[#MDEV-5232] SET ROLE checks privileges differently from check

[MDEV-5232] SET ROLE checks privileges differently from check_access() Created: 2013-11-04 Updated: 2013-11-04 Resolved: 2013-11-04
Status:	Closed
Project:	MariaDB Server
Component/s:	None
Affects Version/s:	None
Fix Version/s:	10.0.5

Type:

Bug

Priority:

Major

Reporter:

Sergei Golubchik

Assignee:

Sergei Golubchik

Resolution:

Fixed

Votes:

Labels:

None

Issue Links:

Description

Test case:

create user ''@localhost;

create user c;

grant select on mysql.* to c;

create role r1;

grant r1 to c;

connect (c,localhost,c,,,,,);

select user(), current_user();

--error ER_TABLEACCESS_DENIED_ERROR

select user from mysql.user group by user;

set role r1;

disconnect c;

connection default;

drop role r1;

drop user c;

drop user ''@localhost;

Note that SELECT fails, while SET ROLE succeeds. Both grants were to c@%.

Comments

Comment by Sergei Golubchik [ 2013-11-04 ]

pushed in 10.0-base

Generated at Thu Feb 08 07:02:41 UTC 2024 using Jira 8.20.16#820016-sha1:9d11dbea5f4be3d4cc21f03a88dd11d8c8687422.