mirror/LocalAI
1
0
Fork 0
mirror of https://github.com/mudler/LocalAI.git synced 2026-06-28 02:17:00 -04:00
Code Issues Packages Projects Releases Wiki Activity
Files
ade9cc9e37ff8e2c237f30332f52134f5c8fd016
LocalAI/core
History
LocalAI [bot] ade9cc9e37 fix(openresponses): bound resume-stream buffer and enforce response ownership (#10569) 
The background=true resumable-stream path had two latent issues.

1. Unbounded resume buffer. AppendEvent grew StreamEvents without limit, so
   a long-running or abandoned background generation could consume process
   memory without bound. The store now caps the buffer (event count and total
   bytes, mirroring llama.cpp's byte-capped slot ring), evicting oldest events
   from the front and advancing a droppedThrough watermark. GetEventsAfter
   returns ErrOffsetLost when the requested starting_after is below the
   watermark, and handleStreamResume surfaces that as HTTP 409 before
   committing to the SSE response, so a resuming client gets a clear error
   instead of a silently truncated stream.

2. Missing ownership check (IDOR). GET /responses/:id, its stream resume, and
   /cancel looked up responses purely by ID, letting any caller who knows or
   guesses an ID read or cancel another caller's response. Responses now carry
   the creating caller's identity (auth.GetUser), stamped at creation and
   compared on read/cancel/resume; a mismatch returns 404 (not 403) so
   existence is not leaked. Backward compatible: responses with no owner
   (single-key / no-auth deployments) remain accessible.


Assisted-by: Claude:claude-opus-4-8 [Claude Code]

Signed-off-by: Ettore Di Giacinto <mudler@localai.io>
Co-authored-by: Ettore Di Giacinto <mudler@localai.io>
2026-06-28 02:02:15 +02:00
..
application
feat(distributed): add LOCALAI_DISTRIBUTED_SHARED_MODELS to skip staging on shared volumes (#10556) (#10566)
2026-06-28 01:23:07 +02:00
backend
feat(ced): sound-event classification backend (CED audio tagger) (#10425)
2026-06-22 01:00:28 +02:00
cli
feat(distributed): add LOCALAI_DISTRIBUTED_SHARED_MODELS to skip staging on shared volumes (#10556) (#10566)
2026-06-28 01:23:07 +02:00
clients
security(http): refuse redirects on outbound clients via hardened pkg/httpclient (#10087)
2026-05-30 12:04:10 +02:00
config
feat(distributed): add LOCALAI_DISTRIBUTED_SHARED_MODELS to skip staging on shared volumes (#10556) (#10566)
2026-06-28 01:23:07 +02:00
dependencies_manager
feat(ui): move to React for frontend (#8772)
2026-03-05 21:47:12 +01:00
explorer
feat(middleware): Model routing, PII filtering, Cloud model proxies (#9802)
2026-05-25 09:28:27 +02:00
gallery
fix(gallery): match mmproj/model quant as a whole token so F16 no longer selects BF16 (#10559) (#10564)
2026-06-28 01:21:33 +02:00
http
fix(openresponses): bound resume-stream buffer and enforce response ownership (#10569)
2026-06-28 02:02:15 +02:00
p2p
feat: add distributed mode (#9124)
2026-03-30 00:47:27 +02:00
schema
fix(llama-cpp): stop reinterpreting plain-string message content as JSON (#10524) (#10538)
2026-06-27 01:42:05 +02:00
services
feat(distributed): add LOCALAI_DISTRIBUTED_SHARED_MODELS to skip staging on shared volumes (#10556) (#10566)
2026-06-28 01:23:07 +02:00
startup
feat(gallery): verify backend OCI images with keyless cosign (#9823)
2026-05-18 08:02:20 +02:00
templates
fix(openresponses): populate Content and accept bare {role,content} items (#10039) (#10040)
2026-05-28 07:21:48 +00:00
trace
feat(pii): NER tier engine — privacy-filter.cpp backend + NER-centric PII filter (#10360)
2026-06-18 11:45:22 +01:00