Loading...

XML

Word

Printable

JSON

Type: Bug
Resolution: Done
Priority: Major - P3
Fix Version/s: 2.5.4
Affects Version/s: 2.5.3
Component/s: Security
Labels:
- 26qa

Operating System:
Linux

Try to create large chain of linked roles:

Role0 -> Role1 -> Role2 -> Role3 -> ..... -> RoleN

At some value of N (depending on machine) seg fault will occur. It seems stack is blown, from many recursive calls to RoleGraph::_recomputePrivilegeDataHelper.

Try to create a cycle of linked roles:

Role0 -> Role1 -> Role2 -> Role3 -> ..... -> RoleN -> Role0

Trying to create a large cycle (1600 roles) causes a segmentation fault. We think that the stack blew up (too many recursive calls to search through the role graph?). From the stack trace, it seems that 1396 calls to the RoleGraph::_recomputePrivilegeDataHelper went through before it blew the top.

Test that produced bugs is attached.

- - Sort By Name
  - Sort By Date
  - Ascending
  - Descending
  - Thumbnails
  - List
  - Download All

actions.js
3 kB
Oct 30 2013 04:04:53 PM UTC
qa_341_chain_roles.js
3 kB
Oct 30 2013 04:04:54 PM UTC

related to

SERVER-27821 Make `large_role_chain.js` not run on DEBUG systems

Closed

Assignee:: Spencer Brody (Inactive)

Reporter:: Samantha Ritter (Inactive)

Participants:: Githook User, Samantha Ritter, Spencer Brody

Votes:: 0 Vote for this issue

Watchers:: 6 Start watching this issue

Created:: Oct 30 2013 04:04:53 PM UTC

Updated:: Jan 27 2017 03:55:14 PM UTC

Resolved:: Nov 14 2013 04:03:24 AM UTC

Details

Description

Attachments

Attachments

Issue Links

Activity

People

Dates