From 75740c1374ddedc946df10bd84a4a0b48d0248ba Mon Sep 17 00:00:00 2001 From: Wouter van Oortmerssen Date: Mon, 30 Mar 2015 10:37:34 -0700 Subject: [PATCH] Clarified Verifier options. Change-Id: I04775dedc61f1c448eedb1883182af7b07239797 Tested: on Linux. --- docs/html/md__cpp_usage.html | 3 ++- docs/source/CppUsage.md | 4 +++- 2 files changed, 5 insertions(+), 2 deletions(-) diff --git a/docs/html/md__cpp_usage.html b/docs/html/md__cpp_usage.html index 640639cace9..b21e0918413 100644 --- a/docs/html/md__cpp_usage.html +++ b/docs/html/md__cpp_usage.html @@ -83,6 +83,7 @@

Writing in C++

Regardless of whether you used CreateMonster or MonsterBuilder, you now have an offset to the root of your data, and you can finish the buffer using:

FinishMonsterBuffer(fbb, mloc);

The buffer is now ready to be stored somewhere, sent over the network, be compressed, or whatever you'd like to do with it. You can access the start of the buffer with fbb.GetBufferPointer(), and it's size from fbb.GetSize().

+

Calling code may take ownership of the buffer with fbb.ReleaseBufferPointer(). Should you do it, the FlatBufferBuilder will be in an invalid state, and must be cleared before it can be used again. However, it also means you are able to destroy the builder while keeping the buffer in your application.

samples/sample_binary.cpp is a complete code sample similar to the code above, that also includes the reading code below.

Reading in C++

If you've received a buffer from somewhere (disk, network, etc.) you can directly start traversing it using:

@@ -123,7 +124,7 @@

Access of untrusted buffers

if ok is true, the buffer is safe to read.

Besides untrusted data, this function may be useful to call in debug mode, as extra insurance against data being corrupted somewhere along the way.

While verifying a buffer isn't "free", it is typically faster than a full traversal (since any scalar data is not actually touched), and since it may cause the buffer to be brought into cache before reading, the actual overhead may be even lower than expected.

-

In specialized cases where a denial of service attack is possible, the verifier has two additional constructor arguments that allow you to limit the nesting depth and total amount of tables the verifier may encounter before declaring the buffer malformed.

+

In specialized cases where a denial of service attack is possible, the verifier has two additional constructor arguments that allow you to limit the nesting depth and total amount of tables the verifier may encounter before declaring the buffer malformed. The default is Verifier(buf, len, 64 /* max depth */, 1000000, /* max tables */) which should be sufficient for most uses.

Text & schema parsing

Using binary buffers with the generated header provides a super low overhead use of FlatBuffer data. There are, however, times when you want to use text formats, for example because it interacts better with source control, or you want to give your users easy access to data.

Another reason might be that you already have a lot of data in JSON format, or a tool that generates JSON, and if you can write a schema for it, this will provide you an easy way to use that data directly.

diff --git a/docs/source/CppUsage.md b/docs/source/CppUsage.md index ef7272acf49..9112b3927a7 100755 --- a/docs/source/CppUsage.md +++ b/docs/source/CppUsage.md @@ -251,7 +251,9 @@ reading, the actual overhead may be even lower than expected. In specialized cases where a denial of service attack is possible, the verifier has two additional constructor arguments that allow you to limit the nesting depth and total amount of tables the -verifier may encounter before declaring the buffer malformed. +verifier may encounter before declaring the buffer malformed. The default is +`Verifier(buf, len, 64 /* max depth */, 1000000, /* max tables */)` which +should be sufficient for most uses. ## Text & schema parsing