NotificationsYou must be signed in to change notification settings
Fork6
Star31

Commit67a472d

committed

Remove arbitrary restrictions on password length.

This patch started out with the goal of harmonizing various arbitrarylimits on password length, but after awhile a better idea emerged:let's just get rid of those fixed limits.recv_password_packet() has an arbitrary limit on the packet size,which we don't really need, so just drop it. (Note that this doesn'treally affect anything for MD5 or SCRAM password verification, sincethose will hash the user's password to something shorter anyway.It does matter for auth methods that require a cleartext password.)Likewise remove the arbitrary error condition in pg_saslprep().The remaining limits are mostly in client-side code that promptsfor passwords. To improve those, refactor simple_prompt() so thatit allocates its own result buffer that can be made as big asnecessary. Actually, it proves best to make a separate routinepg_get_line() that has essentially the semantics of fgets(), exceptthat it allocates a suitable result buffer and hence will neverreturn a truncated line. (pg_get_line has a lot of potentialapplications to replace randomly-sized fgets buffers elsewhere,but I'll leave that for another patch.)I built pg_get_line() atop stringinfo.c, which requires movingthat code to src/common/; but that seems fine since it was a poorfit for src/port/ anyway.This patch is mostly mine, but it owes a good deal to Nathan Bossartwho pressed for a solution to the password length problem andcreated a predecessor patch. Also thanks to Peter Eisentraut andStephen Frost for ideas and discussion.Discussion:https://postgr.es/m/09512C4F-8CB9-4021-B455-EF4C4F0D55A0@amazon.com

1 parentbe4b0c0 commit67a472dCopy full SHA for 67a472d

File tree

21 files changed

+221

-167

lines changed

contrib
- oid2name
  - oid2name.c
- vacuumlo
  - vacuumlo.c
src
- backend/libpq
  - auth.c
- bin
  - initdb
    - initdb.c
  - pg_basebackup
    - streamutil.c
  - pg_dump
    - pg_backup_db.c
    - pg_dumpall.c
  - pgbench
    - pgbench.c
  - psql
    - command.c
    - startup.c
  - scripts
- common
- include
  - common
    - string.h
  - port.h
- port
  - Makefile
- tools/msvc
  - Mkvcbuild.pm

21 files changed

+221

-167

lines changed

`‎contrib/oid2name/oid2name.c`

Lines changed: 5 additions & 6 deletions

Original file line number	Diff line number	Diff line change
`@@ -12,6 +12,7 @@`
`12`	`12`	`#include"catalog/pg_class_d.h"`
`13`	`13`	`#include"common/connect.h"`
`14`	`14`	`#include"common/logging.h"`
	`15`	`+#include"common/string.h"`
`15`	`16`	`#include"getopt_long.h"`
`16`	`17`	`#include"libpq-fe.h"`
`17`	`18`	`#include"pg_getopt.h"`
`@@ -293,8 +294,7 @@ PGconn *`
`293`	`294`	`sql_conn(structoptions*my_opts)`
`294`	`295`	`{`
`295`	`296`	`PGconn*conn;`
`296`		`-boolhave_password= false;`
`297`		`-charpassword[100];`
	`297`	`+char*password=NULL;`
`298`	`298`	`boolnew_pass;`
`299`	`299`	`PGresult*res;`
`300`	`300`
`@@ -316,7 +316,7 @@ sql_conn(struct options *my_opts)`
`316`	`316`	`keywords[2]="user";`
`317`	`317`	`values[2]=my_opts->username;`
`318`	`318`	`keywords[3]="password";`
`319`		`-values[3]=have_password ?password :NULL;`
	`319`	`+values[3]=password;`
`320`	`320`	`keywords[4]="dbname";`
`321`	`321`	`values[4]=my_opts->dbname;`
`322`	`322`	`keywords[5]="fallback_application_name";`
`@@ -336,11 +336,10 @@ sql_conn(struct options *my_opts)`
`336`	`336`
`337`	`337`	`if (PQstatus(conn)==CONNECTION_BAD&&`
`338`	`338`	`PQconnectionNeedsPassword(conn)&&`
`339`		`-!have_password)`
	`339`	`+!password)`
`340`	`340`	`{`
`341`	`341`	`PQfinish(conn);`
`342`		`-simple_prompt("Password: ",password,sizeof(password), false);`
`343`		`-have_password= true;`
	`342`	`+password=simple_prompt("Password: ", false);`
`344`	`343`	`new_pass= true;`
`345`	`344`	`}`
`346`	`345`	`}while (new_pass);`

`‎contrib/vacuumlo/vacuumlo.c`

Lines changed: 7 additions & 11 deletions

Original file line number	Diff line number	Diff line change
`@@ -24,6 +24,7 @@`
`24`	`24`	`#include"catalog/pg_class_d.h"`
`25`	`25`	`#include"common/connect.h"`
`26`	`26`	`#include"common/logging.h"`
	`27`	`+#include"common/string.h"`
`27`	`28`	`#include"getopt_long.h"`
`28`	`29`	`#include"libpq-fe.h"`
`29`	`30`	`#include"pg_getopt.h"`
`@@ -69,15 +70,11 @@ vacuumlo(const char database, const struct _param param)`
`69`	`70`	`inti;`
`70`	`71`	`boolnew_pass;`
`71`	`72`	`boolsuccess= true;`
`72`		`-staticboolhave_password= false;`
`73`		`-staticcharpassword[100];`
	`73`	`+staticchar*password=NULL;`
`74`	`74`
`75`	`75`	`/* Note: password can be carried over from a previous call */`
`76`		`-if (param->pg_prompt==TRI_YES&& !have_password)`
`77`		`-{`
`78`		`-simple_prompt("Password: ",password,sizeof(password), false);`
`79`		`-have_password= true;`
`80`		`-}`
	`76`	`+if (param->pg_prompt==TRI_YES&& !password)`
	`77`	`+password=simple_prompt("Password: ", false);`
`81`	`78`
`82`	`79`	`/*`
`83`	`80`	`* Start the connection. Loop until we have a password if requested by`
`@@ -97,7 +94,7 @@ vacuumlo(const char database, const struct _param param)`
`97`	`94`	`keywords[2]="user";`
`98`	`95`	`values[2]=param->pg_user;`
`99`	`96`	`keywords[3]="password";`
`100`		`-values[3]=have_password ?password :NULL;`
	`97`	`+values[3]=password;`
`101`	`98`	`keywords[4]="dbname";`
`102`	`99`	`values[4]=database;`
`103`	`100`	`keywords[5]="fallback_application_name";`
`@@ -115,12 +112,11 @@ vacuumlo(const char database, const struct _param param)`
`115`	`112`
`116`	`113`	`if (PQstatus(conn)==CONNECTION_BAD&&`
`117`	`114`	`PQconnectionNeedsPassword(conn)&&`
`118`		`-!have_password&&`
	`115`	`+!password&&`
`119`	`116`	`param->pg_prompt!=TRI_NO)`
`120`	`117`	`{`
`121`	`118`	`PQfinish(conn);`
`122`		`-simple_prompt("Password: ",password,sizeof(password), false);`
`123`		`-have_password= true;`
	`119`	`+password=simple_prompt("Password: ", false);`
`124`	`120`	`new_pass= true;`
`125`	`121`	`}`
`126`	`122`	`}while (new_pass);`

`‎src/backend/libpq/auth.c`

Lines changed: 1 addition & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -698,7 +698,7 @@ recv_password_packet(Port *port)`
`698`	`698`	`}`
`699`	`699`
`700`	`700`	`initStringInfo(&buf);`
`701`		`-if (pq_getmessage(&buf,1000))/* receive password */`
	`701`	`+if (pq_getmessage(&buf,0))/* receive password */`
`702`	`702`	`{`
`703`	`703`	`/* EOF - pq_getmessage already logged a suitable message */`
`704`	`704`	`pfree(buf.data);`

`‎src/bin/initdb/initdb.c`

Lines changed: 11 additions & 10 deletions

Original file line number	Diff line number	Diff line change
`@@ -67,6 +67,7 @@`
`67`	`67`	`#include"common/file_utils.h"`
`68`	`68`	`#include"common/logging.h"`
`69`	`69`	`#include"common/restricted_token.h"`
	`70`	`+#include"common/string.h"`
`70`	`71`	`#include"common/username.h"`
`71`	`72`	`#include"fe_utils/string_utils.h"`
`72`	`73`	`#include"getaddrinfo.h"`
`@@ -1481,23 +1482,25 @@ setup_auth(FILE *cmdfd)`
`1481`	`1482`	`staticvoid`
`1482`	`1483`	`get_su_pwd(void)`
`1483`	`1484`	`{`
`1484`		`-charpwd1[100];`
`1485`		`-charpwd2[100];`
	`1485`	`+char*pwd1;`
`1486`	`1486`
`1487`	`1487`	`if (pwprompt)`
`1488`	`1488`	`{`
`1489`	`1489`	`/*`
`1490`	`1490`	`* Read password from terminal`
`1491`	`1491`	`*/`
	`1492`	`+char*pwd2;`
	`1493`	`+`
`1492`	`1494`	`printf("\n");`
`1493`	`1495`	`fflush(stdout);`
`1494`		`-simple_prompt("Enter new superuser password: ",pwd1,sizeof(pwd1), false);`
`1495`		`-simple_prompt("Enter it again: ",pwd2,sizeof(pwd2), false);`
	`1496`	`+pwd1=simple_prompt("Enter new superuser password: ", false);`
	`1497`	`+pwd2=simple_prompt("Enter it again: ", false);`
`1496`	`1498`	`if (strcmp(pwd1,pwd2)!=0)`
`1497`	`1499`	`{`
`1498`	`1500`	`fprintf(stderr,_("Passwords didn't match.\n"));`
`1499`	`1501`	`exit(1);`
`1500`	`1502`	`}`
	`1503`	`+free(pwd2);`
`1501`	`1504`	`}`
`1502`	`1505`	`else`
`1503`	`1506`	`{`
`@@ -1510,15 +1513,15 @@ get_su_pwd(void)`
`1510`	`1513`	`* for now.`
`1511`	`1514`	`*/`
`1512`	`1515`	`FILE*pwf=fopen(pwfilename,"r");`
`1513`		`-inti;`
`1514`	`1516`
`1515`	`1517`	`if (!pwf)`
`1516`	`1518`	`{`
`1517`	`1519`	`pg_log_error("could not open file \"%s\" for reading: %m",`
`1518`	`1520`	`pwfilename);`
`1519`	`1521`	`exit(1);`
`1520`	`1522`	`}`
`1521`		`-if (!fgets(pwd1,sizeof(pwd1),pwf))`
	`1523`	`+pwd1=pg_get_line(pwf);`
	`1524`	`+if (!pwd1)`
`1522`	`1525`	`{`
`1523`	`1526`	`if (ferror(pwf))`
`1524`	`1527`	`pg_log_error("could not read password from file \"%s\": %m",`
`@@ -1530,12 +1533,10 @@ get_su_pwd(void)`
`1530`	`1533`	`}`
`1531`	`1534`	`fclose(pwf);`
`1532`	`1535`
`1533`		`-i=strlen(pwd1);`
`1534`		`-while (i>0&& (pwd1[i-1]=='\r'\|\|pwd1[i-1]=='\n'))`
`1535`		`-pwd1[--i]='\0';`
	`1536`	`+(void)pg_strip_crlf(pwd1);`
`1536`	`1537`	`}`
`1537`	`1538`
`1538`		`-superuser_password=pg_strdup(pwd1);`
	`1539`	`+superuser_password=pwd1;`
`1539`	`1540`	`}`
`1540`	`1541`
`1541`	`1542`	`/*`

`‎src/bin/pg_basebackup/streamutil.c`

Lines changed: 7 additions & 6 deletions

Original file line number	Diff line number	Diff line change
`@@ -22,6 +22,7 @@`
`22`	`22`	`#include"common/fe_memutils.h"`
`23`	`23`	`#include"common/file_perm.h"`
`24`	`24`	`#include"common/logging.h"`
	`25`	`+#include"common/string.h"`
`25`	`26`	`#include"datatype/timestamp.h"`
`26`	`27`	`#include"port/pg_bswap.h"`
`27`	`28`	`#include"pqexpbuffer.h"`
`@@ -49,8 +50,7 @@ char *dbuser = NULL;`
`49`	`50`	`char*dbport=NULL;`
`50`	`51`	`char*dbname=NULL;`
`51`	`52`	`intdbgetpassword=0;/* 0=auto, -1=never, 1=always */`
`52`		`-staticboolhave_password= false;`
`53`		`-staticcharpassword[100];`
	`53`	`+staticchar*password=NULL;`
`54`	`54`	`PGconn*conn=NULL;`
`55`	`55`
`56`	`56`	`/*`
`@@ -150,20 +150,21 @@ GetConnection(void)`
`150`	`150`	`}`
`151`	`151`
`152`	`152`	`/* If -W was given, force prompt for password, but only the first time */`
`153`		`-need_password= (dbgetpassword==1&& !have_password);`
	`153`	`+need_password= (dbgetpassword==1&& !password);`
`154`	`154`
`155`	`155`	`do`
`156`	`156`	`{`
`157`	`157`	`/* Get a new password if appropriate */`
`158`	`158`	`if (need_password)`
`159`	`159`	`{`
`160`		`-simple_prompt("Password: ",password,sizeof(password), false);`
`161`		`-have_password= true;`
	`160`	`+if (password)`
	`161`	`+free(password);`
	`162`	`+password=simple_prompt("Password: ", false);`
`162`	`163`	`need_password= false;`
`163`	`164`	`}`
`164`	`165`
`165`	`166`	`/* Use (or reuse, on a subsequent connection) password if we have it */`
`166`		`-if (have_password)`
	`167`	`+if (password)`
`167`	`168`	`{`
`168`	`169`	`keywords[i]="password";`
`169`	`170`	`values[i]=password;`

`‎src/bin/pg_dump/pg_backup_db.c`

Lines changed: 14 additions & 14 deletions

Original file line number	Diff line number	Diff line change
`@@ -18,6 +18,7 @@`
`18`	`18`	`#endif`
`19`	`19`
`20`	`20`	`#include"common/connect.h"`
	`21`	`+#include"common/string.h"`
`21`	`22`	`#include"dumputils.h"`
`22`	`23`	`#include"fe_utils/string_utils.h"`
`23`	`24`	`#include"parallel.h"`
`@@ -122,7 +123,6 @@ _connectDB(ArchiveHandle AH, const char reqdb, const char *requser)`
`122`	`123`	`constchar*newdb;`
`123`	`124`	`constchar*newuser;`
`124`	`125`	`char*password;`
`125`		`-charpassbuf[100];`
`126`	`126`	`boolnew_pass;`
`127`	`127`
`128`	`128`	`if (!reqdb)`
`@@ -141,10 +141,7 @@ _connectDB(ArchiveHandle AH, const char reqdb, const char *requser)`
`141`	`141`	`password=AH->savedPassword;`
`142`	`142`
`143`	`143`	`if (AH->promptPassword==TRI_YES&&password==NULL)`
`144`		`-{`
`145`		`-simple_prompt("Password: ",passbuf,sizeof(passbuf), false);`
`146`		`-password=passbuf;`
`147`		`-}`
	`144`	`+password=simple_prompt("Password: ", false);`
`148`	`145`
`149`	`146`	`initPQExpBuffer(&connstr);`
`150`	`147`	`appendPQExpBufferStr(&connstr,"dbname=");`
`@@ -191,8 +188,9 @@ _connectDB(ArchiveHandle AH, const char reqdb, const char *requser)`
`191`	`188`
`192`	`189`	`if (AH->promptPassword!=TRI_NO)`
`193`	`190`	`{`
`194`		`-simple_prompt("Password: ",passbuf,sizeof(passbuf), false);`
`195`		`-password=passbuf;`
	`191`	`+if (password&&password!=AH->savedPassword)`
	`192`	`+free(password);`
	`193`	`+password=simple_prompt("Password: ", false);`
`196`	`194`	`}`
`197`	`195`	`else`
`198`	`196`	`fatal("connection needs password");`
`@@ -201,6 +199,9 @@ _connectDB(ArchiveHandle AH, const char reqdb, const char *requser)`
`201`	`199`	`}`
`202`	`200`	`}while (new_pass);`
`203`	`201`
	`202`	`+if (password&&password!=AH->savedPassword)`
	`203`	`+free(password);`
	`204`	`+`
`204`	`205`	`/*`
`205`	`206`	`* We want to remember connection's actual password, whether or not we got`
`206`	`207`	`* it by prompting. So we don't just store the password variable.`
`@@ -242,7 +243,6 @@ ConnectDatabase(Archive *AHX,`
`242`	`243`	`{`
`243`	`244`	`ArchiveHandleAH= (ArchiveHandle)AHX;`
`244`	`245`	`char*password;`
`245`		`-charpassbuf[100];`
`246`	`246`	`boolnew_pass;`
`247`	`247`
`248`	`248`	`if (AH->connection)`
`@@ -251,10 +251,8 @@ ConnectDatabase(Archive *AHX,`
`251`	`251`	`password=AH->savedPassword;`
`252`	`252`
`253`	`253`	`if (prompt_password==TRI_YES&&password==NULL)`
`254`		`-{`
`255`		`-simple_prompt("Password: ",passbuf,sizeof(passbuf), false);`
`256`		`-password=passbuf;`
`257`		`-}`
	`254`	`+password=simple_prompt("Password: ", false);`
	`255`	`+`
`258`	`256`	`AH->promptPassword=prompt_password;`
`259`	`257`
`260`	`258`	`/*`
`@@ -293,8 +291,7 @@ ConnectDatabase(Archive *AHX,`
`293`	`291`	`prompt_password!=TRI_NO)`
`294`	`292`	`{`
`295`	`293`	`PQfinish(AH->connection);`
`296`		`-simple_prompt("Password: ",passbuf,sizeof(passbuf), false);`
`297`		`-password=passbuf;`
	`294`	`+password=simple_prompt("Password: ", false);`
`298`	`295`	`new_pass= true;`
`299`	`296`	`}`
`300`	`297`	`}while (new_pass);`
`@@ -309,6 +306,9 @@ ConnectDatabase(Archive *AHX,`
`309`	`306`	`PQclear(ExecuteSqlQueryForSingleRow((Archive*)AH,`
`310`	`307`	`ALWAYS_SECURE_SEARCH_PATH_SQL));`
`311`	`308`
	`309`	`+if (password&&password!=AH->savedPassword)`
	`310`	`+free(password);`
	`311`	`+`
`312`	`312`	`/*`
`313`	`313`	`* We want to remember connection's actual password, whether or not we got`
`314`	`314`	`* it by prompting. So we don't just store the password variable.`

`‎src/bin/pg_dump/pg_dumpall.c`

Lines changed: 7 additions & 11 deletions

Original file line number	Diff line number	Diff line change
`@@ -21,6 +21,7 @@`
`21`	`21`	`#include"common/connect.h"`
`22`	`22`	`#include"common/file_utils.h"`
`23`	`23`	`#include"common/logging.h"`
	`24`	`+#include"common/string.h"`
`24`	`25`	`#include"dumputils.h"`
`25`	`26`	`#include"fe_utils/string_utils.h"`
`26`	`27`	`#include"getopt_long.h"`
`@@ -1643,14 +1644,10 @@ connectDatabase(const char dbname, const char connection_string,`
`1643`	`1644`	`constchar**keywords=NULL;`
`1644`	`1645`	`constchar**values=NULL;`
`1645`	`1646`	`PQconninfoOption*conn_opts=NULL;`
`1646`		`-staticboolhave_password= false;`
`1647`		`-staticcharpassword[100];`
	`1647`	`+staticchar*password=NULL;`
`1648`	`1648`
`1649`		`-if (prompt_password==TRI_YES&& !have_password)`
`1650`		`-{`
`1651`		`-simple_prompt("Password: ",password,sizeof(password), false);`
`1652`		`-have_password= true;`
`1653`		`-}`
	`1649`	`+if (prompt_password==TRI_YES&& !password)`
	`1650`	`+password=simple_prompt("Password: ", false);`
`1654`	`1651`
`1655`	`1652`	`/*`
`1656`	`1653`	`* Start the connection. Loop until we have a password if requested by`
`@@ -1730,7 +1727,7 @@ connectDatabase(const char dbname, const char connection_string,`
`1730`	`1727`	`values[i]=pguser;`
`1731`	`1728`	`i++;`
`1732`	`1729`	`}`
`1733`		`-if (have_password)`
	`1730`	`+if (password)`
`1734`	`1731`	`{`
`1735`	`1732`	`keywords[i]="password";`
`1736`	`1733`	`values[i]=password;`
`@@ -1757,12 +1754,11 @@ connectDatabase(const char dbname, const char connection_string,`
`1757`	`1754`
`1758`	`1755`	`if (PQstatus(conn)==CONNECTION_BAD&&`
`1759`	`1756`	`PQconnectionNeedsPassword(conn)&&`
`1760`		`-!have_password&&`
	`1757`	`+!password&&`
`1761`	`1758`	`prompt_password!=TRI_NO)`
`1762`	`1759`	`{`
`1763`	`1760`	`PQfinish(conn);`
`1764`		`-simple_prompt("Password: ",password,sizeof(password), false);`
`1765`		`-have_password= true;`
	`1761`	`+password=simple_prompt("Password: ", false);`
`1766`	`1762`	`new_pass= true;`
`1767`	`1763`	`}`
`1768`	`1764`	`}while (new_pass);`

`‎src/bin/pgbench/pgbench.c`

Lines changed: 5 additions & 6 deletions

Original file line number	Diff line number	Diff line change
`@@ -59,6 +59,7 @@`
`59`	`59`
`60`	`60`	`#include"common/int.h"`
`61`	`61`	`#include"common/logging.h"`
	`62`	`+#include"common/string.h"`
`62`	`63`	`#include"fe_utils/cancel.h"`
`63`	`64`	`#include"fe_utils/conditional.h"`
`64`	`65`	`#include"getopt_long.h"`
`@@ -1174,8 +1175,7 @@ doConnect(void)`
`1174`	`1175`	`{`
`1175`	`1176`	`PGconn*conn;`
`1176`	`1177`	`boolnew_pass;`
`1177`		`-staticboolhave_password= false;`
`1178`		`-staticcharpassword[100];`
	`1178`	`+staticchar*password=NULL;`
`1179`	`1179`
`1180`	`1180`	`/*`
`1181`	`1181`	`* Start the connection. Loop until we have a password if requested by`
`@@ -1195,7 +1195,7 @@ doConnect(void)`
`1195`	`1195`	`keywords[2]="user";`
`1196`	`1196`	`values[2]=login;`
`1197`	`1197`	`keywords[3]="password";`
`1198`		`-values[3]=have_password ?password :NULL;`
	`1198`	`+values[3]=password;`
`1199`	`1199`	`keywords[4]="dbname";`
`1200`	`1200`	`values[4]=dbName;`
`1201`	`1201`	`keywords[5]="fallback_application_name";`
`@@ -1215,11 +1215,10 @@ doConnect(void)`
`1215`	`1215`
`1216`	`1216`	`if (PQstatus(conn)==CONNECTION_BAD&&`
`1217`	`1217`	`PQconnectionNeedsPassword(conn)&&`
`1218`		`-!have_password)`
	`1218`	`+!password)`
`1219`	`1219`	`{`
`1220`	`1220`	`PQfinish(conn);`
`1221`		`-simple_prompt("Password: ",password,sizeof(password), false);`
`1222`		`-have_password= true;`
	`1221`	`+password=simple_prompt("Password: ", false);`
`1223`	`1222`	`new_pass= true;`
`1224`	`1223`	`}`
`1225`	`1224`	`}while (new_pass);`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit67a472d

File tree

21 files changed

21 files changed

`‎contrib/oid2name/oid2name.c`

`‎contrib/vacuumlo/vacuumlo.c`

`‎src/backend/libpq/auth.c`

`‎src/bin/initdb/initdb.c`

`‎src/bin/pg_basebackup/streamutil.c`

`‎src/bin/pg_dump/pg_backup_db.c`

`‎src/bin/pg_dump/pg_dumpall.c`

`‎src/bin/pgbench/pgbench.c`

0 commit comments