2020-04-20 20:37:38 +02:00
|
|
|
/*-------------------------------------------------------------------------
|
|
|
|
|
*
|
|
|
|
|
* backup_manifest.c
|
|
|
|
|
* code for generating and sending a backup manifest
|
|
|
|
|
*
|
2024-01-04 02:49:05 +01:00
|
|
|
* Portions Copyright (c) 2010-2024, PostgreSQL Global Development Group
|
2020-04-20 20:37:38 +02:00
|
|
|
*
|
|
|
|
|
* IDENTIFICATION
|
2022-08-10 20:03:23 +02:00
|
|
|
* src/backend/backup/backup_manifest.c
|
2020-04-20 20:37:38 +02:00
|
|
|
*
|
|
|
|
|
*-------------------------------------------------------------------------
|
|
|
|
|
*/
|
|
|
|
|
#include "postgres.h"
|
|
|
|
|
|
|
|
|
|
#include "access/timeline.h"
|
2022-08-10 20:03:23 +02:00
|
|
|
#include "backup/backup_manifest.h"
|
|
|
|
|
#include "backup/basebackup_sink.h"
|
2020-04-20 20:37:38 +02:00
|
|
|
#include "libpq/libpq.h"
|
|
|
|
|
#include "libpq/pqformat.h"
|
|
|
|
|
#include "mb/pg_wchar.h"
|
2021-08-19 02:20:13 +02:00
|
|
|
#include "utils/builtins.h"
|
2020-04-20 20:37:38 +02:00
|
|
|
#include "utils/json.h"
|
|
|
|
|
|
2022-12-30 10:02:59 +01:00
|
|
|
static void AppendStringToManifest(backup_manifest_info *manifest, const char *s);
|
2020-04-23 14:44:06 +02:00
|
|
|
|
2020-04-20 20:37:38 +02:00
|
|
|
/*
|
|
|
|
|
* Does the user want a backup manifest?
|
|
|
|
|
*
|
|
|
|
|
* It's simplest to always have a manifest_info object, so that we don't need
|
|
|
|
|
* checks for NULL pointers in too many places. However, if the user doesn't
|
|
|
|
|
* want a manifest, we set manifest->buffile to NULL.
|
|
|
|
|
*/
|
|
|
|
|
static inline bool
|
2020-04-23 14:44:06 +02:00
|
|
|
IsManifestEnabled(backup_manifest_info *manifest)
|
2020-04-20 20:37:38 +02:00
|
|
|
{
|
|
|
|
|
return (manifest->buffile != NULL);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Convenience macro for appending data to the backup manifest.
|
|
|
|
|
*/
|
|
|
|
|
#define AppendToManifest(manifest, ...) \
|
|
|
|
|
{ \
|
|
|
|
|
char *_manifest_s = psprintf(__VA_ARGS__); \
|
|
|
|
|
AppendStringToManifest(manifest, _manifest_s); \
|
|
|
|
|
pfree(_manifest_s); \
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Initialize state so that we can construct a backup manifest.
|
|
|
|
|
*
|
|
|
|
|
* NB: Although the checksum type for the data files is configurable, the
|
|
|
|
|
* checksum for the manifest itself always uses SHA-256. See comments in
|
|
|
|
|
* SendBackupManifest.
|
|
|
|
|
*/
|
|
|
|
|
void
|
2020-04-23 14:44:06 +02:00
|
|
|
InitializeBackupManifest(backup_manifest_info *manifest,
|
|
|
|
|
backup_manifest_option want_manifest,
|
|
|
|
|
pg_checksum_type manifest_checksum_type)
|
2020-04-20 20:37:38 +02:00
|
|
|
{
|
2020-11-12 02:56:33 +01:00
|
|
|
memset(manifest, 0, sizeof(backup_manifest_info));
|
|
|
|
|
manifest->checksum_type = manifest_checksum_type;
|
|
|
|
|
|
2020-04-20 20:37:38 +02:00
|
|
|
if (want_manifest == MANIFEST_OPTION_NO)
|
|
|
|
|
manifest->buffile = NULL;
|
|
|
|
|
else
|
2020-11-12 02:56:33 +01:00
|
|
|
{
|
2020-04-20 20:37:38 +02:00
|
|
|
manifest->buffile = BufFileCreateTemp(false);
|
Move SHA2 routines to a new generic API layer for crypto hashes
Two new routines to allocate a hash context and to free it are created,
as these become necessary for the goal behind this refactoring: switch
the all cryptohash implementations for OpenSSL to use EVP (for FIPS and
also because upstream does not recommend the use of low-level cryptohash
functions for 20 years). Note that OpenSSL hides the internals of
cryptohash contexts since 1.1.0, so it is necessary to leave the
allocation to OpenSSL itself, explaining the need for those two new
routines. This part is going to require more work to properly track
hash contexts with resource owners, but this not introduced here.
Still, this refactoring makes the move possible.
This reduces the number of routines for all SHA2 implementations from
twelve (SHA{224,256,386,512} with init, update and final calls) to five
(create, free, init, update and final calls) by incorporating the hash
type directly into the hash context data.
The new cryptohash routines are moved to a new file, called cryptohash.c
for the fallback implementations, with SHA2 specifics becoming a part
internal to src/common/. OpenSSL specifics are part of
cryptohash_openssl.c. This infrastructure is usable for more hash
types, like MD5 or HMAC.
Any code paths using the internal SHA2 routines are adapted to report
correctly errors, which are most of the changes of this commit. The
zones mostly impacted are checksum manifests, libpq and SCRAM.
Note that e21cbb4 was a first attempt to switch SHA2 to EVP, but it
lacked the refactoring needed for libpq, as done here.
This patch has been tested on Linux and Windows, with and without
OpenSSL, and down to 1.0.1, the oldest version supported on HEAD.
Author: Michael Paquier
Reviewed-by: Daniel Gustafsson
Discussion: https://postgr.es/m/20200924025314.GE7405@paquier.xyz
2020-12-02 02:37:20 +01:00
|
|
|
manifest->manifest_ctx = pg_cryptohash_create(PG_SHA256);
|
|
|
|
|
if (pg_cryptohash_init(manifest->manifest_ctx) < 0)
|
Improve error handling of cryptohash computations
The existing cryptohash facility was causing problems in some code paths
related to MD5 (frontend and backend) that relied on the fact that the
only type of error that could happen would be an OOM, as the MD5
implementation used in PostgreSQL ~13 (the in-core implementation is
used when compiling with or without OpenSSL in those older versions),
could fail only under this circumstance.
The new cryptohash facilities can fail for reasons other than OOMs, like
attempting MD5 when FIPS is enabled (upstream OpenSSL allows that up to
1.0.2, Fedora and Photon patch OpenSSL 1.1.1 to allow that), so this
would cause incorrect reports to show up.
This commit extends the cryptohash APIs so as callers of those routines
can fetch more context when an error happens, by using a new routine
called pg_cryptohash_error(). The error states are stored within each
implementation's internal context data, so as it is possible to extend
the logic depending on what's suited for an implementation. The default
implementation requires few error states, but OpenSSL could report
various issues depending on its internal state so more is needed in
cryptohash_openssl.c, and the code is shaped so as we are always able to
grab the necessary information.
The core code is changed to adapt to the new error routine, painting
more "const" across the call stack where the static errors are stored,
particularly in authentication code paths on variables that provide
log details. This way, any future changes would warn if attempting to
free these strings. The MD5 authentication code was also a bit blurry
about the handling of "logdetail" (LOG sent to the postmaster), so
improve the comments related that, while on it.
The origin of the problem is 87ae969, that introduced the centralized
cryptohash facility. Extra changes are done for pgcrypto in v14 for the
non-OpenSSL code path to cope with the improvements done by this
commit.
Reported-by: Michael Mühlbeyer
Author: Michael Paquier
Reviewed-by: Tom Lane
Discussion: https://postgr.es/m/89B7F072-5BBE-4C92-903E-D83E865D9367@trivadis.com
Backpatch-through: 14
2022-01-11 01:55:16 +01:00
|
|
|
elog(ERROR, "failed to initialize checksum of backup manifest: %s",
|
|
|
|
|
pg_cryptohash_error(manifest->manifest_ctx));
|
2020-11-12 02:56:33 +01:00
|
|
|
}
|
|
|
|
|
|
2020-04-20 20:37:38 +02:00
|
|
|
manifest->manifest_size = UINT64CONST(0);
|
|
|
|
|
manifest->force_encode = (want_manifest == MANIFEST_OPTION_FORCE_ENCODE);
|
|
|
|
|
manifest->first_file = true;
|
|
|
|
|
manifest->still_checksumming = true;
|
|
|
|
|
|
|
|
|
|
if (want_manifest != MANIFEST_OPTION_NO)
|
|
|
|
|
AppendToManifest(manifest,
|
|
|
|
|
"{ \"PostgreSQL-Backup-Manifest-Version\": 1,\n"
|
|
|
|
|
"\"Files\": [");
|
|
|
|
|
}
|
|
|
|
|
|
Move SHA2 routines to a new generic API layer for crypto hashes
Two new routines to allocate a hash context and to free it are created,
as these become necessary for the goal behind this refactoring: switch
the all cryptohash implementations for OpenSSL to use EVP (for FIPS and
also because upstream does not recommend the use of low-level cryptohash
functions for 20 years). Note that OpenSSL hides the internals of
cryptohash contexts since 1.1.0, so it is necessary to leave the
allocation to OpenSSL itself, explaining the need for those two new
routines. This part is going to require more work to properly track
hash contexts with resource owners, but this not introduced here.
Still, this refactoring makes the move possible.
This reduces the number of routines for all SHA2 implementations from
twelve (SHA{224,256,386,512} with init, update and final calls) to five
(create, free, init, update and final calls) by incorporating the hash
type directly into the hash context data.
The new cryptohash routines are moved to a new file, called cryptohash.c
for the fallback implementations, with SHA2 specifics becoming a part
internal to src/common/. OpenSSL specifics are part of
cryptohash_openssl.c. This infrastructure is usable for more hash
types, like MD5 or HMAC.
Any code paths using the internal SHA2 routines are adapted to report
correctly errors, which are most of the changes of this commit. The
zones mostly impacted are checksum manifests, libpq and SCRAM.
Note that e21cbb4 was a first attempt to switch SHA2 to EVP, but it
lacked the refactoring needed for libpq, as done here.
This patch has been tested on Linux and Windows, with and without
OpenSSL, and down to 1.0.1, the oldest version supported on HEAD.
Author: Michael Paquier
Reviewed-by: Daniel Gustafsson
Discussion: https://postgr.es/m/20200924025314.GE7405@paquier.xyz
2020-12-02 02:37:20 +01:00
|
|
|
/*
|
|
|
|
|
* Free resources assigned to a backup manifest constructed.
|
|
|
|
|
*/
|
|
|
|
|
void
|
|
|
|
|
FreeBackupManifest(backup_manifest_info *manifest)
|
|
|
|
|
{
|
|
|
|
|
pg_cryptohash_free(manifest->manifest_ctx);
|
|
|
|
|
manifest->manifest_ctx = NULL;
|
|
|
|
|
}
|
|
|
|
|
|
2020-04-20 20:37:38 +02:00
|
|
|
/*
|
|
|
|
|
* Add an entry to the backup manifest for a file.
|
|
|
|
|
*/
|
|
|
|
|
void
|
Change struct tablespaceinfo's oid member from 'char *' to 'Oid'
This shouldn't change behavior except in the unusual case where
there are file in the tablespace directory that have entirely
numeric names but are nevertheless not possible names for a
tablespace directory, either because their names have leading zeroes
that shouldn't be there, or the value is actually zero, or because
the value is too large to represent as an OID.
In those cases, the directory would previously have made it into
the list of tablespaceinfo objects and no longer will. Thus, base
backups will now ignore such directories, instead of treating them
as legitimate tablespace directories. Similarly, if entries for
such tablespaces occur in a tablespace_map file, they will now
be rejected as erroneous, instead of being honored.
This is infrastructure for future work that wants to be able to
know the tablespace of each relation that is part of a backup
*as an OID*. By strengthening the up-front validation, we don't
have to worry about weird cases later, and can more easily avoid
repeated string->integer conversions.
Patch by me, reviewed by David Steele.
Discussion: http://postgr.es/m/CA+TgmoZNVeBzoqDL8xvr-nkaepq815jtDR4nJzPew7=3iEuM1g@mail.gmail.com
2023-10-23 21:17:26 +02:00
|
|
|
AddFileToBackupManifest(backup_manifest_info *manifest, Oid spcoid,
|
2020-04-23 14:44:06 +02:00
|
|
|
const char *pathname, size_t size, pg_time_t mtime,
|
|
|
|
|
pg_checksum_context *checksum_ctx)
|
2020-04-20 20:37:38 +02:00
|
|
|
{
|
|
|
|
|
char pathbuf[MAXPGPATH];
|
|
|
|
|
int pathlen;
|
|
|
|
|
StringInfoData buf;
|
|
|
|
|
|
|
|
|
|
if (!IsManifestEnabled(manifest))
|
|
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* If this file is part of a tablespace, the pathname passed to this
|
|
|
|
|
* function will be relative to the tar file that contains it. We want the
|
|
|
|
|
* pathname relative to the data directory (ignoring the intermediate
|
|
|
|
|
* symlink traversal).
|
|
|
|
|
*/
|
Change struct tablespaceinfo's oid member from 'char *' to 'Oid'
This shouldn't change behavior except in the unusual case where
there are file in the tablespace directory that have entirely
numeric names but are nevertheless not possible names for a
tablespace directory, either because their names have leading zeroes
that shouldn't be there, or the value is actually zero, or because
the value is too large to represent as an OID.
In those cases, the directory would previously have made it into
the list of tablespaceinfo objects and no longer will. Thus, base
backups will now ignore such directories, instead of treating them
as legitimate tablespace directories. Similarly, if entries for
such tablespaces occur in a tablespace_map file, they will now
be rejected as erroneous, instead of being honored.
This is infrastructure for future work that wants to be able to
know the tablespace of each relation that is part of a backup
*as an OID*. By strengthening the up-front validation, we don't
have to worry about weird cases later, and can more easily avoid
repeated string->integer conversions.
Patch by me, reviewed by David Steele.
Discussion: http://postgr.es/m/CA+TgmoZNVeBzoqDL8xvr-nkaepq815jtDR4nJzPew7=3iEuM1g@mail.gmail.com
2023-10-23 21:17:26 +02:00
|
|
|
if (OidIsValid(spcoid))
|
2020-04-20 20:37:38 +02:00
|
|
|
{
|
Change struct tablespaceinfo's oid member from 'char *' to 'Oid'
This shouldn't change behavior except in the unusual case where
there are file in the tablespace directory that have entirely
numeric names but are nevertheless not possible names for a
tablespace directory, either because their names have leading zeroes
that shouldn't be there, or the value is actually zero, or because
the value is too large to represent as an OID.
In those cases, the directory would previously have made it into
the list of tablespaceinfo objects and no longer will. Thus, base
backups will now ignore such directories, instead of treating them
as legitimate tablespace directories. Similarly, if entries for
such tablespaces occur in a tablespace_map file, they will now
be rejected as erroneous, instead of being honored.
This is infrastructure for future work that wants to be able to
know the tablespace of each relation that is part of a backup
*as an OID*. By strengthening the up-front validation, we don't
have to worry about weird cases later, and can more easily avoid
repeated string->integer conversions.
Patch by me, reviewed by David Steele.
Discussion: http://postgr.es/m/CA+TgmoZNVeBzoqDL8xvr-nkaepq815jtDR4nJzPew7=3iEuM1g@mail.gmail.com
2023-10-23 21:17:26 +02:00
|
|
|
snprintf(pathbuf, sizeof(pathbuf), "pg_tblspc/%u/%s", spcoid,
|
2020-04-20 20:37:38 +02:00
|
|
|
pathname);
|
|
|
|
|
pathname = pathbuf;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Each file's entry needs to be separated from any entry that follows by
|
|
|
|
|
* a comma, but there's no comma before the first one or after the last
|
|
|
|
|
* one. To make that work, adding a file to the manifest starts by
|
|
|
|
|
* terminating the most recently added line, with a comma if appropriate,
|
|
|
|
|
* but does not terminate the line inserted for this file.
|
|
|
|
|
*/
|
|
|
|
|
initStringInfo(&buf);
|
|
|
|
|
if (manifest->first_file)
|
|
|
|
|
{
|
2020-10-15 09:35:17 +02:00
|
|
|
appendStringInfoChar(&buf, '\n');
|
2020-04-20 20:37:38 +02:00
|
|
|
manifest->first_file = false;
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
appendStringInfoString(&buf, ",\n");
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Write the relative pathname to this file out to the manifest. The
|
|
|
|
|
* manifest is always stored in UTF-8, so we have to encode paths that are
|
|
|
|
|
* not valid in that encoding.
|
|
|
|
|
*/
|
|
|
|
|
pathlen = strlen(pathname);
|
|
|
|
|
if (!manifest->force_encode &&
|
|
|
|
|
pg_verify_mbstr(PG_UTF8, pathname, pathlen, true))
|
|
|
|
|
{
|
|
|
|
|
appendStringInfoString(&buf, "{ \"Path\": ");
|
|
|
|
|
escape_json(&buf, pathname);
|
|
|
|
|
appendStringInfoString(&buf, ", ");
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
appendStringInfoString(&buf, "{ \"Encoded-Path\": \"");
|
2021-08-19 02:20:13 +02:00
|
|
|
enlargeStringInfo(&buf, 2 * pathlen);
|
|
|
|
|
buf.len += hex_encode(pathname, pathlen,
|
|
|
|
|
&buf.data[buf.len]);
|
2020-04-20 20:37:38 +02:00
|
|
|
appendStringInfoString(&buf, "\", ");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
appendStringInfo(&buf, "\"Size\": %zu, ", size);
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Convert last modification time to a string and append it to the
|
|
|
|
|
* manifest. Since it's not clear what time zone to use and since time
|
|
|
|
|
* zone definitions can change, possibly causing confusion, use GMT
|
|
|
|
|
* always.
|
|
|
|
|
*/
|
|
|
|
|
appendStringInfoString(&buf, "\"Last-Modified\": \"");
|
|
|
|
|
enlargeStringInfo(&buf, 128);
|
|
|
|
|
buf.len += pg_strftime(&buf.data[buf.len], 128, "%Y-%m-%d %H:%M:%S %Z",
|
|
|
|
|
pg_gmtime(&mtime));
|
2020-10-15 09:35:17 +02:00
|
|
|
appendStringInfoChar(&buf, '"');
|
2020-04-20 20:37:38 +02:00
|
|
|
|
|
|
|
|
/* Add checksum information. */
|
|
|
|
|
if (checksum_ctx->type != CHECKSUM_TYPE_NONE)
|
|
|
|
|
{
|
|
|
|
|
uint8 checksumbuf[PG_CHECKSUM_MAX_LENGTH];
|
|
|
|
|
int checksumlen;
|
|
|
|
|
|
|
|
|
|
checksumlen = pg_checksum_final(checksum_ctx, checksumbuf);
|
Move SHA2 routines to a new generic API layer for crypto hashes
Two new routines to allocate a hash context and to free it are created,
as these become necessary for the goal behind this refactoring: switch
the all cryptohash implementations for OpenSSL to use EVP (for FIPS and
also because upstream does not recommend the use of low-level cryptohash
functions for 20 years). Note that OpenSSL hides the internals of
cryptohash contexts since 1.1.0, so it is necessary to leave the
allocation to OpenSSL itself, explaining the need for those two new
routines. This part is going to require more work to properly track
hash contexts with resource owners, but this not introduced here.
Still, this refactoring makes the move possible.
This reduces the number of routines for all SHA2 implementations from
twelve (SHA{224,256,386,512} with init, update and final calls) to five
(create, free, init, update and final calls) by incorporating the hash
type directly into the hash context data.
The new cryptohash routines are moved to a new file, called cryptohash.c
for the fallback implementations, with SHA2 specifics becoming a part
internal to src/common/. OpenSSL specifics are part of
cryptohash_openssl.c. This infrastructure is usable for more hash
types, like MD5 or HMAC.
Any code paths using the internal SHA2 routines are adapted to report
correctly errors, which are most of the changes of this commit. The
zones mostly impacted are checksum manifests, libpq and SCRAM.
Note that e21cbb4 was a first attempt to switch SHA2 to EVP, but it
lacked the refactoring needed for libpq, as done here.
This patch has been tested on Linux and Windows, with and without
OpenSSL, and down to 1.0.1, the oldest version supported on HEAD.
Author: Michael Paquier
Reviewed-by: Daniel Gustafsson
Discussion: https://postgr.es/m/20200924025314.GE7405@paquier.xyz
2020-12-02 02:37:20 +01:00
|
|
|
if (checksumlen < 0)
|
|
|
|
|
elog(ERROR, "could not finalize checksum of file \"%s\"",
|
|
|
|
|
pathname);
|
2020-04-20 20:37:38 +02:00
|
|
|
|
|
|
|
|
appendStringInfo(&buf,
|
|
|
|
|
", \"Checksum-Algorithm\": \"%s\", \"Checksum\": \"",
|
|
|
|
|
pg_checksum_type_name(checksum_ctx->type));
|
2021-08-19 02:20:13 +02:00
|
|
|
enlargeStringInfo(&buf, 2 * checksumlen);
|
|
|
|
|
buf.len += hex_encode((char *) checksumbuf, checksumlen,
|
|
|
|
|
&buf.data[buf.len]);
|
2020-10-15 09:35:17 +02:00
|
|
|
appendStringInfoChar(&buf, '"');
|
2020-04-20 20:37:38 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Close out the object. */
|
|
|
|
|
appendStringInfoString(&buf, " }");
|
|
|
|
|
|
|
|
|
|
/* OK, add it to the manifest. */
|
|
|
|
|
AppendStringToManifest(manifest, buf.data);
|
|
|
|
|
|
|
|
|
|
/* Avoid leaking memory. */
|
|
|
|
|
pfree(buf.data);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Add information about the WAL that will need to be replayed when restoring
|
|
|
|
|
* this backup to the manifest.
|
|
|
|
|
*/
|
|
|
|
|
void
|
2020-04-23 14:44:06 +02:00
|
|
|
AddWALInfoToBackupManifest(backup_manifest_info *manifest, XLogRecPtr startptr,
|
|
|
|
|
TimeLineID starttli, XLogRecPtr endptr,
|
|
|
|
|
TimeLineID endtli)
|
2020-04-20 20:37:38 +02:00
|
|
|
{
|
|
|
|
|
List *timelines;
|
|
|
|
|
ListCell *lc;
|
|
|
|
|
bool first_wal_range = true;
|
|
|
|
|
bool found_start_timeline = false;
|
|
|
|
|
|
|
|
|
|
if (!IsManifestEnabled(manifest))
|
|
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
/* Terminate the list of files. */
|
|
|
|
|
AppendStringToManifest(manifest, "\n],\n");
|
|
|
|
|
|
|
|
|
|
/* Read the timeline history for the ending timeline. */
|
|
|
|
|
timelines = readTimeLineHistory(endtli);
|
|
|
|
|
|
|
|
|
|
/* Start a list of LSN ranges. */
|
|
|
|
|
AppendStringToManifest(manifest, "\"WAL-Ranges\": [\n");
|
|
|
|
|
|
|
|
|
|
foreach(lc, timelines)
|
|
|
|
|
{
|
|
|
|
|
TimeLineHistoryEntry *entry = lfirst(lc);
|
|
|
|
|
XLogRecPtr tl_beginptr;
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* We only care about timelines that were active during the backup.
|
|
|
|
|
* Skip any that ended before the backup started. (Note that if
|
|
|
|
|
* entry->end is InvalidXLogRecPtr, it means that the timeline has not
|
|
|
|
|
* yet ended.)
|
|
|
|
|
*/
|
|
|
|
|
if (!XLogRecPtrIsInvalid(entry->end) && entry->end < startptr)
|
|
|
|
|
continue;
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Because the timeline history file lists newer timelines before
|
|
|
|
|
* older ones, the first timeline we encounter that is new enough to
|
|
|
|
|
* matter ought to match the ending timeline of the backup.
|
|
|
|
|
*/
|
|
|
|
|
if (first_wal_range && endtli != entry->tli)
|
|
|
|
|
ereport(ERROR,
|
|
|
|
|
errmsg("expected end timeline %u but found timeline %u",
|
|
|
|
|
starttli, entry->tli));
|
|
|
|
|
|
2021-08-23 04:09:33 +02:00
|
|
|
/*
|
|
|
|
|
* If this timeline entry matches with the timeline on which the
|
|
|
|
|
* backup started, WAL needs to be checked from the start LSN of the
|
|
|
|
|
* backup. If this entry refers to a newer timeline, WAL needs to be
|
|
|
|
|
* checked since the beginning of this timeline, so use the LSN where
|
|
|
|
|
* the timeline began.
|
|
|
|
|
*/
|
|
|
|
|
if (starttli == entry->tli)
|
|
|
|
|
tl_beginptr = startptr;
|
2020-04-20 20:37:38 +02:00
|
|
|
else
|
|
|
|
|
{
|
2021-08-23 04:09:33 +02:00
|
|
|
tl_beginptr = entry->begin;
|
2020-04-20 20:37:38 +02:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* If we reach a TLI that has no valid beginning LSN, there can't
|
|
|
|
|
* be any more timelines in the history after this point, so we'd
|
|
|
|
|
* better have arrived at the expected starting TLI. If not,
|
|
|
|
|
* something's gone horribly wrong.
|
|
|
|
|
*/
|
2021-08-23 04:09:33 +02:00
|
|
|
if (XLogRecPtrIsInvalid(entry->begin))
|
2020-04-20 20:37:38 +02:00
|
|
|
ereport(ERROR,
|
|
|
|
|
errmsg("expected start timeline %u but found timeline %u",
|
|
|
|
|
starttli, entry->tli));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
AppendToManifest(manifest,
|
|
|
|
|
"%s{ \"Timeline\": %u, \"Start-LSN\": \"%X/%X\", \"End-LSN\": \"%X/%X\" }",
|
|
|
|
|
first_wal_range ? "" : ",\n",
|
|
|
|
|
entry->tli,
|
2021-02-23 10:14:38 +01:00
|
|
|
LSN_FORMAT_ARGS(tl_beginptr),
|
|
|
|
|
LSN_FORMAT_ARGS(endptr));
|
2020-04-20 20:37:38 +02:00
|
|
|
|
|
|
|
|
if (starttli == entry->tli)
|
|
|
|
|
{
|
|
|
|
|
found_start_timeline = true;
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
endptr = entry->begin;
|
|
|
|
|
first_wal_range = false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* The last entry in the timeline history for the ending timeline should
|
|
|
|
|
* be the ending timeline itself. Verify that this is what we observed.
|
|
|
|
|
*/
|
|
|
|
|
if (!found_start_timeline)
|
|
|
|
|
ereport(ERROR,
|
2020-09-09 17:53:39 +02:00
|
|
|
errmsg("start timeline %u not found in history of timeline %u",
|
2020-04-20 20:37:38 +02:00
|
|
|
starttli, endtli));
|
|
|
|
|
|
|
|
|
|
/* Terminate the list of WAL ranges. */
|
|
|
|
|
AppendStringToManifest(manifest, "\n],\n");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Finalize the backup manifest, and send it to the client.
|
|
|
|
|
*/
|
|
|
|
|
void
|
Improve error handling of cryptohash computations
The existing cryptohash facility was causing problems in some code paths
related to MD5 (frontend and backend) that relied on the fact that the
only type of error that could happen would be an OOM, as the MD5
implementation used in PostgreSQL ~13 (the in-core implementation is
used when compiling with or without OpenSSL in those older versions),
could fail only under this circumstance.
The new cryptohash facilities can fail for reasons other than OOMs, like
attempting MD5 when FIPS is enabled (upstream OpenSSL allows that up to
1.0.2, Fedora and Photon patch OpenSSL 1.1.1 to allow that), so this
would cause incorrect reports to show up.
This commit extends the cryptohash APIs so as callers of those routines
can fetch more context when an error happens, by using a new routine
called pg_cryptohash_error(). The error states are stored within each
implementation's internal context data, so as it is possible to extend
the logic depending on what's suited for an implementation. The default
implementation requires few error states, but OpenSSL could report
various issues depending on its internal state so more is needed in
cryptohash_openssl.c, and the code is shaped so as we are always able to
grab the necessary information.
The core code is changed to adapt to the new error routine, painting
more "const" across the call stack where the static errors are stored,
particularly in authentication code paths on variables that provide
log details. This way, any future changes would warn if attempting to
free these strings. The MD5 authentication code was also a bit blurry
about the handling of "logdetail" (LOG sent to the postmaster), so
improve the comments related that, while on it.
The origin of the problem is 87ae969, that introduced the centralized
cryptohash facility. Extra changes are done for pgcrypto in v14 for the
non-OpenSSL code path to cope with the improvements done by this
commit.
Reported-by: Michael Mühlbeyer
Author: Michael Paquier
Reviewed-by: Tom Lane
Discussion: https://postgr.es/m/89B7F072-5BBE-4C92-903E-D83E865D9367@trivadis.com
Backpatch-through: 14
2022-01-11 01:55:16 +01:00
|
|
|
SendBackupManifest(backup_manifest_info *manifest, bbsink *sink)
|
2020-04-20 20:37:38 +02:00
|
|
|
{
|
|
|
|
|
uint8 checksumbuf[PG_SHA256_DIGEST_LENGTH];
|
2021-08-19 02:20:13 +02:00
|
|
|
char checksumstringbuf[PG_SHA256_DIGEST_STRING_LENGTH];
|
2020-04-20 20:37:38 +02:00
|
|
|
size_t manifest_bytes_done = 0;
|
|
|
|
|
|
|
|
|
|
if (!IsManifestEnabled(manifest))
|
|
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Append manifest checksum, so that the problems with the manifest itself
|
|
|
|
|
* can be detected.
|
|
|
|
|
*
|
|
|
|
|
* We always use SHA-256 for this, regardless of what algorithm is chosen
|
|
|
|
|
* for checksumming the files. If we ever want to make the checksum
|
|
|
|
|
* algorithm used for the manifest file variable, the client will need a
|
|
|
|
|
* way to figure out which algorithm to use as close to the beginning of
|
|
|
|
|
* the manifest file as possible, to avoid having to read the whole thing
|
|
|
|
|
* twice.
|
|
|
|
|
*/
|
|
|
|
|
manifest->still_checksumming = false;
|
Add result size as argument of pg_cryptohash_final() for overflow checks
With its current design, a careless use of pg_cryptohash_final() could
would result in an out-of-bound write in memory as the size of the
destination buffer to store the result digest is not known to the
cryptohash internals, without the caller knowing about that. This
commit adds a new argument to pg_cryptohash_final() to allow such sanity
checks, and implements such defenses.
The internals of SCRAM for HMAC could be tightened a bit more, but as
everything is based on SCRAM_KEY_LEN with uses particular to this code
there is no need to complicate its interface more than necessary, and
this comes back to the refactoring of HMAC in core. Except that, this
minimizes the uses of the existing DIGEST_LENGTH variables, relying
instead on sizeof() for the result sizes. In ossp-uuid, this also makes
the code more defensive, as it already relied on dce_uuid_t being at
least the size of a MD5 digest.
This is in philosophy similar to cfc40d3 for base64.c and aef8948 for
hex.c.
Reported-by: Ranier Vilela
Author: Michael Paquier, Ranier Vilela
Reviewed-by: Kyotaro Horiguchi
Discussion: https://postgr.es/m/CAEudQAoqEGmcff3J4sTSV-R_16Monuz-UpJFbf_dnVH=APr02Q@mail.gmail.com
2021-02-15 02:18:34 +01:00
|
|
|
if (pg_cryptohash_final(manifest->manifest_ctx, checksumbuf,
|
|
|
|
|
sizeof(checksumbuf)) < 0)
|
Improve error handling of cryptohash computations
The existing cryptohash facility was causing problems in some code paths
related to MD5 (frontend and backend) that relied on the fact that the
only type of error that could happen would be an OOM, as the MD5
implementation used in PostgreSQL ~13 (the in-core implementation is
used when compiling with or without OpenSSL in those older versions),
could fail only under this circumstance.
The new cryptohash facilities can fail for reasons other than OOMs, like
attempting MD5 when FIPS is enabled (upstream OpenSSL allows that up to
1.0.2, Fedora and Photon patch OpenSSL 1.1.1 to allow that), so this
would cause incorrect reports to show up.
This commit extends the cryptohash APIs so as callers of those routines
can fetch more context when an error happens, by using a new routine
called pg_cryptohash_error(). The error states are stored within each
implementation's internal context data, so as it is possible to extend
the logic depending on what's suited for an implementation. The default
implementation requires few error states, but OpenSSL could report
various issues depending on its internal state so more is needed in
cryptohash_openssl.c, and the code is shaped so as we are always able to
grab the necessary information.
The core code is changed to adapt to the new error routine, painting
more "const" across the call stack where the static errors are stored,
particularly in authentication code paths on variables that provide
log details. This way, any future changes would warn if attempting to
free these strings. The MD5 authentication code was also a bit blurry
about the handling of "logdetail" (LOG sent to the postmaster), so
improve the comments related that, while on it.
The origin of the problem is 87ae969, that introduced the centralized
cryptohash facility. Extra changes are done for pgcrypto in v14 for the
non-OpenSSL code path to cope with the improvements done by this
commit.
Reported-by: Michael Mühlbeyer
Author: Michael Paquier
Reviewed-by: Tom Lane
Discussion: https://postgr.es/m/89B7F072-5BBE-4C92-903E-D83E865D9367@trivadis.com
Backpatch-through: 14
2022-01-11 01:55:16 +01:00
|
|
|
elog(ERROR, "failed to finalize checksum of backup manifest: %s",
|
|
|
|
|
pg_cryptohash_error(manifest->manifest_ctx));
|
2020-04-20 20:37:38 +02:00
|
|
|
AppendStringToManifest(manifest, "\"Manifest-Checksum\": \"");
|
2021-08-19 02:20:13 +02:00
|
|
|
|
|
|
|
|
hex_encode((char *) checksumbuf, sizeof checksumbuf, checksumstringbuf);
|
|
|
|
|
checksumstringbuf[PG_SHA256_DIGEST_STRING_LENGTH - 1] = '\0';
|
|
|
|
|
|
2020-04-20 20:37:38 +02:00
|
|
|
AppendStringToManifest(manifest, checksumstringbuf);
|
|
|
|
|
AppendStringToManifest(manifest, "\"}\n");
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* We've written all the data to the manifest file. Rewind the file so
|
|
|
|
|
* that we can read it all back.
|
|
|
|
|
*/
|
2023-03-29 08:25:12 +02:00
|
|
|
if (BufFileSeek(manifest->buffile, 0, 0, SEEK_SET))
|
2020-04-20 20:37:38 +02:00
|
|
|
ereport(ERROR,
|
|
|
|
|
(errcode_for_file_access(),
|
2020-06-16 03:50:56 +02:00
|
|
|
errmsg("could not rewind temporary file")));
|
2020-04-20 20:37:38 +02:00
|
|
|
|
|
|
|
|
|
|
|
|
|
/*
|
Introduce 'bbsink' abstraction to modularize base backup code.
The base backup code has accumulated a healthy number of new
features over the years, but it's becoming increasingly difficult
to maintain and further enhance that code because there's no
real separation of concerns. For example, the code that
understands knows the details of how we send data to the client
using the libpq protocol is scattered throughout basebackup.c,
rather than being centralized in one place.
To try to improve this situation, introduce a new 'bbsink' object
which acts as a recipient for archives generated during the base
backup progress and also for the backup manifest. This commit
introduces three types of bbsink: a 'copytblspc' bbsink forwards the
backup to the client using one COPY OUT operation per tablespace and
another for the manifest, a 'progress' bbsink performs command
progress reporting, and a 'throttle' bbsink performs rate-limiting.
The 'progress' and 'throttle' bbsink types also forward the data to a
successor bbsink; at present, the last bbsink in the chain will
always be of type 'copytblspc'. There are plans to add more types
of 'bbsink' in future commits.
This abstraction is a bit leaky in the case of progress reporting,
but this still seems cleaner than what we had before.
Patch by me, reviewed and tested by Andres Freund, Sumanta Mukherjee,
Dilip Kumar, Suraj Kharage, Dipesh Pandit, Tushar Ahuja, Mark Dilger,
and Jeevan Ladhe.
Discussion: https://postgr.es/m/CA+TgmoZGwR=ZVWFeecncubEyPdwghnvfkkdBe9BLccLSiqdf9Q@mail.gmail.com
Discussion: https://postgr.es/m/CA+TgmoZvqk7UuzxsX1xjJRmMGkqoUGYTZLDCH8SmU1xTPr1Xig@mail.gmail.com
2021-11-05 15:08:30 +01:00
|
|
|
* Send the backup manifest.
|
2020-04-20 20:37:38 +02:00
|
|
|
*/
|
Introduce 'bbsink' abstraction to modularize base backup code.
The base backup code has accumulated a healthy number of new
features over the years, but it's becoming increasingly difficult
to maintain and further enhance that code because there's no
real separation of concerns. For example, the code that
understands knows the details of how we send data to the client
using the libpq protocol is scattered throughout basebackup.c,
rather than being centralized in one place.
To try to improve this situation, introduce a new 'bbsink' object
which acts as a recipient for archives generated during the base
backup progress and also for the backup manifest. This commit
introduces three types of bbsink: a 'copytblspc' bbsink forwards the
backup to the client using one COPY OUT operation per tablespace and
another for the manifest, a 'progress' bbsink performs command
progress reporting, and a 'throttle' bbsink performs rate-limiting.
The 'progress' and 'throttle' bbsink types also forward the data to a
successor bbsink; at present, the last bbsink in the chain will
always be of type 'copytblspc'. There are plans to add more types
of 'bbsink' in future commits.
This abstraction is a bit leaky in the case of progress reporting,
but this still seems cleaner than what we had before.
Patch by me, reviewed and tested by Andres Freund, Sumanta Mukherjee,
Dilip Kumar, Suraj Kharage, Dipesh Pandit, Tushar Ahuja, Mark Dilger,
and Jeevan Ladhe.
Discussion: https://postgr.es/m/CA+TgmoZGwR=ZVWFeecncubEyPdwghnvfkkdBe9BLccLSiqdf9Q@mail.gmail.com
Discussion: https://postgr.es/m/CA+TgmoZvqk7UuzxsX1xjJRmMGkqoUGYTZLDCH8SmU1xTPr1Xig@mail.gmail.com
2021-11-05 15:08:30 +01:00
|
|
|
bbsink_begin_manifest(sink);
|
2020-04-20 20:37:38 +02:00
|
|
|
while (manifest_bytes_done < manifest->manifest_size)
|
|
|
|
|
{
|
|
|
|
|
size_t bytes_to_read;
|
|
|
|
|
|
Introduce 'bbsink' abstraction to modularize base backup code.
The base backup code has accumulated a healthy number of new
features over the years, but it's becoming increasingly difficult
to maintain and further enhance that code because there's no
real separation of concerns. For example, the code that
understands knows the details of how we send data to the client
using the libpq protocol is scattered throughout basebackup.c,
rather than being centralized in one place.
To try to improve this situation, introduce a new 'bbsink' object
which acts as a recipient for archives generated during the base
backup progress and also for the backup manifest. This commit
introduces three types of bbsink: a 'copytblspc' bbsink forwards the
backup to the client using one COPY OUT operation per tablespace and
another for the manifest, a 'progress' bbsink performs command
progress reporting, and a 'throttle' bbsink performs rate-limiting.
The 'progress' and 'throttle' bbsink types also forward the data to a
successor bbsink; at present, the last bbsink in the chain will
always be of type 'copytblspc'. There are plans to add more types
of 'bbsink' in future commits.
This abstraction is a bit leaky in the case of progress reporting,
but this still seems cleaner than what we had before.
Patch by me, reviewed and tested by Andres Freund, Sumanta Mukherjee,
Dilip Kumar, Suraj Kharage, Dipesh Pandit, Tushar Ahuja, Mark Dilger,
and Jeevan Ladhe.
Discussion: https://postgr.es/m/CA+TgmoZGwR=ZVWFeecncubEyPdwghnvfkkdBe9BLccLSiqdf9Q@mail.gmail.com
Discussion: https://postgr.es/m/CA+TgmoZvqk7UuzxsX1xjJRmMGkqoUGYTZLDCH8SmU1xTPr1Xig@mail.gmail.com
2021-11-05 15:08:30 +01:00
|
|
|
bytes_to_read = Min(sink->bbs_buffer_length,
|
2020-04-20 20:37:38 +02:00
|
|
|
manifest->manifest_size - manifest_bytes_done);
|
2023-01-16 09:20:44 +01:00
|
|
|
BufFileReadExact(manifest->buffile, sink->bbs_buffer, bytes_to_read);
|
Introduce 'bbsink' abstraction to modularize base backup code.
The base backup code has accumulated a healthy number of new
features over the years, but it's becoming increasingly difficult
to maintain and further enhance that code because there's no
real separation of concerns. For example, the code that
understands knows the details of how we send data to the client
using the libpq protocol is scattered throughout basebackup.c,
rather than being centralized in one place.
To try to improve this situation, introduce a new 'bbsink' object
which acts as a recipient for archives generated during the base
backup progress and also for the backup manifest. This commit
introduces three types of bbsink: a 'copytblspc' bbsink forwards the
backup to the client using one COPY OUT operation per tablespace and
another for the manifest, a 'progress' bbsink performs command
progress reporting, and a 'throttle' bbsink performs rate-limiting.
The 'progress' and 'throttle' bbsink types also forward the data to a
successor bbsink; at present, the last bbsink in the chain will
always be of type 'copytblspc'. There are plans to add more types
of 'bbsink' in future commits.
This abstraction is a bit leaky in the case of progress reporting,
but this still seems cleaner than what we had before.
Patch by me, reviewed and tested by Andres Freund, Sumanta Mukherjee,
Dilip Kumar, Suraj Kharage, Dipesh Pandit, Tushar Ahuja, Mark Dilger,
and Jeevan Ladhe.
Discussion: https://postgr.es/m/CA+TgmoZGwR=ZVWFeecncubEyPdwghnvfkkdBe9BLccLSiqdf9Q@mail.gmail.com
Discussion: https://postgr.es/m/CA+TgmoZvqk7UuzxsX1xjJRmMGkqoUGYTZLDCH8SmU1xTPr1Xig@mail.gmail.com
2021-11-05 15:08:30 +01:00
|
|
|
bbsink_manifest_contents(sink, bytes_to_read);
|
2020-04-20 20:37:38 +02:00
|
|
|
manifest_bytes_done += bytes_to_read;
|
|
|
|
|
}
|
Introduce 'bbsink' abstraction to modularize base backup code.
The base backup code has accumulated a healthy number of new
features over the years, but it's becoming increasingly difficult
to maintain and further enhance that code because there's no
real separation of concerns. For example, the code that
understands knows the details of how we send data to the client
using the libpq protocol is scattered throughout basebackup.c,
rather than being centralized in one place.
To try to improve this situation, introduce a new 'bbsink' object
which acts as a recipient for archives generated during the base
backup progress and also for the backup manifest. This commit
introduces three types of bbsink: a 'copytblspc' bbsink forwards the
backup to the client using one COPY OUT operation per tablespace and
another for the manifest, a 'progress' bbsink performs command
progress reporting, and a 'throttle' bbsink performs rate-limiting.
The 'progress' and 'throttle' bbsink types also forward the data to a
successor bbsink; at present, the last bbsink in the chain will
always be of type 'copytblspc'. There are plans to add more types
of 'bbsink' in future commits.
This abstraction is a bit leaky in the case of progress reporting,
but this still seems cleaner than what we had before.
Patch by me, reviewed and tested by Andres Freund, Sumanta Mukherjee,
Dilip Kumar, Suraj Kharage, Dipesh Pandit, Tushar Ahuja, Mark Dilger,
and Jeevan Ladhe.
Discussion: https://postgr.es/m/CA+TgmoZGwR=ZVWFeecncubEyPdwghnvfkkdBe9BLccLSiqdf9Q@mail.gmail.com
Discussion: https://postgr.es/m/CA+TgmoZvqk7UuzxsX1xjJRmMGkqoUGYTZLDCH8SmU1xTPr1Xig@mail.gmail.com
2021-11-05 15:08:30 +01:00
|
|
|
bbsink_end_manifest(sink);
|
2020-04-20 20:37:38 +02:00
|
|
|
|
|
|
|
|
/* Release resources */
|
|
|
|
|
BufFileClose(manifest->buffile);
|
|
|
|
|
}
|
2020-04-23 14:44:06 +02:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Append a cstring to the manifest.
|
|
|
|
|
*/
|
|
|
|
|
static void
|
2022-12-30 10:02:59 +01:00
|
|
|
AppendStringToManifest(backup_manifest_info *manifest, const char *s)
|
2020-04-23 14:44:06 +02:00
|
|
|
{
|
|
|
|
|
int len = strlen(s);
|
|
|
|
|
|
|
|
|
|
Assert(manifest != NULL);
|
|
|
|
|
if (manifest->still_checksumming)
|
Move SHA2 routines to a new generic API layer for crypto hashes
Two new routines to allocate a hash context and to free it are created,
as these become necessary for the goal behind this refactoring: switch
the all cryptohash implementations for OpenSSL to use EVP (for FIPS and
also because upstream does not recommend the use of low-level cryptohash
functions for 20 years). Note that OpenSSL hides the internals of
cryptohash contexts since 1.1.0, so it is necessary to leave the
allocation to OpenSSL itself, explaining the need for those two new
routines. This part is going to require more work to properly track
hash contexts with resource owners, but this not introduced here.
Still, this refactoring makes the move possible.
This reduces the number of routines for all SHA2 implementations from
twelve (SHA{224,256,386,512} with init, update and final calls) to five
(create, free, init, update and final calls) by incorporating the hash
type directly into the hash context data.
The new cryptohash routines are moved to a new file, called cryptohash.c
for the fallback implementations, with SHA2 specifics becoming a part
internal to src/common/. OpenSSL specifics are part of
cryptohash_openssl.c. This infrastructure is usable for more hash
types, like MD5 or HMAC.
Any code paths using the internal SHA2 routines are adapted to report
correctly errors, which are most of the changes of this commit. The
zones mostly impacted are checksum manifests, libpq and SCRAM.
Note that e21cbb4 was a first attempt to switch SHA2 to EVP, but it
lacked the refactoring needed for libpq, as done here.
This patch has been tested on Linux and Windows, with and without
OpenSSL, and down to 1.0.1, the oldest version supported on HEAD.
Author: Michael Paquier
Reviewed-by: Daniel Gustafsson
Discussion: https://postgr.es/m/20200924025314.GE7405@paquier.xyz
2020-12-02 02:37:20 +01:00
|
|
|
{
|
|
|
|
|
if (pg_cryptohash_update(manifest->manifest_ctx, (uint8 *) s, len) < 0)
|
Improve error handling of cryptohash computations
The existing cryptohash facility was causing problems in some code paths
related to MD5 (frontend and backend) that relied on the fact that the
only type of error that could happen would be an OOM, as the MD5
implementation used in PostgreSQL ~13 (the in-core implementation is
used when compiling with or without OpenSSL in those older versions),
could fail only under this circumstance.
The new cryptohash facilities can fail for reasons other than OOMs, like
attempting MD5 when FIPS is enabled (upstream OpenSSL allows that up to
1.0.2, Fedora and Photon patch OpenSSL 1.1.1 to allow that), so this
would cause incorrect reports to show up.
This commit extends the cryptohash APIs so as callers of those routines
can fetch more context when an error happens, by using a new routine
called pg_cryptohash_error(). The error states are stored within each
implementation's internal context data, so as it is possible to extend
the logic depending on what's suited for an implementation. The default
implementation requires few error states, but OpenSSL could report
various issues depending on its internal state so more is needed in
cryptohash_openssl.c, and the code is shaped so as we are always able to
grab the necessary information.
The core code is changed to adapt to the new error routine, painting
more "const" across the call stack where the static errors are stored,
particularly in authentication code paths on variables that provide
log details. This way, any future changes would warn if attempting to
free these strings. The MD5 authentication code was also a bit blurry
about the handling of "logdetail" (LOG sent to the postmaster), so
improve the comments related that, while on it.
The origin of the problem is 87ae969, that introduced the centralized
cryptohash facility. Extra changes are done for pgcrypto in v14 for the
non-OpenSSL code path to cope with the improvements done by this
commit.
Reported-by: Michael Mühlbeyer
Author: Michael Paquier
Reviewed-by: Tom Lane
Discussion: https://postgr.es/m/89B7F072-5BBE-4C92-903E-D83E865D9367@trivadis.com
Backpatch-through: 14
2022-01-11 01:55:16 +01:00
|
|
|
elog(ERROR, "failed to update checksum of backup manifest: %s",
|
|
|
|
|
pg_cryptohash_error(manifest->manifest_ctx));
|
Move SHA2 routines to a new generic API layer for crypto hashes
Two new routines to allocate a hash context and to free it are created,
as these become necessary for the goal behind this refactoring: switch
the all cryptohash implementations for OpenSSL to use EVP (for FIPS and
also because upstream does not recommend the use of low-level cryptohash
functions for 20 years). Note that OpenSSL hides the internals of
cryptohash contexts since 1.1.0, so it is necessary to leave the
allocation to OpenSSL itself, explaining the need for those two new
routines. This part is going to require more work to properly track
hash contexts with resource owners, but this not introduced here.
Still, this refactoring makes the move possible.
This reduces the number of routines for all SHA2 implementations from
twelve (SHA{224,256,386,512} with init, update and final calls) to five
(create, free, init, update and final calls) by incorporating the hash
type directly into the hash context data.
The new cryptohash routines are moved to a new file, called cryptohash.c
for the fallback implementations, with SHA2 specifics becoming a part
internal to src/common/. OpenSSL specifics are part of
cryptohash_openssl.c. This infrastructure is usable for more hash
types, like MD5 or HMAC.
Any code paths using the internal SHA2 routines are adapted to report
correctly errors, which are most of the changes of this commit. The
zones mostly impacted are checksum manifests, libpq and SCRAM.
Note that e21cbb4 was a first attempt to switch SHA2 to EVP, but it
lacked the refactoring needed for libpq, as done here.
This patch has been tested on Linux and Windows, with and without
OpenSSL, and down to 1.0.1, the oldest version supported on HEAD.
Author: Michael Paquier
Reviewed-by: Daniel Gustafsson
Discussion: https://postgr.es/m/20200924025314.GE7405@paquier.xyz
2020-12-02 02:37:20 +01:00
|
|
|
}
|
2020-06-16 03:50:56 +02:00
|
|
|
BufFileWrite(manifest->buffile, s, len);
|
2020-04-23 14:44:06 +02:00
|
|
|
manifest->manifest_size += len;
|
|
|
|
|
}
|
