Rev jackson-databind to deal with latest vulnerabilities. (#163)

* Fix Jackson databind to deal with latest CVE
* rev minio version used in async thumbnails test to pick up newer jetty version
* fix up async thumbnails to test new minio version

Author: zootalures

examples/async-thumbnails/README.md

@@ -32,9 +32,8 @@ this example. Run:
 ```
 
 This will start a local functions service, a local flow completion
-service, and will set up a `myapp` application and three routes: `/resize128`,
-`/resize256` and `/resize512`. The routes are implemented as Fn functions
-which just invoke `imagemagick` to convert the images to the specified sizes.
+service, and will set up a `myapp` application and three functions: `resize128`,
+`resize256` and `resize512`. These functions just invoke `imagemagick` to convert the images to the specified sizes.
 
 The setup script also starts a docker container with an object storage daemon
 based on `minio` (with access key `alpha` and secret key `betabetabetabeta`).
@@ -48,14 +47,9 @@ docker container, so that you can verify when the thumbnails are uploaded.
 Build the function locally:
 
 ```bash
-$ fn build
+$ fn deploy --local --app myapp 
 ```
 
-Create a route to host the function:
-
-```bash
-$ fn create route myapp /async-thumbnails
-```
 
 Configure the app. In order to do this you must determine the IP address of the
 storage server docker container:
@@ -68,18 +62,18 @@ $ docker inspect --type container -f '{{range .NetworkSettings.Networks}}{{.IPAd
 and then use it as the storage host:
 
 ```bash
-$ fn config route myapp /async-thumbnails OBJECT_STORAGE_URL http://172.17.0.4:9000
+$ fn config app myapp  OBJECT_STORAGE_URL http://172.17.0.4:9000
 myapp /async-thumbnails updated OBJECT_STORAGE_URL with http://172.17.0.4:9000
-$ fn config route myapp /async-thumbnails OBJECT_STORAGE_ACCESS alpha
+$ fn config app myapp  OBJECT_STORAGE_ACCESS alpha
 myapp /async-thumbnails updated OBJECT_STORAGE_ACCESS with alpha
-$ fn config route myapp /async-thumbnails OBJECT_STORAGE_SECRET betabetabetabeta
+$ fn config app myapp OBJECT_STORAGE_SECRET betabetabetabeta
 myapp /async-thumbnails updated OBJECT_STORAGE_SECRET with betabetabetabeta
 ```
 
 Invoke the function by passing the provided test image:
 
 ```bash
-$ curl -X POST --data-binary @test-image.png -H "Content-type: application/octet-stream" "http://localhost:8080/r/myapp/async-thumbnails"
+$ curl -X POST --data-binary @test-image.png -H "Content-type: application/octet-stream" "http://localhost:8080/t/myapp/async-thumbnails"
 {"imageId":"bd74fff4-0388-4c6f-82f2-8cde9ba9b6fc"}
 ```
 
@@ -116,6 +110,13 @@ public class ThumbnailsFunction {
                 .orElseThrow(() -> new RuntimeException("Missing configuration: OBJECT_STORAGE_ACCESS"));
         storageSecretKey = ctx.getConfigurationByKey("OBJECT_STORAGE_SECRET")
                 .orElseThrow(() -> new RuntimeException("Missing configuration: OBJECT_STORAGE_SECRET"));
+        
+        resize128ID = ctx.getConfigurationByKey("RESIZE_128_FN_ID")
+                  .orElseThrow(() -> new RuntimeException("Missing configuration: RESIZE_128_FN_ID"));
+        resize256ID = ctx.getConfigurationByKey("RESIZE_256_FN_ID")
+          .orElseThrow(() -> new RuntimeException("Missing configuration: RESIZE_256_FN_ID"));
+        resize512ID = ctx.getConfigurationByKey("RESIZE_512_FN_ID")
+          .orElseThrow(() -> new RuntimeException("Missing configuration: RESIZE_512_FN_ID"));
     }
 
     // ...
@@ -155,11 +156,11 @@ public class ThumbnailsFunction {
         Flow runtime = Flows.currentFlow();
 
         runtime.allOf(
-                runtime.invokeFunction("myapp/resize128", HttpMethod.POST, Headers.emptyHeaders(), imageBuffer)
+                runtime.invokeFunction(resize128ID, HttpMethod.POST, Headers.emptyHeaders(), imageBuffer)
                         .thenAccept((img) -> objectUpload(img.getBodyAsBytes(), id + "-128.png")),
-                runtime.invokeFunction("myapp/resize256", HttpMethod.POST, Headers.emptyHeaders(), imageBuffer)
+                runtime.invokeFunction(resize256ID, HttpMethod.POST, Headers.emptyHeaders(), imageBuffer)
                         .thenAccept((img) -> objectUpload(img.getBodyAsBytes(), id + "-256.png")),
-                runtime.invokeFunction("myapp/resize512", HttpMethod.POST, Headers.emptyHeaders(), imageBuffer)
+                runtime.invokeFunction(resize512ID, HttpMethod.POST, Headers.emptyHeaders(), imageBuffer)
                         .thenAccept((img) -> objectUpload(img.getBodyAsBytes(), id + "-512.png")),
                 runtime.supply(() -> objectUpload(imageBuffer, id + ".png"))
         );
@@ -218,8 +219,9 @@ in [Testing Functions](../../docs/TestingFunctions.md).
 ```java
 public class ThumbnailsFunctionTest {
 
-    @Rule
-    public final FnTestingRule testing = FnTestingRule.createDefault();
+     @Rule
+     public final FnTestingRule fn = FnTestingRule.createDefault();
+     private final FlowTesting flow = FlowTesting.create(fn);
 
     // ...
 }
@@ -259,20 +261,22 @@ public class ThumbnailsFunctionTest {
 
    @Test
     public void testThumbnail() {
-        testing
 
-                .setConfig("OBJECT_STORAGE_URL", "http://localhost:" + mockServer.port())
-                .setConfig("OBJECT_STORAGE_ACCESS", "alpha")
-                .setConfig("OBJECT_STORAGE_SECRET", "betabetabetabeta")
+                 fn.setConfig("OBJECT_STORAGE_URL", "http://localhost:" + mockServer.port())
+                   .setConfig("OBJECT_STORAGE_ACCESS", "alpha")
+                   .setConfig("OBJECT_STORAGE_SECRET", "betabetabetabeta")
+                   .setConfig("RESIZE_128_FN_ID","myapp/resize128")
+                   .setConfig("RESIZE_256_FN_ID","myapp/resize256")
+                   .setConfig("RESIZE_512_FN_ID","myapp/resize512");
 
-                .givenFn("myapp/resize128")
+                flow.givenFn("myapp/resize128")
                     .withAction((data) -> "128".getBytes())
                 .givenFn("myapp/resize256")
                     .withAction((data) -> "256".getBytes())
                 .givenFn("myapp/resize512")
                     .withAction((data) -> "512".getBytes())
 
-                .givenEvent()
+                fn.givenEvent()
                     .withBody("testing".getBytes())
                     .enqueue();
 
@@ -301,21 +305,23 @@ public class ThumbnailsFunctionTest {
 
     @Test
     public void anExternalFunctionFailure() {
-        testing
-                .setConfig("OBJECT_STORAGE_URL", "http://localhost:" + mockServer.port())
-                .setConfig("OBJECT_STORAGE_ACCESS", "alpha")
-                .setConfig("OBJECT_STORAGE_SECRET", "betabetabetabeta")
-
-                .givenFn("myapp/resize128")
-                    .withResult("128".getBytes())
-                .givenFn("myapp/resize256")
-                    .withResult("256".getBytes())
-                .givenFn("myapp/resize512")
-                    .withFunctionError()
-
-                .givenEvent()
-                    .withBody("testing".getBytes())
-                    .enqueue();
+        fn.setConfig("OBJECT_STORAGE_URL", "http://localhost:" + mockServer.port())
+          .setConfig("OBJECT_STORAGE_ACCESS", "alpha")
+          .setConfig("OBJECT_STORAGE_SECRET", "betabetabetabeta")
+          .setConfig("RESIZE_128_FN_ID","myapp/resize128")
+          .setConfig("RESIZE_256_FN_ID","myapp/resize256")
+          .setConfig("RESIZE_512_FN_ID","myapp/resize512");
+        
+        flow.givenFn("myapp/resize128")
+                .withResult("128".getBytes())
+            .givenFn("myapp/resize256")
+                .withResult("256".getBytes())
+            .givenFn("myapp/resize512")
+                .withFunctionError();
+        
+        fn.givenEvent()
+             .withBody("testing".getBytes())
+             .enqueue();
 
         // Mock the http endpoint
         mockMinio();

examples/async-thumbnails/func.yaml

@@ -1,7 +1,11 @@
-name: fn-example/async-thumbnails
-version: 0.0.1
+schema_version: 20180708
+name: async-thumbnails
+version: 0.0.8
 runtime: java
 cmd: com.fnproject.fn.examples.ThumbnailsFunction::handleRequest
-path: /async-thumbnails
-format: http
-timeout: 30
+format: http-stream
+timeout: 120
+triggers:
+- name: async-thumbnails
+  type: http
+  source: /async-thumbnails

examples/async-thumbnails/pom.xml

@@ -10,13 +10,15 @@
 
         <fdk.version>1.0.0-SNAPSHOT</fdk.version>
         <mockito.version>2.8.47</mockito.version>
+        <jackson.version>2.9.7</jackson.version>
     </properties>
 
     <groupId>com.fnproject.fn.examples</groupId>
     <artifactId>async-thumbnails</artifactId>
     <version>1.0.0-SNAPSHOT</version>
 
     <dependencies>
+
         <dependency>
             <groupId>com.fnproject.fn</groupId>
             <artifactId>api</artifactId>
@@ -32,10 +34,15 @@
             <artifactId>commons-net</artifactId>
             <version>3.6</version>
         </dependency>
+        <dependency>
+            <groupId>com.fasterxml.jackson.core</groupId>
+            <artifactId>jackson-databind</artifactId>
+            <version>${jackson.version}</version>
+        </dependency>
         <dependency>
             <groupId>io.minio</groupId>
             <artifactId>minio</artifactId>
-            <version>3.0.12</version>
+            <version>5.0.1</version>
         </dependency>
         <dependency>
             <groupId>com.fnproject.fn</groupId>
@@ -65,7 +72,7 @@
         <dependency>
             <groupId>com.github.tomakehurst</groupId>
             <artifactId>wiremock</artifactId>
-            <version>2.18.0</version>
+            <version>2.19.0</version>
         </dependency>
     </dependencies>
 

examples/async-thumbnails/run.sh

@@ -1,15 +1,11 @@
 #!/bin/bash
+set -e
 
-fn build
+fn --verbose  deploy   --app myapp --local
 
-fn create route myapp /async-thumbnails
 
-STORAGE_SERVER_IP=`docker inspect --type container -f '{{range .NetworkSettings.Networks}}{{.IPAddress}}{{end}}' example-storage-server`
-fn config route myapp /async-thumbnails OBJECT_STORAGE_URL http://${STORAGE_SERVER_IP}:9000
-fn config route set myapp /async-thumbnails OBJECT_STORAGE_ACCESS alpha
-fn config route set myapp /async-thumbnails OBJECT_STORAGE_SECRET betabetabetabeta
-
-curl -X POST --data-binary @test-image.png -H "Content-type: application/octet-stream" "http://localhost:8080/r/myapp/async-thumbnails"
+echo "Calling function"
+curl -v -X POST --data-binary @test-image.png -H "Content-type: application/octet-stream" "http://localhost:8080/t/myapp/async-thumbnails"
 
 echo "Contents of bucket"
 mc ls -r example-storage-server

examples/async-thumbnails/setup/resize128/func.yaml

@@ -1,4 +1,5 @@
-name: example/resize128
-version: 0.0.1
+schema_version: 20180708
+name: resize128
+version: 0.0.5
 entrypoint: convert - -resize 128x128 -
-path: /resize128
+format: default

examples/async-thumbnails/setup/resize256/func.yaml

@@ -1,4 +1,5 @@
-name: example/resize256
-version: 0.0.1
+schema_version: 20180708
+name: resize256
+version: 0.0.5
 entrypoint: convert - -resize 256x256 -
-path: /resize256
+format: default

examples/async-thumbnails/setup/resize512/func.yaml

@@ -1,4 +1,5 @@
-name: example/resize512
-version: 0.0.1
+schema_version: 20180708
+name: resize512
+version: 0.0.8
 entrypoint: convert - -resize 512x512 -
-path: /resize512
+format: default

examples/async-thumbnails/setup/setup.sh

@@ -51,26 +51,21 @@ fi
 STORAGE_SERVER_IP=`docker inspect --type container -f '{{range .NetworkSettings.Networks}}{{.IPAddress}}{{end}}' example-storage-server`
 
 # Start functions server if not there
-if [[ -z `docker ps | grep "functions"` ]]; then
-    docker run -d --name functions \
-        -e NO_PROXY="$STORAGE_SERVER_IP:$NO_PROXY" \
-        -p 8080:8080 \
-        -v /var/run/docker.sock:/var/run/docker.sock \
-        "$FUNCTIONS_IMAGE"
-    # Give it time to start up
+if [[ -z `docker ps | grep "fnserver"` ]]; then
+    fn start -d
     sleep 3
 else
     echo "Functions server is already up."
 fi
 # Get its IP
-FUNCTIONS_SERVER_IP=`docker inspect --type container -f '{{range .NetworkSettings.Networks}}{{.IPAddress}}{{end}}' functions`
+FUNCTIONS_SERVER_IP=`docker inspect --type container -f '{{range .NetworkSettings.Networks}}{{.IPAddress}}{{end}}' fnserver`
 
 # Start flow service if not there
 if [[ -z `docker ps | grep "flow-service"` ]]; then
     docker run -d --name flow-service \
         -e LOG_LEVEL=debug \
         -e NO_PROXY="$FUNCTIONS_SERVER_IP:$NO_PROXY" \
-        -e API_URL=http://$FUNCTIONS_SERVER_IP:8080/r \
+        -e API_URL=http://$FUNCTIONS_SERVER_IP:8080/invoke \
         -p 8081:8081 \
         "$COMPLETER_IMAGE"
     # Give it time to start up
@@ -86,42 +81,37 @@ if [[ `fn list apps` == *"myapp"* ]]; then
     echo "App myapp is already there."
 else
     fn create app myapp
-    fn config app myapp COMPLETER_BASE_URL http://10.167.103.193:8081
 fi
 
-if [[ `fn list routes myapp` == *"/resize128"* ]]; then
-    echo "Route /resize128 is already there."
-else
-    # This works around proxy issues
-    cd $SCRIPT_DIR/resize128 && \
-        docker build -t example/resize128:0.0.1 \
-            --build-arg http_proxy=$http_proxy \
-            --build-arg https_proxy=$https_proxy \
-            . && \
-        fn create route myapp /resize128
-fi
-if [[ `fn list routes myapp` == *"/resize256"* ]]; then
-    echo "Route /resize256 is already there."
-else
-    # This works around proxy issues
-    cd $SCRIPT_DIR/resize256 && \
-        docker build -t example/resize256:0.0.1 \
-            --build-arg http_proxy=$http_proxy \
-            --build-arg https_proxy=$https_proxy \
-            . && \
-        fn create route myapp /resize256
-fi
-if [[ `fn list routes myapp` == *"/resize512"* ]]; then
-    echo "Route /resize512 is already there."
-else
-    # This works around proxy issues
-    cd $SCRIPT_DIR/resize512 && \
-        docker build -t example/resize512:0.0.1 \
-            --build-arg http_proxy=$http_proxy \
-            --build-arg https_proxy=$https_proxy \
-            . && \
-        fn create route myapp /resize512
-fi
+
+fn config app myapp COMPLETER_BASE_URL http://${COMPLETER_SERVER_IP}:8081
+fn config app myapp OBJECT_STORAGE_URL http://${STORAGE_SERVER_IP}:9000
+fn config app myapp OBJECT_STORAGE_ACCESS alpha
+fn config app myapp OBJECT_STORAGE_SECRET betabetabetabeta
+
+(
+  cd ${SCRIPT_DIR}/resize128
+  fn deploy --app myapp --local
+)
+
+fn config app myapp RESIZE_128_FN_ID $(fn list functions myapp  | grep resize128 | awk '{print $3}')
+
+(
+  cd ${SCRIPT_DIR}/resize256
+  fn deploy --app myapp --local
+)
+
+fn config app myapp RESIZE_256_FN_ID $(fn list functions myapp  | grep resize256 | awk '{print $3}')
+
+
+(
+  cd ${SCRIPT_DIR}/resize512
+  fn deploy --app myapp --local
+)
+
+fn config app myapp RESIZE_512_FN_ID $(fn list functions myapp  | grep resize512 | awk '{print $3}')
+
+
 
 
 if mc config host list | grep example-storage-server &>/dev/null ; then