mirror of
https://git.postgresql.org/git/postgresql.git
synced 2024-12-27 08:39:28 +08:00
Disallow empty passwords in LDAP authentication, the same way
we already do it for PAM.
This commit is contained in:
parent
20b037100e
commit
e19c960df5
@ -8,7 +8,7 @@
|
||||
*
|
||||
*
|
||||
* IDENTIFICATION
|
||||
* $PostgreSQL: pgsql/src/backend/libpq/auth.c,v 1.146.2.1 2008/07/24 17:52:09 tgl Exp $
|
||||
* $PostgreSQL: pgsql/src/backend/libpq/auth.c,v 1.146.2.2 2009/06/25 11:30:10 mha Exp $
|
||||
*
|
||||
*-------------------------------------------------------------------------
|
||||
*/
|
||||
@ -788,6 +788,13 @@ CheckLDAPAuth(Port *port)
|
||||
if (passwd == NULL)
|
||||
return STATUS_EOF; /* client wouldn't send password */
|
||||
|
||||
if (strlen(passwd) == 0)
|
||||
{
|
||||
ereport(LOG,
|
||||
(errmsg("empty password returned by client")));
|
||||
return STATUS_ERROR;
|
||||
}
|
||||
|
||||
ldap = ldap_init(server, ldapport);
|
||||
if (!ldap)
|
||||
{
|
||||
|
Loading…
Reference in New Issue
Block a user