Loading...

XML

Word

Printable

JSON

Type: Bug
Resolution: Done
Priority: Major - P3
Fix Version/s: 2.5.4
Affects Version/s: 2.5.3
Component/s: Security
Labels:
- 26qa

Operating System:
Linux
Confidence Status:
None
Work Order:
3

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Name:
None
Goal Link:
None

Try to create large chain of linked roles:

Role0 -> Role1 -> Role2 -> Role3 -> ..... -> RoleN

At some value of N (depending on machine) seg fault will occur. It seems stack is blown, from many recursive calls to RoleGraph::_recomputePrivilegeDataHelper.

Try to create a cycle of linked roles:

Role0 -> Role1 -> Role2 -> Role3 -> ..... -> RoleN -> Role0

Trying to create a large cycle (1600 roles) causes a segmentation fault. We think that the stack blew up (too many recursive calls to search through the role graph?). From the stack trace, it seems that 1396 calls to the RoleGraph::_recomputePrivilegeDataHelper went through before it blew the top.

Test that produced bugs is attached.

- - Sort By Name
  - Sort By Date
  - Ascending
  - Descending
  - Thumbnails
  - List
  - Download All

actions.js
Oct 30 2013 04:04:53 PM UTC
3 kB
Samantha Ritter
qa_341_chain_roles.js
Oct 30 2013 04:04:54 PM UTC
3 kB
Samantha Ritter

related to

SERVER-27821 Make `large_role_chain.js` not run on DEBUG systems

Closed

Assignee:: Spencer Brody (Inactive)
Reporter:: Samantha Ritter (Inactive)
Participants:: Githook User, Samantha Ritter, Spencer Brody
Votes:: 0 Vote for this issue
Watchers:: 6 Start watching this issue

Created:: Oct 30 2013 04:04:53 PM UTC
Updated:: Jan 27 2017 03:55:14 PM UTC
Resolved:: Nov 14 2013 04:03:24 AM UTC

Details

Description

Attachments

Attachments

Issue Links

Activity

People

Dates