Project

General

Profile

Actions
Copy link

Feature #62120

open

lua hardening

Added by Yuval Lifshitz 10 months ago. Updated 7 months ago.

Status:
New
Priority:
Normal
Assignee:
Yuval Lifshitz
Target version:
-
% Done:

40%

Source:
Tags:
lua
Backport:
Reviewed:
Affected Versions:
Pull request ID:

Description

this is an aggregate tracker to capture

[x] memory limit: add configurable memory limit per lua VM: https://github.com/ceph/ceph/pull/52273
[ ] reload packages: allow package reload from radosgw-admin: https://github.com/ceph/ceph/pull/52326
[ ] time/cycles limit: add configurable time/cycles limit per lua script
[ ] sandboxing: * remove the OS/IO/packages standad libs * provide RGW base time/clock functions * allow only preinstalled packages
[ ] multiple scripts per context
[ ] sharing and caching package code

Subtasks 5 (3 open2 closed)

Feature #63328: add configurable memory limit per lua VMResolved

Actions
Feature #63329: allow lua package reload from radosgw-adminResolved

Actions
Feature #63330: add configurable time/cycles limit per lua scriptNew

Actions
Feature #63331: support multiple lua scripts per contextNew

Actions
Feature #63332: support lua sandboxingNew

Actions
Actions
Copy link
 #1

Updated by Patrick Donnelly 10 months ago

A parent tracker is good but you should split those out into separate tickets with "Parent task" set to this ticket. Then it'll organize nicely.

Actions
Copy link
 #2

Updated by Casey Bodley 9 months ago

  • Description updated (diff)
Actions
Copy link
 #3

Updated by Yuval Lifshitz 8 months ago

  • Tracker changed from Bug to Feature
Actions
Copy link

Also available in: Atom PDF