Home > mailing lists

Thread-unsafe MD5 on big-endian systems with no OpenSSL - Mailing list pgsql-hackers

From	Heikki Linnakangas
Subject	Thread-unsafe MD5 on big-endian systems with no OpenSSL
Date	August 6 15:23:26
Msg-id	dfa2015d-ad21-4802-a4cc-3850fc5fff3f@iki.fi Whole thread Raw
Responses	Re: Thread-unsafe MD5 on big-endian systems with no OpenSSL
List	pgsql-hackers

Tree view

While browsing through all our global variables for the multithreading 
effort, I noticed that our MD5 implementation in src/common/md5.c uses a 
static buffer on big-endian systems, which makes it not thread-safe. 
That's a bug because that function is also used in libpq.

This was introduced in commit b67b57a966, which replaced the old MD5 
fallback implementation with the one from pgcrypto. The thread-safety 
didn't matter for pgcrypto, but for libpq it does.

This only affects big-endian systems that are compiled without OpenSSL.

-- 
Heikki Linnakangas
Neon (https://neon.tech)

Attachment

0001-Make-fallback-MD5-implementation-thread-safe-on-big-.patch

pgsql-hackers by date:

From: Dean Rasheed
Date: 06 August, 14:52:32
Subject: Re: Optimize mul_var() for var1ndigits >= 8

From: Amul Sul
Date: 06 August, 15:37:04
Subject: Re: pg_combinebackup does not detect missing files

Thread-unsafe MD5 on big-endian systems with no OpenSSL - Mailing list pgsql-hackers

Attachment

Previous

Next