]> granicus.if.org Git - postgresql/commit
projects / postgresql / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 869585c) | patch
Remove typmod checking from the recent security-related patches. It turns
authorTom Lane <tgl@sss.pgh.pa.us>
Tue, 6 Feb 2007 17:35:20 +0000 (17:35 +0000)
committerTom Lane <tgl@sss.pgh.pa.us>
Tue, 6 Feb 2007 17:35:20 +0000 (17:35 +0000)
commita8c3f161fb21f6f683ab6542bd6f93f04fa97ac6
tree81e9c8d9ba5f48ffd2127063c70687ac611392e7tree | snapshot
parent869585cc8f3e14b19479eafe38c9a231e2404af5commit | diff
Remove typmod checking from the recent security-related patches.  It turns
out that ExecEvalVar and friends don't necessarily have access to a tuple
descriptor with correct typmod: it definitely can contain -1, and possibly
might contain other values that are different from the Var's value.
Arguably this should be cleaned up someday, but it's not a simple change,
and in any case typmod discrepancies don't pose a security hazard.
Per reports from numerous people :-(

I'm not entirely sure whether the failure can occur in 8.0 --- the simple
test cases reported so far don't trigger it there.  But back-patch the
change all the way anyway.
src/backend/executor/execQual.c diff | blob | history
src/backend/executor/execUtils.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.