Bug #40139 | ExecuteNonQuery hangs | ||
---|---|---|---|
Submitted: | 19 Oct 2008 11:47 | Modified: | 21 Nov 2008 14:46 |
Reporter: | Sarah Green | Email Updates: | |
Status: | Closed | Impact on me: | |
Category: | Connector / NET | Severity: | S3 (Non-critical) |
Version: | 5.2 | OS: | Any |
Assigned to: | CPU Architecture: | Any |
[19 Oct 2008 11:47]
Sarah Green
[19 Oct 2008 12:05]
Sarah Green
I have since discovered that the difference between the user that works and the user that doesn't is that the stored procedures were created by (and automatically tagged with DEFINER=user1) and hence the command set with type StoredProcedure is obeying the DEFINER security permissions (and only allowing user1 to execute thr procedure) whilst the command with type Text is ignoring these and using the GRANTed permissions (which allows user2 to have EXECUTE rights). I have lessened the Severity on this bug as a result of discovering this. However, it seems strange and confusing that the two behave differently - tho' I'm not sure which is "right".
[17 Nov 2008 21:18]
Reggie Burnett
didn't really see the hang but saw that I could clean up how it operates.
[17 Nov 2008 21:19]
Bugs System
A patch for this bug has been committed. After review, it may be pushed to the relevant source trees for release in the next version. You can access the patch from: http://lists.mysql.com/commits/59008
[17 Nov 2008 21:20]
Reggie Burnett
Fixed in 5.2.6+
[21 Nov 2008 14:46]
Tony Bedford
An entry was added to the 5.2.6 changelog: When ExecuteNonQuery was called with a command type of Stored Procedure it worked for one user but resulted in a hang for another user with the same database permissions. However, if CALL was used in the command text and ExecuteNonQuery was used with a command type of Text, the call worked for both users.