box: assert that auth salt size is correct
Authentication salt is expected to be 20 byte long (SCRAMBLE_SIZE). However, IPROTO sends 36 bytes (IPROTO_SALT_SIZE). Let's add a few assertions ensuring that we never pass less than 20 bytes to authentication methods. Part of #7987 NO_DOC=code cleanup NO_TEST=code cleanup NO_CHANGELOG=code cleanup
Showing
- src/box/applier.cc 1 addition, 0 deletionssrc/box/applier.cc
- src/box/auth_chap_sha1.c 3 additions, 0 deletionssrc/box/auth_chap_sha1.c
- src/box/authentication.c 1 addition, 1 deletionsrc/box/authentication.c
- src/box/authentication.h 3 additions, 0 deletionssrc/box/authentication.h
- src/box/box.cc 5 additions, 1 deletionsrc/box/box.cc
- src/box/box.h 3 additions, 1 deletionsrc/box/box.h
- src/box/iproto.cc 2 additions, 1 deletionsrc/box/iproto.cc
- src/box/lua/net_box.c 6 additions, 2 deletionssrc/box/lua/net_box.c
Loading
Please register or sign in to comment