Protect against garbage mesos versions
ClosedAll Users
Actions

Authored by • jasongilanfarr on Dec 7 2016, 5:12 PM.

Details

Reviewers

aquamatthias
nfnt
timcharper
jenkins
jmlvanre

Commits

rMARATHON29b71074b481: Protect against garbage mesos versions
rMARATHON163ba7acc29b: Protect against garbage mesos versions
rMARATHONffd6bc625015: Protect against garbage mesos versions

Summary

Older versions of libmesos report their version numbers with garbage

data (positive and negative numbers for all of the fields).

This has been fixed in more recent versions including 1.0.2.
Because they have bad version values, we need to protect against that, e.g.
the version numbers are commonly in the billions. So restrict the versions
accepted to be >0 and <100

Test Plan

sbt test, loaded libmesos with a bad version and verified we don't proceed.

Diff Detail

Repository

rMARATHON marathon

Lint

Automatic diff as part of commit; lint not applicable.

Unit

Automatic diff as part of commit; unit tests not applicable.

• jasongilanfarr retitled this revision from to Protect against garbage mesos versions.Dec 7 2016, 5:12 PM

• jasongilanfarr updated this object.

• jasongilanfarr edited the test plan for this revision. (Show Details)

• jasongilanfarr added reviewers: timcharper, nfnt, jmlvanre.

Herald added a subscriber: marathon-team. · View Herald TranscriptDec 7 2016, 5:12 PM

Build is green https://jenkins.mesosphere.com/service/jenkins/job/public-test-marathon-phabricator/577/ for more details.

lgtm

This revision is now accepted and ready to land.Dec 7 2016, 5:57 PM

• jasongilanfarr added a reviewer: aquamatthias.Dec 7 2016, 7:00 PM

aquamatthias accepted this revision.Dec 7 2016, 7:06 PM

jenkins requested changes to this revision.Dec 7 2016, 9:06 PM

jenkins added a reviewer: jenkins.

This revision now requires changes to proceed.Dec 7 2016, 9:06 PM

src/main/scala/mesosphere/mesos/LibMesos.scala
29	is there some special meaning to `v0.0.0`? If so, should it be a constant defined with a meaningful name? If not, then what's the difference between reporting `v0.0.0` and `v10000000.v100000000000.v1000000000`?

src/main/scala/mesosphere/mesos/LibMesos.scala
29	ugh. you get the point (ignoring the extra `v`s that made their way into my bogus example)

Its less than 1.1.0. 10000 > 1.1.0, so we would accept things.

src/main/scala/mesosphere/mesos/LibMesos.scala
29	Its less than 1.1.0. The bug here is that mesos has a bug where it feeds garbage 64bit ints and we get versions like `-41012481231.1240141401.1241014810` and `1231232013181.1031241041.142014101`

jenkins requested changes to this revision.Dec 7 2016, 9:53 PM

jenkins requested changes to this revision.Dec 7 2016, 10:18 PM

Closed by commit rMARATHONffd6bc625015: Protect against garbage mesos versions (authored by • jasongilanfarr). · Explain WhyDec 8 2016, 12:52 AM

This revision was automatically updated to reflect the committed changes.

Revision Contents

			Path	Packages
M			src/main/scala/mesosphere/mesos/LibMesos.scala (8 lines)

Diff	ID	Base	Description	Created	Lint	Unit
Base			Base
Diff 1	1139	89740d0		Dec 7 2016, 5:12 PM	★	★
Diff 2	1145	56563ce	rMARATHONffd6bc625015055bfc8996ddee96fc23ba522661	Dec 8 2016, 12:52 AM	★	★

Commit	Tree	Parents	Author	Summary	Date
41bda0c4f0e6	4ad2868c7428	89740d036d21	Jason Gilanfarr	Protect against garbage mesos versions (Show More…)	Dec 7 2016, 5:09 PM

Diff 1145

View Options

src/main/scala/mesosphere/mesos/LibMesos.scala