Fix low-risk potential denial of service against RADIUS login.

Magnus Hagander <magnus@hagander.net>

Commit: 0e7f7071e893bb171150e53271404b0819a40669
Author: Magnus Hagander <magnus@hagander.net>
Date: 2010-10-15T14:59:10Z
Releases: 9.1.0
Fix low-risk potential denial of service against RADIUS login.

Corrupt RADIUS responses were treated as errors and not ignored
(which the RFC2865 states they should be). This meant that a
user with unfiltered access to the network of the PostgreSQL
or RADIUS server could send a spoofed RADIUS response
to the PostgreSQL server causing it to reject a valid login,
provided the attacker could also guess (or brute-force) the
correct port number.

Fix is to simply retry the receive in a loop until the timeout
has expired or a valid (signed by the correct RADIUS server)
packet arrives.

Reported by Alan DeKok in bug #5687.

Files

PathChange+/−
src/backend/libpq/auth.c modified +126 −94