undefined | Better HN

0 pointssunnybeetroot26d ago0 comments

Even crazier is one drive has a limit on the total length of a file path, how is this even a thing that exists.

0 comments

Unlimited strings are a problem. People will use it as storage.

No, I'm not joking. We used to allow arbitrary paths in a cloud API I owned. Within about a month someone had figured out that the cost to store a single byte file was effectively zero, and they could encode arbitrary files into the paths of those things. It wasn't too long before there was a library to do it on Github. We had to put limits on it because otherwise people would store their data in the path, not the file.

jamesfinlayson26d ago

I remember someone telling me that S3 used to be similarly abused - people were creating empty files and using S3 like a key-value store somehow, so AWS just jacked up the price of S3 head-object API call to push people back to DynamoDB or whatever.

garaetjjte26d ago

Just include filename size in file size for billing purposes?

ahhhhnoooo26d ago

Not sufficient, unfortunately. The strings for file paths are stored in wholly different infrastructure with wholly different optimizations. It probably lives in your database. You really don't want people just stuffing gigabytes into that, payment or no payment. Odds are you didn't plan your control plane around, "what if someone uses our strings as encoded data?"

OrangeMusic26d ago

They won't do it if it's not free

Barbing26d ago

In the fine print, only to be used against bad actors (w/guarantee that filenames under x chars would never be charged), or that too problematic? building good faith into policy + "hiding" info...

Reason - to not overcomplicate or give appearance of nickel-and-diming

fn-mote26d ago

No, just charge for the amount of storage they use on your server. Not the amount of data you think you’re storing. In non-special cases these will be the same number.

1 more reply

sunnybeetrootOP26d ago

Wow alright I have learnt something thank you

dns_snek26d ago

What do you expect to happen when your cloud storage file path is 5000 characters long and your local filesystem only supports a maximum of 4096?

zrm25d ago

You expect the files to still be accessible using relative paths. What do you expect to happen if your cloud storage file path is 50 characters long and is mounted in a folder which is 4050 characters long when PATH_MAX is 4096?

The sync application itself can handle this using openat(2) or similar and should probably be using that regardless to avoid races.

dns_snek25d ago

Ah, I forgot that the maximum path length is usually limited by PATH_MAX, it's the path segment that's usually limited by the filesystem.

Point taken, although I still think it's better for cloud storage services to err on the side of compatibility, i.e. what's the lowest common denominator between Linux, macOS, Android, iOS from 10 years ago and Windows 7?

jamesfinlayson26d ago

Oh yeah... I remember Windows behaving weirdly when I tried to copy some files with long names into a deeper directory tree. And it was just weird behaviour - no useful error message.

fluoridation26d ago

Windows in particular supports at the API level paths tens of thousands of characters long, much longer than Linux. The problem is applications need to explicitly support such paths using the long path syntax, otherwise they're limited to 255 characters.

jamesfinlayson25d ago

Yeah I thought there was some way of doing it, but weirdly it was explorer.exe that was behaving in odd ways.

sunnybeetrootOP26d ago

Great point I stand corrected

thebrain26d ago

Everything needs limits otherwise someone will figure out how to or accidentally break it.

sunnybeetrootOP26d ago

I stand corrected you’re right

pseudohadamard26d ago

Except the GNU stuff, which has as a design principle "no arbitrary limits". Meaning no limits at all, not "no sane limits":

  Avoid arbitrary limits on the length or number of any data structure, including filenames, lines, files, and symbols, by allocating all data structures dynamically.

I assume they're relying on the OOM Killer and quotas to prevent DoSes all over the place.

j / k navigate · click thread line to collapse

0 comments

ahhhhnoooo26d ago

Unlimited strings are a problem. People will use it as storage.

jamesfinlayson26d ago

garaetjjte26d ago

Just include filename size in file size for billing purposes?

ahhhhnoooo26d ago

OrangeMusic26d ago

They won't do it if it's not free

Barbing26d ago

In the fine print, only to be used against bad actors (w/guarantee that filenames under x chars would never be charged), or that too problematic? building good faith into policy + "hiding" info...

Reason - to not overcomplicate or give appearance of nickel-and-diming

fn-mote26d ago

No, just charge for the amount of storage they use on your server. Not the amount of data you think you’re storing. In non-special cases these will be the same number.

1 more reply

sunnybeetrootOP26d ago

Wow alright I have learnt something thank you

dns_snek26d ago

What do you expect to happen when your cloud storage file path is 5000 characters long and your local filesystem only supports a maximum of 4096?

zrm25d ago

The sync application itself can handle this using openat(2) or similar and should probably be using that regardless to avoid races.

dns_snek25d ago

Ah, I forgot that the maximum path length is usually limited by PATH_MAX, it's the path segment that's usually limited by the filesystem.

jamesfinlayson26d ago

Oh yeah... I remember Windows behaving weirdly when I tried to copy some files with long names into a deeper directory tree. And it was just weird behaviour - no useful error message.

fluoridation26d ago

jamesfinlayson25d ago

Yeah I thought there was some way of doing it, but weirdly it was explorer.exe that was behaving in odd ways.

sunnybeetrootOP26d ago

Great point I stand corrected

thebrain26d ago

Everything needs limits otherwise someone will figure out how to or accidentally break it.

sunnybeetrootOP26d ago

I stand corrected you’re right

pseudohadamard26d ago

Except the GNU stuff, which has as a design principle "no arbitrary limits". Meaning no limits at all, not "no sane limits":

  Avoid arbitrary limits on the length or number of any data structure, including filenames, lines, files, and symbols, by allocating all data structures dynamically.

I assume they're relying on the OOM Killer and quotas to prevent DoSes all over the place.

j / k navigate · click thread line to collapse