From: todd brandys <brandys@eng3.hep.uiuc.edu>

An extension to the code to allow for a pg_password authentication database that is *seperate* from the system password file
2025-11-10 17:42:29 +03:00 · 1997-12-04 00:28:15 +00:00
parent 333323f304
commit 4c04f7724e
19 changed files with 494 additions and 63 deletions
--- a/src/backend/libpq/Makefile
+++ b/src/backend/libpq/Makefile
@@ -4,7 +4,7 @@
 #    Makefile for libpq subsystem (backend half of libpq interface)
 #
 # IDENTIFICATION
-#    $Header: /cvsroot/pgsql/src/backend/libpq/Makefile,v 1.7 1997/04/04 10:39:19 scrappy Exp $
+#    $Header: /cvsroot/pgsql/src/backend/libpq/Makefile,v 1.8 1997/12/04 00:26:47 scrappy Exp $
 #
 #-------------------------------------------------------------------------

@@ -24,7 +24,7 @@ LDFLAGS+= $(KRBLIBS)
 endif

 OBJS = be-dumpdata.o be-fsstubs.o be-pqexec.o pqcomprim.o\
-       auth.o hba.o pqcomm.o portal.o util.o portalbuf.o pqpacket.o pqsignal.o \
+       auth.o hba.o crypt.o pqcomm.o portal.o util.o portalbuf.o pqpacket.o pqsignal.o \
       password.o

 all: SUBSYS.o
--- a/src/backend/libpq/auth.c
+++ b/src/backend/libpq/auth.c
@@ -7,7 +7,7 @@
 *
 *
 * IDENTIFICATION
- *	  $Header: /cvsroot/pgsql/src/backend/libpq/auth.c,v 1.18 1997/11/17 16:10:06 thomas Exp $
+ *	  $Header: /cvsroot/pgsql/src/backend/libpq/auth.c,v 1.19 1997/12/04 00:26:50 scrappy Exp $
 *
 *-------------------------------------------------------------------------
 */
@@ -71,6 +71,7 @@
 #include <libpq/libpq-be.h>
 #include <libpq/hba.h>
 #include <libpq/password.h>
+#include <libpq/crypt.h>

 static int	be_getauthsvc(MsgType msgtype);

@@ -122,7 +123,8 @@ static struct authsvc authsvcs[] = {
 #else
 	{"kerberos", STARTUP_KRB4_MSG, 1},
 #endif
-	{"password", STARTUP_PASSWORD_MSG, 1}
+	{"password", STARTUP_PASSWORD_MSG, 1},
+	{"crypt", STARTUP_CRYPT_MSG, 1}
 };

 static n_authsvcs = sizeof(authsvcs) / sizeof(struct authsvc);
@@ -445,6 +447,28 @@ pg_password_recvauth(Port *port, char *database, char *DataDir)
 	return verify_password(user, password, port, database, DataDir);
 }

+static int
+crypt_recvauth(Port *port)
+{
+      PacketBuf       buf;
+      char       *user,
+                         *password;
+
+      if (PacketReceive(port, &buf, BLOCKING) != STATUS_OK)
+      {
+              sprintf(PQerrormsg,
+                              "crypt_recvauth: failed to receive authentication packet.\n");
+              fputs(PQerrormsg, stderr);
+              pqdebug("%s", PQerrormsg);
+              return STATUS_ERROR;
+      }
+
+      user = buf.data;
+      password = buf.data + strlen(user) + 1;
+
+      return crypt_verify(port, user, password);
+}
+
 /*
 * be_recvauth -- server demux routine for incoming authentication information
 */
@@ -571,6 +595,10 @@ be_recvauth(MsgType msgtype_arg, Port *port, char *username, StartupInfo *sp)
 				return (STATUS_ERROR);
 			}
 			break;
+		case STARTUP_CRYPT_MSG:
+			if (crypt_recvauth(port) != STATUS_OK)
+                          return STATUS_ERROR;
+                        break;
 		default:
 			sprintf(PQerrormsg,
 					"be_recvauth: unrecognized message type: %d\n",