Re: pg_cryptohash_final possible out-of-bounds access (per Coverity)
Michael Paquier <michael@paquier.xyz>
From: Michael Paquier <michael@paquier.xyz>
To: Ranier Vilela <ranier.vf@gmail.com>
Cc: Kyotaro Horiguchi <horikyota.ntt@gmail.com>, Pg Hackers <pgsql-hackers@postgresql.org>
Date: 2021-02-13T23:32:03Z
Lists: pgsql-hackers
On Sat, Feb 13, 2021 at 05:37:32PM -0300, Ranier Vilela wrote: > IMO there is no necessity in back-patching. You are missing the point here. What you are proposing here would not be backpatched. However, reusing the same words as upthread, this has a cost in terms of *future* maintenance. In short, any *future* potential bug fix that would require to be backpatched in need of using this function or touching its area would result in a conflict. This changes makes no sense. -- Michael
Commits
-
Add result size as argument of pg_cryptohash_final() for overflow checks
- b83dcf792869 14.0 landed