mesos-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Alexander Rukletsov (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (MESOS-5588) Improve error handling when parsing acls.
Date Mon, 20 Jun 2016 13:42:05 GMT

    [ https://issues.apache.org/jira/browse/MESOS-5588?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15339504#comment-15339504
] 

Alexander Rukletsov commented on MESOS-5588:
--------------------------------------------

{noformat}
Commit: 30d703fe81eacf64e9d84503074579cf5667bea1 [30d703f]
Author: Alexander Rukletsov rukletsov@gmail.com
Date: 20 Jun 2016 15:35:40 CEST
Committer: Alexander Rukletsov alexr@apache.org

Explained why fields in the acts.Entity must be required.

Review: https://reviews.apache.org/r/48936/
{noformat}
{noformat}
Commit: e7bf541c9d78c3ef04ec88b3f723a73aa4a7e1ff [e7bf541]
Author: Alexander Rukletsov <rukletsov@gmail.com>
Date: 20 Jun 2016 15:35:51 CEST
Committer: Alexander Rukletsov <alexr@apache.org>

Added a TODO about possible security issues due to misspelled ACLs.

Review: https://reviews.apache.org/r/48937/
{noformat}

> Improve error handling when parsing acls.
> -----------------------------------------
>
>                 Key: MESOS-5588
>                 URL: https://issues.apache.org/jira/browse/MESOS-5588
>             Project: Mesos
>          Issue Type: Improvement
>            Reporter: Joerg Schad
>            Assignee: Joerg Schad
>              Labels: mesosphere, security
>
> During parsing of the authorizer errors are ignored. This can lead to undetected security
issues.
> Consider the following acl with an typo (usr instead of user)
> {code}
>    "view_frameworks": [
>                   {
>                     "principals": { "type": "ANY" },
>                     "usr": { "type": "NONE" }
>                   }
>                 ]
> {code}
> When the master is started with these flags it will interprete the acl int he following
way which gives any principal access to any framework.
> {noformat}
> view_frameworks {
>   principals {
>     type: ANY
>   }
> }
> {noformat}



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message