[ACCUMULO-1987] Incorrect handling of auth byte sequences in TabletServer - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 1.6.0
Component/s: None
Labels:
None

Description

In TabletServer.java: 667

return security.userHasAuthorizations(credentials, Collections.<ByteBuffer> singletonList(ByteBuffer.wrap(***auth.getBackingArray()***)));

(Emphasis mine obviously)

That getBackingArray() will return the whole array even when the auth object has limits set upon it. That has the effect of passing labels to userHasAuthorization() that are incorrect. For instance, if your label expression has & and | in it, it will pass the entire string as the label string, as opposed to just one part of it in certain parts of the parsing.

The fix is to also use the auth.offset() and auth.length() parameters when building the ByteBuffer. Patch coming.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

Fixes-byte-buffer-copy-bug.patch
09/Dec/13 16:14
1 kB
Michael Allen

Activity

People

Assignee:: Michael Allen

Reporter:: Michael Allen

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 09/Dec/13 16:12

Updated:: 04/Apr/14 19:13

Resolved:: 09/Dec/13 16:20