Skip to content
Projects
Groups
Snippets
Help
Loading...
Help
Support
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in / Register
Toggle navigation
M
mariadb
Project overview
Project overview
Details
Activity
Releases
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Issues
0
Issues
0
List
Boards
Labels
Milestones
Merge Requests
0
Merge Requests
0
Analytics
Analytics
Repository
Value Stream
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Create a new issue
Commits
Issue Boards
Open sidebar
Kirill Smelkov
mariadb
Commits
eccad3f2
Commit
eccad3f2
authored
Mar 25, 2009
by
Ramil Kalimullin
Browse files
Options
Browse Files
Download
Plain Diff
Auto-merge
parents
bce4c76a
e46c139d
Changes
5
Hide whitespace changes
Inline
Side-by-side
Showing
5 changed files
with
16 additions
and
63 deletions
+16
-63
mysql-test/r/rpl_temporary.result
mysql-test/r/rpl_temporary.result
+0
-18
mysql-test/t/rpl_temporary.test
mysql-test/t/rpl_temporary.test
+0
-36
sql/sql_class.cc
sql/sql_class.cc
+7
-0
sql/sql_class.h
sql/sql_class.h
+1
-0
sql/sql_parse.cc
sql/sql_parse.cc
+8
-9
No files found.
mysql-test/r/rpl_temporary.result
View file @
eccad3f2
...
...
@@ -4,24 +4,6 @@ reset master;
reset slave;
drop table if exists t1,t2,t3,t4,t5,t6,t7,t8,t9;
start slave;
FLUSH PRIVILEGES;
drop table if exists t999;
create temporary table t999(
id int,
user char(255),
host char(255),
db char(255),
Command char(255),
time int,
State char(255),
info char(255)
);
LOAD DATA INFILE "./tmp/bl_dump_thread_id" into table t999;
drop table t999;
GRANT USAGE ON *.* TO user43748@localhost;
KILL `select id from information_schema.processlist where command='Binlog Dump'`;
ERROR HY000: You are not owner of thread `select id from information_schema.processlist where command='Binlog Dump'`
DROP USER user43748@localhost;
reset master;
SET @save_select_limit=@@session.sql_select_limit;
SET @@session.sql_select_limit=10, @@session.pseudo_thread_id=100;
...
...
mysql-test/t/rpl_temporary.test
View file @
eccad3f2
...
...
@@ -3,42 +3,6 @@ source include/add_anonymous_users.inc;
source
include
/
master
-
slave
.
inc
;
#
# Bug#43748: crash when non-super user tries to kill the replication threads
#
--
connection
master
save_master_pos
;
--
connection
slave
sync_with_master
;
--
connection
slave
FLUSH
PRIVILEGES
;
# in 5.0, we need to do some hocus pocus to get a system-thread ID (-> $id)
--
source
include
/
get_binlog_dump_thread_id
.
inc
# make a non-privileged user on slave. try to KILL system-thread as her.
GRANT
USAGE
ON
*.*
TO
user43748
@
localhost
;
--
connect
(
mysqltest_2_con
,
localhost
,
user43748
,,
test
,
$SLAVE_MYPORT
,)
--
connection
mysqltest_2_con
--
replace_result
$id
"`select id from information_schema.processlist where command='Binlog Dump'`"
--
error
ER_KILL_DENIED_ERROR
eval
KILL
$id
;
--
disconnect
mysqltest_2_con
--
connection
slave
DROP
USER
user43748
@
localhost
;
--
connection
master
# Clean up old slave's binlogs.
# The slave is started with --log-slave-updates
# and this test does SHOW BINLOG EVENTS on the slave's
...
...
sql/sql_class.cc
View file @
eccad3f2
...
...
@@ -2145,6 +2145,13 @@ void Security_context::skip_grants()
}
bool
Security_context
::
user_matches
(
Security_context
*
them
)
{
return
((
user
!=
NULL
)
&&
(
them
->
user
!=
NULL
)
&&
!
strcmp
(
user
,
them
->
user
));
}
/****************************************************************************
Handling of open and locked tables states.
...
...
sql/sql_class.h
View file @
eccad3f2
...
...
@@ -985,6 +985,7 @@ public:
{
return
(
*
priv_host
?
priv_host
:
(
char
*
)
"%"
);
}
bool
user_matches
(
Security_context
*
);
};
...
...
sql/sql_parse.cc
View file @
eccad3f2
...
...
@@ -7427,22 +7427,21 @@ void kill_one_thread(THD *thd, ulong id, bool only_kill_query)
If we're SUPER, we can KILL anything, including system-threads.
No further checks.
thd..user could in theory be NULL while we're still in
"unauthenticated" state. This is more a theoretical case.
KILLer: thd->security_ctx->user could in theory be NULL while
we're still in "unauthenticated" state. This is a theoretical
case (the code suggests this could happen, so we play it safe).
tmp..user will be NULL for system threads (cf Bug#43748)
.
KILLee: tmp->security_ctx->user will be NULL for system threads
.
We need to check so Jane Random User doesn't crash the server
when trying to kill a) system threads or b) unauthenticated
users' threads
.
when trying to kill a) system threads or b) unauthenticated
users'
threads (Bug#43748)
.
If user of both killer and killee are non-
null
, proceed with
If user of both killer and killee are non-
NULL
, proceed with
slayage if both are string-equal.
*/
if
((
thd
->
security_ctx
->
master_access
&
SUPER_ACL
)
||
((
thd
->
security_ctx
->
user
!=
NULL
)
&&
(
tmp
->
security_ctx
->
user
!=
NULL
)
&&
!
strcmp
(
thd
->
security_ctx
->
user
,
tmp
->
security_ctx
->
user
)))
thd
->
security_ctx
->
user_matches
(
tmp
->
security_ctx
))
{
tmp
->
awake
(
only_kill_query
?
THD
::
KILL_QUERY
:
THD
::
KILL_CONNECTION
);
error
=
0
;
...
...
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment