[SERVER-27298] Some argument parsing silently truncates at NUL bytes - MongoDB Jira

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major - P3
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 3.5.10
Component/s: Replication
Labels:
- neweng
- platforms-interns-2017

Backwards Compatibility:
Fully Compatible
Operating System:
ALL
Sprint:
Platforms 2017-07-10

Description

A few options in mongod_options.cpp (such as "replication.replSetName") call std::string.c_str() then passes the result to a function that takes a std::string. This appears to be unintentional, but has the impact of silently truncating the option at the first \0 byte. I don't think it is possible to pass embedded NUL bytes on the command line so it requires a config file. Example config file:

replication:

  replSetName: "Oh No\0!"

I see a few possible options:

Remove the c_str() and start including the NUL byte. Maybe also add validation with allowed characters in replSet names.
Error if there is a NUL byte.
Decide this is intentional and add a comment explaining it. We should also look at arguments without a c_str() and decide if they should also truncate.
Decide that no options in the config file should support NUL bytes and error in the main options parser logic.

Attachments

Activity

People

Assignee:: Ted Tuckman

Reporter:: Mathias Stearn

Participants:: Eric Milkie, Githook User, Mathias Stearn, Ted Tuckman

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Dates

Created:: Dec 06 2016 04:45:37 PM UTC

Updated:: Dec 06 2017 09:12:08 PM UTC

Resolved:: Jun 22 2017 05:21:14 PM UTC