maria-developers team mailing list archive

Thread
Date

Re: [Maria-discuss] [question] password input length

To: Michal Schorm <mschorm@xxxxxxxxxx>
From: daniel <daniel@xxxxxxxxxxxxxxxxxx>
Date: Wed, 16 May 2018 14:04:04 +1000
Cc: maria-discuss@xxxxxxxxxxxxxxxxxxx, Maria Developers <maria-developers@xxxxxxxxxxxxxxxxxxx>, mariadb-discuss@xxxxxxxxxxxxxxxxxxx
In-reply-to: <CALC7GWxsFsjhsDc1ME0u0irdkVGxFPQnU8HwwUfrBMRjdDeAVw@mail.gmail.com>
User-agent: Roundcube Webmail/1.0.1

On Sat, 12 May 2018 18:46:35 +0200
Michal Schorm <mschorm@xxxxxxxxxx> wrote:

Hello everyone,

1)
I found out, that passwords longer than 79 characters aren't accepted
via password prompt.
Is that expected?


Code seem to say yes:

https://github.com/MariaDB/server/blob/10.3/client/mysql.cc#L1959

https://github.com/MariaDB/server/blob/10.3/mysys/get_password.c#L63

More info and reproducer in RH bugzilla:
https://bugzilla.redhat.com/show_bug.cgi?id=1566179

2)
Another password length cap at 213 characters can be found when
using sha256_password authentification plugin.
Is that expected too?


This is MySQL not MariaDB right?

More info and reproducer in RH bugzilla:
https://bugzilla.redhat.com/show_bug.cgi?id=1566219

3)
Different theme: why aren't tests for mariadb-connector-odbc, that
can be found on GitHub, packged to the source tarball ?


Not sure, could request it on JIRA.


Michal Schorm
Associate Software Engineer
Core Services - Databases Team
Red Hat

Follow ups

Re: [Maria-discuss] [question] password input length
From: Michal Schorm, 2018-05-16

References

[question] password input length
From: Michal Schorm, 2018-05-12