Jump to content

Wrong attachment claiming=> temp key in core_attachments_map is not unique!!

derpunker

By derpunker
in Technical Problems

 Share

Recommended Posts

derpunker Enthusiast

derpunker

Posted
Posted (edited)

Dear IPS support,

I have found a bug in context of the attachment claiming.

IPS 4.7.9 installed, all hooks disabled.

 

-------

Repro steps:

  1. Login with user 1 (user)
  2. Create a new topic
  3. Add an attachment, for example a picture, to the post
  4. Leaf the title empty
  5. Try to save the new topic => Error, because of missing field (Topic should not be saved)
  6. Logout user 1 (user)
  7. Login with user 2 (root)
  8. Create a new topic (same forum as before)
  9. Add an attachment, for example a picture, to the post
  10. Leaf the title empty
  11. Try to save the new topic => Error, because of missing field
  12. Fill in a title
  13. Save the new topic

Result:

  • The topic iteself is created correct
  • In the activity stream the post is displayed wrong! The picture of user 1 is assigned to the post of user 2.

 

Technical analyze:

The temp key in core_attachments_map is a md5 hash based on the same input string. The string is more or less constant for a forum and doesn't contain a session or user id.

Could contain: Text, Chart, Plot

 

Could contain: Page, Text

 

The two screenrecording are showing the bug.

Scenario with 2 pictures

 

Scenarion with only one picture

 

Please have a look with high priority.
My community has already many posts with inconsistant attachments 😥

 

 

 

Edited by derpunker
Link to comment
Share on other sites
derpunker Enthusiast

derpunker

Posted
  • Author
Posted

Yes, this happens with different users in real life too.

We have observed this bug a couple of times in our community with normal user accounts and it took some time to understand the scenario.

 

In this video a VM and the Host itself is used.
Please ignore the license warning, this is only because of not using localhost.

 

 

The repros steps are really simple, please try it out by yourself @Jim M

Link to comment
Share on other sites
Marc Grand Master

Marc

Posted
Posted

Thank you for bringing this issue to our attention! I can confirm this should be further reviewed and I have logged an internal bug report for our development team to investigate and address as necessary, in a future maintenance release.

 

Link to comment
Share on other sites
  • 4 weeks later...
Marc Grand Master

Marc

Posted
Posted

We have taken a look at this, and its quite an involved fix which would need to be done in a major release. We do have this noted to be resolved at that point, but its not something you are going to see any time in minor releases like this. 

Link to comment
Share on other sites
Marc Grand Master

Marc

Posted
Posted
5 minutes ago, derpunker said:

That was not the answer I was hoping for. 🤒

Can you please give an estimate when to expect a resolution?
The error is really annoying and we have to check every new topic manually for wrong attachments.

Im unable to give an estimate at present, other than to say it will  be something addressed in a major release.

Link to comment
Share on other sites
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
Invision Community © 2024 IPS, Inc.
×
×
  • Create New...