[SERVER-11497] out-of-bounds exception when dropRole gets null input Created: 31/Oct/13  Updated: 11/Jul/16  Resolved: 12/Nov/13

Status: Closed
Project: Core Server
Component/s: Security
Affects Version/s: 2.5.3
Fix Version/s: 2.5.4

Type: Bug Priority: Major - P3
Reporter: Samantha Ritter (Inactive) Assignee: Spencer Brody (Inactive)
Resolution: Done Votes: 0
Labels: 26qa
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Attachments: File drop_role_undefined.js    
Issue Links:
Related
Operating System: Linux
Participants:

 Description   

> var n = null;
> db.runCommand(

{ dropRole: n }

)

expect graceful error, instead db dies:

m27000| 2013-10-31T15:26:09.229+0000 [conn1] ERROR: Uncaught std::exception: out of range, terminating
m27000| dbexit: 2013-10-31T15:26:09.229+0000 [conn1] shutdown: going to close listening sockets...
m27000| 2013-10-31T15:26:09.229+0000 [conn1] closing listening socket: 10
m27000| 2013-10-31T15:26:09.229+0000 [conn1] closing listening socket: 11
m27000| 2013-10-31T15:26:09.229+0000 [conn1] removing socket file: /tmp/mongodb-27000.sock
m27000| 2013-10-31T15:26:09.229+0000 [conn1] shutdown: going to flush diaglog...
m27000| 2013-10-31T15:26:09.229+0000 [conn1] shutdown: going to close sockets...
m27000| 2013-10-31T15:26:09.229+0000 [conn1] shutdown: waiting for fs preallocator...
m27000| 2013-10-31T15:26:09.229+0000 [conn1] shutdown: lock for final commit...
m27000| 2013-10-31T15:26:09.229+0000 [conn1] shutdown: final commit...
2013-10-31T15:26:09.230+0000 DBClientCursor::init call() failed
2013-10-31T15:26:09.231+0000 Error: error doing query: failed at src/mongo/shell/query.js:81



 Comments   
Comment by auto [ 12/Nov/13 ]

Author:

{u'username': u'stbrody', u'name': u'Spencer T Brody', u'email': u'spencer@10gen.com'}

Message: SERVER-11497 Check for bad Status in dropRole authz check
Branch: master
https://github.com/mongodb/mongo/commit/47cacf3a19f9b15fe5f586483b3f3992bb12e7bf

Generated at Thu Feb 08 03:25:56 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.