NotificationsYou must be signed in to change notification settings
Fork6
Star31

Commit930b785

committed

Minor cleanup/future-proofing for pg_saslprep().

Ensure that pg_saslprep() initializes its output argument to NULL inall failure paths, and then remove the redundant initialization thatsome (not all) of its callers did. This does not fix any live bug,but it reduces the odds of future bugs of omission.Also add a comment about why the existing failure-path coding isadequate.Back-patch so as to keep the function's API consistent across branches,again to forestall future bug introduction.Patch by me, reviewed by Michael PaquierDiscussion:https://postgr.es/m/16558.1536407783@sss.pgh.pa.us

1 parent3985b75 commit930b785Copy full SHA for 930b785

File tree

3 files changed

+11

-6

lines changed

src
- backend/libpq
  - auth-scram.c
- common
  - saslprep.c
- interfaces/libpq
  - fe-auth-scram.c

3 files changed

+11

-6

lines changed

`‎src/backend/libpq/auth-scram.c`

Lines changed: 2 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -382,7 +382,7 @@ pg_be_scram_exchange(void opaq, char input, int inputlen,`
`382`	`382`	`char*`
`383`	`383`	`pg_be_scram_build_verifier(constchar*password)`
`384`	`384`	`{`
`385`		`-char*prep_password=NULL;`
	`385`	`+char*prep_password;`
`386`	`386`	`pg_saslprep_rcrc;`
`387`	`387`	`charsaltbuf[SCRAM_DEFAULT_SALT_LEN];`
`388`	`388`	`char*result;`
`@@ -428,7 +428,7 @@ scram_verify_plain_password(const char username, const char password,`
`428`	`428`	`uint8stored_key[SCRAM_KEY_LEN];`
`429`	`429`	`uint8server_key[SCRAM_KEY_LEN];`
`430`	`430`	`uint8computed_key[SCRAM_KEY_LEN];`
`431`		`-char*prep_password=NULL;`
	`431`	`+char*prep_password;`
`432`	`432`	`pg_saslprep_rcrc;`
`433`	`433`
`434`	`434`	`if (!parse_scram_verifier(verifier,&iterations,&encoded_salt,`

`‎src/common/saslprep.c`

Lines changed: 8 additions & 3 deletions

Original file line number	Diff line number	Diff line change
`@@ -1081,6 +1081,9 @@ pg_saslprep(const char input, char *output)`
`1081`	`1081`	`unsignedchar*p;`
`1082`	`1082`	`pg_wchar*wp;`
`1083`	`1083`
	`1084`	`+/* Ensure we return output as NULL on failure /`
	`1085`	`+*output=NULL;`
	`1086`	`+`
`1084`	`1087`	`/* Check that the password isn't stupendously long */`
`1085`	`1088`	`if (strlen(input)>MAX_PASSWORD_LENGTH)`
`1086`	`1089`	`{`
`@@ -1112,10 +1115,7 @@ pg_saslprep(const char input, char *output)`
`1112`	`1115`	`*/`
`1113`	`1116`	`input_size=pg_utf8_string_len(input);`
`1114`	`1117`	`if (input_size<0)`
`1115`		`-{`
`1116`		`-*output=NULL;`
`1117`	`1118`	`returnSASLPREP_INVALID_UTF8;`
`1118`		`-}`
`1119`	`1119`
`1120`	`1120`	`input_chars=ALLOC((input_size+1)*sizeof(pg_wchar));`
`1121`	`1121`	`if (!input_chars)`
`@@ -1246,6 +1246,11 @@ pg_saslprep(const char input, char *output)`
`1246`	`1246`	`result=ALLOC(result_size+1);`
`1247`	`1247`	`if (!result)`
`1248`	`1248`	`gotooom;`
	`1249`	`+`
	`1250`	`+/*`
	`1251`	`+ * There are no error exits below here, so the error exit paths don't need`
	`1252`	`+ * to worry about possibly freeing "result".`
	`1253`	`+ */`
`1249`	`1254`	`p= (unsignedchar*)result;`
`1250`	`1255`	`for (wp=output_chars;*wp;wp++)`
`1251`	`1256`	`{`

`‎src/interfaces/libpq/fe-auth-scram.c`

Lines changed: 1 addition & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -621,7 +621,7 @@ verify_server_signature(fe_scram_state *state)`
`621`	`621`	`char*`
`622`	`622`	`pg_fe_scram_build_verifier(constchar*password)`
`623`	`623`	`{`
`624`		`-char*prep_password=NULL;`
	`624`	`+char*prep_password;`
`625`	`625`	`pg_saslprep_rcrc;`
`626`	`626`	`charsaltbuf[SCRAM_DEFAULT_SALT_LEN];`
`627`	`627`	`char*result;`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit930b785

File tree

3 files changed

3 files changed

`‎src/backend/libpq/auth-scram.c`

`‎src/common/saslprep.c`

`‎src/interfaces/libpq/fe-auth-scram.c`

0 commit comments