scylladb/auth at 23df964b969b6ba2ff33d38c19cf3822f8627e65 - scylladb - Anomalous Gitea

mirrors/scylladb

Files

History

Avi Kivity 873e0f0e14 auth: password_authenticator: protect against NULL salted_hash

In case salted_hash was NULL, we'd access uninitialized memory when dereferencing
the optional in get_as<>().

Protect against that by using get_opt() and failing authentication if we see a NULL.

Fixes #4168.

Tests: unit (release)
Branches: 3.0, 2.3
Message-Id: <20190211173820.8053-1-avi@scylladb.com>
(cherry picked from commit da9628c6dc)

2019-02-11 23:55:53 +02:00

..

allow_all_authenticator.cc

auth: Switch to sharded service

2017-11-15 23:22:42 -05:00

allow_all_authenticator.hh

auth: Query custom options from the authenticator

2018-05-09 21:12:50 -04:00

allow_all_authorizer.cc

auth: Switch to sharded service

2017-11-15 23:22:42 -05:00

allow_all_authorizer.hh

auth: Unify handling for unsupported errors

2018-03-14 01:54:28 -04:00

authenticated_user.cc

auth: Unify formatting

2018-02-14 14:15:58 -05:00

authenticated_user.hh

auth: Fix includes

2018-02-14 14:15:58 -05:00

authentication_options.cc

auth: Refactor authentication options

2018-02-14 14:15:57 -05:00

authentication_options.hh

auth: Add type alias for custom auth. options

2018-05-09 21:12:47 -04:00

authenticator.cc

auth: Fix includes

2018-02-14 14:15:58 -05:00

authenticator.hh

auth: Query custom options from the authenticator

2018-05-09 21:12:50 -04:00

authorizer.hh

auth: Unify handling for unsupported errors

2018-03-14 01:54:28 -04:00

common.cc

auth: add abort_source to waiting for schema agreement

2018-12-04 14:33:05 +00:00

common.hh

auth: add abort_source to waiting for schema agreement

2018-12-04 14:33:05 +00:00

default_authorizer.cc

auth: add abort_source to waiting for schema agreement

2018-12-04 14:33:05 +00:00

default_authorizer.hh

auth: Fix const correctness

2018-03-14 01:32:43 -04:00

password_authenticator.cc

auth: password_authenticator: protect against NULL salted_hash

2019-02-11 23:55:53 +02:00

password_authenticator.hh

auth: Query custom options from the authenticator

2018-05-09 21:12:50 -04:00

passwords.cc

auth: Clean up implementation comments

2018-08-13 13:24:45 -04:00

passwords.hh

auth: Shorten random_device instance life-span

2018-09-12 12:14:21 +01:00

permission.cc

auth: Unify formatting

2018-02-14 14:15:58 -05:00

permission.hh

auth: Unify formatting

2018-02-14 14:15:58 -05:00

permissions_cache.cc

auth: Decouple authorization and role management

2018-02-14 14:15:59 -05:00

permissions_cache.hh

auth: Decouple authorization and role management

2018-02-14 14:15:59 -05:00

resource.cc

auth: Add code to expand a resource family

2018-02-14 14:15:59 -05:00

resource.hh

auth: Add code to expand a resource family

2018-02-14 14:15:59 -05:00

role_manager.hh

auth: Fix const correctness

2018-03-14 01:32:43 -04:00

role_or_anonymous.cc

auth: Decouple authorization and role management

2018-02-14 14:15:59 -05:00

role_or_anonymous.hh

auth: Decouple authorization and role management

2018-02-14 14:15:59 -05:00

roles-metadata.cc

auth: Use finite time-out for all QUORUM reads

2018-09-05 21:55:26 +03:00

roles-metadata.hh

auth: Remove ordering dependence

2018-03-25 22:38:11 -04:00

service.cc

auth/service: unregister migration listener on stop()

2019-01-22 17:54:36 +02:00

service.hh

auth: Grant all permissions to object creator

2018-03-14 01:54:31 -04:00

standard_role_manager.cc

auth: add abort_source to waiting for schema agreement

2018-12-04 14:33:05 +00:00

standard_role_manager.hh

auth: Fix const correctness

2018-03-14 01:32:43 -04:00

transitional.cc

auth: Query custom options from the authenticator

2018-05-09 21:12:50 -04:00