Loading...

XML

Word

Printable

JSON

Type: Bug
Resolution: Fixed
Priority: Major - P3
Fix Version/s: 9.0.0-rc0
Affects Version/s: 9.0.0-rc0
Component/s: Security, Sharding, Upgrade/Downgrade
Labels:
None

Assigned Teams:

Catalog and Routing
Backwards Compatibility:
Fully Compatible
Operating System:
ALL
Steps To Reproduce:

Hide

buildscripts/resmoke.py run --suite=auth jstests/auth/internal_command_auth_validation.js

On a commit immediately after ~~SERVER-128064~~ was committed.

Show
buildscripts/resmoke.py run --suite=auth jstests/auth/internal_command_auth_validation.js On a commit immediately after SERVER-128064 was committed.
Sprint:
CAR Team 2026-06-22
Linked BF Score:
200
CAR Domain/s:

🟥 DDL

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Name(s):
None
Goal Link:
None

The internal_command_auth_validation.js jstest validates most internal commands, including _shardsvrCloneAuthoritativeMetadata, require internal authorization (i.e. __system user).

In ~~SERVER-128064~~ we added a tassert if the command is called with Authoritative Shards disabled. We are hitting this guardrail when the internal_command_auth_validation.js runs this command with Authoritative Shards disabled as part of the non-"all feature flags" EVG variant. This is harmless, but the test fail due to tassert, so we should find a solution.

is related to

SERVER-128064 Authoritative metadata cloning DDL may run on fully upgraded shards

Closed

Assignee:: Joan Bruguera Micó
Reporter:: Joan Bruguera Micó
Participants:: Githook User, Joan Bruguera Micó
Votes:: 0 Vote for this issue
Watchers:: 2 Start watching this issue

Created:: Jun 15 2026 03:53:14 PM UTC
Updated:: Jun 15 2026 09:03:19 PM UTC
Resolved:: Jun 15 2026 05:13:26 PM UTC

Details

Description

Attachments

Issue Links

Activity

People

Dates