postgrespro
diff --git a/‎contrib/passwordcheck/passwordcheck.c
Lines changed: 1 addition & 1 deletion b/‎contrib/passwordcheck/passwordcheck.c
Lines changed: 1 addition & 1 deletion
diff --git a/‎contrib/pgcrypto/internal-sha2.c
Lines changed: 3 additions & 6 deletions b/‎contrib/pgcrypto/internal-sha2.c
Lines changed: 3 additions & 6 deletions
diff --git a/‎contrib/pgcrypto/internal.c
Lines changed: 6 additions & 12 deletions b/‎contrib/pgcrypto/internal.c
Lines changed: 6 additions & 12 deletions
diff --git a/‎contrib/uuid-ossp/uuid-ossp.c
Lines changed: 6 additions & 12 deletions b/‎contrib/uuid-ossp/uuid-ossp.c
Lines changed: 6 additions & 12 deletions
diff --git a/‎src/backend/commands/user.c
Lines changed: 2 additions & 2 deletions b/‎src/backend/commands/user.c
Lines changed: 2 additions & 2 deletions
diff --git a/‎src/backend/libpq/auth-scram.c
Lines changed: 1 addition & 1 deletion b/‎src/backend/libpq/auth-scram.c
Lines changed: 1 addition & 1 deletion
diff --git a/‎src/backend/libpq/auth.c
Lines changed: 15 additions & 21 deletions b/‎src/backend/libpq/auth.c
Lines changed: 15 additions & 21 deletions
diff --git a/‎src/backend/libpq/crypt.c
Lines changed: 21 additions & 17 deletions b/‎src/backend/libpq/crypt.c
Lines changed: 21 additions & 17 deletions
@@ -74,7 +74,7 @@ check_password(const char *username,
 		 *
 		 * We only check for username = password.
 		 */
-		const char *logdetail = NULL;
+		char	   *logdetail;
 
 		if (plain_crypt_verify(username, shadow_pass, username, &logdetail) == STATUS_OK)
 			ereport(ERROR,
 
@@ -101,8 +101,7 @@ int_sha2_update(PX_MD *h, const uint8 *data, unsigned dlen)
 	pg_cryptohash_ctx *ctx = (pg_cryptohash_ctx *) h->p.ptr;
 
 	if (pg_cryptohash_update(ctx, data, dlen) < 0)
-		elog(ERROR, "could not update %s context: %s", "SHA2",
-			 pg_cryptohash_error(ctx));
+		elog(ERROR, "could not update %s context", "SHA2");
 }
 
 static void
@@ -111,8 +110,7 @@ int_sha2_reset(PX_MD *h)
 	pg_cryptohash_ctx *ctx = (pg_cryptohash_ctx *) h->p.ptr;
 
 	if (pg_cryptohash_init(ctx) < 0)
-		elog(ERROR, "could not initialize %s context: %s", "SHA2",
-			 pg_cryptohash_error(ctx));
+		elog(ERROR, "could not initialize %s context", "SHA2");
 }
 
 static void
@@ -121,8 +119,7 @@ int_sha2_finish(PX_MD *h, uint8 *dst)
 	pg_cryptohash_ctx *ctx = (pg_cryptohash_ctx *) h->p.ptr;
 
 	if (pg_cryptohash_final(ctx, dst, h->result_size(h)) < 0)
-		elog(ERROR, "could not finalize %s context: %s", "SHA2",
-			 pg_cryptohash_error(ctx));
+		elog(ERROR, "could not finalize %s context", "SHA2");
 }
 
 static void
 
@@ -89,8 +89,7 @@ int_md5_update(PX_MD *h, const uint8 *data, unsigned dlen)
 	pg_cryptohash_ctx *ctx = (pg_cryptohash_ctx *) h->p.ptr;
 
 	if (pg_cryptohash_update(ctx, data, dlen) < 0)
-		elog(ERROR, "could not update %s context: %s", "MD5",
-			 pg_cryptohash_error(ctx));
+		elog(ERROR, "could not update %s context", "MD5");
 }
 
 static void
@@ -99,8 +98,7 @@ int_md5_reset(PX_MD *h)
 	pg_cryptohash_ctx *ctx = (pg_cryptohash_ctx *) h->p.ptr;
 
 	if (pg_cryptohash_init(ctx) < 0)
-		elog(ERROR, "could not initialize %s context: %s", "MD5",
-			 pg_cryptohash_error(ctx));
+		elog(ERROR, "could not initialize %s context", "MD5");
 }
 
 static void
@@ -109,8 +107,7 @@ int_md5_finish(PX_MD *h, uint8 *dst)
 	pg_cryptohash_ctx *ctx = (pg_cryptohash_ctx *) h->p.ptr;
 
 	if (pg_cryptohash_final(ctx, dst, h->result_size(h)) < 0)
-		elog(ERROR, "could not finalize %s context: %s", "MD5",
-			 pg_cryptohash_error(ctx));
+		elog(ERROR, "could not finalize %s context", "MD5");
 }
 
 static void
@@ -142,8 +139,7 @@ int_sha1_update(PX_MD *h, const uint8 *data, unsigned dlen)
 	pg_cryptohash_ctx *ctx = (pg_cryptohash_ctx *) h->p.ptr;
 
 	if (pg_cryptohash_update(ctx, data, dlen) < 0)
-		elog(ERROR, "could not update %s context: %s", "SHA1",
-			 pg_cryptohash_error(ctx));
+		elog(ERROR, "could not update %s context", "SHA1");
 }
 
 static void
@@ -152,8 +148,7 @@ int_sha1_reset(PX_MD *h)
 	pg_cryptohash_ctx *ctx = (pg_cryptohash_ctx *) h->p.ptr;
 
 	if (pg_cryptohash_init(ctx) < 0)
-		elog(ERROR, "could not initialize %s context: %s", "SHA1",
-			 pg_cryptohash_error(ctx));
+		elog(ERROR, "could not initialize %s context", "SHA1");
 }
 
 static void
@@ -162,8 +157,7 @@ int_sha1_finish(PX_MD *h, uint8 *dst)
 	pg_cryptohash_ctx *ctx = (pg_cryptohash_ctx *) h->p.ptr;
 
 	if (pg_cryptohash_final(ctx, dst, h->result_size(h)) < 0)
-		elog(ERROR, "could not finalize %s context: %s", "SHA1",
-			 pg_cryptohash_error(ctx));
+		elog(ERROR, "could not finalize %s context", "SHA1");
 }
 
 static void
 
@@ -319,17 +319,14 @@ uuid_generate_internal(int v, unsigned char *ns, const char *ptr, int len)
 					pg_cryptohash_ctx *ctx = pg_cryptohash_create(PG_MD5);
 
 					if (pg_cryptohash_init(ctx) < 0)
-						elog(ERROR, "could not initialize %s context: %s", "MD5",
-							 pg_cryptohash_error(ctx));
+						elog(ERROR, "could not initialize %s context", "MD5");
 					if (pg_cryptohash_update(ctx, ns, sizeof(uu)) < 0 ||
 						pg_cryptohash_update(ctx, (unsigned char *) ptr, len) < 0)
-						elog(ERROR, "could not update %s context: %s", "MD5",
-							 pg_cryptohash_error(ctx));
+						elog(ERROR, "could not update %s context", "MD5");
 					/* we assume sizeof MD5 result is 16, same as UUID size */
 					if (pg_cryptohash_final(ctx, (unsigned char *) &uu,
 											sizeof(uu)) < 0)
-						elog(ERROR, "could not finalize %s context: %s", "MD5",
-							 pg_cryptohash_error(ctx));
+						elog(ERROR, "could not finalize %s context", "MD5");
 					pg_cryptohash_free(ctx);
 				}
 				else
@@ -338,15 +335,12 @@ uuid_generate_internal(int v, unsigned char *ns, const char *ptr, int len)
 					unsigned char sha1result[SHA1_DIGEST_LENGTH];
 
 					if (pg_cryptohash_init(ctx) < 0)
-						elog(ERROR, "could not initialize %s context: %s", "SHA1",
-							 pg_cryptohash_error(ctx));
+						elog(ERROR, "could not initialize %s context", "SHA1");
 					if (pg_cryptohash_update(ctx, ns, sizeof(uu)) < 0 ||
 						pg_cryptohash_update(ctx, (unsigned char *) ptr, len) < 0)
-						elog(ERROR, "could not update %s context: %s", "SHA1",
-							 pg_cryptohash_error(ctx));
+						elog(ERROR, "could not update %s context", "SHA1");
 					if (pg_cryptohash_final(ctx, sha1result, sizeof(sha1result)) < 0)
-						elog(ERROR, "could not finalize %s context: %s", "SHA1",
-							 pg_cryptohash_error(ctx));
+						elog(ERROR, "could not finalize %s context", "SHA1");
 					pg_cryptohash_free(ctx);
 
 					memcpy(&uu, sha1result, sizeof(uu));
 
@@ -393,7 +393,7 @@ CreateRole(ParseState *pstate, CreateRoleStmt *stmt)
 	if (password)
 	{
 		char	   *shadow_pass;
-		const char *logdetail = NULL;
+		char	   *logdetail;
 
 		/*
 		 * Don't allow an empty password. Libpq treats an empty password the
@@ -835,7 +835,7 @@ AlterRole(AlterRoleStmt *stmt)
 	if (password)
 	{
 		char	   *shadow_pass;
-		const char *logdetail = NULL;
+		char	   *logdetail;
 
 		/* Like in CREATE USER, don't allow an empty password. */
 		if (password[0] == '\0' ||
 
@@ -327,7 +327,7 @@ pg_be_scram_init(Port *port,
  */
 int
 pg_be_scram_exchange(void *opaq, const char *input, int inputlen,
-					 char **output, int *outputlen, const char **logdetail)
+					 char **output, int *outputlen, char **logdetail)
 {
 	scram_state *state = (scram_state *) opaq;
 	int			result;
 
@@ -47,7 +47,7 @@
  */
 static void sendAuthRequest(Port *port, AuthRequest areq, const char *extradata,
 							int extralen);
-static void auth_failed(Port *port, int status, const char *logdetail);
+static void auth_failed(Port *port, int status, char *logdetail);
 static char *recv_password_packet(Port *port);
 static void set_authn_id(Port *port, const char *id);
 
@@ -56,11 +56,11 @@ static void set_authn_id(Port *port, const char *id);
  * Password-based authentication methods (password, md5, and scram-sha-256)
  *----------------------------------------------------------------
  */
-static int	CheckPasswordAuth(Port *port, const char **logdetail);
-static int	CheckPWChallengeAuth(Port *port, const char **logdetail);
+static int	CheckPasswordAuth(Port *port, char **logdetail);
+static int	CheckPWChallengeAuth(Port *port, char **logdetail);
 
-static int	CheckMD5Auth(Port *port, char *shadow_pass, const char **logdetail);
-static int	CheckSCRAMAuth(Port *port, char *shadow_pass, const char **logdetail);
+static int	CheckMD5Auth(Port *port, char *shadow_pass, char **logdetail);
+static int	CheckSCRAMAuth(Port *port, char *shadow_pass, char **logdetail);
 
 
 /*----------------------------------------------------------------
@@ -258,7 +258,7 @@ ClientAuthentication_hook_type ClientAuthentication_hook = NULL;
  * particular, if logdetail isn't NULL, we send that string to the log.
  */
 static void
-auth_failed(Port *port, int status, const char *logdetail)
+auth_failed(Port *port, int status, char *logdetail)
 {
 	const char *errstr;
 	char	   *cdetail;
@@ -394,7 +394,7 @@ void
 ClientAuthentication(Port *port)
 {
 	int			status = STATUS_ERROR;
-	const char *logdetail = NULL;
+	char	   *logdetail = NULL;
 
 	/*
 	 * Get the authentication method to use for this frontend/database
@@ -780,7 +780,7 @@ recv_password_packet(Port *port)
  * Plaintext password authentication.
  */
 static int
-CheckPasswordAuth(Port *port, const char **logdetail)
+CheckPasswordAuth(Port *port, char **logdetail)
 {
 	char	   *passwd;
 	int			result;
@@ -815,7 +815,7 @@ CheckPasswordAuth(Port *port, const char **logdetail)
  * MD5 and SCRAM authentication.
  */
 static int
-CheckPWChallengeAuth(Port *port, const char **logdetail)
+CheckPWChallengeAuth(Port *port, char **logdetail)
 {
 	int			auth_result;
 	char	   *shadow_pass;
@@ -875,7 +875,7 @@ CheckPWChallengeAuth(Port *port, const char **logdetail)
 }
 
 static int
-CheckMD5Auth(Port *port, char *shadow_pass, const char **logdetail)
+CheckMD5Auth(Port *port, char *shadow_pass, char **logdetail)
 {
 	char		md5Salt[4];		/* Password salt */
 	char	   *passwd;
@@ -912,7 +912,7 @@ CheckMD5Auth(Port *port, char *shadow_pass, const char **logdetail)
 }
 
 static int
-CheckSCRAMAuth(Port *port, char *shadow_pass, const char **logdetail)
+CheckSCRAMAuth(Port *port, char *shadow_pass, char **logdetail)
 {
 	StringInfoData sasl_mechs;
 	int			mtype;
@@ -3240,8 +3240,6 @@ PerformRadiusTransaction(const char *server, const char *secret, const char *por
 	md5trailer = packet->vector;
 	for (i = 0; i < encryptedpasswordlen; i += RADIUS_VECTOR_LENGTH)
 	{
-		const char *errstr = NULL;
-
 		memcpy(cryptvector + strlen(secret), md5trailer, RADIUS_VECTOR_LENGTH);
 
 		/*
@@ -3250,12 +3248,10 @@ PerformRadiusTransaction(const char *server, const char *secret, const char *por
 		 */
 		md5trailer = encryptedpassword + i;
 
-		if (!pg_md5_binary(cryptvector, strlen(secret) + RADIUS_VECTOR_LENGTH,
-						   encryptedpassword + i, &errstr))
+		if (!pg_md5_binary(cryptvector, strlen(secret) + RADIUS_VECTOR_LENGTH, encryptedpassword + i))
 		{
 			ereport(LOG,
-					(errmsg("could not perform MD5 encryption of password: %s",
-							errstr)));
+					(errmsg("could not perform MD5 encryption of password")));
 			pfree(cryptvector);
 			pg_freeaddrinfo_all(hint.ai_family, serveraddrs);
 			return STATUS_ERROR;
@@ -3340,7 +3336,6 @@ PerformRadiusTransaction(const char *server, const char *secret, const char *por
 		struct timeval timeout;
 		struct timeval now;
 		int64		timeoutval;
-		const char *errstr = NULL;
 
 		gettimeofday(&now, NULL);
 		timeoutval = (endtime.tv_sec * 1000000 + endtime.tv_usec) - (now.tv_sec * 1000000 + now.tv_usec);
@@ -3459,11 +3454,10 @@ PerformRadiusTransaction(const char *server, const char *secret, const char *por
 
 		if (!pg_md5_binary(cryptvector,
 						   packetlength + strlen(secret),
-						   encryptedpassword, &errstr))
+						   encryptedpassword))
 		{
 			ereport(LOG,
-					(errmsg("could not perform MD5 encryption of received packet: %s",
-							errstr)));
+					(errmsg("could not perform MD5 encryption of received packet")));
 			pfree(cryptvector);
 			continue;
 		}
 
@@ -34,7 +34,7 @@
  * sent to the client, to avoid giving away user information!
  */
 char *
-get_role_password(const char *role, const char **logdetail)
+get_role_password(const char *role, char **logdetail)
 {
 	TimestampTz vuntil = 0;
 	HeapTuple	roleTup;
@@ -116,7 +116,6 @@ encrypt_password(PasswordType target_type, const char *role,
 {
 	PasswordType guessed_type = get_password_type(password);
 	char	   *encrypted_password;
-	const char *errstr = NULL;
 
 	if (guessed_type != PASSWORD_TYPE_PLAINTEXT)
 	{
@@ -133,8 +132,8 @@ encrypt_password(PasswordType target_type, const char *role,
 			encrypted_password = palloc(MD5_PASSWD_LEN + 1);
 
 			if (!pg_md5_encrypt(password, role, strlen(role),
-								encrypted_password, &errstr))
-				elog(ERROR, "password encryption failed: %s", errstr);
+								encrypted_password))
+				elog(ERROR, "password encryption failed");
 			return encrypted_password;
 
 		case PASSWORD_TYPE_SCRAM_SHA_256:
@@ -160,18 +159,17 @@ encrypt_password(PasswordType target_type, const char *role,
  * 'client_pass' is the response given by the remote user to the MD5 challenge.
  * 'md5_salt' is the salt used in the MD5 authentication challenge.
  *
- * In the error case, save a string at *logdetail that will be sent to the
- * postmaster log (but not the client).
+ * In the error case, optionally store a palloc'd string at *logdetail
+ * that will be sent to the postmaster log (but not the client).
  */
 int
 md5_crypt_verify(const char *role, const char *shadow_pass,
 				 const char *client_pass,
 				 const char *md5_salt, int md5_salt_len,
-				 const char **logdetail)
+				 char **logdetail)
 {
 	int			retval;
 	char		crypt_pwd[MD5_PASSWD_LEN + 1];
-	const char *errstr = NULL;
 
 	Assert(md5_salt_len > 0);
 
@@ -185,13 +183,16 @@ md5_crypt_verify(const char *role, const char *shadow_pass,
 
 	/*
 	 * Compute the correct answer for the MD5 challenge.
+	 *
+	 * We do not bother setting logdetail for any pg_md5_encrypt failure
+	 * below: the only possible error is out-of-memory, which is unlikely, and
+	 * if it did happen adding a psprintf call would only make things worse.
 	 */
 	/* stored password already encrypted, only do salt */
 	if (!pg_md5_encrypt(shadow_pass + strlen("md5"),
 						md5_salt, md5_salt_len,
-						crypt_pwd, &errstr))
+						crypt_pwd))
 	{
-		*logdetail = errstr;
 		return STATUS_ERROR;
 	}
 
@@ -214,16 +215,15 @@ md5_crypt_verify(const char *role, const char *shadow_pass,
  * pg_authid.rolpassword.
  * 'client_pass' is the password given by the remote user.
  *
- * In the error case, store a string at *logdetail that will be sent to the
- * postmaster log (but not the client).
+ * In the error case, optionally store a palloc'd string at *logdetail
+ * that will be sent to the postmaster log (but not the client).
  */
 int
 plain_crypt_verify(const char *role, const char *shadow_pass,
 				   const char *client_pass,
-				   const char **logdetail)
+				   char **logdetail)
 {
 	char		crypt_client_pass[MD5_PASSWD_LEN + 1];
-	const char *errstr = NULL;
 
 	/*
 	 * Client sent password in plaintext.  If we have an MD5 hash stored, hash
@@ -251,10 +251,14 @@ plain_crypt_verify(const char *role, const char *shadow_pass,
 			if (!pg_md5_encrypt(client_pass,
 								role,
 								strlen(role),
-								crypt_client_pass,
-								&errstr))
+								crypt_client_pass))
 			{
-				*logdetail = errstr;
+				/*
+				 * We do not bother setting logdetail for pg_md5_encrypt
+				 * failure: the only possible error is out-of-memory, which is
+				 * unlikely, and if it did happen adding a psprintf call would
+				 * only make things worse.
+				 */
 				return STATUS_ERROR;
 			}
 			if (strcmp(crypt_client_pass, shadow_pass) == 0)
Original file line number	Diff line number	Diff line change
`@@ -74,7 +74,7 @@ check_password(const char *username,`
`74`	`74`	`*`
`75`	`75`	`* We only check for username = password.`
`76`	`76`	`*/`
`77`		`- const char *logdetail = NULL;`
	`77`	`+ char *logdetail;`
`78`	`78`
`79`	`79`	`if (plain_crypt_verify(username, shadow_pass, username, &logdetail) == STATUS_OK)`
`80`	`80`	`ereport(ERROR,`
Original file line number	Diff line number	Diff line change
`@@ -327,7 +327,7 @@ pg_be_scram_init(Port *port,`
`327`	`327`	`*/`
`328`	`328`	`int`
`329`	`329`	`pg_be_scram_exchange(void opaq, const char input, int inputlen,`
`330`		`- char *output, int outputlen, const char **logdetail)`
	`330`	`+ char *output, int outputlen, char **logdetail)`
`331`	`331`	`{`
`332`	`332`	`scram_state state = (scram_state ) opaq;`
`333`	`333`	`int result;`