Re: pgsql: Superuser can permit passwordless connections on postgres_fdw
Tom Lane <tgl@sss.pgh.pa.us>
From: Tom Lane <tgl@sss.pgh.pa.us>
To: Andrew Dunstan <andrew@dunslane.net>
Cc: Michael Paquier <michael@paquier.xyz>, pgsql-hackers@lists.postgresql.org
Date: 2019-12-20T19:42:22Z
Lists: pgsql-hackers
Attachments
- accept-libpq-gss-parameters-unconditionally.patch (text/x-diff) patch
I wrote: > This is a bit messier. But I think that the discrepancy is not > really the fault of this patch: rather, it's a bug in the way the > GSS support was put into libpq. I thought we had a policy that > all builds would recognize all possible parameters and then > perhaps fail later. Certainly the SSL parameters are implemented > that way. The #if's disabling GSS stuff in PQconninfoOptions[] > are just broken, according to that policy. Concretely, I think we ought to do (and back-patch) the attached. I notice in testing this that the "nosuper" business added by 6136e94dc is broken in more ways than what the buildfarm is complaining about: it leaves the role around at the end of the test. That's a HUGE violation of project policy, for security reasons as well as the fact that it makes it impossible to run "make installcheck" twice without getting different results. regards, tom lane
Commits
-
Adjust test case added by commit 6136e94dc.
- 0af0504da91e 13.0 landed
-
libpq should expose GSS-related parameters even when not implemented.
- d09cfa3e2874 10.12 landed
- c11bd6c10fe5 9.6.17 landed
- 875c7d70def6 9.4.26 landed
- 5e22a111185c 9.5.21 landed
- 1a77ea02dca5 11.7 landed
- e8f60e6fe206 12.2 landed
- e60b480d39ee 13.0 landed
-
Superuser can permit passwordless connections on postgres_fdw
- 6136e94dcb88 13.0 cited