pt-show-grants --separate fails with proxy user
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Percona Toolkit moved to https://jira.percona.com/projects/PT |
Fix Released
|
Medium
|
Baron Schwartz |
Bug Description
System info: Using pt-show-grants version 1.0.1 on mysql 5.5.15
pt-show-grants gives the following error when the --separate flag is specified: Use of uninitialized value in split at /usr/bin/
Here is output without separate flag:
$ pt-show-grants
-- Grants dumped by pt-show-grants
-- Dumped from server rs.dev via TCP/IP, MySQL 5.5.15-log at 2011-09-07 10:55:09
-- Grants for 'dtest'@'localhost'
GRANT ALL PRIVILEGES ON *.* TO 'dtest'@'localhost' IDENTIFIED BY PASSWORD 'mypass';
-- Grants for 'proxy'@'localhost'
GRANT PROXY ON 'dtest'@'localhost' TO 'proxy'
GRANT USAGE ON *.* TO 'proxy'
-- Grants for 'root'@'localhost'
GRANT ALL PRIVILEGES ON *.* TO 'root'@'localhost' IDENTIFIED BY PASSWORD 'rootPass' WITH GRANT OPTION;
GRANT PROXY ON ''@'' TO 'root'@'localhost' WITH GRANT OPTION;
And output with separate flag:
$ pt-show-grants --separate
-- Grants dumped by pt-show-grants
-- Dumped from server rs.dev via TCP/IP, MySQL 5.5.15-log at 2011-09-07 10:55:01
-- Grants for 'dtest'@'localhost'
GRANT ALL PRIVILEGES ON *.* TO 'dtest'@'localhost' IDENTIFIED BY PASSWORD 'mypass';
Use of uninitialized value in split at /usr/bin/
I am only assuming this is because there is no GRANT USAGE clause for the user `dtest`
description: | updated |
tags: |
added: pt-show-grants removed: proxy-users |
Changed in percona-toolkit: | |
status: | New → Confirmed |
Changed in percona-toolkit: | |
status: | Fix Committed → Fix Released |
Just to clarify why I believe this is happening. For these Grants: @'localhost' ; @'localhost' ;
GRANT PROXY ON 'dtest'@'localhost' TO 'proxy'
GRANT USAGE ON *.* TO 'proxy'
The GRANT USAGE is for the `proxy`@`localhost` user and not the parent user `dtest` @`localhost` ;
Proxy User was set up using mysql's test authentication plugin, process described here: http:// dba.stackexchan ge.com/ questions/ 526/can- you-su- in-mysql/ 4708#4708