aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorPeter Eisentraut <peter@eisentraut.org>2024-10-18 11:06:41 +0200
committerPeter Eisentraut <peter@eisentraut.org>2024-10-18 11:15:54 +0200
commit24a36f91e32d6cbb8182c4cc6529d6e47587c988 (patch)
tree78d65ba5b373c438937bea46cd9251ed41529e4f
parent9272bdeac879ae44907422dd545f8d767b39c5ad (diff)
downloadpostgresql-24a36f91e32d6cbb8182c4cc6529d6e47587c988.tar.gz
postgresql-24a36f91e32d6cbb8182c4cc6529d6e47587c988.zip
Fix strsep() use for SCRAM secrets parsing
The previous code (from commit 5d2e1cc117b) did not detect end of string correctly, so it would fail to error out if fewer than the expected number of fields were present, which could then later lead to a crash when NULL string pointers are accessed. Reported-by: Alexander Lakhin <exclusion@gmail.com> Reported-by: Ranier Vilela <ranier.vf@gmail.com> Discussion: https://www.postgresql.org/message-id/flat/79692bf9-17d3-41e6-b9c9-fc8c3944222a@eisentraut.org
Diffstat
-rw-r--r--src/backend/libpq/auth-scram.c12
1 files changed, 8 insertions, 4 deletions
diff --git a/src/backend/libpq/auth-scram.c b/src/backend/libpq/auth-scram.c
index 03ddddc3c27..56df870e9ef 100644
--- a/src/backend/libpq/auth-scram.c
+++ b/src/backend/libpq/auth-scram.c
@@ -608,13 +608,17 @@ parse_scram_secret(const char *secret, int *iterations,
* SCRAM-SHA-256$<iterations>:<salt>$<storedkey>:<serverkey>
*/
v = pstrdup(secret);
- if ((scheme_str = strsep(&v, "$")) == NULL)
+ scheme_str = strsep(&v, "$");
+ if (v == NULL)
goto invalid_secret;
- if ((iterations_str = strsep(&v, ":")) == NULL)
+ iterations_str = strsep(&v, ":");
+ if (v == NULL)
goto invalid_secret;
- if ((salt_str = strsep(&v, "$")) == NULL)
+ salt_str = strsep(&v, "$");
+ if (v == NULL)
goto invalid_secret;
- if ((storedkey_str = strsep(&v, ":")) == NULL)
+ storedkey_str = strsep(&v, ":");
+ if (v == NULL)
goto invalid_secret;
serverkey_str = v;
generated by cgit v1.2.3 (git 2.25.1) at 2025-06-05 09:44:32 +0000