mirror of
https://git.postgresql.org/git/postgresql.git
synced 2024-12-21 08:29:39 +08:00
1d812c8b05
Certain short salts crashed the backend or disclosed a few bytes of backend memory. For existing salt-induced error conditions, emit a message saying as much. Back-patch to 9.0 (all supported versions). Josh Kupershmidt Security: CVE-2015-5288
22 lines
471 B
SQL
22 lines
471 B
SQL
--
|
|
-- crypt() and gen_salt(): crypt-des
|
|
--
|
|
|
|
SELECT crypt('', 'NB');
|
|
|
|
SELECT crypt('foox', 'NB');
|
|
|
|
-- We are supposed to pass in a 2-character salt.
|
|
-- error since salt is too short:
|
|
SELECT crypt('password', 'a');
|
|
|
|
CREATE TABLE ctest (data text, res text, salt text);
|
|
INSERT INTO ctest VALUES ('password', '', '');
|
|
|
|
UPDATE ctest SET salt = gen_salt('des');
|
|
UPDATE ctest SET res = crypt(data, salt);
|
|
SELECT res = crypt(data, res) AS "worked"
|
|
FROM ctest;
|
|
|
|
DROP TABLE ctest;
|