Uploaded image for project: 'Couchbase Server'
  1. Couchbase Server
  2. MB-31071

Illegal packet may not be audited

    XMLWordPrintable

Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Fixed
    • master, 5.0.0, 5.1.0, 5.0.1, 5.1.1, 6.5.0, 6.0.0, 5.5.0, 5.5.1
    • 6.5.0
    • memcached
    • Untriaged
    • Unknown

    Description

      std::overflow_error may be thrown when formatting the audit event causing the connection to be dropped without storing the audit event first

      Attachments

        For Gerrit Dashboard: MB-31071
        # Subject Branch Project Status CR V

        Activity

          Build couchbase-server-6.5.0-1259 contains kv_engine commit 89f40c4 with commit message:
          MB-31071: catch std::overflow_error in "debug_helpers"

          build-team Couchbase Build Team added a comment - Build couchbase-server-6.5.0-1259 contains kv_engine commit 89f40c4 with commit message: MB-31071 : catch std::overflow_error in "debug_helpers"
          lynn.straus Lynn Straus added a comment -

          Dave Finlay, this ticket is still linked to the Alice tracking ticket however the Alice fix version was removed.  Please advise if we should fully remove from Alice.  Thanks.

          lynn.straus Lynn Straus added a comment - Dave Finlay , this ticket is still linked to the Alice tracking ticket however the Alice fix version was removed.  Please advise if we should fully remove from Alice.  Thanks.

          The code is still vulnerable to this as it tries to fetch the entire packet, which may throw an exception if the "length bytes" in the packet contains an invalid value (which is very likely if rubbish is sent to the port).

          trond Trond Norbye added a comment - The code is still vulnerable to this as it tries to fetch the entire packet, which may throw an exception if the "length bytes" in the packet contains an invalid value (which is very likely if rubbish is sent to the port).

          Build couchbase-server-6.5.0-1773 contains kv_engine commit cb06317 with commit message:
          MB-31071: Fix audit of illegal packet

          build-team Couchbase Build Team added a comment - Build couchbase-server-6.5.0-1773 contains kv_engine commit cb06317 with commit message: MB-31071 : Fix audit of illegal packet
          lynn.straus Lynn Straus added a comment -

          removing 5.5.x candidate label and replacing with 6.x candidate label

          lynn.straus Lynn Straus added a comment - removing 5.5.x candidate label and replacing with 6.x candidate label

          People

            trond Trond Norbye
            trond Trond Norbye
            Votes:
            0 Vote for this issue
            Watchers:
            5 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Gerrit Reviews

                There are no open Gerrit changes

                PagerDuty