You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@mesos.apache.org by "Joe Smith (JIRA)" <ji...@apache.org> on 2014/08/07 00:27:12 UTC

[jira] [Created] (MESOS-1678) Any framework with credentials can kill any other framework via http

Joe Smith created MESOS-1678:
--------------------------------

             Summary: Any framework with credentials can kill any other framework via http
                 Key: MESOS-1678
                 URL: https://issues.apache.org/jira/browse/MESOS-1678
             Project: Mesos
          Issue Type: Story
            Reporter: Joe Smith


Looking through [the review introducing the /shutdown http endpoint|https://reviews.apache.org/r/22832], it appears that any framework's credentials can be used to shutdown any other framework:

Around line 650:
{code}
  foreach (const Credential& credential, master->credentials.get().http()) {
    if (credential.principal() == username &&
        (!credential.has_secret() || credential.secret() == password)) {
      // TODO(ijimenez) make removeFramework asynchronously
      master->removeFramework(framework);
      return OK();
    }
  }
{code}

Thanks to [~adam-mesos], I looked into in [authorization doc|https://github.com/apache/mesos/blob/master/docs/authorization.md], however I don't see where the ACL-checking is happening within that code.



--
This message was sent by Atlassian JIRA
(v6.2#6252)