Re: Maximum password length

Tom Lane <tgl@sss.pgh.pa.us>

From: Tom Lane <tgl@sss.pgh.pa.us>
To: Peter Eisentraut <peter.eisentraut@2ndquadrant.com>
Cc: Alexander Kukushkin <cyberdemn@gmail.com>, bossartn@amazon.com, Stephen Frost <sfrost@snowman.net>, isaac.morland@gmail.com, PostgreSQL-development <pgsql-hackers@postgresql.org>
Date: 2020-09-03T17:18:17Z
Lists: pgsql-hackers

Attachments

I wrote:
> This could be refined; in particular, I think that most of the
> password-prompting sites could drop their separate have_password
> flags in favor of checking whether the password pointer is NULL
> or not.  That would likely also prove that some of the free(password)
> calls I sprinkled in are unnecessary.

Hearing no objections to this general plan, I went ahead and did that
cleanup.  This version seems committable to me.

			regards, tom lane

Commits

  1. Remove arbitrary restrictions on password length.

  2. Remove support for password_encryption='off' / 'plain'.