99"
reason: "Parsing and validation of SearchBackpressureMode does not exist in versions < 3.0"

- do:
catch: bad_request
cluster.put_settings:
body:
persistent:
search_backpressure.mode: "monitor-only"

- match: {error.root_cause.0.type: "illegal_argument_exception"}
- match: { error.root_cause.0.reason: "Invalid SearchBackpressureMode: monitor-only" }
- match: { status: 400 }
Original file line number Diff line number Diff line change
Expand Up @@ -8,6 +8,8 @@

package org.opensearch.search.backpressure.settings;

import java.util.Locale;

/**
* Defines the search backpressure mode.
*/
Expand Down Expand Up @@ -38,7 +40,7 @@ public String getName() {
}

public static SearchBackpressureMode fromName(String name) {
switch (name) {
switch (name.toLowerCase(Locale.ROOT)) {
case "disabled":
return DISABLED;
case "monitor_only":
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -43,9 +43,10 @@ private static class Defaults {
* Defines the search backpressure mode. It can be either "disabled", "monitor_only" or "enforced".
*/
private volatile SearchBackpressureMode mode;
public static final Setting<String> SETTING_MODE = Setting.simpleString(
public static final Setting<SearchBackpressureMode> SETTING_MODE = new Setting<>(
"search_backpressure.mode",
Defaults.MODE,
SearchBackpressureMode::fromName,
Setting.Property.Dynamic,
Setting.Property.NodeScope
);
Expand Down Expand Up @@ -113,8 +114,8 @@ public SearchBackpressureSettings(Settings settings, ClusterSettings clusterSett

interval = new TimeValue(SETTING_INTERVAL_MILLIS.get(settings));

mode = SearchBackpressureMode.fromName(SETTING_MODE.get(settings));
clusterSettings.addSettingsUpdateConsumer(SETTING_MODE, s -> this.setMode(SearchBackpressureMode.fromName(s)));
mode = SETTING_MODE.get(settings);
clusterSettings.addSettingsUpdateConsumer(SETTING_MODE, this::setMode);
clusterSettings.addSettingsUpdateConsumer(SETTING_CANCELLATION_RATIO, searchShardTaskSettings::setCancellationRatio);
clusterSettings.addSettingsUpdateConsumer(SETTING_CANCELLATION_RATE, searchShardTaskSettings::setCancellationRate);
clusterSettings.addSettingsUpdateConsumer(SETTING_CANCELLATION_BURST, searchShardTaskSettings::setCancellationBurst);
Expand Down
Original file line number Diff line number Diff line change
@@ -0,0 +1,40 @@
/*
* SPDX-License-Identifier: Apache-2.0
*
* The OpenSearch Contributors require contributions made to
* this file be licensed under the Apache-2.0 license or a
* compatible open source license.
*/

package org.opensearch.search.backpressure.settings;

import org.opensearch.common.settings.ClusterSettings;
import org.opensearch.common.settings.Settings;
import org.opensearch.test.OpenSearchTestCase;

public class SearchBackpressureSettingsTests extends OpenSearchTestCase {

/**
* Validate proper construction of SearchBackpressureSettings object with a valid mode.
*/
public void testSearchBackpressureSettings() {
Settings settings = Settings.builder().put("search_backpressure.mode", "monitor_only").build();
ClusterSettings cs = new ClusterSettings(Settings.EMPTY, ClusterSettings.BUILT_IN_CLUSTER_SETTINGS);
SearchBackpressureSettings sbs = new SearchBackpressureSettings(settings, cs);
assertEquals(SearchBackpressureMode.MONITOR_ONLY, sbs.getMode());
assertEquals(settings, sbs.getSettings());
assertEquals(cs, sbs.getClusterSettings());
}

/**
* Validate construction of SearchBackpressureSettings object gets rejected
* on invalid SearchBackpressureMode value.
*/
public void testSearchBackpressureSettingValidateInvalidMode() {
Settings settings = Settings.builder().put("search_backpressure.mode", "foo").build();
assertThrows(
IllegalArgumentException.class,
() -> new SearchBackpressureSettings(settings, new ClusterSettings(Settings.EMPTY, ClusterSettings.BUILT_IN_CLUSTER_SETTINGS))
);
}
}

0 comments on commit ba35781

Please sign in to comment.