Fix Coverity warning about contrib/pgcrypto's mdc_finish().

Tom Lane <tgl@sss.pgh.pa.us>

Commit: 70da7aeba1f845d2f0bb864031e0bea21b384ca7
Author: Tom Lane <tgl@sss.pgh.pa.us>
Date: 2015-01-30T18:04:59Z
Releases: 9.4.1
Fix Coverity warning about contrib/pgcrypto's mdc_finish().

Coverity points out that mdc_finish returns a pointer to a local buffer
(which of course is gone as soon as the function returns), leaving open
a risk of misbehaviors possibly as bad as a stack overwrite.

In reality, the only possible call site is in process_data_packets()
which does not examine the returned pointer at all.  So there's no
live bug, but nonetheless the code is confusing and risky.  Refactor
to avoid the issue by letting process_data_packets() call mdc_finish()
directly instead of going through the pullf_read() API.

Although this is only cosmetic, it seems good to back-patch so that
the logic in pgp-decrypt.c stays in sync across all branches.

Marko Kreen

Files

PathChange+/−
contrib/pgcrypto/pgp-decrypt.c modified +19 −30