NotificationsYou must be signed in to change notification settings
Fork28
Star151

Commit828b64f

committed

Merge branch 'PGPROEE9_6_sha2_scram_port' of gitlab.postgrespro.ru:pgpro-dev/postgrespro into PGPROEE9_6_sha2_scram_port

2 parents8cddd83 +833b894 commit828b64fCopy full SHA for 828b64f

File tree

90 files changed

+4686

-1882

lines changed

contrib
- file_fdw
  - file_fdw.c
- passwordcheck
  - passwordcheck.c
- pgcrypto
doc/src/sgml
src
- backend
  - access
    - common
      - reloptions.c
    - heap
      - ptrack.c
  - catalog
    - aclchk.c
  - commands
  - libpq
  - nodes
  - parser
    - gram.y
    - parse_utilcmd.c
  - postmaster
    - postmaster.c
  - replication
    - logical
      - logicalfuncs.c
    - repl_gram.y
  - tcop
    - utility.c
  - utils
    - adt
      - encode.c
      - varlena.c
    - misc
      - guc.c
      - postgresql.conf.sample
- common
- include
  - commands
  - common
  - libpq
  - nodes
    - makefuncs.h
    - parsenodes.h
  - utils
    - acl.h
    - builtins.h
- interfaces/libpq
- test/regress
  - expected
    - password.out
  - parallel_schedule
  - serial_schedule
  - sql
    - password.sql
- tools/msvc
  - Mkvcbuild.pm

Some content is hidden

Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.

90 files changed

+4686

-1882

lines changed

`‎contrib/file_fdw/file_fdw.c`

Lines changed: 9 additions & 7 deletions

Original file line number	Diff line number	Diff line change
`@@ -293,7 +293,7 @@ file_fdw_validator(PG_FUNCTION_ARGS)`
`293`	`293`	`/*`
`294`	`294`	`* Now apply the core COPY code's validation logic for more checks.`
`295`	`295`	`*/`
`296`		`-ProcessCopyOptions(NULL, true,other_options);`
	`296`	`+ProcessCopyOptions(NULL,NULL,true,other_options);`
`297`	`297`
`298`	`298`	`/*`
`299`	`299`	`* Filename option is required for file_fdw foreign tables.`
`@@ -455,10 +455,10 @@ get_file_fdw_attribute_options(Oid relid)`
`455`	`455`	`* force_null options set`
`456`	`456`	`*/`
`457`	`457`	`if (fnncolumns!=NIL)`
`458`		`-options=lappend(options,makeDefElem("force_not_null", (Node*)fnncolumns));`
	`458`	`+options=lappend(options,makeDefElem("force_not_null", (Node*)fnncolumns,-1));`
`459`	`459`
`460`	`460`	`if (fncolumns!=NIL)`
`461`		`-options=lappend(options,makeDefElem("force_null", (Node*)fncolumns));`
	`461`	`+options=lappend(options,makeDefElem("force_null", (Node*)fncolumns,-1));`
`462`	`462`
`463`	`463`	`returnoptions;`
`464`	`464`	`}`
`@@ -511,7 +511,7 @@ fileGetForeignPaths(PlannerInfo *root,`
`511`	`511`	`foreigntableid,`
`512`	`512`	`&columns))`
`513`	`513`	`coptions=list_make1(makeDefElem("convert_selectively",`
`514`		`- (Node*)columns));`
	`514`	`+ (Node*)columns,-1));`
`515`	`515`
`516`	`516`	`/* Estimate costs */`
`517`	`517`	`estimate_costs(root,baserel,fdw_private,`
`@@ -632,7 +632,8 @@ fileBeginForeignScan(ForeignScanState *node, int eflags)`
`632`	`632`	`* Create CopyState from FDW options. We always acquire all columns, so`
`633`	`633`	`* as to match the expected ScanTupleSlot signature.`
`634`	`634`	`*/`
`635`		`-cstate=BeginCopyFrom(node->ss.ss_currentRelation,`
	`635`	`+cstate=BeginCopyFrom(NULL,`
	`636`	`+node->ss.ss_currentRelation,`
`636`	`637`	`filename,`
`637`	`638`	`false,`
`638`	`639`	`NIL,`
`@@ -705,7 +706,8 @@ fileReScanForeignScan(ForeignScanState *node)`
`705`	`706`
`706`	`707`	`EndCopyFrom(festate->cstate);`
`707`	`708`
`708`		`-festate->cstate=BeginCopyFrom(node->ss.ss_currentRelation,`
	`709`	`+festate->cstate=BeginCopyFrom(NULL,`
	`710`	`+node->ss.ss_currentRelation,`
`709`	`711`	`festate->filename,`
`710`	`712`	`false,`
`711`	`713`	`NIL,`
`@@ -1053,7 +1055,7 @@ file_acquire_sample_rows(Relation onerel, int elevel,`
`1053`	`1055`	`/*`
`1054`	`1056`	`* Create CopyState from FDW options.`
`1055`	`1057`	`*/`
`1056`		`-cstate=BeginCopyFrom(onerel,filename, false,NIL,options);`
	`1058`	`+cstate=BeginCopyFrom(NULL,onerel,filename, false,NIL,options);`
`1057`	`1059`
`1058`	`1060`	`/*`
`1059`	`1061`	`* Use per-tuple memory context to prevent leak of memory used to read`

`‎contrib/passwordcheck/passwordcheck.c`

Lines changed: 16 additions & 3 deletions

Original file line number	Diff line number	Diff line change
`@@ -21,6 +21,7 @@`
`21`	`21`	`#endif`
`22`	`22`
`23`	`23`	`#include"commands/user.h"`
	`24`	`+#include"libpq/scram.h"`
`24`	`25`	`#include"fmgr.h"`
`25`	`26`	`#include"libpq/md5.h"`
`26`	`27`
`@@ -57,14 +58,15 @@ check_password(const char *username,`
`57`	`58`	`{`
`58`	`59`	`intnamelen=strlen(username);`
`59`	`60`	`intpwdlen=strlen(password);`
`60`		`-charencrypted[MD5_PASSWD_LEN+1];`
	`61`	`+char*encrypted;`
`61`	`62`	`inti;`
`62`	`63`	`boolpwd_has_letter,`
`63`	`64`	`pwd_has_nonletter;`
`64`	`65`
`65`	`66`	`switch (password_type)`
`66`	`67`	`{`
`67`	`68`	`casePASSWORD_TYPE_MD5:`
	`69`	`+casePASSWORD_TYPE_SCRAM:`
`68`	`70`
`69`	`71`	`/*`
`70`	`72`	`* Unfortunately we cannot perform exhaustive checks on encrypted`
`@@ -74,12 +76,23 @@ check_password(const char *username,`
`74`	`76`	`*`
`75`	`77`	`* We only check for username = password.`
`76`	`78`	`*/`
`77`		`-if (!pg_md5_encrypt(username,username,namelen,encrypted))`
`78`		`-elog(ERROR,"password encryption failed");`
	`79`	`+if (password_type==PASSWORD_TYPE_MD5)`
	`80`	`+{`
	`81`	`+encrypted=palloc(MD5_PASSWD_LEN+1);`
	`82`	`+if (pg_md5_encrypt(username,username,namelen,encrypted))`
	`83`	`+elog(ERROR,"password encryption failed");`
	`84`	`+}`
	`85`	`+elseif (password_type==PASSWORD_TYPE_SCRAM)`
	`86`	`+{`
	`87`	`+encrypted=scram_build_verifier(username,password,0);`
	`88`	`+}`
	`89`	`+else`
	`90`	`+Assert(0);/* should not happen */`
`79`	`91`	`if (strcmp(password,encrypted)==0)`
`80`	`92`	`ereport(ERROR,`
`81`	`93`	`(errcode(ERRCODE_INVALID_PARAMETER_VALUE),`
`82`	`94`	`errmsg("password must not contain user name")));`
	`95`	`+pfree(encrypted);`
`83`	`96`	`break;`
`84`	`97`
`85`	`98`	`casePASSWORD_TYPE_PLAINTEXT:`

`‎contrib/pgcrypto/.gitignore`

Lines changed: 4 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -1,3 +1,7 @@`
	`1`	`+# Source file copied from src/common`
	`2`	`+/sha.c`
	`3`	`+/sha_openssl.c`
	`4`	`+`
`1`	`5`	`# Generated subdirectories`
`2`	`6`	`/log/`
`3`	`7`	`/results/`

`‎contrib/pgcrypto/Makefile`

Lines changed: 7 additions & 3 deletions

Original file line number	Diff line number	Diff line change
`@@ -1,10 +1,11 @@`
`1`	`1`	`# contrib/pgcrypto/Makefile`
`2`	`2`
`3`		`-INT_SRCS = md5.c sha1.c sha2.c internal.c internal-sha2.c blf.c rijndael.c\`
`4`		`-fortuna.c random.c pgp-mpi-internal.c imath.c`
	`3`	`+INT_SRCS = md5.c internal.c internal-sha2.c blf.c rijndael.c\`
	`4`	`+fortuna.c random.c pgp-mpi-internal.c imath.c\`
	`5`	`+sha.c`
`5`	`6`	`INT_TESTS = sha2`
`6`	`7`
`7`		`-OSSL_SRCS = openssl.c pgp-mpi-openssl.c`
	`8`	`+OSSL_SRCS = openssl.c pgp-mpi-openssl.c sha_openssl.c`
`8`	`9`	`OSSL_TESTS = sha2 des 3des cast5`
`9`	`10`
`10`	`11`	`ZLIB_TST = pgp-compression`
`@@ -59,6 +60,9 @@ SHLIB_LINK += $(filter -leay32, $(LIBS))`
`59`	`60`	`SHLIB_LINK += -lws2_32`
`60`	`61`	`endif`
`61`	`62`
	`63`	`+sha.csha_openssl.c:% :$(top_srcdir)/src/common/%`
	`64`	`+rm -f$@&&$(LN_S)$<.`
	`65`	`+`
`62`	`66`	`rijndael.o: rijndael.tbl`
`63`	`67`
`64`	`68`	`rijndael.tbl:`

`‎contrib/pgcrypto/fortuna.c`

Lines changed: 6 additions & 6 deletions

Original file line number	Diff line number	Diff line change
`@@ -34,9 +34,9 @@`
`34`	`34`	`#include<sys/time.h>`
`35`	`35`	`#include<time.h>`
`36`	`36`
	`37`	`+#include"common/sha.h"`
`37`	`38`	`#include"px.h"`
`38`	`39`	`#include"rijndael.h"`
`39`		`-#include"sha2.h"`
`40`	`40`	`#include"fortuna.h"`
`41`	`41`
`42`	`42`
`@@ -112,7 +112,7 @@`
`112`	`112`	`#defineCIPH_BLOCK16`
`113`	`113`
`114`	`114`	`/* for internal wrappers */`
`115`		`-#defineMD_CTXSHA256_CTX`
	`115`	`+#defineMD_CTXpg_sha256_ctx`
`116`	`116`	`#defineCIPH_CTXrijndael_ctx`
`117`	`117`
`118`	`118`	`structfortuna_state`
`@@ -154,22 +154,22 @@ ciph_encrypt(CIPH_CTX * ctx, const uint8 in, uint8 out)`
`154`	`154`	`staticvoid`
`155`	`155`	`md_init(MD_CTX*ctx)`
`156`	`156`	`{`
`157`		`-SHA256_Init(ctx);`
	`157`	`+pg_sha256_init(ctx);`
`158`	`158`	`}`
`159`	`159`
`160`	`160`	`staticvoid`
`161`	`161`	`md_update(MD_CTXctx,constuint8data,intlen)`
`162`	`162`	`{`
`163`		`-SHA256_Update(ctx,data,len);`
	`163`	`+pg_sha256_update(ctx,data,len);`
`164`	`164`	`}`
`165`	`165`
`166`	`166`	`staticvoid`
`167`	`167`	`md_result(MD_CTXctx,uint8dst)`
`168`	`168`	`{`
`169`		`-SHA256_CTXtmp;`
	`169`	`+pg_sha256_ctxtmp;`
`170`	`170`
`171`	`171`	`memcpy(&tmp,ctx,sizeof(*ctx));`
`172`		`-SHA256_Final(dst,&tmp);`
	`172`	`+pg_sha256_final(&tmp,dst);`
`173`	`173`	`px_memset(&tmp,0,sizeof(tmp));`
`174`	`174`	`}`
`175`	`175`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit828b64f

File tree

90 files changed

Some content is hidden

90 files changed

`‎contrib/file_fdw/file_fdw.c`

`‎contrib/passwordcheck/passwordcheck.c`

`‎contrib/pgcrypto/.gitignore`

`‎contrib/pgcrypto/Makefile`

`‎contrib/pgcrypto/fortuna.c`

0 commit comments