NotificationsYou must be signed in to change notification settings
Fork5.2k
Star19k

Commitb28c59a

committed

Use 'void *' for arbitrary buffers, 'uint8 *' for byte arrays

A 'void *' argument suggests that the caller might pass an arbitrarystruct, which is appropriate for functions like libc's read/write, orpq_sendbytes(). 'uint8 *' is more appropriate for byte arrays thathave no structure, like the cancellation keys or SCRAM tokens. Someplaces used 'char *', but 'uint8 *' is better because 'char *' iscommonly used for null-terminated strings. Change code around SCRAM,MD5 authentication, and cancellation key handling to follow theseconventions.Discussion:https://www.postgresql.org/message-id/61be9e31-7b7d-49d5-bc11-721800d89d64@eisentraut.org

1 parent965213d commitb28c59aCopy full SHA for b28c59a

File tree

24 files changed

+80

-80

lines changed

contrib
- dblink
  - dblink.c
- postgres_fdw
  - connection.c
src
- backend
  - libpq
  - storage/ipc
    - procsignal.c
  - utils/init
    - globals.c
- common
- include
  - common
  - libpq
  - miscadmin.h
  - storage
    - procsignal.h
- interfaces/libpq

24 files changed

+80

-80

lines changed

`‎contrib/dblink/dblink.c‎`

Lines changed: 2 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -3218,7 +3218,7 @@ appendSCRAMKeysInfo(StringInfo buf)`
`3218`	`3218`	`len=pg_b64_enc_len(sizeof(MyProcPort->scram_ClientKey));`
`3219`	`3219`	`/* don't forget the zero-terminator */`
`3220`	`3220`	`client_key=palloc0(len+1);`
`3221`		`-encoded_len=pg_b64_encode((constchar*)MyProcPort->scram_ClientKey,`
	`3221`	`+encoded_len=pg_b64_encode(MyProcPort->scram_ClientKey,`
`3222`	`3222`	`sizeof(MyProcPort->scram_ClientKey),`
`3223`	`3223`	`client_key,len);`
`3224`	`3224`	`if (encoded_len<0)`
`@@ -3227,7 +3227,7 @@ appendSCRAMKeysInfo(StringInfo buf)`
`3227`	`3227`	`len=pg_b64_enc_len(sizeof(MyProcPort->scram_ServerKey));`
`3228`	`3228`	`/* don't forget the zero-terminator */`
`3229`	`3229`	`server_key=palloc0(len+1);`
`3230`		`-encoded_len=pg_b64_encode((constchar*)MyProcPort->scram_ServerKey,`
	`3230`	`+encoded_len=pg_b64_encode(MyProcPort->scram_ServerKey,`
`3231`	`3231`	`sizeof(MyProcPort->scram_ServerKey),`
`3232`	`3232`	`server_key,len);`
`3233`	`3233`	`if (encoded_len<0)`

`‎contrib/postgres_fdw/connection.c‎`

Lines changed: 2 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -577,7 +577,7 @@ connect_pg_server(ForeignServer server, UserMapping user)`
`577`	`577`	`len=pg_b64_enc_len(sizeof(MyProcPort->scram_ClientKey));`
`578`	`578`	`/* don't forget the zero-terminator */`
`579`	`579`	`values[n]=palloc0(len+1);`
`580`		`-encoded_len=pg_b64_encode((constchar*)MyProcPort->scram_ClientKey,`
	`580`	`+encoded_len=pg_b64_encode(MyProcPort->scram_ClientKey,`
`581`	`581`	`sizeof(MyProcPort->scram_ClientKey),`
`582`	`582`	`(char*)values[n],len);`
`583`	`583`	`if (encoded_len<0)`
`@@ -588,7 +588,7 @@ connect_pg_server(ForeignServer server, UserMapping user)`
`588`	`588`	`len=pg_b64_enc_len(sizeof(MyProcPort->scram_ServerKey));`
`589`	`589`	`/* don't forget the zero-terminator */`
`590`	`590`	`values[n]=palloc0(len+1);`
`591`		`-encoded_len=pg_b64_encode((constchar*)MyProcPort->scram_ServerKey,`
	`591`	`+encoded_len=pg_b64_encode(MyProcPort->scram_ServerKey,`
`592`	`592`	`sizeof(MyProcPort->scram_ServerKey),`
`593`	`593`	`(char*)values[n],len);`
`594`	`594`	`if (encoded_len<0)`

`‎src/backend/libpq/auth-scram.c‎`

Lines changed: 16 additions & 16 deletions

Original file line number	Diff line number	Diff line change
`@@ -158,7 +158,7 @@ typedef struct`
`158`	`158`	`/* Fields from the last message from client */`
`159`	`159`	`char*client_final_message_without_proof;`
`160`	`160`	`char*client_final_nonce;`
`161`		`-charClientProof[SCRAM_MAX_KEY_LEN];`
	`161`	`+uint8ClientProof[SCRAM_MAX_KEY_LEN];`
`162`	`162`
`163`	`163`	`/* Fields generated in the server */`
`164`	`164`	`char*server_first_message;`
`@@ -186,9 +186,9 @@ static void mock_scram_secret(const char username, pg_cryptohash_type hash_typ`
`186`	`186`	`staticboolis_scram_printable(char*p);`
`187`	`187`	`staticchar*sanitize_char(charc);`
`188`	`188`	`staticcharsanitize_str(constchars);`
`189`		`-staticcharscram_mock_salt(constcharusername,`
`190`		`-pg_cryptohash_typehash_type,`
`191`		`-intkey_length);`
	`189`	`+staticuint8scram_mock_salt(constcharusername,`
	`190`	`+pg_cryptohash_typehash_type,`
	`191`	`+intkey_length);`
`192`	`192`
`193`	`193`	`/*`
`194`	`194`	`* The number of iterations to use when generating new secrets.`
`@@ -484,7 +484,7 @@ pg_be_scram_build_secret(const char *password)`
`484`	`484`	`{`
`485`	`485`	`char*prep_password;`
`486`	`486`	`pg_saslprep_rcrc;`
`487`		`-charsaltbuf[SCRAM_DEFAULT_SALT_LEN];`
	`487`	`+uint8saltbuf[SCRAM_DEFAULT_SALT_LEN];`
`488`	`488`	`char*result;`
`489`	`489`	`constchar*errstr=NULL;`
`490`	`490`
`@@ -524,7 +524,7 @@ scram_verify_plain_password(const char username, const char password,`
`524`	`524`	`constchar*secret)`
`525`	`525`	`{`
`526`	`526`	`char*encoded_salt;`
`527`		`-char*salt;`
	`527`	`+uint8*salt;`
`528`	`528`	`intsaltlen;`
`529`	`529`	`intiterations;`
`530`	`530`	`intkey_length=0;`
`@@ -609,9 +609,9 @@ parse_scram_secret(const char secret, int iterations,`
`609`	`609`	`char*storedkey_str;`
`610`	`610`	`char*serverkey_str;`
`611`	`611`	`intdecoded_len;`
`612`		`-char*decoded_salt_buf;`
`613`		`-char*decoded_stored_buf;`
`614`		`-char*decoded_server_buf;`
	`612`	`+uint8*decoded_salt_buf;`
	`613`	`+uint8*decoded_stored_buf;`
	`614`	`+uint8*decoded_server_buf;`
`615`	`615`
`616`	`616`	`/*`
`617`	`617`	`* The secret is of form:`
`@@ -698,7 +698,7 @@ mock_scram_secret(const char username, pg_cryptohash_type hash_type,`
`698`	`698`	`intiterations,intkey_length,char**salt,`
`699`	`699`	`uint8stored_key,uint8server_key)`
`700`	`700`	`{`
`701`		`-char*raw_salt;`
	`701`	`+uint8*raw_salt;`
`702`	`702`	`char*encoded_salt;`
`703`	`703`	`intencoded_len;`
`704`	`704`
`@@ -1231,7 +1231,7 @@ build_server_first_message(scram_state *state)`
`1231`	`1231`	`* For convenience, however, we don't use the whole range available,`
`1232`	`1232`	`* rather, we generate some random bytes, and base64 encode them.`
`1233`	`1233`	`*/`
`1234`		`-charraw_nonce[SCRAM_RAW_NONCE_LEN];`
	`1234`	`+uint8raw_nonce[SCRAM_RAW_NONCE_LEN];`
`1235`	`1235`	`intencoded_len;`
`1236`	`1236`
`1237`	`1237`	`if (!pg_strong_random(raw_nonce,SCRAM_RAW_NONCE_LEN))`
`@@ -1271,7 +1271,7 @@ read_client_final_message(scram_state state, const char input)`
`1271`	`1271`	`char*begin,`
`1272`	`1272`	`*proof;`
`1273`	`1273`	`char*p;`
`1274`		`-char*client_proof;`
	`1274`	`+uint8*client_proof;`
`1275`	`1275`	`intclient_proof_len;`
`1276`	`1276`
`1277`	`1277`	`begin=p=pstrdup(input);`
`@@ -1340,7 +1340,7 @@ read_client_final_message(scram_state state, const char input)`
`1340`	`1340`	`b64_message_len=pg_b64_enc_len(cbind_input_len);`
`1341`	`1341`	`/* don't forget the zero-terminator */`
`1342`	`1342`	`b64_message=palloc(b64_message_len+1);`
`1343`		`-b64_message_len=pg_b64_encode(cbind_input,cbind_input_len,`
	`1343`	`+b64_message_len=pg_b64_encode((uint8*)cbind_input,cbind_input_len,`
`1344`	`1344`	`b64_message,b64_message_len);`
`1345`	`1345`	`if (b64_message_len<0)`
`1346`	`1346`	`elog(ERROR,"could not encode channel binding data");`
`@@ -1440,7 +1440,7 @@ build_server_final_message(scram_state *state)`
`1440`	`1440`	`siglen=pg_b64_enc_len(state->key_length);`
`1441`	`1441`	`/* don't forget the zero-terminator */`
`1442`	`1442`	`server_signature_base64=palloc(siglen+1);`
`1443`		`-siglen=pg_b64_encode((constchar*)ServerSignature,`
	`1443`	`+siglen=pg_b64_encode(ServerSignature,`
`1444`	`1444`	`state->key_length,server_signature_base64,`
`1445`	`1445`	`siglen);`
`1446`	`1446`	`if (siglen<0)`
`@@ -1467,7 +1467,7 @@ build_server_final_message(scram_state *state)`
`1467`	`1467`	`* hash based on the username and a cluster-level secret key. Returns a`
`1468`	`1468`	`* pointer to a static buffer of size SCRAM_DEFAULT_SALT_LEN, or NULL.`
`1469`	`1469`	`*/`
`1470`		`-staticchar*`
	`1470`	`+staticuint8*`
`1471`	`1471`	`scram_mock_salt(constchar*username,pg_cryptohash_typehash_type,`
`1472`	`1472`	`intkey_length)`
`1473`	`1473`	`{`
`@@ -1501,5 +1501,5 @@ scram_mock_salt(const char *username, pg_cryptohash_type hash_type,`
`1501`	`1501`	`}`
`1502`	`1502`	`pg_cryptohash_free(ctx);`
`1503`	`1503`
`1504`		`-return(char*)sha_digest;`
	`1504`	`+returnsha_digest;`
`1505`	`1505`	`}`

`‎src/backend/libpq/auth.c‎`

Lines changed: 2 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -666,7 +666,7 @@ ClientAuthentication(Port *port)`
`666`	`666`	`* Send an authentication request packet to the frontend.`
`667`	`667`	`*/`
`668`	`668`	`void`
`669`		`-sendAuthRequest(Portport,AuthRequestareq,constcharextradata,intextralen)`
	`669`	`+sendAuthRequest(Portport,AuthRequestareq,constvoidextradata,intextralen)`
`670`	`670`	`{`
`671`	`671`	`StringInfoDatabuf;`
`672`	`672`
`@@ -874,7 +874,7 @@ CheckPWChallengeAuth(Port port, const char *logdetail)`
`874`	`874`	`staticint`
`875`	`875`	`CheckMD5Auth(Portport,charshadow_pass,constchar**logdetail)`
`876`	`876`	`{`
`877`		`-charmd5Salt[4];/* Password salt */`
	`877`	`+uint8md5Salt[4];/* Password salt */`
`878`	`878`	`char*passwd;`
`879`	`879`	`intresult;`
`880`	`880`

`‎src/backend/libpq/crypt.c‎`

Lines changed: 3 additions & 3 deletions

Original file line number	Diff line number	Diff line change
`@@ -136,7 +136,7 @@ encrypt_password(PasswordType target_type, const char *role,`
`136`	`136`	`casePASSWORD_TYPE_MD5:`
`137`	`137`	`encrypted_password=palloc(MD5_PASSWD_LEN+1);`
`138`	`138`
`139`		`-if (!pg_md5_encrypt(password,role,strlen(role),`
	`139`	`+if (!pg_md5_encrypt(password,(uint8*)role,strlen(role),`
`140`	`140`	`encrypted_password,&errstr))`
`141`	`141`	`elog(ERROR,"password encryption failed: %s",errstr);`
`142`	`142`	`break;`
`@@ -201,7 +201,7 @@ encrypt_password(PasswordType target_type, const char *role,`
`201`	`201`	`int`
`202`	`202`	`md5_crypt_verify(constcharrole,constcharshadow_pass,`
`203`	`203`	`constchar*client_pass,`
`204`		`-constchar*md5_salt,intmd5_salt_len,`
	`204`	`+constuint8*md5_salt,intmd5_salt_len,`
`205`	`205`	`constchar**logdetail)`
`206`	`206`	`{`
`207`	`207`	`intretval;`
`@@ -284,7 +284,7 @@ plain_crypt_verify(const char role, const char shadow_pass,`
`284`	`284`
`285`	`285`	`casePASSWORD_TYPE_MD5:`
`286`	`286`	`if (!pg_md5_encrypt(client_pass,`
`287`		`-role,`
	`287`	`+(uint8*)role,`
`288`	`288`	`strlen(role),`
`289`	`289`	`crypt_client_pass,`
`290`	`290`	`&errstr))`

`‎src/backend/storage/ipc/procsignal.c‎`

Lines changed: 3 additions & 3 deletions

Original file line number	Diff line number	Diff line change
`@@ -64,7 +64,7 @@ typedef struct`
`64`	`64`	`{`
`65`	`65`	`pg_atomic_uint32pss_pid;`
`66`	`66`	`intpss_cancel_key_len;/* 0 means no cancellation is possible */`
`67`		`-charpss_cancel_key[MAX_CANCEL_KEY_LENGTH];`
	`67`	`+uint8pss_cancel_key[MAX_CANCEL_KEY_LENGTH];`
`68`	`68`	`volatilesig_atomic_tpss_signalFlags[NUM_PROCSIGNALS];`
`69`	`69`	`slock_tpss_mutex;/* protects the above fields */`
`70`	`70`
`@@ -163,7 +163,7 @@ ProcSignalShmemInit(void)`
`163`	`163`	`*Register the current process in the ProcSignal array`
`164`	`164`	`*/`
`165`	`165`	`void`
`166`		`-ProcSignalInit(char*cancel_key,intcancel_key_len)`
	`166`	`+ProcSignalInit(constuint8*cancel_key,intcancel_key_len)`
`167`	`167`	`{`
`168`	`168`	`ProcSignalSlot*slot;`
`169`	`169`	`uint64barrier_generation;`
`@@ -729,7 +729,7 @@ procsignal_sigusr1_handler(SIGNAL_ARGS)`
`729`	`729`	`* fields in the ProcSignal slots.`
`730`	`730`	`*/`
`731`	`731`	`void`
`732`		`-SendCancelRequest(intbackendPID,char*cancel_key,intcancel_key_len)`
	`732`	`+SendCancelRequest(intbackendPID,constuint8*cancel_key,intcancel_key_len)`
`733`	`733`	`{`
`734`	`734`	`Assert(backendPID!=0);`
`735`	`735`

`‎src/backend/utils/init/globals.c‎`

Lines changed: 1 addition & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -50,7 +50,7 @@ pg_time_tMyStartTime;`
`50`	`50`	`TimestampTzMyStartTimestamp;`
`51`	`51`	`structClientSocket*MyClientSocket;`
`52`	`52`	`structPort*MyProcPort;`
`53`		`-charMyCancelKey[MAX_CANCEL_KEY_LENGTH];`
	`53`	`+uint8MyCancelKey[MAX_CANCEL_KEY_LENGTH];`
`54`	`54`	`intMyCancelKeyLength=0;`
`55`	`55`	`intMyPMChildSlot;`
`56`	`56`

`‎src/common/base64.c‎`

Lines changed: 8 additions & 8 deletions

Original file line number	Diff line number	Diff line change
`@@ -41,15 +41,15 @@ static const int8 b64lookup[128] = {`
`41`	`41`	`/*`
`42`	`42`	`* pg_b64_encode`
`43`	`43`	`*`
`44`		`- * Encodeinto base64 the given string. Returns the length of the encoded`
`45`		`- * string, and -1 in the event of an error with the result buffer zeroed`
`46`		`- *forsafety.`
	`44`	`+ * Encodethe 'src' byte array into base64. Returns the length of the encoded`
	`45`	`+ * string, and -1 in the event of an error with the result buffer zeroed for`
	`46`	`+ * safety.`
`47`	`47`	`*/`
`48`	`48`	`int`
`49`		`-pg_b64_encode(constcharsrc,intlen,chardst,intdstlen)`
	`49`	`+pg_b64_encode(constuint8src,intlen,chardst,intdstlen)`
`50`	`50`	`{`
`51`	`51`	`char*p;`
`52`		`-constchar*s,`
	`52`	`+constuint8*s,`
`53`	`53`	`*end=src+len;`
`54`	`54`	`intpos=2;`
`55`	`55`	`uint32buf=0;`
`@@ -59,7 +59,7 @@ pg_b64_encode(const char src, int len, char dst, int dstlen)`
`59`	`59`
`60`	`60`	`while (s<end)`
`61`	`61`	`{`
`62`		`-buf \|=(unsignedchar)*s << (pos <<3);`
	`62`	`+buf \|=*s << (pos <<3);`
`63`	`63`	`pos--;`
`64`	`64`	`s++;`
`65`	`65`
`@@ -113,11 +113,11 @@ pg_b64_encode(const char src, int len, char dst, int dstlen)`
`113`	`113`	`* buffer zeroed for safety.`
`114`	`114`	`*/`
`115`	`115`	`int`
`116`		`-pg_b64_decode(constcharsrc,intlen,chardst,intdstlen)`
	`116`	`+pg_b64_decode(constcharsrc,intlen,uint8dst,intdstlen)`
`117`	`117`	`{`
`118`	`118`	`constchar*srcend=src+len,`
`119`	`119`	`*s=src;`
`120`		`-char*p=dst;`
	`120`	`+uint8*p=dst;`
`121`	`121`	`charc;`
`122`	`122`	`intb=0;`
`123`	`123`	`uint32buf=0;`

`‎src/common/md5_common.c‎`

Lines changed: 2 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -105,7 +105,7 @@ pg_md5_hash(const void buff, size_t len, char hexsum, const char **errstr)`
`105`	`105`	`* (of size MD5_DIGEST_LENGTH) rather than being converted to ASCII hex.`
`106`	`106`	`*/`
`107`	`107`	`bool`
`108`		`-pg_md5_binary(constvoidbuff,size_tlen,voidoutbuf,constchar**errstr)`
	`108`	`+pg_md5_binary(constvoidbuff,size_tlen,uint8outbuf,constchar**errstr)`
`109`	`109`	`{`
`110`	`110`	`pg_cryptohash_ctx*ctx;`
`111`	`111`
`@@ -142,7 +142,7 @@ pg_md5_binary(const void buff, size_t len, void outbuf, const char **errstr)`
`142`	`142`	`* error context.`
`143`	`143`	`*/`
`144`	`144`	`bool`
`145`		`-pg_md5_encrypt(constcharpasswd,constcharsalt,size_tsalt_len,`
	`145`	`+pg_md5_encrypt(constcharpasswd,constuint8salt,size_tsalt_len,`
`146`	`146`	`charbuf,constchar*errstr)`
`147`	`147`	`{`
`148`	`148`	`size_tpasswd_len=strlen(passwd);`

`‎src/common/scram-common.c‎`

Lines changed: 5 additions & 5 deletions

Original file line number	Diff line number	Diff line change
`@@ -37,7 +37,7 @@`
`37`	`37`	`int`
`38`	`38`	`scram_SaltedPassword(constchar*password,`
`39`	`39`	`pg_cryptohash_typehash_type,intkey_length,`
`40`		`-constchar*salt,intsaltlen,intiterations,`
	`40`	`+constuint8*salt,intsaltlen,intiterations,`
`41`	`41`	`uint8result,constchar*errstr)`
`42`	`42`	`{`
`43`	`43`	`intpassword_len=strlen(password);`
`@@ -62,7 +62,7 @@ scram_SaltedPassword(const char *password,`
`62`	`62`
`63`	`63`	`/* First iteration */`
`64`	`64`	`if (pg_hmac_init(hmac_ctx, (uint8*)password,password_len)<0\|\|`
`65`		`-pg_hmac_update(hmac_ctx,(uint8*)salt,saltlen)<0\|\|`
	`65`	`+pg_hmac_update(hmac_ctx,salt,saltlen)<0\|\|`
`66`	`66`	`pg_hmac_update(hmac_ctx, (uint8*)&one,sizeof(uint32))<0\|\|`
`67`	`67`	`pg_hmac_final(hmac_ctx,Ui_prev,key_length)<0)`
`68`	`68`	`{`
`@@ -207,7 +207,7 @@ scram_ServerKey(const uint8 *salted_password,`
`207`	`207`	`*/`
`208`	`208`	`char*`
`209`	`209`	`scram_build_secret(pg_cryptohash_typehash_type,intkey_length,`
`210`		`-constchar*salt,intsaltlen,intiterations,`
	`210`	`+constuint8*salt,intsaltlen,intiterations,`
`211`	`211`	`constcharpassword,constchar*errstr)`
`212`	`212`	`{`
`213`	`213`	`uint8salted_password[SCRAM_MAX_KEY_LEN];`
`@@ -290,7 +290,7 @@ scram_build_secret(pg_cryptohash_type hash_type, int key_length,`
`290`	`290`	`*(p++)='$';`
`291`	`291`
`292`	`292`	`/* stored key */`
`293`		`-encoded_result=pg_b64_encode((char*)stored_key,key_length,p,`
	`293`	`+encoded_result=pg_b64_encode(stored_key,key_length,p,`
`294`	`294`	`encoded_stored_len);`
`295`	`295`	`if (encoded_result<0)`
`296`	`296`	`{`
`@@ -307,7 +307,7 @@ scram_build_secret(pg_cryptohash_type hash_type, int key_length,`
`307`	`307`	`*(p++)=':';`
`308`	`308`
`309`	`309`	`/* server key */`
`310`		`-encoded_result=pg_b64_encode((char*)server_key,key_length,p,`
	`310`	`+encoded_result=pg_b64_encode(server_key,key_length,p,`
`311`	`311`	`encoded_server_len);`
`312`	`312`	`if (encoded_result<0)`
`313`	`313`	`{`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commitb28c59a

File tree

24 files changed

24 files changed

`‎contrib/dblink/dblink.c‎`

`‎contrib/postgres_fdw/connection.c‎`

`‎src/backend/libpq/auth-scram.c‎`

`‎src/backend/libpq/auth.c‎`

`‎src/backend/libpq/crypt.c‎`

`‎src/backend/storage/ipc/procsignal.c‎`

`‎src/backend/utils/init/globals.c‎`

`‎src/common/base64.c‎`

`‎src/common/md5_common.c‎`

`‎src/common/scram-common.c‎`

0 commit comments