NotificationsYou must be signed in to change notification settings
Fork6
Star31

Commit8cde7f4

committed

Fix assorted minor bogosity in GSSAPI transport error messages.

I noted that some buildfarm members were complaining about %ld beingused to format values that are (probably) declared size_t. Use %zuinstead, and insert a cast just in case some versions of the GSSAPIAPI declare the length field differently. While at it, clean upgratuitous differences in wording of equivalent messages, showthe complained-of length in all relevant messages not just some,include trailing newline where needed, adjust random deviationsfrom project-standard code layout and message style, etc.

1 parentb4f96d6 commit8cde7f4Copy full SHA for 8cde7f4

File tree

2 files changed

+31

-20

lines changed

src
- backend/libpq
  - be-secure-gssapi.c
- interfaces/libpq
  - fe-secure-gssapi.c

2 files changed

+31

-20

lines changed

`‎src/backend/libpq/be-secure-gssapi.c`

Lines changed: 18 additions & 9 deletions

Original file line number	Diff line number	Diff line change
`@@ -14,17 +14,16 @@`
`14`	`14`
`15`	`15`	`#include"postgres.h"`
`16`	`16`
`17`		`-#include"be-gssapi-common.h"`
	`17`	`+#include<unistd.h>`
`18`	`18`
	`19`	`+#include"be-gssapi-common.h"`
`19`	`20`	`#include"libpq/auth.h"`
`20`	`21`	`#include"libpq/libpq.h"`
`21`	`22`	`#include"libpq/libpq-be.h"`
`22`	`23`	`#include"libpq/pqformat.h"`
`23`	`24`	`#include"miscadmin.h"`
`24`	`25`	`#include"pgstat.h"`
`25`	`26`
`26`		`-#include<unistd.h>`
`27`		`-`
`28`	`27`
`29`	`28`	`/*`
`30`	`29`	`* Handle the encryption/decryption of data using GSSAPI.`
`@@ -179,10 +178,13 @@ be_gssapi_write(Port port, void ptr, size_t len)`
`179`	`178`	`pg_GSS_error(FATAL,gettext_noop("GSSAPI wrap error"),major,minor);`
`180`	`179`
`181`	`180`	`if (conf==0)`
`182`		`-ereport(FATAL, (errmsg("GSSAPI did not provide confidentiality")));`
	`181`	`+ereport(FATAL,`
	`182`	`+(errmsg("GSSAPI did not provide confidentiality")));`
`183`	`183`
`184`	`184`	`if (output.length>PQ_GSS_SEND_BUFFER_SIZE-sizeof(uint32))`
`185`		`-ereport(FATAL, (errmsg("GSSAPI tried to send packet of size: %ld",output.length)));`
	`185`	`+ereport(FATAL,`
	`186`	`+(errmsg("server tried to send oversize GSSAPI packet: %zu bytes",`
	`187`	`+(size_t)output.length)));`
`186`	`188`
`187`	`189`	`bytes_encrypted+=input.length;`
`188`	`190`	`bytes_to_encrypt-=input.length;`
`@@ -297,7 +299,9 @@ be_gssapi_read(Port port, void ptr, size_t len)`
`297`	`299`
`298`	`300`	`/* Check for over-length packet */`
`299`	`301`	`if (input.length>PQ_GSS_RECV_BUFFER_SIZE-sizeof(uint32))`
`300`		`-ereport(FATAL, (errmsg("Over-size GSSAPI packet sent by the client.")));`
	`302`	`+ereport(FATAL,`
	`303`	`+(errmsg("oversize GSSAPI packet sent by the client: %zu bytes",`
	`304`	`+(size_t)input.length)));`
`301`	`305`
`302`	`306`	`/*`
`303`	`307`	`* Read as much of the packet as we are able to on this call into`
`@@ -341,7 +345,8 @@ be_gssapi_read(Port port, void ptr, size_t len)`
`341`	`345`	`major,minor);`
`342`	`346`
`343`	`347`	`if (conf==0)`
`344`		`-ereport(FATAL, (errmsg("GSSAPI did not provide confidentiality")));`
	`348`	`+ereport(FATAL,`
	`349`	`+(errmsg("GSSAPI did not provide confidentiality")));`
`345`	`350`
`346`	`351`	`memcpy(PqGSSResultBuffer,output.value,output.length);`
`347`	`352`
`@@ -492,7 +497,9 @@ secure_open_gssapi(Port *port)`
`492`	`497`	`* Verify on our side that the client doesn't do something funny.`
`493`	`498`	`*/`
`494`	`499`	`if (input.length>PQ_GSS_RECV_BUFFER_SIZE)`
`495`		`-ereport(FATAL, (errmsg("Over-size GSSAPI packet sent by the client: %ld",input.length)));`
	`500`	`+ereport(FATAL,`
	`501`	`+(errmsg("oversize GSSAPI packet sent by the client: %zu bytes",`
	`502`	`+(size_t)input.length)));`
`496`	`503`
`497`	`504`	`/*`
`498`	`505`	`* Get the rest of the packet so we can pass it to GSSAPI to accept`
`@@ -538,7 +545,9 @@ secure_open_gssapi(Port *port)`
`538`	`545`	`uint32netlen=htonl(output.length);`
`539`	`546`
`540`	`547`	`if (output.length>PQ_GSS_SEND_BUFFER_SIZE-sizeof(uint32))`
`541`		`-ereport(FATAL, (errmsg("GSSAPI tried to send oversize packet")));`
	`548`	`+ereport(FATAL,`
	`549`	`+(errmsg("server tried to send oversize GSSAPI packet: %zu bytes",`
	`550`	`+(size_t)output.length)));`
`542`	`551`
`543`	`552`	`memcpy(PqGSSSendBuffer, (char*)&netlen,sizeof(uint32));`
`544`	`553`	`PqGSSSendPointer+=sizeof(uint32);`

`‎src/interfaces/libpq/fe-secure-gssapi.c`

Lines changed: 13 additions & 11 deletions

Original file line number	Diff line number	Diff line change
`@@ -16,7 +16,6 @@`
`16`	`16`	`#include"libpq-fe.h"`
`17`	`17`	`#include"libpq-int.h"`
`18`	`18`	`#include"fe-gssapi-common.h"`
`19`		`-`
`20`	`19`	`#include"port/pg_bswap.h"`
`21`	`20`
`22`	`21`	`/*`
`@@ -163,15 +162,16 @@ pg_GSS_write(PGconn conn, const void ptr, size_t len)`
`163`	`162`	`}`
`164`	`163`	`elseif (conf==0)`
`165`	`164`	`{`
`166`		`-printfPQExpBuffer(&conn->errorMessage,libpq_gettext(`
`167`		`-"GSSAPI did not provide confidentiality\n"));`
	`165`	`+printfPQExpBuffer(&conn->errorMessage,`
	`166`	`+libpq_gettext("GSSAPI did not provide confidentiality\n"));`
`168`	`167`	`gotocleanup;`
`169`	`168`	`}`
`170`	`169`
`171`	`170`	`if (output.length>PQ_GSS_SEND_BUFFER_SIZE-sizeof(uint32))`
`172`	`171`	`{`
`173`		`-printfPQExpBuffer(&conn->errorMessage,libpq_gettext(`
`174`		`-"GSSAPI attempt to send oversize packet\n"));`
	`172`	`+printfPQExpBuffer(&conn->errorMessage,`
	`173`	`+libpq_gettext("client tried to send oversize GSSAPI packet: %zu bytes\n"),`
	`174`	`+ (size_t)output.length);`
`175`	`175`	`gotocleanup;`
`176`	`176`	`}`
`177`	`177`
`@@ -286,8 +286,8 @@ pg_GSS_read(PGconn conn, void ptr, size_t len)`
`286`	`286`	`/* Check for over-length packet */`
`287`	`287`	`if (input.length>PQ_GSS_RECV_BUFFER_SIZE-sizeof(uint32))`
`288`	`288`	`{`
`289`		`-printfPQExpBuffer(&conn->errorMessage,libpq_gettext(`
`290`		`-"GSSAPI did not provide confidentiality\n"));`
	`289`	`+printfPQExpBuffer(&conn->errorMessage,`
	`290`	`+libpq_gettext("GSSAPI did not provide confidentiality\n"));`
`291`	`291`	`ret=-1;`
`292`	`292`	`gotocleanup;`
`293`	`293`	`}`
`@@ -328,8 +328,8 @@ pg_GSS_read(PGconn conn, void ptr, size_t len)`
`328`	`328`	`}`
`329`	`329`	`elseif (conf==0)`
`330`	`330`	`{`
`331`		`-printfPQExpBuffer(&conn->errorMessage,libpq_gettext(`
`332`		`-"GSSAPI did not provide confidentiality\n"));`
	`331`	`+printfPQExpBuffer(&conn->errorMessage,`
	`332`	`+libpq_gettext("GSSAPI did not provide confidentiality\n"));`
`333`	`333`	`ret=-1;`
`334`	`334`	`gotocleanup;`
`335`	`335`	`}`
`@@ -476,7 +476,7 @@ pqsecure_open_gss(PGconn *conn)`
`476`	`476`
`477`	`477`	`PqGSSRecvLength+=ret;`
`478`	`478`
`479`		`-printfPQExpBuffer(&conn->errorMessage,"%s",PqGSSRecvBuffer+1);`
	`479`	`+printfPQExpBuffer(&conn->errorMessage,"%s\n",PqGSSRecvBuffer+1);`
`480`	`480`
`481`	`481`	`returnPGRES_POLLING_FAILED;`
`482`	`482`	`}`
`@@ -490,7 +490,9 @@ pqsecure_open_gss(PGconn *conn)`
`490`	`490`	`input.length=ntohl((uint32)PqGSSRecvBuffer);`
`491`	`491`	`if (input.length>PQ_GSS_RECV_BUFFER_SIZE-sizeof(uint32))`
`492`	`492`	`{`
`493`		`-printfPQExpBuffer(&conn->errorMessage,libpq_gettext("Over-size GSSAPI packet sent by the server: %ld"),input.length);`
	`493`	`+printfPQExpBuffer(&conn->errorMessage,`
	`494`	`+libpq_gettext("oversize GSSAPI packet sent by the server: %zu bytes\n"),`
	`495`	`+ (size_t)input.length);`
`494`	`496`	`returnPGRES_POLLING_FAILED;`
`495`	`497`	`}`
`496`	`498`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit8cde7f4

File tree

2 files changed

2 files changed

`‎src/backend/libpq/be-secure-gssapi.c`

`‎src/interfaces/libpq/fe-secure-gssapi.c`

0 commit comments