mirror of
https://github.com/zeek/zeek.git
synced 2025-10-02 06:38:20 +00:00
e4e56789db
Previously, Zeek treated the receipt of `AuthenticationOk` as a successful login. However, according to the PostgreSQL Frontend/Backend Protocol, the startup phase is not complete until the server sends `ReadyForQuery`. It is still possible for the server to emit an `ErrorResponse` (e.g. ERRCODE_INVALID_AUTHORIZATION_SPECIFICATION) after `AuthenticationOk` but before `ReadyForQuery`. This change updates the PostgreSQL analyzer to defer reporting login success until `ReadyForQuery` is observed. This prevents false positives in cases where authentication succeeds but session startup fails. |
||
|---|---|---|
| .. | ||
| bad-backend-message-1.pcap | ||
| bad-startup-message-1.pcap | ||
| http-on-port-5432.pcap | ||
| mysql-on-port-5432.pcap | ||
| psql-aws-ssl-disable-15432.pcap | ||
| psql-aws-ssl-disable.pcap | ||
| psql-aws-ssl-preferred.pcap | ||
| psql-aws-ssl-require-15432.pcap | ||
| psql-aws-ssl-require.pcap | ||
| psql-create-insert-select-delete-drop.pcap | ||
| psql-insert-fail-drop-fail.pcap | ||
| psql-login-fail.pcap | ||
| psql-login-no-role.pcap | ||
| psql-login-no-sslrequest.pcap | ||
| psql-login-wrong.pcap | ||
| psql-login.pcap | ||
| psql-select-now.pcap | ||