Skip to content

M
MariaDB
Commit 6341c93d authored by serg@serg.mylan's avatar serg@serg.mylan
Browse files
Options

check_scramble_323 shuold ensure that the scramble has the correct length

parent 53d05f4a
Hide whitespace changes
Inline Side-by-side
Showing with 4 additions and 2 deletions
sql/password.c
View file @ 6341c93d
...@@ -218,6 +218,8 @@ check_scramble_323(const char *scrambled, const char *message, ...@@ -218,6 +218,8 @@ check_scramble_323(const char *scrambled, const char *message,
to=buff; to=buff;
for (pos=scrambled ; *pos ; pos++) for (pos=scrambled ; *pos ; pos++)
*to++=(char) (floor(my_rnd(&rand_st)*31)+64); *to++=(char) (floor(my_rnd(&rand_st)*31)+64);
if (pos-scrambled != SCRAMBLE_LENGTH_323)
return 1;
extra=(char) (floor(my_rnd(&rand_st)*31)); extra=(char) (floor(my_rnd(&rand_st)*31));
to=buff; to=buff;
while (*scrambled) while (*scrambled)
......
sql/sql_acl.cc
View file @ 6341c93d
...@@ -629,8 +629,8 @@ int acl_getroot(THD *thd, USER_RESOURCES *mqh, ...@@ -629,8 +629,8 @@ int acl_getroot(THD *thd, USER_RESOURCES *mqh,
if (passwd_len == acl_user_tmp->salt_len) if (passwd_len == acl_user_tmp->salt_len)
{ {
if (acl_user_tmp->salt_len == 0 || if (acl_user_tmp->salt_len == 0 ||
acl_user_tmp->salt_len == SCRAMBLE_LENGTH && (acl_user_tmp->salt_len == SCRAMBLE_LENGTH &&
check_scramble(passwd, thd->scramble, acl_user_tmp->salt) == 0 || check_scramble(passwd, thd->scramble, acl_user_tmp->salt) == 0) ||
check_scramble_323(passwd, thd->scramble, check_scramble_323(passwd, thd->scramble,
(ulong *) acl_user_tmp->salt) == 0) (ulong *) acl_user_tmp->salt) == 0)
{ {
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment
GitLab Nexedi Edition | About GitLab | About Nexedi | 沪ICP备2021021310号-2 | 沪ICP备2021021310号-7