Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-26101

DBDirectClient isn't safe to auth

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major - P3
    • Resolution: Fixed
    • Affects Version/s: 3.2.9
    • Fix Version/s: 3.2.13, 3.3.15
    • Component/s: Internal Client
    • Labels:
    • Backwards Compatibility:
      Fully Compatible
    • Operating System:
      ALL
    • Backport Requested:
      v3.2
    • Steps To Reproduce:
      Hide

      db.eval('db.auth("reader", "reader")')

      Show
      db.eval('db.auth("reader", "reader")')
    • Sprint:
      Platforms 2017-03-27
    • Linked BF Score:
      0

      Description

      DBDirectClient doesn't have a port/session (3.2 versus master), so failures in auth (which try to look up the remote address when forming an error) crash the server or trigger a verify.

        Attachments

          Issue Links

            Activity

              People

              • Votes:
                0 Vote for this issue
                Watchers:
                6 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: