aboutsummaryrefslogtreecommitdiff
path: root/contrib
Commit message (Collapse)AuthorAge
* Fix contrib/xml makefile to not override CFLAGS.Tom Lane2008-05-08
|
* Fix contrib/xml2 makefile to not override CFLAGS.Tom Lane2008-05-08
|
* Fix several datatype input functions that were allowing unused bytes in theirTom Lane2008-04-11
| | | | | | | | | | | | | results to contain uninitialized, unpredictable values. While this was okay as far as the datatypes themselves were concerned, it's a problem for the parser because occurrences of the "same" literal might not be recognized as equal by datumIsEqual (and hence not by equal()). It seems sufficient to fix this in the input functions since the only critical use of equal() is in the parser's comparisons of ORDER BY and DISTINCT expressions. Per a trouble report from Marc Cousin. Patch all the way back. Interestingly, array_in did not have the bug before 8.2, which may explain why the issue went unnoticed for so long.
* Fix a number of places that were making file-type tests infelicitously.Tom Lane2008-03-31
| | | | | | | | | | | | | | | | | The places that did, eg, (statbuf.st_mode & S_IFMT) == S_IFDIR were correct, but there is no good reason not to use S_ISDIR() instead, especially when that's what the other 90% of our code does. The places that did, eg, (statbuf.st_mode & S_IFDIR) were flat out *wrong* and would fail in various platform-specific ways, eg a symlink could be mistaken for a regular file on most Unixen. The actual impact of this is probably small, since the problem cases seem to always involve symlinks or sockets, which are unlikely to be found in the directories that PG code might be scanning. But it's clearly trouble waiting to happen, so patch all the way back anyway. (There seem to be no occurrences of the mistake in 7.4.)
* Fix core dump in contrib/xml2's xpath_table() when the input query returnsTom Lane2008-03-26
| | | | a NULL value. Per bug #4058.
* The original patch to disallow non-passworded connections to non-superusersTom Lane2008-01-03
| | | | | | | | | failed to cover all the ways in which a connection can be initiated in dblink. Plug the remaining holes. Also, disallow transient connections in functions for which that feature makes no sense (because they are only sensible as part of a sequence of operations on the same connection). Joe Conway Security: CVE-2007-6601
* Backpatch: Fix tsvector_out() and tsquery_out() to escape backslesh, add ↵Teodor Sigaev2007-11-16
| | | | | | test of that. Patch by Bruce Momjian <bruce@momjian.us>
* Have crosstab variants treat NULL rowid as a category in its own right,Joe Conway2007-11-10
| | | | | per suggestion from Tom Lane. This fixes crash-bug reported by Stefan Schwarzer.
* Fix crash of to_tsvector() function on huge input: compareWORD()Teodor Sigaev2007-09-26
| | | | | | | function didn't return correct result for word position greate than limit. Per report from Stuart Bishop <stuart@stuartbishop.net>
* Fix header's size of structs defines in ispell.Teodor Sigaev2007-09-11
|
* Fix combo_decrypt() to throw an error for zero-length input when using aTom Lane2007-08-23
| | | | | | | | padded encryption scheme. Formerly it would try to access res[(unsigned) -1], which resulted in core dumps on 64-bit machines, and was certainly trouble waiting to happen on 32-bit machines (though in at least the known case it was harmless because that byte would be overwritten after return). Per report from Ken Colson; fix by Marko Kreen.
* Restrict non-superusers to password authenticated connectionsJoe Conway2007-07-09
| | | | | | | to prevent possible escalation of privilege. Provide new SECURITY DEFINER functions with old behavior, but initially REVOKE ALL from public for these functions. Per list discussion and design proposed by Tom Lane.
* Fix caching of unsuccessful initialization of parser or configuration.Teodor Sigaev2007-04-02
| | | | Per report from Listmail <lists@peufeu.com>
* Fix backend crash in parsing incorrect tsquery.Teodor Sigaev2007-02-12
| | | | Per report from Jon Rosebaugh <jon@inklesspen.com>
* Back port patch.Tatsuo Ishii2007-01-13
| | | | | | | | Call srandom() instead of srand(). pgbench calls random() later, so it should have called srandom(). On most platforms except Windows srandom() is actually identical to srand(), so the bug only bites Windows users. per bug report from Akio Ishida.
* Fix convertion for 'PFX flag N num'Teodor Sigaev2006-12-21
|
* Fix bug introduced by last patch, thanks again to Mario Weilguni ↵Teodor Sigaev2006-08-08
| | | | <mweilguni@sime.com>
* fix bug about modifying value in shared buffer,Teodor Sigaev2006-08-07
| | | | | | what was a reason to corrupt index. Thank to Mario Weilguni <mweilguni@sime.com> to discover a bug.
* Fix bug corrupting query in gist consistent function.Teodor Sigaev2006-07-11
| | | | Thank to Mario Weilguni <mweilguni@sime.com> to discover a bug.
* Fix dbmirror for new backslash escaping:Bruce Momjian2006-07-06
| | | | | | | | | | | | | | | | | | | Martin Pitt [2006-06-16 0:15 +0200]: > Upstream confirmed my reply in the last mail in [1]: the complete > escaping logic in DBMirror.pl is seriously screwew. > > [1] http://archives.postgresql.org/pgsql-bugs/2006-06/msg00065.php I finally found some time to debug this, and I think I found a better patch than the one you proposed. Mine is still hackish and is still a workaround around a proper quoting solution, but at least it repairs the parsing without introducing the \' quoting again. I consider this a band-aid patch to fix the recent security update. PostgreSQL gurus, would you consider applying this until a better solution is found for DBMirror.pl? Martin Pitt http://www.piware.de
* backport workaround for OpenBSD compiler bugAndrew Dunstan2006-06-17
|
* Fix missed \' to '' conversion.Tom Lane2006-05-21
|
* Change \' to '', for SQL standards compliance. Backpatch to 7.3, 7.4,Bruce Momjian2006-05-21
| | | | and 8.0. Later releases already patched.
* Detoast query in g_intbig_consistent and copy query in g_int_consistent.Teodor Sigaev2006-04-03
| | | | Minor cleanups.
* Fix order of linking of libxslt and libxml2, per Dave Page.Tom Lane2006-03-10
|
* Patch from Marko Kreen:Neil Conway2006-02-18
| | | | | | | | | | | | | | | | pgcrypto crypt()/md5 and hmac() leak memory when compiled against OpenSSL as openssl.c digest ->reset will do two DigestInit calls against a context. This happened to work with OpenSSL 0.9.6 but not with 0.9.7+. Reason for the messy code was that I tried to avoid creating wrapper structure to transport algorithm info and tried to use OpenSSL context for it. The fix is to create wrapper structure. It also uses newer digest API to avoid memory allocations on reset with newer OpenSSLs. Thanks to Daniel Blaisdell for reporting it.
* When the remote query result has a different number of columnsJoe Conway2006-01-03
| | | | | | than the local query specifies (e.g. in the FROM clause), throw an ERROR (instead of crashing). Fix for bug #2129 reported by Akio Iwaasa.
* There is a signedness bug in Openwall gen_salt code that pgcrypto uses.Tom Lane2006-01-03
| | | | | | | This makes the salt space for md5 and xdes algorithms a lot smaller than it should be. Marko Kreen
* Fix word's length in pg_regexec callTeodor Sigaev2005-12-21
|
* Fix stupid bug with sizeofTeodor Sigaev2005-12-06
|
* Fix incorrect header size macrosTeodor Sigaev2005-11-03
|
* Prevent core dump in contrib version of autovacuum when a table has beenTom Lane2005-10-20
| | | | dropped. Per report from daveg (not his patch, though).
* Update Snowball. I have to update it because ofTeodor Sigaev2005-09-15
| | | | | old version doesn't available on Snowball's site and new version of stemmers can't be compiled with old interface.
* int_array_enum function should be using fcinfo->flinfo->fn_extra forTom Lane2005-08-15
| | | | | working state, not fcinfo->context. Silly oversight on my part in last go-round of fixes.
* Back-port several small portability fixes to get contrib buildingTom Lane2005-08-02
| | | | cleanly on AIX in the 8.0 branch. Rocco Altier
* It appears that Darwin (OS X) does not cope well with C functions thatTom Lane2005-07-18
| | | | | | | have the same name as the containing shared library --- as best I can tell, the compiler internally creates a function of that name, and does not warn you about the conflict. Fix buildfarm failure in back branches by renaming tsearch() trigger function at the C level.
* Backpatch to 8.0.X openssl portability fixes to pgcrypto.Bruce Momjian2005-07-04
|
* Prevent to divide by zero and range out of 0..1Teodor Sigaev2005-06-01
|
* Fix pg_autovacuum -s flag to handle values > 2000 by using sleep()Bruce Momjian2005-05-11
| | | | | | instead of pg_usleep. Backpatch to 8.0.X.
* Change tsearch2 to not use the unsafe practice of creating functionsTom Lane2005-05-03
| | | | | | | | that return INTERNAL without also having INTERNAL arguments. Since the functions in question aren't meant to be called by hand anyway, I just redeclared them to take 'internal' instead of 'text'. Also add code to ProcedureCreate() to enforce the restriction, as I should have done to start with :-(
* workaround for bug in utils/date.h (timetz)Teodor Sigaev2005-04-27
|
* Fix btree_gist to handle timetz zone correctly per recent changes.Tom Lane2005-04-25
|
* int_aggregate's int_enum() doesn't work correctly with arrays thatTom Lane2005-04-23
| | | | | aren't 1-D, so give an error message instead of failing. Per report from Ron Mayer.
* Add comment about permissions on pg_ts* tablesTeodor Sigaev2005-04-19
|
* Put back code mistakenly removed from copy of postmaster'sTom Lane2005-04-03
| | | | | daemonize routine, namely forcing stdin/stdout/stderr to point to /dev/null. Per Karl Denninger.
* Fix various comparing functionsTeodor Sigaev2005-03-31
|
* Document that the "-P" option to pg_autovacuum is insecure on manyNeil Conway2005-03-30
| | | | platforms, and suggest using ~/.pgpass instead.
* Have libpgport link before libpq so that PG client applications are moreBruce Momjian2005-03-25
| | | | | | immunte to changes in libpq's usage of pgport between major versions. Backpatch to 8.0.X.
* Previous "64-bit fix" for intagg didn't actually work. This is alreadyTom Lane2005-03-23
| | | | | fixed properly in CVS tip, but we need a band-aid for back branches. Per report from Ron Mayer.
* Some builds (depends on crypto engine support?) of OpenSSLNeil Conway2005-03-12
| | | | | | | | | | | | 0.9.7x have EVP_DigestFinal function which which clears all of EVP_MD_CTX. This makes pgcrypto crash in functions which re-use one digest context several times: hmac() and crypt() with md5 algorithm. Following patch fixes it by carring the digest info around EVP_DigestFinal and re-initializing cipher. Marko Kreen.
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-03 22:29:14 +0000