mirrors/scylladb
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
4eecb57a0b0e615213a3de1a77ecbfb4e802e799
scylladb/auth
History
Avi Kivity da9628c6dc auth: password_authenticator: protect against NULL salted_hash 
In case salted_hash was NULL, we'd access uninitialized memory when dereferencing
the optional in get_as<>().

Protect against that by using get_opt() and failing authentication if we see a NULL.

Fixes #4168.

Tests: unit (release)
Branches: 3.0, 2.3
Message-Id: <20190211173820.8053-1-avi@scylladb.com>
2019-02-11 18:54:03 +01:00
..
allow_all_authenticator.cc
auth: Switch to sharded service
2017-11-15 23:22:42 -05:00
allow_all_authenticator.hh
Replace std::experimental types with C++17 std version.
2019-01-08 13:16:36 +02:00
allow_all_authorizer.cc
auth: Switch to sharded service
2017-11-15 23:22:42 -05:00
allow_all_authorizer.hh
Replace std::experimental types with C++17 std version.
2019-01-08 13:16:36 +02:00
authenticated_user.cc
Replace std::experimental types with C++17 std version.
2019-01-08 13:16:36 +02:00
authenticated_user.hh
Replace std::experimental types with C++17 std version.
2019-01-08 13:16:36 +02:00
authentication_options.cc
auth: Refactor authentication options
2018-02-14 14:15:57 -05:00
authentication_options.hh
auth: convert sprint() to format()
2018-11-01 13:16:17 +00:00
authenticator.cc
auth: remove unneeded db/config.hh includes
2018-12-09 20:11:38 +02:00
authenticator.hh
Replace std::experimental types with C++17 std version.
2019-01-08 13:16:36 +02:00
authorizer.hh
Replace std::experimental types with C++17 std version.
2019-01-08 13:16:36 +02:00
common.cc
Replace std::experimental types with C++17 std version.
2019-01-08 13:16:36 +02:00
common.hh
Replace std::experimental types with C++17 std version.
2019-01-08 13:16:36 +02:00
default_authorizer.cc
Replace std::experimental types with C++17 std version.
2019-01-08 13:16:36 +02:00
default_authorizer.hh
Replace std::experimental types with C++17 std version.
2019-01-08 13:16:36 +02:00
password_authenticator.cc
auth: password_authenticator: protect against NULL salted_hash
2019-02-11 18:54:03 +01:00
password_authenticator.hh
Replace std::experimental types with C++17 std version.
2019-01-08 13:16:36 +02:00
passwords.cc
auth: Clean up implementation comments
2018-08-13 13:24:45 -04:00
passwords.hh
auth: Shorten random_device instance life-span
2018-09-12 12:14:21 +01:00
permission.cc
auth: Unify formatting
2018-02-14 14:15:58 -05:00
permission.hh
auth: Unify formatting
2018-02-14 14:15:58 -05:00
permissions_cache.cc
auth: remove permissions_cache dependency on db::config
2018-12-09 20:11:38 +02:00
permissions_cache.hh
Replace std::experimental types with C++17 std version.
2019-01-08 13:16:36 +02:00
resource.cc
Replace std::experimental types with C++17 std version.
2019-01-08 13:16:36 +02:00
resource.hh
Replace std::experimental types with C++17 std version.
2019-01-08 13:16:36 +02:00
role_manager.hh
Replace std::experimental types with C++17 std version.
2019-01-08 13:16:36 +02:00
role_or_anonymous.cc
auth: Decouple authorization and role management
2018-02-14 14:15:59 -05:00
role_or_anonymous.hh
Replace std::experimental types with C++17 std version.
2019-01-08 13:16:36 +02:00
roles-metadata.cc
Replace std::experimental types with C++17 std version.
2019-01-08 13:16:36 +02:00
roles-metadata.hh
Replace std::experimental types with C++17 std version.
2019-01-08 13:16:36 +02:00
service.cc
auth/service: unregister migration listener on stop()
2019-01-21 13:06:59 +02:00
service.hh
Replace std::experimental types with C++17 std version.
2019-01-08 13:16:36 +02:00
standard_role_manager.cc
Replace std::experimental types with C++17 std version.
2019-01-08 13:16:36 +02:00
standard_role_manager.hh
Replace std::experimental types with C++17 std version.
2019-01-08 13:16:36 +02:00
transitional.cc
Replace std::experimental types with C++17 std version.
2019-01-08 13:16:36 +02:00