[MESOS-7086] Tighten up rules on IDs used in Mesos - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Task
Status: Open
Priority: Major
Resolution: Unresolved
Affects Version/s: None
Fix Version/s: None
Component/s: None
Labels:
None

Description

We currently have pretty relaxed rules on validity of IDs (e.g., TaskID, ExecutorID, PersistenceID):
https://github.com/apache/mesos/blob/7a3df44eb6a59bd95604fd38a18dc745363d468d/src/common/validation.cpp
https://github.com/apache/mesos/blob/7a3df44eb6a59bd95604fd38a18dc745363d468d/src/slave/validation.cpp#L40

We should tighten up the restrictions to prevent misleading and exploitable ID and document these rules.

Attachments

Issue Links

relates to

MESOS-6866 Mesos agent not checking IDs before using them as part of the paths

Resolved

Activity

People

Assignee:: Yan Xu

Reporter:: Yan Xu

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 08/Feb/17 21:22

Updated:: 23/Feb/17 21:15