Yuli Khodorkovskiy
1c20e7d36e
Per the PG documentation [0], an AuthenticationSASLContinue message has:
AuthenticationSASLContinue (B)
Byte1('R')
Identifies the message as an authentication request.
Int32
Length of message contents in bytes, including self.
Int32(11)
Specifies that this message contains a SASL challenge.
Byten
SASL data, specific to the SASL mechanism being used.
The current implementation was mistakenly adding the lengh of msg bytes
in between the Int32(11) and Byten. There was a similar issue for
AuthenticationSASLFinal.
[0] https://www.postgresql.org/docs/current/protocol-message-formats.html
49 lines
1.2 KiB
Go
49 lines
1.2 KiB
Go
package pgproto3
|
|
|
|
import (
|
|
"encoding/binary"
|
|
"errors"
|
|
|
|
"github.com/jackc/pgio"
|
|
)
|
|
|
|
// AuthenticationSASLFinal is a message sent from the backend indicating a SASL authentication has completed.
|
|
type AuthenticationSASLFinal struct {
|
|
Data []byte
|
|
}
|
|
|
|
// Backend identifies this message as sendable by the PostgreSQL backend.
|
|
func (*AuthenticationSASLFinal) Backend() {}
|
|
|
|
// Decode decodes src into dst. src must contain the complete message with the exception of the initial 1 byte message
|
|
// type identifier and 4 byte message length.
|
|
func (dst *AuthenticationSASLFinal) Decode(src []byte) error {
|
|
if len(src) < 4 {
|
|
return errors.New("authentication message too short")
|
|
}
|
|
|
|
authType := binary.BigEndian.Uint32(src)
|
|
|
|
if authType != AuthTypeSASLFinal {
|
|
return errors.New("bad auth type")
|
|
}
|
|
|
|
dst.Data = src[4:]
|
|
|
|
return nil
|
|
}
|
|
|
|
// Encode encodes src into dst. dst will include the 1 byte message type identifier and the 4 byte message length.
|
|
func (src *AuthenticationSASLFinal) Encode(dst []byte) []byte {
|
|
dst = append(dst, 'R')
|
|
sp := len(dst)
|
|
dst = pgio.AppendInt32(dst, -1)
|
|
dst = pgio.AppendUint32(dst, AuthTypeSASLFinal)
|
|
|
|
dst = append(dst, src.Data...)
|
|
|
|
pgio.SetInt32(dst[sp:], int32(len(dst[sp:])))
|
|
|
|
return dst
|
|
}
|