]> git.ipfire.org Git - thirdparty/postgresql.git/commit
projects / thirdparty / postgresql.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 4642c2b) | patch
Fix inconsistent error handling for GSS encryption in PQconnectPoll()
authorMichael Paquier <michael@paquier.xyz>
Mon, 13 Mar 2023 07:36:31 +0000 (16:36 +0900)
committerMichael Paquier <michael@paquier.xyz>
Mon, 13 Mar 2023 07:36:31 +0000 (16:36 +0900)
commit7e319231c6bba7bad4a71a47ed0aefadf71e1103
tree2dadd80b6be070a20afcd4c0e575a0c7c4266796tree | snapshot
parent4642c2b56a99a2bd86111f8c46f377e2fc362463commit | diff
Fix inconsistent error handling for GSS encryption in PQconnectPoll()

The error cases for TLS and GSS encryption were inconsistent.  After TLS
fails, the connection is marked as dead and follow-up calls of
PQconnectPoll() would return immediately, but GSS encryption was not
doing that, so the connection would still have been allowed to enter the
GSS handling code.  This was handled incorrectly when gssencmode was set
to "require".  "prefer" was working correctly, and this could not happen
under "disable" as GSS encryption would not be attempted.

This commit makes the error handling of GSS encryption on par with TLS
portion, fixing the case of gssencmode=require.

Reported-by: Jacob Champion
Author: Michael Paquier
Reviewed-by: Jacob Champion, Stephen Frost
Discussion: https://postgr.es/m/23787477-5fe1-a161-6d2a-e459f74c4713@timescale.com
Backpatch-through: 12
src/interfaces/libpq/fe-connect.c diff | blob | blame | history
Mirror of https://git.postgresql.org/git/postgresql.git