[SERVER-9983] Authenticating as internal user shouldn't require a database lock Created: 20/Jun/13 Updated: 07/Jun/17 Resolved: 21/Jun/13 |
|
| Status: | Closed |
| Project: | Core Server |
| Component/s: | Concurrency, Security |
| Affects Version/s: | 2.4.4, 2.5.0 |
| Fix Version/s: | 2.4.5, 2.5.1 |
| Type: | Bug | Priority: | Major - P3 |
| Reporter: | Spencer Brody (Inactive) | Assignee: | Andy Schwerin |
| Resolution: | Done | Votes: | 0 |
| Labels: | asp, asp-cve, asp-sdl-internal, asp-vuln-dos | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Issue Links: |
|
||||||||||||||||||||
| Backwards Compatibility: | Fully Compatible | ||||||||||||||||||||
| Operating System: | ALL | ||||||||||||||||||||
| Participants: | |||||||||||||||||||||
| Description |
|
Authenticating as the internal __system user currently takes a read lock on the "admin" database, looking for a privilege doc even though there will never be one. We should notice when we're authenticating as the internal user and prevent the admin db check and thus avoid the need for any locking in this case. |
| Comments |
| Comment by auto [ 21/Jun/13 ] |
|
Author: {u'username': u'andy10gen', u'name': u'Andy Schwerin', u'email': u'schwerin@10gen.com'}Message: |
| Comment by auto [ 21/Jun/13 ] |
|
Author: {u'username': u'andy10gen', u'name': u'Andy Schwerin', u'email': u'schwerin@10gen.com'}Message: Uncorrected, this can cause replica set heartbeats to stall behind operations |
| Comment by Andy Schwerin [ 21/Jun/13 ] |
|
Fixed on 2.4 branch, but fix not yet committed on master. |
| Comment by auto [ 21/Jun/13 ] |
|
Author: {u'username': u'andy10gen', u'name': u'Andy Schwerin', u'email': u'schwerin@10gen.com'}Message: |
| Comment by auto [ 21/Jun/13 ] |
|
Author: {u'username': u'andy10gen', u'name': u'Andy Schwerin', u'email': u'schwerin@10gen.com'}Message: Uncorrected, this can cause replica set heartbeats to stall behind operations |