NotificationsYou must be signed in to change notification settings
Fork6
Star31

Commit86eea78

committed

Get rid of another unconstify through API changes

This also makes the code in read_client_first_message() more similarto read_client_final_message().Reported-by: Mark Dilger <hornschnorter@gmail.com>Discussion:https://www.postgresql.org/message-id/flat/53a28052-f9f3-1808-fed9-460fd43035ab%402ndquadrant.com

1 parent4b3b07f commit86eea78Copy full SHA for 86eea78

File tree

3 files changed

+30

-30

lines changed

src
- backend/libpq
  - auth-scram.c
  - auth.c
- include/libpq
  - scram.h

3 files changed

+30

-30

lines changed

`‎src/backend/libpq/auth-scram.c`

Lines changed: 28 additions & 28 deletions

Original file line number	Diff line number	Diff line change
`@@ -155,8 +155,8 @@ typedef struct`
`155`	`155`	`char*logdetail;`
`156`	`156`	`}scram_state;`
`157`	`157`
`158`		`-staticvoidread_client_first_message(scram_statestate,charinput);`
`159`		`-staticvoidread_client_final_message(scram_statestate,charinput);`
	`158`	`+staticvoidread_client_first_message(scram_statestate,constcharinput);`
	`159`	`+staticvoidread_client_final_message(scram_statestate,constcharinput);`
`160`	`160`	`staticcharbuild_server_first_message(scram_statestate);`
`161`	`161`	`staticcharbuild_server_final_message(scram_statestate);`
`162`	`162`	`staticboolverify_client_proof(scram_state*state);`
`@@ -327,7 +327,7 @@ pg_be_scram_init(Port *port,`
`327`	`327`	`* the client).`
`328`	`328`	`*/`
`329`	`329`	`int`
`330`		`-pg_be_scram_exchange(voidopaq,charinput,intinputlen,`
	`330`	`+pg_be_scram_exchange(voidopaq,constcharinput,intinputlen,`
`331`	`331`	`char*output,intoutputlen,char**logdetail)`
`332`	`332`	`{`
`333`	`333`	`scram_statestate= (scram_state)opaq;`
`@@ -811,11 +811,11 @@ read_any_attr(char *input, char attr_p)`
`811`	`811`	`* At this stage, any errors will be reported directly with ereport(ERROR).`
`812`	`812`	`*/`
`813`	`813`	`staticvoid`
`814`		`-read_client_first_message(scram_statestate,charinput)`
	`814`	`+read_client_first_message(scram_statestate,constcharinput)`
`815`	`815`	`{`
	`816`	`+char*p=pstrdup(input);`
`816`	`817`	`char*channel_binding_type;`
`817`	`818`
`818`		`-input=pstrdup(input);`
`819`	`819`
`820`	`820`	`/*------`
`821`	`821`	`* The syntax for the client-first-message is: (RFC 5802)`
`@@ -881,8 +881,8 @@ read_client_first_message(scram_state state, char input)`
`881`	`881`	`* Read gs2-cbind-flag. (For details see also RFC 5802 Section 6 "Channel`
`882`	`882`	`* Binding".)`
`883`	`883`	`*/`
`884`		`-state->cbind_flag=*input;`
`885`		`-switch (*input)`
	`884`	`+state->cbind_flag=*p;`
	`885`	`+switch (*p)`
`886`	`886`	`{`
`887`	`887`	`case'n':`
`888`	`888`
`@@ -896,14 +896,14 @@ read_client_first_message(scram_state state, char input)`
`896`	`896`	`errmsg("malformed SCRAM message"),`
`897`	`897`	`errdetail("The client selected SCRAM-SHA-256-PLUS, but the SCRAM message does not include channel binding data.")));`
`898`	`898`
`899`		`-input++;`
`900`		`-if (*input!=',')`
	`899`	`+p++;`
	`900`	`+if (*p!=',')`
`901`	`901`	`ereport(ERROR,`
`902`	`902`	`(errcode(ERRCODE_PROTOCOL_VIOLATION),`
`903`	`903`	`errmsg("malformed SCRAM message"),`
`904`	`904`	`errdetail("Comma expected, but found character \"%s\".",`
`905`		`-sanitize_char(*input))));`
`906`		`-input++;`
	`905`	`+sanitize_char(*p))));`
	`906`	`+p++;`
`907`	`907`	`break;`
`908`	`908`	`case'y':`
`909`	`909`
`@@ -926,14 +926,14 @@ read_client_first_message(scram_state state, char input)`
`926`	`926`	`errdetail("The client supports SCRAM channel binding but thinks the server does not. "`
`927`	`927`	`"However, this server does support channel binding.")));`
`928`	`928`	`#endif`
`929`		`-input++;`
`930`		`-if (*input!=',')`
	`929`	`+p++;`
	`930`	`+if (*p!=',')`
`931`	`931`	`ereport(ERROR,`
`932`	`932`	`(errcode(ERRCODE_PROTOCOL_VIOLATION),`
`933`	`933`	`errmsg("malformed SCRAM message"),`
`934`	`934`	`errdetail("Comma expected, but found character \"%s\".",`
`935`		`-sanitize_char(*input))));`
`936`		`-input++;`
	`935`	`+sanitize_char(*p))));`
	`936`	`+p++;`
`937`	`937`	`break;`
`938`	`938`	`case'p':`
`939`	`939`
`@@ -947,7 +947,7 @@ read_client_first_message(scram_state state, char input)`
`947`	`947`	`errmsg("malformed SCRAM message"),`
`948`	`948`	`errdetail("The client selected SCRAM-SHA-256 without channel binding, but the SCRAM message includes channel binding data.")));`
`949`	`949`
`950`		`-channel_binding_type=read_attr_value(&input,'p');`
	`950`	`+channel_binding_type=read_attr_value(&p,'p');`
`951`	`951`
`952`	`952`	`/*`
`953`	`953`	`* The only channel binding type we support is`
`@@ -964,25 +964,25 @@ read_client_first_message(scram_state state, char input)`
`964`	`964`	`(errcode(ERRCODE_PROTOCOL_VIOLATION),`
`965`	`965`	`errmsg("malformed SCRAM message"),`
`966`	`966`	`errdetail("Unexpected channel-binding flag \"%s\".",`
`967`		`-sanitize_char(*input))));`
	`967`	`+sanitize_char(*p))));`
`968`	`968`	`}`
`969`	`969`
`970`	`970`	`/*`
`971`	`971`	`* Forbid optional authzid (authorization identity). We don't support it.`
`972`	`972`	`*/`
`973`		`-if (*input=='a')`
	`973`	`+if (*p=='a')`
`974`	`974`	`ereport(ERROR,`
`975`	`975`	`(errcode(ERRCODE_FEATURE_NOT_SUPPORTED),`
`976`	`976`	`errmsg("client uses authorization identity, but it is not supported")));`
`977`		`-if (*input!=',')`
	`977`	`+if (*p!=',')`
`978`	`978`	`ereport(ERROR,`
`979`	`979`	`(errcode(ERRCODE_PROTOCOL_VIOLATION),`
`980`	`980`	`errmsg("malformed SCRAM message"),`
`981`	`981`	`errdetail("Unexpected attribute \"%s\" in client-first-message.",`
`982`		`-sanitize_char(*input))));`
`983`		`-input++;`
	`982`	`+sanitize_char(*p))));`
	`983`	`+p++;`
`984`	`984`
`985`		`-state->client_first_message_bare=pstrdup(input);`
	`985`	`+state->client_first_message_bare=pstrdup(p);`
`986`	`986`
`987`	`987`	`/*`
`988`	`988`	`* Any mandatory extensions would go here. We don't support any.`
`@@ -991,7 +991,7 @@ read_client_first_message(scram_state state, char input)`
`991`	`991`	`* but it can only be sent in the server-final message. We prefer to fail`
`992`	`992`	`* immediately (which the RFC also allows).`
`993`	`993`	`*/`
`994`		`-if (*input=='m')`
	`994`	`+if (*p=='m')`
`995`	`995`	`ereport(ERROR,`
`996`	`996`	`(errcode(ERRCODE_FEATURE_NOT_SUPPORTED),`
`997`	`997`	`errmsg("client requires an unsupported SCRAM extension")));`
`@@ -1001,10 +1001,10 @@ read_client_first_message(scram_state state, char input)`
`1001`	`1001`	`* startup message instead, still it is kept around if provided as it`
`1002`	`1002`	`* proves to be useful for debugging purposes.`
`1003`	`1003`	`*/`
`1004`		`-state->client_username=read_attr_value(&input,'n');`
	`1004`	`+state->client_username=read_attr_value(&p,'n');`
`1005`	`1005`
`1006`	`1006`	`/* read nonce and check that it is made of only printable characters */`
`1007`		`-state->client_nonce=read_attr_value(&input,'r');`
	`1007`	`+state->client_nonce=read_attr_value(&p,'r');`
`1008`	`1008`	`if (!is_scram_printable(state->client_nonce))`
`1009`	`1009`	`ereport(ERROR,`
`1010`	`1010`	`(errcode(ERRCODE_PROTOCOL_VIOLATION),`
`@@ -1014,8 +1014,8 @@ read_client_first_message(scram_state state, char input)`
`1014`	`1014`	`* There can be any number of optional extensions after this. We don't`
`1015`	`1015`	`* support any extensions, so ignore them.`
`1016`	`1016`	`*/`
`1017`		`-while (*input!='\0')`
`1018`		`-read_any_attr(&input,NULL);`
	`1017`	`+while (*p!='\0')`
	`1018`	`+read_any_attr(&p,NULL);`
`1019`	`1019`
`1020`	`1020`	`/* success! */`
`1021`	`1021`	`}`
`@@ -1144,7 +1144,7 @@ build_server_first_message(scram_state *state)`
`1144`	`1144`	`* Read and parse the final message received from client.`
`1145`	`1145`	`*/`
`1146`	`1146`	`staticvoid`
`1147`		`-read_client_final_message(scram_statestate,charinput)`
	`1147`	`+read_client_final_message(scram_statestate,constcharinput)`
`1148`	`1148`	`{`
`1149`	`1149`	`charattr;`
`1150`	`1150`	`char*channel_binding;`

`‎src/backend/libpq/auth.c`

Lines changed: 1 addition & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -985,7 +985,7 @@ CheckSCRAMAuth(Port port, char shadow_pass, char **logdetail)`
`985`	`985`	`* we pass 'logdetail' as NULL when doing a mock authentication,`
`986`	`986`	`* because we should already have a better error message in that case`
`987`	`987`	`*/`
`988`		`-result=pg_be_scram_exchange(scram_opaq,unconstify(char*,input),inputlen,`
	`988`	`+result=pg_be_scram_exchange(scram_opaq,input,inputlen,`
`989`	`989`	`&output,&outputlen,`
`990`	`990`	`logdetail);`
`991`	`991`

`‎src/include/libpq/scram.h`

Lines changed: 1 addition & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -24,7 +24,7 @@`
`24`	`24`	`/* Routines dedicated to authentication */`
`25`	`25`	`externvoidpg_be_scram_get_mechanisms(Port*port,StringInfobuf);`
`26`	`26`	`externvoidpg_be_scram_init(Portport,constcharselected_mech,constcharshadow_pass);`
`27`		`-externintpg_be_scram_exchange(voidopaq,charinput,intinputlen,`
	`27`	`+externintpg_be_scram_exchange(voidopaq,constcharinput,intinputlen,`
`28`	`28`	`char*output,intoutputlen,char**logdetail);`
`29`	`29`
`30`	`30`	`/* Routines to handle and check SCRAM-SHA-256 verifier */`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit86eea78

File tree

3 files changed

3 files changed

`‎src/backend/libpq/auth-scram.c`

`‎src/backend/libpq/auth.c`

`‎src/include/libpq/scram.h`

0 commit comments