Home > mailing lists

Fix error handling in be_tls_open_server() - Mailing list pgsql-hackers

From	Sergey Shinderuk
Subject	Fix error handling in be_tls_open_server()
Date	August 1, 2023 17:44:13
Msg-id	8db5374d-32e0-6abb-d402-40762511eff2@postgrespro.ru Whole thread Raw
Responses	Re: Fix error handling in be_tls_open_server()
List	pgsql-hackers

Tree view

Hi,

A static analyzer reported a possible pfree(NULL) in 
be_tls_open_server(). Here is a fix. Also handle an error from 
X509_NAME_print_ex().

AFAICS, the error "SSL certificate's distinguished name contains 
embedded null" could not be reached at all, because XN_FLAG_RFC2253 
passed to X509_NAME_print_ex() ensures that null bytes are escaped.

Best regards,

-- 
Sergey Shinderuk        https://postgrespro.com/

Attachment

pfree-peer-cn-fix.diff

pgsql-hackers by date:

From: "Tristan Partin"
Date: 01 August 2023, 17:02:17
Subject: Re: BUG #17946: LC_MONETARY & DO LANGUAGE plperl - BUG

From: Robert Haas
Date: 01 August 2023, 17:51:10
Subject: Re: pgsql: Fix search_path to a safe value during maintenance operations.

Fix error handling in be_tls_open_server() - Mailing list pgsql-hackers

Attachment

Previous

Next