[SERVER-80499] Fix use-after-free in planShardedSearch Created: 29/Aug/23  Updated: 29/Oct/23  Resolved: 31/Aug/23

Status: Closed
Project: Core Server
Component/s: None
Affects Version/s: None
Fix Version/s: 4.4.25, 5.0.22

Type: Bug Priority: Critical - P2
Reporter: Vojislav Stojkovic Assignee: Maddie Zechar
Resolution: Fixed Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Problem/Incident
is caused by SERVER-75010 Implement no-op planShardedSearch in 5.0 Closed
is caused by SERVER-62537 Add ability to create multiple Docume... Closed
Related
related to SERVER-80544 Fix incorrect wait in runSearchComman... Closed
Backwards Compatibility: Fully Compatible
Operating System: ALL
Steps To Reproduce:

The affected customer is experiencing crashes due to this bug when the client disconnects while running the search query.

Also, as shown in the HELP ticket, the use-after-free can be reproduced under ASAN by modifying the source code to mark the operation as killed right before calling TaskExecutor::wait.

Sprint: QI 2023-09-04
Participants:
Case:

 Comments   
Comment by Benjamin Capellaro [ 30/Aug/23 ]

Hello team,

Thank you for an update on this case.

Benjamin

Generated at Thu Feb 08 06:43:43 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.