Home > mailing lists

Re: Performance/Security question on caching function OIDs for a connection - Mailing list pgsql-hackers

From	Tom Lane
Subject	Re: Performance/Security question on caching function OIDs for a connection
Date	October 18, 2006 21:11:49
Msg-id	571.1161205901@sss.pgh.pa.us Whole thread Raw
In response to	Performance/Security question on caching function OIDs for a connection (Weslee Bilodeau <weslee.bilodeau@hypermediasystems.com>)
List	pgsql-hackers

Tree view

Weslee Bilodeau <weslee.bilodeau@hypermediasystems.com> writes:
> On the input and output functions for the new type, I lookup the
> encrypt/decrypt functions using -
>     FuncnameGetCandidates( list_make1( makeString( "decrypt" ) )
> Running through the list and getting the functions OID, then calling
> with OidFunctionCall3().

Yech.  That sounds trivially crashable, just define decrypt() to do
something other than what your code is expecting....
        regards, tom lane

pgsql-hackers by date:

From: Weslee Bilodeau
Date: 18 October 2006, 20:46:20
Subject: Performance/Security question on caching function OIDs for a connection

From: "jungmin shin"
Date: 18 October 2006, 21:15:20
Subject: UDF and cache

Re: Performance/Security question on caching function OIDs for a connection - Mailing list pgsql-hackers

Previous

Next