Participants
Peter Eisentraut
Peter Eisentraut
Robert Haas
Robert Haas
Brendan Jurd
Brendan Jurd
Attachments
Thread Outline
#1Peter EisentrautPeter Eisentraut
Oct 16, 2010
#2Robert HaasRobert Haasto Peter Eisentraut (#1)
Oct 16, 2010
#3Brendan JurdBrendan Jurdto Peter Eisentraut (#1)
Oct 16, 2010

all keyword for pg_hba.conf host column

Started by Peter Eisentrautabout 15 years ago3 messages
#1Peter Eisentraut
Peter Eisentraut
peter_e@gmx.net
1 attachment(s)

As a small addition to the pg_hba.conf host name feature, I figured it
would be useful to allow "all" in the host column, instead of having to
write 0.0.0.0/0 and ::/0. Patch attached.

Attachments:

hba-host-all.patchtext/x-patch; charset=UTF-8; name=hba-host-all.patchDownload
diff --git a/doc/src/sgml/client-auth.sgml b/doc/src/sgml/client-auth.sgml
index ab96af8..228cfff 100644
--- a/doc/src/sgml/client-auth.sgml
+++ b/doc/src/sgml/client-auth.sgml
@@ -257,7 +257,7 @@ hostnossl  <replaceable>database</replaceable>  <replaceable>user</replaceable>
       </para>
 
       <para>
-       You can also write
+       You can also write <literal>all</literal> to match any IP address,
        <literal>samehost</literal> to match any of the server's own IP
        addresses, or <literal>samenet</literal> to match any address in any
        subnet that the server is directly connected to.
diff --git a/src/backend/libpq/hba.c b/src/backend/libpq/hba.c
index 3f50349..38eaa95 100644
--- a/src/backend/libpq/hba.c
+++ b/src/backend/libpq/hba.c
@@ -879,8 +879,11 @@ parse_hba_line(List *line, int line_num, HbaLine *parsedline)
 		}
 		token = lfirst(line_item);
 
-		/* Is it equal to 'samehost' or 'samenet'? */
-		if (strcmp(token, "samehost\n") == 0)
+		if (strcmp(token, "all\n") == 0)
+		{
+			parsedline->ip_cmp_method = ipCmpAll;
+		}
+		else if (strcmp(token, "samehost\n") == 0)
 		{
 			/* Any IP on this host is allowed to connect */
 			parsedline->ip_cmp_method = ipCmpSameHost;
@@ -1497,6 +1500,8 @@ check_hba(hbaPort *port)
 							continue;
 					}
 					break;
+				case ipCmpAll:
+					break;
 				case ipCmpSameHost:
 				case ipCmpSameNet:
 					if (!check_same_host_or_net(&port->raddr,
diff --git a/src/include/libpq/hba.h b/src/include/libpq/hba.h
index eb6637f..aa60d8d 100644
--- a/src/include/libpq/hba.h
+++ b/src/include/libpq/hba.h
@@ -36,7 +36,8 @@ typedef enum IPCompareMethod
 {
 	ipCmpMask,
 	ipCmpSameHost,
-	ipCmpSameNet
+	ipCmpSameNet,
+	ipCmpAll
 } IPCompareMethod;
 
 typedef enum ConnType
#2Robert Haas
Robert Haas
robertmhaas@gmail.com
In reply to: Peter Eisentraut (#1)
Re: all keyword for pg_hba.conf host column

On Oct 16, 2010, at 6:56 AM, Peter Eisentraut <peter_e@gmx.net> wrote:

As a small addition to the pg_hba.conf host name feature, I figured it
would be useful to allow "all" in the host column, instead of having to
write 0.0.0.0/0 and ::/0. Patch attached.

+1. Looks sane on a quick read.

...Robert

#3Brendan Jurd
Brendan Jurd
direvus@gmail.com
In reply to: Peter Eisentraut (#1)
Re: all keyword for pg_hba.conf host column

On 16 October 2010 21:56, Peter Eisentraut <peter_e@gmx.net> wrote:

As a small addition to the pg_hba.conf host name feature, I figured it
would be useful to allow "all" in the host column, instead of having to
write 0.0.0.0/0 and ::/0.  Patch attached.

Cool. And, for what it's worth, this doesn't conflict at all with the
field-specific keywords patch I just submitted.

Cheers,
BJ

← Back to Topics