Re: pgcrypto: openssl digest fix - Mailing list pgsql-patches

From Neil Conway
Subject Re: pgcrypto: openssl digest fix
Date
Msg-id 4232934C.30900@samurai.com
Whole thread Raw
In response to pgcrypto: openssl digest fix  (Marko Kreen <marko@l-t.ee>)
Responses Re: pgcrypto: openssl digest fix
List pgsql-patches
Marko Kreen wrote:
> Some builds (depends on crypto engine support?) of OpenSSL
> 0.9.7x have EVP_DigestFinal function which which clears all of
> EVP_MD_CTX.  This makes pgcrypto crash in functions which
> re-use one digest context several times: hmac() and crypt()
> with md5 algorithm.
>
> Following patch fixes it by carring the digest info around
> EVP_DigestFinal and re-initializing cipher.

Applied to HEAD, REL8_0_STABLE and REL7_4_STABLE. Thanks for the patch.

> Please apply this also to stable branches (8.0 / 7.4).

Should it be backpatched to 7.3 and 7.2 as well?

-Neil

pgsql-patches by date:

Previous
From: Neil Conway
Date:
Subject: Re: default to WITHOUT OIDS
Next
From: Neil Conway
Date:
Subject: ALTER FUNCTION / STRICT