paint-brush
Y2K22: The Problem that Caused Millions of Emails Worldwide to go Undeliveredby@mcsee
464 reads
464 reads

Y2K22: The Problem that Caused Millions of Emails Worldwide to go Undelivered

by Maximiliano ContieriJanuary 14th, 2022
Read on Terminal Reader
Read this story w/o Javascript
tldt arrow

Too Long; Didn't Read

The new year arrived with new errors on [Microsoft Exchange] server. The problem caused millions of emails worldwide to go undelivered. Microsoft Exchange's malware scanning engine stores signature dates using [32-bit integers] The largest possible number that can be stored in 32-bit is *2147483647*. However, the QA team forgot to make basic boundaries testing using the [Zombie-testing-one-behavior-at-a-time-9s2m3zjo.

Company Mentioned

Mention Thumbnail

Coin Mentioned

Mention Thumbnail
featured image - Y2K22: The Problem that Caused Millions of Emails Worldwide to go Undelivered
Maximiliano Contieri HackerNoon profile picture


The year is 2022 but we keep programming in the 1950s.


TL;DR: We need to follow one simple rule. Follow the bijection.


The new year arrived with new errors on Microsoft Exchange.


The problem caused millions of emails worldwide to go undelivered.


Many of them remain stuck in email transport queues.


Some queues are full and cause entire servers to crash.

The Problem

Y2K22 is familiar to engineers like me who worked in Y2K Bug.


Someone abused an incorrect date representation by using something that is not a date.


Exchange's malware scanning engine stores signature dates using 32-bit integers.


Using integers to store dates is a clear bijection violation.


Also a primitive obsession and premature optimization code smell.

The Chain of Responsibilities

Some developers decided (probably without a real benchmark) that storing dates as 32-bit integers was a smart move.


However, the largest possible number that can be stored in 32-bit is 2147483647.


Things were fine for the 2021 dates because they were stamped as 211231XXXX (for 31st December) using YYMMDDhhmm format.


Yet another smell. Date and time are continuous and consecutive measures.


So are integers, but not this absurd representation.


Sadly, the developer was not the only one to blame.


The peer reviewer stated that it was a very good optimization.


Also, the QA team forgot to make basic boundaries testing using the Zombies technique.

The Error

Happy new year.


It is January 1st, 2022, according to this bijection we need to convert it to 2201010001.


This is not possible when trying to format it to 32-bits. The outcome is larger than the maximum number allowed.


This would cause timestamp validations on the server software to fail.


As a result, lots of emails are not being sent piling up on servers.

The Fix

Fixing this problem (It is not a bug), is very difficult.


Exchange is a product running on on-premises servers so it has to be patched manually in many cases.


The manual fix you can execute on your Powershell console is easy


Set the date on the signature file as 2112330001 (December 33rd, 2021)


Yes. it is no joke.


That is the patch.


Violate and abuse the bijection again creating representations of not real entities.


Using this exploit to set this invalid date should also raise an error according to the fail-fast principle.

Conclusions

If you want to develop serious software and be proud of it, just be loyal to the bijection.


If you create accurate models of your problems, your software will always work as expected.