]> granicus.if.org Git - postgresql/commit
projects / postgresql / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 7fd912e) | patch
Remove typmod checking from the recent security-related patches. It turns
authorTom Lane <tgl@sss.pgh.pa.us>
Tue, 6 Feb 2007 17:35:34 +0000 (17:35 +0000)
committerTom Lane <tgl@sss.pgh.pa.us>
Tue, 6 Feb 2007 17:35:34 +0000 (17:35 +0000)
commitc60125a9be51f98cdcda8de264f5bccf106788d8
treee4cffa95b7395167d1aefbb79c04b8f7508047dftree | snapshot
parent7fd912e854b502a787de1830085dfbae6043b0d0commit | diff
Remove typmod checking from the recent security-related patches.  It turns
out that ExecEvalVar and friends don't necessarily have access to a tuple
descriptor with correct typmod: it definitely can contain -1, and possibly
might contain other values that are different from the Var's value.
Arguably this should be cleaned up someday, but it's not a simple change,
and in any case typmod discrepancies don't pose a security hazard.
Per reports from numerous people :-(

I'm not entirely sure whether the failure can occur in 8.0 --- the simple
test cases reported so far don't trigger it there.  But back-patch the
change all the way anyway.
src/backend/executor/execQual.c diff | blob | history
src/backend/executor/execUtils.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.