Gitiles
Code Review Sign In
git01.mediatek.com / haproxy / 80cff2ffd792d44af15feb0acacdfd990428f93b
commit80cff2ffd792d44af15feb0acacdfd990428f93b[log] [tgz]
authorFatih Acar <facar@scaleway.com>Mon Sep 26 17:27:11 2022 +0200
committerChristopher Faulet <cfaulet@haproxy.com>Mon Oct 10 08:58:35 2022 +0200
tree2ed69f84705e601e14b06739b9cc5484b7fa53cb
parentec554346dc27a28110d80a3e1cd8cdc410979c45 [diff]
BUG/MINOR: checks: update pgsql regex on auth packet

This patch adds support to the following authentication methods:

- AUTH_REQ_GSS (7)
- AUTH_REQ_SSPI (9)
- AUTH_REQ_SASL (10)

Note that since AUTH_REQ_SASL allows multiple authentication mechanisms
such as SCRAM-SHA-256 or SCRAM-SHA-256-PLUS, the auth payload length may
vary since the method is sent in plaintext. In order to allow this, the
regex now matches any payload length.

This partially fixes Github issue #1508 since user authentication is
still broken but should restore pre-2.2 behavior.

This should be backported up to 2.2.

Signed-off-by: Fatih Acar <facar@scaleway.com>
(cherry picked from commit 0d6fb7a3eb0a9754348ec15be14a017a1c84df0f)
Signed-off-by: Christopher Faulet <cfaulet@haproxy.com>
(cherry picked from commit 3b26843205b1dfb1e221225138ea95b0e9c17dbf)
Signed-off-by: Christopher Faulet <cfaulet@haproxy.com>
(cherry picked from commit a0488f5ba6f311e98e827e75039cea5743eb126b)
Signed-off-by: Christopher Faulet <cfaulet@haproxy.com>
2 files changed
tree: 2ed69f84705e601e14b06739b9cc5484b7fa53cb
  1. .github/
  2. addons/
  3. admin/
  4. dev/
  5. doc/
  6. examples/
  7. include/
  8. reg-tests/
  9. scripts/
  10. src/
  11. tests/
  12. .cirrus.yml
  13. .gitattributes
  14. .gitignore
  15. .travis.yml
  16. BRANCHES
  17. CHANGELOG
  18. CONTRIBUTING
  19. INSTALL
  20. LICENSE
  21. MAINTAINERS
  22. Makefile
  23. README
  24. ROADMAP
  25. SUBVERS
  26. VERDATE
  27. VERSION