Tags: dankiki/odyssey
Tags
several fixes (yandex#723) * sources/hba_reader.c: fix list of keywords It must contain {0,0,0} at the end. Signed-off-by: rkhapov <r.khapov@ya.ru> * context.c: fix warn This patch fixes warnings about writing function pointer into data pointer Signed-off-by: rkhapov <r.khapov@ya.ru> * sources/macro.h: fix warn about signed vs unsiged comparison Signed-off-by: rkhapov <r.khapov@ya.ru> * sources/rules.c: remove unused func Signed-off-by: rkhapov <r.khapov@ya.ru> * sources/counter.c: fix warn About memcpy to volatile variable Signed-off-by: rkhapov <r.khapov@ya.ru> * sources/rules.c: fix warn And remove useless if's Signed-off-by: rkhapov <r.khapov@ya.ru> * sources/rules.c: remove unused var Signed-off-by: rkhapov <r.khapov@ya.ru> * sources/console.c: remove unused vars Signed-off-by: rkhapov <r.khapov@ya.ru> * sources/frontend.c: remove unsed var Signed-off-by: rkhapov <r.khapov@ya.ru> * sources/rules.c: fix warns Signed-off-by: rkhapov <r.khapov@ya.ru> * sources/backend.c: remove unused count From functions od_backend_query*, count arg is not used Signed-off-by: rkhapov <r.khapov@ya.ru> * sources/odyssey.h: add backend_sync To fix warn about implicit declaration of od_backend_request_sync_point Signed-off-by: rkhapov <r.khapov@ya.ru> * sources/address.c: fix implicit inet_pton Signed-off-by: rkhapov <r.khapov@ya.ru> * sources/address.c: fix warn Signed-off-by: rkhapov <r.khapov@ya.ru> * sources/clock.c: fix warn Signed-off-by: rkhapov <r.khapov@ya.ru> * sources/rules.c: fix uninitialized var Signed-off-by: rkhapov <r.khapov@ya.ru> * sources/frontend.c: fix warn Signed-off-by: rkhapov <r.khapov@ya.ru> * sources/scram.c: return instead of free goto in this place will lead to free on unitialized ptr Signed-off-by: rkhapov <r.khapov@ya.ru> * sources/scram.c: fix warn Case when size + 1 >= INT_MAX is extremely unlikely Signed-off-by: rkhapov <r.khapov@ya.ru> * test/odyssey: use test macro instead of assert More informative + do not produce warnings Signed-off-by: rkhapov <r.khapov@ya.ru> * thread.c: fix warn about implicit func Signed-off-by: rkhapov <r.khapov@ya.ru> * docker/bin/ody-stop: SIGTERM wait This is more useful for tests: will help to find out if gracefully termination in odyssey doestn't work. Signed-off-by: rkhapov <r.khapov@ya.ru> * docker/Dockerfile: update libasan This will possibly fix infinite DEADLYSIGNAL error Signed-off-by: rkhapov <r.khapov@ya.ru> * docker/entrypoint.sh: disable addr randomization There is some bug with asan we currently using This bug leads to infinite DEADLYSIGNAL message on odyssey-asan runs sometimes This patch adds some simple workaround about it Signed-off-by: rkhapov <r.khapov@ya.ru> * soureces/hba.c: fix reloading It was broken, because it sets new rules list at the stack. Signed-off-by: rkhapov <r.khapov@ya.ru> * sources/rules.c: fix router closing It should be closed after every usage. This patch moves closing after every logging, otherwise there will be use-after-free. Signed-off-by: rkhapov <r.khapov@ya.ru> --------- Signed-off-by: rkhapov <r.khapov@ya.ru> Co-authored-by: rkhapov <r.khapov@ya.ru>
sources/tls.c: eof error text improve (yandex#716) When errno is 0, it means that client closed the connection Signed-off-by: rkhapov <r.khapov@ya.ru> (cherry picked from commit e4021d359980ed8e6cb86271672a0895e7aa5ae7) Co-authored-by: rkhapov <r.khapov@ya.ru>
Makefile: make format (yandex#712) This new command will help to run format on different envs because of running formatting inside docker. Previous make fmt will stay, but is not very suitable. (cherry picked from commit d6dcd86) Signed-off-by: rkhapov <r.khapov@yandex.ru> (cherry picked from commit b494f12) Signed-off-by: rkhapov <r.khapov@ya.ru>
Fixes for release candidate (yandex#434) * apply fmt * Fix od_reset retcode handling * fix error msg formatting
[yandex#348] Add detailed descriptions for SSL_get_verify_result() er… …rors. (yandex#431) * [yandex#348] Add detailed descriptions for SSL_get_verify_result() errors. * [yandex#348] Fix formating in tls.c.
Reject extraneous data after SSL negatiation (yandex#359) * Reject extraneous data after SSL negatiation This prevents attacks like in CVE-2021-23214 and CVE-2021-23222. * Fix fmt issue Co-authored-by: reshke <reshkekirill@gmail.com>