[JAVA-397] authentication for replica set fails frequently because 'getnonce' and 'authenticate' command is issued to different server - MongoDB Jira

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major - P3
Resolution: Done
Affects Version/s: 2.6.3
Fix Version/s: 2.9.0
Component/s: Cluster Management
Labels:
Environment:
OS: Ubuntu 11.04 64bit, Mongod: 1.8.2, JDK: Oracle JDK 1.6.0u26, mongo-java-driver: 2.6.3

Backwards Compatibility:
Fully Compatible

Description

following code returns false.

import com.mongodb.Mongo

import com.mongodb.ServerAddress

val servers = new java.util.ArrayList[ServerAddress]

servers.add("192.168.10.1",27017)

servers.add("192.168.10.2",27017)

servers.add("192.168.10.3",27017)

val mongo = new Mongo(servers)

mongo.slaveOk // <= IMPORTANT!

mongo.getDB("dbname").authenticate("user","pass".toCharArray)

'getnonce' and 'authenticate' command seems to be issued to different server.
( 'getnonce' issued to 192.168.10.2, 'authenticate' issued to 192.168.10.3)

and logged following message on the server which received 'authenticate' command.

auth: bad nonce received or getnonce not called. could be a driver bug or a security attack. db:dbname

'getnonce' and 'authenticate' should be issued to same server whether 'slaveOk' or not.

Attachments

Issue Links

is duplicated by

JAVA-625 SlaveOk Query fails with auth error even after logging in

Closed

related to

JAVA-497 ReadPrefs ignored for commands

Closed

Activity

People

Assignee:: Jeffrey Yemin

Reporter:: Hitoshi Asai

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: Jul 20 2011 08:03:18 AM UTC

Updated:: Aug 29 2012 08:08:03 PM UTC

Resolved:: Aug 20 2012 02:55:12 PM UTC