Expand my Community achievements bar.

How to read a file or stream in Most Robust way using Java?

Avatar

Level 1
Level 1
8/26/19 2:11:31 AM

protected void doPost(SlingHttpServletRequest req, SlingHttpServletResponse resp) throws IOException {

BufferedReader reader = req.getReader();

try{

String line = reader != null ? reader.readLine() : null;

}finally{

reader.close();

}

The above code went for a review with the Security team and the following comments were received:

  1. BufferedReader.readLine is susceptible to DOS (Denial of Service) attacks (line of infinite length, huge file containing no line feed/carriage return)
  2. Resource exhaustion for the StringBuilder variable (cases when a file containing data greater than the available memory).

How to resolve the above issue?

Views

4.6K

Replies

2
Sign in to like this content

Total Likes

Translate
Translate
2 Replies

Avatar

Level 6
Level 6
8/26/19 4:23:59 AM

Hi karthickv99865601​,

Can you please check if this is of any help since this query is not AEM specific?

The suggestion is to leverage StringBuffer to split the stream and read it in chunks rather than one whole stream.

https://stackoverflow.com/questions/17084657/most-robust-way-of-reading-a-file-or-stream-using-java-...

Regards,

Ram

Views

4.5K

Replies

0
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 1
Level 1
8/26/19 6:44:01 AM

Hi rampai,

I have tried that too, but its throwing error.

Views

4.5K

Replies

0
Sign in to like this content

Total Likes

Translate
Translate