From 8d88cb49dfe0c5fce30a19ac58c77ee54bf9323c Mon Sep 17 00:00:00 2001
From: Jan <jsteemann@users.noreply.github.com>
Date: Fri, 26 Oct 2018 12:58:47 +0200
Subject: [PATCH] fix nullptr access to usermanager object (#7095)

---
 arangod/GeneralServer/AuthenticationFeature.cpp |  6 +++---
 arangod/GeneralServer/AuthenticationFeature.h   |  4 ++--
 arangod/GeneralServer/GeneralCommTask.cpp       |  6 +++++-
 arangod/RestHandler/RestAdminServerHandler.cpp  |  9 +++++++--
 arangod/RestHandler/RestShutdownHandler.cpp     |  7 ++++++-
 arangod/Utils/ExecContext.cpp                   | 13 ++++++++++++-
 arangod/V8Server/v8-users.cpp                   |  9 ++++++---
 7 files changed, 41 insertions(+), 13 deletions(-)

diff --git a/arangod/GeneralServer/AuthenticationFeature.cpp b/arangod/GeneralServer/AuthenticationFeature.cpp
index 79e8b91d2f..c1e557a06f 100644
--- a/arangod/GeneralServer/AuthenticationFeature.cpp
+++ b/arangod/GeneralServer/AuthenticationFeature.cpp
@@ -50,10 +50,10 @@ AuthenticationFeature::AuthenticationFeature(
       _authCache(nullptr),
       _authenticationUnixSockets(true),
       _authenticationSystemOnly(true),
-      _authenticationTimeout(0.0),
       _localAuthentication(true),
-      _jwtSecretProgramOption(""),
-      _active(true) {
+      _active(true),
+      _authenticationTimeout(0.0),
+      _jwtSecretProgramOption("") {
   setOptional(false);
   startsAfter("BasicsPhase");
 
diff --git a/arangod/GeneralServer/AuthenticationFeature.h b/arangod/GeneralServer/AuthenticationFeature.h
index 8e8203095d..9d5219241a 100644
--- a/arangod/GeneralServer/AuthenticationFeature.h
+++ b/arangod/GeneralServer/AuthenticationFeature.h
@@ -77,11 +77,11 @@ class AuthenticationFeature final
   std::unique_ptr<auth::TokenCache> _authCache;
   bool _authenticationUnixSockets;
   bool _authenticationSystemOnly;
-  double _authenticationTimeout;
   bool _localAuthentication;
+  bool _active;
+  double _authenticationTimeout;
 
   std::string _jwtSecretProgramOption;
-  bool _active;
 
   static AuthenticationFeature* INSTANCE;
 
diff --git a/arangod/GeneralServer/GeneralCommTask.cpp b/arangod/GeneralServer/GeneralCommTask.cpp
index ae82f90616..4831d2d03d 100644
--- a/arangod/GeneralServer/GeneralCommTask.cpp
+++ b/arangod/GeneralServer/GeneralCommTask.cpp
@@ -214,7 +214,11 @@ GeneralCommTask::RequestFlow GeneralCommTask::prepareExecution(GeneralRequest& r
       // prevent guessing database names (issue #5030)
       auth::Level lvl = auth::Level::NONE;
       if (req.authenticated()) {
-        lvl = _auth->userManager()->databaseAuthLevel(req.user(), req.databaseName());
+        if (_auth->userManager() != nullptr) {
+          lvl = _auth->userManager()->databaseAuthLevel(req.user(), req.databaseName());
+        } else {
+          lvl = auth::Level::RW;
+        }
       }
       if (lvl == auth::Level::NONE) {
         addErrorResponse(rest::ResponseCode::UNAUTHORIZED, req.contentTypeResponse(),
diff --git a/arangod/RestHandler/RestAdminServerHandler.cpp b/arangod/RestHandler/RestAdminServerHandler.cpp
index a1c6a8bf44..be3a32c977 100644
--- a/arangod/RestHandler/RestAdminServerHandler.cpp
+++ b/arangod/RestHandler/RestAdminServerHandler.cpp
@@ -154,8 +154,13 @@ void RestAdminServerHandler::handleMode() {
     
     AuthenticationFeature* af = AuthenticationFeature::instance();
     if (af->isEnabled() && !_request->user().empty()) {
-      auth::Level lvl = af->userManager()->databaseAuthLevel(_request->user(),
-                                          TRI_VOC_SYSTEM_DATABASE, /*configured*/true);
+      auth::Level lvl = auth::Level::NONE;
+      if (af->userManager() != nullptr) {
+        lvl = af->userManager()->databaseAuthLevel(_request->user(),
+                                                   TRI_VOC_SYSTEM_DATABASE, /*configured*/true);
+      } else {
+        lvl = auth::Level::RW;
+      }
       if (lvl < auth::Level::RW) {
         generateError(rest::ResponseCode::FORBIDDEN, TRI_ERROR_FORBIDDEN);
         return;
diff --git a/arangod/RestHandler/RestShutdownHandler.cpp b/arangod/RestHandler/RestShutdownHandler.cpp
index 6c0e8f9f35..bc771e9f02 100644
--- a/arangod/RestHandler/RestShutdownHandler.cpp
+++ b/arangod/RestHandler/RestShutdownHandler.cpp
@@ -52,7 +52,12 @@ RestStatus RestShutdownHandler::execute() {
   
   AuthenticationFeature* af = AuthenticationFeature::instance();
   if (af->isEnabled() && !_request->user().empty()) {
-    auth::Level lvl = af->userManager()->databaseAuthLevel(_request->user(), "_system", /*configured*/true);
+    auth::Level lvl = auth::Level::NONE;
+    if (af->userManager() != nullptr) {
+      lvl = af->userManager()->databaseAuthLevel(_request->user(), "_system", /*configured*/true);
+    } else {
+      lvl = auth::Level::RW;
+    }
     if (lvl < auth::Level::RW) {
       generateError(rest::ResponseCode::FORBIDDEN, TRI_ERROR_HTTP_FORBIDDEN,
                     "you need admin rights to trigger shutdown");
diff --git a/arangod/Utils/ExecContext.cpp b/arangod/Utils/ExecContext.cpp
index df0a3429f1..535f66743a 100644
--- a/arangod/Utils/ExecContext.cpp
+++ b/arangod/Utils/ExecContext.cpp
@@ -52,6 +52,9 @@ ExecContext* ExecContext::create(std::string const& user,
   if (af->isActive()) {
     auth::UserManager* um = af->userManager();
     TRI_ASSERT(um != nullptr);
+    if (um == nullptr) {
+      THROW_ARANGO_EXCEPTION_MESSAGE(TRI_ERROR_INTERNAL, "unable to find userManager instance");
+    }
     dbLvl = sysLvl = um->databaseAuthLevel(user, dbname);
     if (dbname != TRI_VOC_SYSTEM_DATABASE) {
       sysLvl = um->databaseAuthLevel(user, TRI_VOC_SYSTEM_DATABASE);
@@ -70,7 +73,12 @@ bool ExecContext::canUseDatabase(std::string const& db,
   AuthenticationFeature* af = AuthenticationFeature::instance();
   TRI_ASSERT(af != nullptr);
   if (af->isActive()) {
-    auth::Level allowed = af->userManager()->databaseAuthLevel(_user, db);
+    auth::UserManager* um = af->userManager();
+    TRI_ASSERT(um != nullptr);
+    if (um == nullptr) {
+      THROW_ARANGO_EXCEPTION_MESSAGE(TRI_ERROR_INTERNAL, "unable to find userManager instance");
+    }
+    auth::Level allowed = um->databaseAuthLevel(_user, db);
     return requested <= allowed;
   }
   return true;
@@ -102,5 +110,8 @@ auth::Level ExecContext::collectionAuthLevel(std::string const& dbname,
   
   auth::UserManager* um = af->userManager();
   TRI_ASSERT(um != nullptr);
+  if (um == nullptr) {
+    THROW_ARANGO_EXCEPTION_MESSAGE(TRI_ERROR_INTERNAL, "unable to find userManager instance");
+  }
   return um->collectionAuthLevel(_user, dbname, coll);
 }
diff --git a/arangod/V8Server/v8-users.cpp b/arangod/V8Server/v8-users.cpp
index d58133304e..87455ea321 100644
--- a/arangod/V8Server/v8-users.cpp
+++ b/arangod/V8Server/v8-users.cpp
@@ -183,8 +183,12 @@ static void JS_UpdateUser(v8::FunctionCallbackInfo<v8::Value> const& args) {
     }
   }
   
-  AuthenticationFeature* af = AuthenticationFeature::instance();
-  af->userManager()->updateUser(username, [&](auth::User& u) {
+  auth::UserManager* um = AuthenticationFeature::instance()->userManager();
+  if (um == nullptr) {
+    TRI_V8_THROW_EXCEPTION_MESSAGE(TRI_ERROR_NOT_IMPLEMENTED,
+                                   "users are not supported on this server");
+  }
+  um->updateUser(username, [&](auth::User& u) {
     if (args.Length() > 1 && args[1]->IsString()) {
       u.updatePassword(TRI_ObjectToString(args[1]));
     }
@@ -355,7 +359,6 @@ static void JS_GrantCollection(
   }
 
   auth::UserManager* um = AuthenticationFeature::instance()->userManager();
-
   if (um == nullptr) {
     TRI_V8_THROW_EXCEPTION_MESSAGE(TRI_ERROR_NOT_IMPLEMENTED,
                                    "user are not supported on this server");