Limit memory consumption per query to avoid down time due to OOME

Description

Hosting a public endpoint means you can not control what queries users send. While we can limit the cpu time per query no such limitation is possible for memory use, leading to trivial denial of service attacks (even if not intended)

I suggest implementing a LimitedSizeEvaluationStrategy that extends the default evaluation strategy implementation with constructs that limit max memory use.

As a side effect overriding container implementations in the evaluation strategy becomes easier.

Environment

None

Status

Assignee

Jeen Broekstra

Reporter

Jerven Bolleman

Components

Fix versions

Priority

Major
Configure