Skip to content

Commit c3b80a7

Browse files
nathan-bossartnathan-bossart
committed
Fix test for password hash length limit.
In commit 8275325, I forgot to update password_1.out (an alternative expected test output file added by commit 3c44e7d), so this test began failing on machines with FIPS mode enabled.
1 parent 8318f2b commit c3b80a7

File tree

1 file changed

+7
-0
lines changed

1 file changed

+7
-0
lines changed

src/test/regress/expected/password_1.out

Lines changed: 7 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -128,6 +128,13 @@ SELECT rolname, rolpassword not like '%A6xHKoH/494E941doaPOYg==%' as is_rolpassw
128128
regress_passwd_sha_len2 | t
129129
(3 rows)
130130

131+
-- Test that valid hashes that are too long are rejected
132+
CREATE ROLE regress_passwd10 PASSWORD 'SCRAM-SHA-256$000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004096:wNFxNSk1hAXBkgub8py3bg==$65zC6E+R0U7tiYTC9+Wtq4Thw6gUDj3eDCINij8TflU=:rC1I7tcVugrHEY2DT0iPjGyjM4aJxkMM9n8WBxtUtHU=';
133+
ERROR: encrypted password is too long
134+
DETAIL: Encrypted passwords must be no longer than 512 bytes.
135+
ALTER ROLE regress_passwd9 PASSWORD 'SCRAM-SHA-256$000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004096:wNFxNSk1hAXBkgub8py3bg==$65zC6E+R0U7tiYTC9+Wtq4Thw6gUDj3eDCINij8TflU=:rC1I7tcVugrHEY2DT0iPjGyjM4aJxkMM9n8WBxtUtHU=';
136+
ERROR: encrypted password is too long
137+
DETAIL: Encrypted passwords must be no longer than 512 bytes.
131138
DROP ROLE regress_passwd1;
132139
DROP ROLE regress_passwd2;
133140
DROP ROLE regress_passwd3;

0 commit comments

Comments
 (0)
pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy