Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-17671

Refuse to complete initial sync from nodes with 2.4-style auth data

    • Type: Icon: Improvement Improvement
    • Resolution: Done
    • Priority: Icon: Major - P3 Major - P3
    • 3.0.2, 3.1.1
    • Affects Version/s: None
    • Component/s: Security
    • None
    • Fully Compatible

      Currently we have a few authentication startup checks in 3.0:

      • check for indexes on system.users
      • check for schema version

      These checks prevent mongod from starting even when auth is off, but without this improvement you can sync a 3.0 node from 2.6 node with the 2.4 auth schema, and it will work just fine until you try to restart the node.

      We should validate during initial sync that the sync source has a new enough auth schema version.

            Assignee:
            schwerin@mongodb.com Andy Schwerin
            Reporter:
            alex.komyagin@mongodb.com Alexander Komyagin (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            8 Start watching this issue

              Created:
              Updated:
              Resolved: