[MDEV-38862] Fix double comma in user lists causing incorrect filtering - Jira

XML

Word

Printable

Details

Type: Bug
Status: Stalled (View Workflow)
Priority: Critical
Resolution: Unresolved
Affects Version/s: 10.6
Fix Version/s: 10.6
Component/s: Plugin - Audit
Labels:
- contribution

Bug Category:
Can result in unexpected behaviour

Description

When SERVER_AUDIT_INCL_USERS or SERVER_AUDIT_EXCL_USERS contains double commas (e.g., 'user1,,user2'), the audit plugin behaves incorrectly:

For incl_users: ALL users are logged instead of only specified users
For excl_users: ALL users are excluded instead of only specified users
The root cause is in user_coll_fill(). When parsing a user list string with consecutive commas, the parser calls getkey_user() with the pointer positioned at a comma, which returns cmp_length of 0. Then coll_insert() inserts an empty string into the user collection, corrupting the collection's search behavior.

The fix adds a check to skip empty tokens (when the current character is a comma after whitespace has been skipped) before attempting to extract a username.

Attachments

Activity

People

Assignee:: Georgi Kodinov

Reporter:: Georgi Kodinov

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 2026-02-18 13:30

Updated:: 2026-02-18 13:34

Git Integration

Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.