Server TLS (#417)

* Server TLS * Finish up TLS * thats it * diff * remove dead code * maybe? * dirty shutdown * skip flakey test * remove unused error * fetch config once
2026-03-26 10:26:30 +00:00 · 2023-04-30 09:41:46 -07:00
parent 4a87b4807d
commit 0d504032b2
10 changed files with 311 additions and 33 deletions
--- a/src/client.rs
+++ b/src/client.rs
@@ -539,6 +539,7 @@ where
                Some(md5_hash_password(username, password, &salt))
            } else {
                if !get_config().is_auth_query_configured() {
+                    wrong_password(&mut write, username).await?;
                    return Err(Error::ClientAuthImpossible(username.into()));
                }

@@ -565,6 +566,8 @@ where
                        }

                        Err(err) => {
+                            wrong_password(&mut write, username).await?;
+
                            return Err(Error::ClientAuthPassthroughError(
                                err.to_string(),
                                client_identifier,
@@ -587,7 +590,15 @@ where
                    client_identifier
                );

-                let fetched_hash = refetch_auth_hash(&pool).await?;
+                let fetched_hash = match refetch_auth_hash(&pool).await {
+                    Ok(fetched_hash) => fetched_hash,
+                    Err(err) => {
+                        wrong_password(&mut write, username).await?;
+
+                        return Err(err);
+                    }
+                };
+
                let new_password_hash = md5_hash_second_pass(&fetched_hash, &salt);

                // Ok password changed in server an auth is possible.