postgrespro
diff --git a/‎src/backend/bootstrap/bootstrap.c
Lines changed: 3 additions & 4 deletions b/‎src/backend/bootstrap/bootstrap.c
Lines changed: 3 additions & 4 deletions
diff --git a/‎src/backend/libpq/be-secure.c
Lines changed: 43 additions & 59 deletions b/‎src/backend/libpq/be-secure.c
Lines changed: 43 additions & 59 deletions
diff --git a/‎src/backend/libpq/pqcomm.c
Lines changed: 2 additions & 3 deletions b/‎src/backend/libpq/pqcomm.c
Lines changed: 2 additions & 3 deletions
diff --git a/‎src/backend/main/main.c
Lines changed: 14 additions & 11 deletions b/‎src/backend/main/main.c
Lines changed: 14 additions & 11 deletions
diff --git a/‎src/backend/port/ipc_test.c
Lines changed: 55 additions & 7 deletions b/‎src/backend/port/ipc_test.c
Lines changed: 55 additions & 7 deletions
@@ -8,7 +8,7 @@
  * Portions Copyright (c) 1994, Regents of the University of California
  *
  * IDENTIFICATION
- *	  $Header: /cvsroot/pgsql/src/backend/bootstrap/bootstrap.c,v 1.162 2003/07/22 23:30:37 tgl Exp $
+ *	  $Header: /cvsroot/pgsql/src/backend/bootstrap/bootstrap.c,v 1.163 2003/07/27 21:49:53 tgl Exp $
  *
  *-------------------------------------------------------------------------
  */
@@ -359,7 +359,7 @@ BootstrapMain(int argc, char *argv[])
 					gettext("%s does not know where to find the database system data.\n"
 							"You must specify the directory that contains the database system\n"
 							"either by specifying the -D invocation option or by setting the\n"
-							"PGDATA environment variable.\n\n"),
+							"PGDATA environment variable.\n"),
 					argv[0]);
 			proc_exit(1);
 		}
@@ -414,8 +414,7 @@ BootstrapMain(int argc, char *argv[])
 		/*
 		 * Create lockfile for data directory.
 		 */
-		if (!CreateDataDirLockFile(DataDir, false))
-			proc_exit(1);
+		CreateDataDirLockFile(DataDir, false);
 	}
 
 	SetProcessingMode(BootstrapProcessing);
 
@@ -11,7 +11,7 @@
  *
  *
  * IDENTIFICATION
- *	  $Header: /cvsroot/pgsql/src/backend/libpq/be-secure.c,v 1.36 2003/07/22 19:00:10 tgl Exp $
+ *	  $Header: /cvsroot/pgsql/src/backend/libpq/be-secure.c,v 1.37 2003/07/27 21:49:53 tgl Exp $
  *
  *	  Since the server static private key ($DataDir/server.key)
  *	  will normally be stored unencrypted so that the database
@@ -81,10 +81,6 @@
 #include <fcntl.h>
 #include <errno.h>
 #include <ctype.h>
-
-#include "libpq/libpq.h"
-#include "miscadmin.h"
-
 #include <sys/socket.h>
 #include <unistd.h>
 #include <netdb.h>
@@ -94,17 +90,13 @@
 #include <arpa/inet.h>
 #endif
 
-#ifndef HAVE_STRDUP
-#include "strdup.h"
-#endif
-
 #ifdef USE_SSL
 #include <openssl/ssl.h>
 #include <openssl/dh.h>
 #endif
 
-extern void ExitPostmaster(int);
-extern void postmaster_error(const char *fmt,...);
+#include "libpq/libpq.h"
+#include "miscadmin.h"
 
 #ifdef USE_SSL
 static DH  *load_dh_file(int keylength);
@@ -126,6 +118,7 @@ static const char *SSLerrmessage(void);
  */
 #define RENEGOTIATION_LIMIT (512 * 1024 * 1024)
 #define CA_PATH NULL
+
 static SSL_CTX *SSL_context = NULL;
 #endif
 
@@ -607,7 +600,7 @@ info_cb(const SSL *ssl, int type, int args)
 static int
 initialize_SSL(void)
 {
-	char		fnbuf[2048];
+	char		fnbuf[MAXPGPATH];
 	struct stat buf;
 
 	if (!SSL_context)
@@ -616,50 +609,43 @@ initialize_SSL(void)
 		SSL_load_error_strings();
 		SSL_context = SSL_CTX_new(SSLv23_method());
 		if (!SSL_context)
-		{
-			postmaster_error("failed to create SSL context: %s",
-							 SSLerrmessage());
-			ExitPostmaster(1);
-		}
+			ereport(FATAL,
+					(errmsg("could not create SSL context: %s",
+							SSLerrmessage())));
 
 		/*
 		 * Load and verify certificate and private key
 		 */
 		snprintf(fnbuf, sizeof(fnbuf), "%s/server.crt", DataDir);
 		if (!SSL_CTX_use_certificate_file(SSL_context, fnbuf, SSL_FILETYPE_PEM))
-		{
-			postmaster_error("failed to load server certificate (%s): %s",
-							 fnbuf, SSLerrmessage());
-			ExitPostmaster(1);
-		}
+			ereport(FATAL,
+					(errcode(ERRCODE_CONFIG_FILE_ERROR),
+					 errmsg("could not load server certificate file \"%s\": %s",
+							fnbuf, SSLerrmessage())));
 
 		snprintf(fnbuf, sizeof(fnbuf), "%s/server.key", DataDir);
-		if (lstat(fnbuf, &buf) == -1)
-		{
-			postmaster_error("failed to stat private key file (%s): %s",
-							 fnbuf, strerror(errno));
-			ExitPostmaster(1);
-		}
-		if (!S_ISREG(buf.st_mode) || (buf.st_mode & 0077) ||
+		if (stat(fnbuf, &buf) == -1)
+			ereport(FATAL,
+					(errcode_for_file_access(),
+					 errmsg("could not access private key file \"%s\": %m",
+							fnbuf)));
+		if (!S_ISREG(buf.st_mode) || (buf.st_mode & (S_IRWXG | S_IRWXO)) ||
 			buf.st_uid != getuid())
-		{
-			postmaster_error("bad permissions on private key file (%s)\n"
-"File must be owned by the proper user and must have no permissions for\n"
-"\"group\" or \"other\".", fnbuf);
-			ExitPostmaster(1);
-		}
+			ereport(FATAL,
+					(errcode(ERRCODE_CONFIG_FILE_ERROR),
+					 errmsg("unsafe permissions on private key file \"%s\"",
+							fnbuf),
+					 errdetail("File must be owned by the database user and must have no permissions for \"group\" or \"other\".")));
+
 		if (!SSL_CTX_use_PrivateKey_file(SSL_context, fnbuf, SSL_FILETYPE_PEM))
-		{
-			postmaster_error("failed to load private key file (%s): %s",
-							 fnbuf, SSLerrmessage());
-			ExitPostmaster(1);
-		}
+			ereport(FATAL,
+					(errmsg("could not load private key file \"%s\": %s",
+							fnbuf, SSLerrmessage())));
+
 		if (!SSL_CTX_check_private_key(SSL_context))
-		{
-			postmaster_error("check of private key failed: %s",
-							 SSLerrmessage());
-			ExitPostmaster(1);
-		}
+			ereport(FATAL,
+					(errmsg("check of private key failed: %s",
+							SSLerrmessage())));
 	}
 
 	/* set up empheral DH keys */
@@ -668,25 +654,22 @@ initialize_SSL(void)
 
 	/* setup the allowed cipher list */
 	if (SSL_CTX_set_cipher_list(SSL_context, "ALL:!ADH:!LOW:!EXP:!MD5:@STRENGTH") != 1)
-	{
-		postmaster_error("unable to set the cipher list (no valid ciphers available)");
-		ExitPostmaster(1);
-	}
+		elog(FATAL, "could not set the cipher list (no valid ciphers available)");
 
 	/* accept client certificates, but don't require them. */
-	snprintf(fnbuf, sizeof fnbuf, "%s/root.crt", DataDir);
+	snprintf(fnbuf, sizeof(fnbuf), "%s/root.crt", DataDir);
 	if (!SSL_CTX_load_verify_locations(SSL_context, fnbuf, CA_PATH))
 	{
+		/* Not fatal - we do not require client certificates */
+		ereport(LOG,
+				(errmsg("could not load root cert file \"%s\": %s",
+						fnbuf, SSLerrmessage()),
+				 errdetail("Will not verify client certificates.")));
 		return 0;
-#ifdef NOT_USED
-		/* CLIENT CERTIFICATES NOT REQUIRED  bjm 2002-09-26 */
-		postmaster_error("could not read root cert file (%s): %s",
-						 fnbuf, SSLerrmessage());
-		ExitPostmaster(1);
-#endif
 	}
 	SSL_CTX_set_verify(SSL_context,
-					SSL_VERIFY_PEER | SSL_VERIFY_CLIENT_ONCE, verify_cb);
+					   SSL_VERIFY_PEER | SSL_VERIFY_CLIENT_ONCE,
+					   verify_cb);
 
 	return 0;
 }
@@ -716,7 +699,7 @@ open_server_SSL(Port *port)
 	{
 		ereport(COMMERROR,
 				(errcode(ERRCODE_PROTOCOL_VIOLATION),
-				 errmsg("failed to initialize SSL connection: %s",
+				 errmsg("could not initialize SSL connection: %s",
 						SSLerrmessage())));
 		close_SSL(port);
 		return -1;
@@ -739,7 +722,8 @@ open_server_SSL(Port *port)
 				   NID_commonName, port->peer_cn, sizeof(port->peer_cn));
 		port->peer_cn[sizeof(port->peer_cn) - 1] = '\0';
 	}
-	elog(DEBUG2, "secure connection from \"%s\"", port->peer_cn);
+	ereport(DEBUG2,
+			(errmsg("secure connection from \"%s\"", port->peer_cn)));
 
 	/* set up debugging/info callback */
 	SSL_CTX_set_info_callback(SSL_context, info_cb);
 
@@ -30,7 +30,7 @@
  * Portions Copyright (c) 1996-2002, PostgreSQL Global Development Group
  * Portions Copyright (c) 1994, Regents of the University of California
  *
- *	$Header: /cvsroot/pgsql/src/backend/libpq/pqcomm.c,v 1.160 2003/07/24 00:02:53 tgl Exp $
+ *	$Header: /cvsroot/pgsql/src/backend/libpq/pqcomm.c,v 1.161 2003/07/27 21:49:53 tgl Exp $
  *
  *-------------------------------------------------------------------------
  */
@@ -389,8 +389,7 @@ Lock_AF_UNIX(unsigned short portNumber, char *unixSocketName)
 	/*
 	 * Grab an interlock file associated with the socket file.
 	 */
-	if (!CreateSocketLockFile(sock_path, true))
-		return STATUS_ERROR;
+	CreateSocketLockFile(sock_path, true);
 
 	/*
 	 * Once we have the interlock, we can safely delete any pre-existing
 
@@ -13,7 +13,7 @@
  *
  *
  * IDENTIFICATION
- *	  $Header: /cvsroot/pgsql/src/backend/main/main.c,v 1.58 2003/07/04 16:41:21 tgl Exp $
+ *	  $Header: /cvsroot/pgsql/src/backend/main/main.c,v 1.59 2003/07/27 21:49:53 tgl Exp $
  *
  *-------------------------------------------------------------------------
  */
@@ -81,7 +81,8 @@ main(int argc, char *argv[])
 #if defined(__alpha)
 	if (setsysinfo(SSI_NVPAIRS, buffer, 1, (caddr_t) NULL,
 				   (unsigned long) NULL) < 0)
-		fprintf(stderr, gettext("%s: setsysinfo failed: %s\n"), argv[0], strerror(errno));
+		fprintf(stderr, gettext("%s: setsysinfo failed: %s\n"),
+				argv[0], strerror(errno));
 #endif
 #endif   /* NOFIXADE || NOPRINTADE */
 
@@ -170,12 +171,12 @@ main(int argc, char *argv[])
 		 */
 		if (geteuid() == 0)
 		{
-			fprintf(stderr, gettext(
-									"\"root\" execution of the PostgreSQL server is not permitted.\n\n"
-									"The server must be started under an unprivileged user id to prevent\n"
-									"a possible system security compromise.  See the documentation for\n"
-			  "more information on how to properly start the server.\n\n"
-									));
+			fprintf(stderr,
+					gettext("\"root\" execution of the PostgreSQL server is not permitted.\n"
+							"The server must be started under an unprivileged user id to prevent\n"
+							"possible system security compromise.  See the documentation for\n"
+							"more information on how to properly start the server.\n"
+						));
 			exit(1);
 		}
 #endif   /* !__BEOS__ */
@@ -191,7 +192,8 @@ main(int argc, char *argv[])
 		 */
 		if (getuid() != geteuid())
 		{
-			fprintf(stderr, gettext("%s: real and effective user ids must match\n"),
+			fprintf(stderr,
+					gettext("%s: real and effective user ids must match\n"),
 					argv[0]);
 			exit(1);
 		}
@@ -236,7 +238,7 @@ main(int argc, char *argv[])
 	pw = getpwuid(geteuid());
 	if (pw == NULL)
 	{
-		fprintf(stderr, gettext("%s: invalid current euid %d\n"),
+		fprintf(stderr, gettext("%s: invalid effective uid: %d\n"),
 				new_argv[0], (int) geteuid());
 		exit(1);
 	}
@@ -249,7 +251,8 @@ main(int argc, char *argv[])
 		pw_name_persist = malloc(namesize);
 		if (!GetUserName(pw_name_persist, &namesize))
 		{
-			fprintf(stderr, "%s: GetUserName failed\n", argv[0]);
+			fprintf(stderr, gettext("%s: GetUserName failed\n"),
+					new_argv[0]);
 			exit(1);
 		}
 	}
 
@@ -21,7 +21,7 @@
  *
  *
  * IDENTIFICATION
- *	  $Header: /cvsroot/pgsql/src/backend/port/ipc_test.c,v 1.6 2003/07/22 23:30:39 tgl Exp $
+ *	  $Header: /cvsroot/pgsql/src/backend/port/ipc_test.c,v 1.7 2003/07/27 21:49:54 tgl Exp $
  *
  *-------------------------------------------------------------------------
  */
@@ -46,6 +46,8 @@ volatile bool ImmediateInterruptOK = false;
 volatile uint32 InterruptHoldoffCount = 0;
 volatile uint32 CritSectionCount = 0;
 
+const bool	ExecBackend = false;
+
 bool		IsUnderPostmaster = false;
 
 int			MaxBackends = DEF_MAXBACKENDS;
@@ -128,14 +130,60 @@ ExceptionalCondition(char *conditionName,
 	return 0;
 }
 
+
+
+bool
+errstart(int elevel, const char *filename, int lineno,
+		 const char *funcname)
+{
+	return (elevel >= ERROR);
+}
+
 void
-elog(int lev, const char *fmt,...)
+errfinish(int dummy, ...)
 {
-	if (lev >= ERROR)
-	{
-		fprintf(stderr, "elog(%s)\n", fmt);
-		abort();
-	}
+	proc_exit(1);
+}
+
+void
+elog_finish(int elevel, const char *fmt, ...)
+{
+	fprintf(stderr, "ERROR: %s\n", fmt);
+	proc_exit(1);
+}
+
+int
+errcode(int sqlerrcode)
+{
+	return 0;					/* return value does not matter */
+}
+
+int
+errmsg(const char *fmt, ...)
+{
+	fprintf(stderr, "ERROR: %s\n", fmt);
+	return 0;					/* return value does not matter */
+}
+
+int
+errmsg_internal(const char *fmt, ...)
+{
+	fprintf(stderr, "ERROR: %s\n", fmt);
+	return 0;					/* return value does not matter */
+}
+
+int
+errdetail(const char *fmt, ...)
+{
+	fprintf(stderr, "DETAIL: %s\n", fmt);
+	return 0;					/* return value does not matter */
+}
+
+int
+errhint(const char *fmt, ...)
+{
+	fprintf(stderr, "HINT: %s\n", fmt);
+	return 0;					/* return value does not matter */
 }
Original file line number	Diff line number	Diff line change
`@@ -13,7 +13,7 @@`
`13`	`13`	`*`
`14`	`14`	`*`
`15`	`15`	`* IDENTIFICATION`
`16`		`- * $Header: /cvsroot/pgsql/src/backend/main/main.c,v 1.58 2003/07/04 16:41:21 tgl Exp $`
	`16`	`+ * $Header: /cvsroot/pgsql/src/backend/main/main.c,v 1.59 2003/07/27 21:49:53 tgl Exp $`
`17`	`17`	`*`
`18`	`18`	`*-------------------------------------------------------------------------`
`19`	`19`	`*/`
`@@ -81,7 +81,8 @@ main(int argc, char *argv[])`
`81`	`81`	`#if defined(__alpha)`
`82`	`82`	`if (setsysinfo(SSI_NVPAIRS, buffer, 1, (caddr_t) NULL,`
`83`	`83`	`(unsigned long) NULL) < 0)`
`84`		`- fprintf(stderr, gettext("%s: setsysinfo failed: %s\n"), argv[0], strerror(errno));`
	`84`	`+ fprintf(stderr, gettext("%s: setsysinfo failed: %s\n"),`
	`85`	`+ argv[0], strerror(errno));`
`85`	`86`	`#endif`
`86`	`87`	`#endif /* NOFIXADE \|\| NOPRINTADE */`
`87`	`88`
`@@ -170,12 +171,12 @@ main(int argc, char *argv[])`
`170`	`171`	`*/`
`171`	`172`	`if (geteuid() == 0)`
`172`	`173`	`{`
`173`		`- fprintf(stderr, gettext(`
`174`		`- "\"root\" execution of the PostgreSQL server is not permitted.\n\n"`
`175`		`- "The server must be started under an unprivileged user id to prevent\n"`
`176`		`- "a possible system security compromise. See the documentation for\n"`
`177`		`- "more information on how to properly start the server.\n\n"`
`178`		`- ));`
	`174`	`+ fprintf(stderr,`
	`175`	`+ gettext("\"root\" execution of the PostgreSQL server is not permitted.\n"`
	`176`	`+ "The server must be started under an unprivileged user id to prevent\n"`
	`177`	`+ "possible system security compromise. See the documentation for\n"`
	`178`	`+ "more information on how to properly start the server.\n"`
	`179`	`+ ));`
`179`	`180`	`exit(1);`
`180`	`181`	`}`
`181`	`182`	`#endif /* !__BEOS__ */`
`@@ -191,7 +192,8 @@ main(int argc, char *argv[])`
`191`	`192`	`*/`
`192`	`193`	`if (getuid() != geteuid())`
`193`	`194`	`{`
`194`		`- fprintf(stderr, gettext("%s: real and effective user ids must match\n"),`
	`195`	`+ fprintf(stderr,`
	`196`	`+ gettext("%s: real and effective user ids must match\n"),`
`195`	`197`	`argv[0]);`
`196`	`198`	`exit(1);`
`197`	`199`	`}`
`@@ -236,7 +238,7 @@ main(int argc, char *argv[])`
`236`	`238`	`pw = getpwuid(geteuid());`
`237`	`239`	`if (pw == NULL)`
`238`	`240`	`{`
`239`		`- fprintf(stderr, gettext("%s: invalid current euid %d\n"),`
	`241`	`+ fprintf(stderr, gettext("%s: invalid effective uid: %d\n"),`
`240`	`242`	`new_argv[0], (int) geteuid());`
`241`	`243`	`exit(1);`
`242`	`244`	`}`
`@@ -249,7 +251,8 @@ main(int argc, char *argv[])`
`249`	`251`	`pw_name_persist = malloc(namesize);`
`250`	`252`	`if (!GetUserName(pw_name_persist, &namesize))`
`251`	`253`	`{`
`252`		`- fprintf(stderr, "%s: GetUserName failed\n", argv[0]);`
	`254`	`+ fprintf(stderr, gettext("%s: GetUserName failed\n"),`
	`255`	`+ new_argv[0]);`
`253`	`256`	`exit(1);`
`254`	`257`	`}`
`255`	`258`	`}`