Commitf88e388

tglsfdc

authored and

pull[bot]

committed

Cope with a deficiency in OpenSSL 3.x's error reporting.

In OpenSSL 3.0.0 and later, ERR_reason_error_string randomly refusesto provide a string for error codes representing system errno values(e.g., "No such file or directory"). There is a poorly-documented wayto extract the errno from the SSL error code in this case, so do thatand apply strerror, rather than falling back to reporting the errorcode's numeric value as we were previously doing.Problem reported by David Zhang, although this is not his proposedpatch; it's instead based on a suggestion from Heikki Linnakangas.Back-patch to all supported branches, since any of them are likelyto be used with recent OpenSSL.Discussion:https://postgr.es/m/b6fb018b-f05c-4afd-abd3-318c649faf18@highgo.ca

1 parent7abe103 commitf88e388Copy full SHA for f88e388

File tree

2 files changed

+36

-6

lines changed

src
- backend/libpq
  - be-secure-openssl.c
- interfaces/libpq
  - fe-secure-openssl.c

2 files changed

+36

-6

lines changed

`‎src/backend/libpq/be-secure-openssl.c`

Lines changed: 16 additions & 3 deletions

Original file line number	Diff line number	Diff line change
`@@ -1348,9 +1348,9 @@ initialize_ecdh(SSL_CTX *context, bool isServerStart)`
`1348`	`1348`	`*`
`1349`	`1349`	`* ERR_get_error() is used by caller to get errcode to pass here.`
`1350`	`1350`	`*`
`1351`		`- * Some caution is needed here since ERR_reason_error_string will`
`1352`		`- *return NULLif it doesn't recognize the error code. We don't`
`1353`		`- * want to return NULL ever.`
	`1351`	`+ * Some caution is needed here since ERR_reason_error_string will return NULL`
	`1352`	`+ * if it doesn't recognize the error code, or (in OpenSSL >= 3) if the code`
	`1353`	`+ *represents a system errno value. We don'twant to return NULL ever.`
`1354`	`1354`	`*/`
`1355`	`1355`	`staticconstchar*`
`1356`	`1356`	`SSLerrmessage(unsigned longecode)`
`@@ -1363,6 +1363,19 @@ SSLerrmessage(unsigned long ecode)`
`1363`	`1363`	`errreason=ERR_reason_error_string(ecode);`
`1364`	`1364`	`if (errreason!=NULL)`
`1365`	`1365`	`returnerrreason;`
	`1366`	`+`
	`1367`	`+/*`
	`1368`	`+ * In OpenSSL 3.0.0 and later, ERR_reason_error_string randomly refuses to`
	`1369`	`+ * map system errno values. We can cover that shortcoming with this bit`
	`1370`	`+ * of code. Older OpenSSL versions don't have the ERR_SYSTEM_ERROR macro,`
	`1371`	`+ * but that's okay because they don't have the shortcoming either.`
	`1372`	`+ */`
	`1373`	`+#ifdefERR_SYSTEM_ERROR`
	`1374`	`+if (ERR_SYSTEM_ERROR(ecode))`
	`1375`	`+returnstrerror(ERR_GET_REASON(ecode));`
	`1376`	`+#endif`
	`1377`	`+`
	`1378`	`+/* No choice but to report the numeric ecode */`
`1366`	`1379`	`snprintf(errbuf,sizeof(errbuf),_("SSL error code %lu"),ecode);`
`1367`	`1380`	`returnerrbuf;`
`1368`	`1381`	`}`

`‎src/interfaces/libpq/fe-secure-openssl.c`

Lines changed: 20 additions & 3 deletions

Original file line number	Diff line number	Diff line change
`@@ -1662,10 +1662,11 @@ pgtls_close(PGconn *conn)`
`1662`	`1662`	`* Obtain reason string for passed SSL errcode`
`1663`	`1663`	`*`
`1664`	`1664`	`* ERR_get_error() is used by caller to get errcode to pass here.`
	`1665`	`+ * The result must be freed after use, using SSLerrfree.`
`1665`	`1666`	`*`
`1666`		`- * Some caution is needed here since ERR_reason_error_string will`
`1667`		`- *return NULLif it doesn't recognize the error code. We don't`
`1668`		`- * want to return NULL ever.`
	`1667`	`+ * Some caution is needed here since ERR_reason_error_string will return NULL`
	`1668`	`+ * if it doesn't recognize the error code, or (in OpenSSL >= 3) if the code`
	`1669`	`+ *represents a system errno value. We don'twant to return NULL ever.`
`1669`	`1670`	`*/`
`1670`	`1671`	`staticcharssl_nomem[]="out of memory allocating error description";`
`1671`	`1672`
`@@ -1691,6 +1692,22 @@ SSLerrmessage(unsigned long ecode)`
`1691`	`1692`	`strlcpy(errbuf,errreason,SSL_ERR_LEN);`
`1692`	`1693`	`returnerrbuf;`
`1693`	`1694`	`}`
	`1695`	`+`
	`1696`	`+/*`
	`1697`	`+ * In OpenSSL 3.0.0 and later, ERR_reason_error_string randomly refuses to`
	`1698`	`+ * map system errno values. We can cover that shortcoming with this bit`
	`1699`	`+ * of code. Older OpenSSL versions don't have the ERR_SYSTEM_ERROR macro,`
	`1700`	`+ * but that's okay because they don't have the shortcoming either.`
	`1701`	`+ */`
	`1702`	`+#ifdefERR_SYSTEM_ERROR`
	`1703`	`+if (ERR_SYSTEM_ERROR(ecode))`
	`1704`	`+{`
	`1705`	`+strlcpy(errbuf,strerror(ERR_GET_REASON(ecode)),SSL_ERR_LEN);`
	`1706`	`+returnerrbuf;`
	`1707`	`+}`
	`1708`	`+#endif`
	`1709`	`+`
	`1710`	`+/* No choice but to report the numeric ecode */`
`1694`	`1711`	`snprintf(errbuf,SSL_ERR_LEN,libpq_gettext("SSL error code %lu"),ecode);`
`1695`	`1712`	`returnerrbuf;`
`1696`	`1713`	`}`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commitf88e388

File tree

2 files changed

2 files changed

`‎src/backend/libpq/be-secure-openssl.c`

`‎src/interfaces/libpq/fe-secure-openssl.c`

0 commit comments