Commit 25fe5ac4 authored by Tom Lane's avatar Tom Lane

Fix bugs in libpq's management of GSS encryption state.

GSS-related resources should be cleaned up in pqDropConnection,
not freePGconn, else the wrong things happen when resetting
a connection or trying to switch to a different server.
It's also critical to reset conn->gssenc there.

During connection setup, initialize conn->try_gss at the correct
place, else switching to a different server won't work right.

Remove now-redundant cleanup of GSS resources around one (and, for
some reason, only one) pqDropConnection call in connectDBStart.

Per report from Kyotaro Horiguchi that psql would freeze up,
rather than successfully resetting a GSS-encrypted connection
after a server restart.

This is YA oversight in commit b0b39f72, so back-patch to v12.

Discussion: https://postgr.es/m/20200710.173803.435804731896516388.horikyota.ntt@gmail.com
parent 8d2ed66e
...@@ -477,6 +477,11 @@ pqDropConnection(PGconn *conn, bool flushInput) ...@@ -477,6 +477,11 @@ pqDropConnection(PGconn *conn, bool flushInput)
{ {
OM_uint32 min_s; OM_uint32 min_s;
if (conn->gcred != GSS_C_NO_CREDENTIAL)
{
gss_release_cred(&min_s, &conn->gcred);
conn->gcred = GSS_C_NO_CREDENTIAL;
}
if (conn->gctx) if (conn->gctx)
gss_delete_sec_context(&min_s, &conn->gctx, GSS_C_NO_BUFFER); gss_delete_sec_context(&min_s, &conn->gctx, GSS_C_NO_BUFFER);
if (conn->gtarg_nam) if (conn->gtarg_nam)
...@@ -496,6 +501,7 @@ pqDropConnection(PGconn *conn, bool flushInput) ...@@ -496,6 +501,7 @@ pqDropConnection(PGconn *conn, bool flushInput)
free(conn->gss_ResultBuffer); free(conn->gss_ResultBuffer);
conn->gss_ResultBuffer = NULL; conn->gss_ResultBuffer = NULL;
} }
conn->gssenc = false;
} }
#endif #endif
#ifdef ENABLE_SSPI #ifdef ENABLE_SSPI
...@@ -2027,11 +2033,6 @@ connectDBStart(PGconn *conn) ...@@ -2027,11 +2033,6 @@ connectDBStart(PGconn *conn)
*/ */
resetPQExpBuffer(&conn->errorMessage); resetPQExpBuffer(&conn->errorMessage);
#ifdef ENABLE_GSS
if (conn->gssencmode[0] == 'd') /* "disable" */
conn->try_gss = false;
#endif
/* /*
* Set up to try to connect to the first host. (Setting whichhost = -1 is * Set up to try to connect to the first host. (Setting whichhost = -1 is
* a bit of a cheat, but PQconnectPoll will advance it to 0 before * a bit of a cheat, but PQconnectPoll will advance it to 0 before
...@@ -2468,6 +2469,9 @@ keep_going: /* We will come back to here until there is ...@@ -2468,6 +2469,9 @@ keep_going: /* We will come back to here until there is
conn->allow_ssl_try = (conn->sslmode[0] != 'd'); /* "disable" */ conn->allow_ssl_try = (conn->sslmode[0] != 'd'); /* "disable" */
conn->wait_ssl_try = (conn->sslmode[0] == 'a'); /* "allow" */ conn->wait_ssl_try = (conn->sslmode[0] == 'a'); /* "allow" */
#endif #endif
#ifdef ENABLE_GSS
conn->try_gss = (conn->gssencmode[0] != 'd'); /* "disable" */
#endif
reset_connection_state_machine = false; reset_connection_state_machine = false;
need_new_connection = true; need_new_connection = true;
...@@ -3349,12 +3353,8 @@ keep_going: /* We will come back to here until there is ...@@ -3349,12 +3353,8 @@ keep_going: /* We will come back to here until there is
*/ */
if (conn->gssenc && conn->gssencmode[0] == 'p') if (conn->gssenc && conn->gssencmode[0] == 'p')
{ {
OM_uint32 minor;
/* postmaster expects us to drop the connection */ /* postmaster expects us to drop the connection */
conn->try_gss = false; conn->try_gss = false;
conn->gssenc = false;
gss_delete_sec_context(&minor, &conn->gctx, NULL);
pqDropConnection(conn, true); pqDropConnection(conn, true);
conn->status = CONNECTION_NEEDED; conn->status = CONNECTION_NEEDED;
goto keep_going; goto keep_going;
...@@ -3906,9 +3906,6 @@ makeEmptyPGconn(void) ...@@ -3906,9 +3906,6 @@ makeEmptyPGconn(void)
conn->verbosity = PQERRORS_DEFAULT; conn->verbosity = PQERRORS_DEFAULT;
conn->show_context = PQSHOW_CONTEXT_ERRORS; conn->show_context = PQSHOW_CONTEXT_ERRORS;
conn->sock = PGINVALID_SOCKET; conn->sock = PGINVALID_SOCKET;
#ifdef ENABLE_GSS
conn->try_gss = true;
#endif
/* /*
* We try to send at least 8K at a time, which is the usual size of pipe * We try to send at least 8K at a time, which is the usual size of pipe
...@@ -4065,22 +4062,6 @@ freePGconn(PGconn *conn) ...@@ -4065,22 +4062,6 @@ freePGconn(PGconn *conn)
free(conn->gsslib); free(conn->gsslib);
if (conn->connip) if (conn->connip)
free(conn->connip); free(conn->connip);
#ifdef ENABLE_GSS
if (conn->gcred != GSS_C_NO_CREDENTIAL)
{
OM_uint32 minor;
gss_release_cred(&minor, &conn->gcred);
conn->gcred = GSS_C_NO_CREDENTIAL;
}
if (conn->gctx)
{
OM_uint32 minor;
gss_delete_sec_context(&minor, &conn->gctx, GSS_C_NO_BUFFER);
conn->gctx = NULL;
}
#endif
/* Note that conn->Pfdebug is not ours to close or free */ /* Note that conn->Pfdebug is not ours to close or free */
if (conn->last_query) if (conn->last_query)
free(conn->last_query); free(conn->last_query);
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment