Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-72291

Make RolesInfoCommandArg::parseFromBSON tenant aware

XMLWordPrintableJSON

    • Type: Icon: Bug Bug
    • Resolution: Fixed
    • Priority: Icon: Major - P3 Major - P3
    • 6.3.0-rc0
    • Affects Version/s: None
    • Component/s: None
    • Labels:
      None
    • Serverless
    • Fully Compatible
    • ALL
    • Server Serverless 2023-01-23

      jstests/core/roles_info.js is failed with injected dollar tenant when send the following request:

       { "rolesInfo" : { "role" : "testRoleJSCoreRolesInfo", "db" : "test" } }

      To reproduce it, use the command line "buildscripts/resmoke.py run --suite native_tenant_data_isolation_with_dollar_tenant_jscore_passthrough jstests/core/roles_info.js ".

      Root cause: The tenant information is dropped off when parsing command parameter with auth::RolesInfoCommandArg::parseFromBSON(commandElement).

      To fix it, we should change the auth::RolesInfoCommandArg::parseFromBSON(commandElement) to take in tenant information. Perhaps, the IDL compiler should also be changed to generate the correct call site code for this function.

            Assignee:
            hugh.tong@mongodb.com Hugh Tong (Inactive)
            Reporter:
            sophia.tan@mongodb.com Sophia Tan
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved: