[SERVER-67066] mongod crashes with userToDNMapping '{match: ".+", substitution: "{0}"}' Created: 07/Jun/22 Updated: 29/Oct/23 Resolved: 16/Jun/22 |
|
| Status: | Closed |
| Project: | Core Server |
| Component/s: | None |
| Affects Version/s: | None |
| Fix Version/s: | 6.1.0-rc0 |
| Type: | Bug | Priority: | Minor - P4 |
| Reporter: | Lungang Fang | Assignee: | Sara Golemon |
| Resolution: | Fixed | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Backwards Compatibility: | Minor Change | |||||||||
| Operating System: | ALL | |||||||||
| Steps To Reproduce: |
To reproduce this issue, just start a mongod with LDAP enabled with the following userToDNMapping and then try to login it (say mongo --username username --password password --authenticationDatabase '$external' --authenticationMechanism PLAIN).
|
|||||||||
| Sprint: | Security 2022-06-27 | |||||||||
| Participants: |
| Description |
|
Hi, If a LDAP userToDNMapping rule contains no matching group but has 1 or more substitutions, mongod can start up and run but will crash instantly when a mongod user tries to authenticate via LDAP. I was able to reproduce this issue with the latest version of mongod as well as 5.0 and 4.2.15. I believe it also exists in 4.4. Regards, |
| Comments |
| Comment by Githook User [ 16/Jun/22 ] |
|
Author: {'name': 'Lungang Fang', 'email': 'lungang.fang@mongodb.com'}Message: |