Home > mailing lists

Re: Security lessons from liblzma - Mailing list pgsql-hackers

From	Tom Lane
Subject	Re: Security lessons from liblzma
Date	April 4, 2024 20:47:53
Msg-id	1042259.1712263673@sss.pgh.pa.us Whole thread Raw
In response to	Re: Security lessons from liblzma (Robert Haas <robertmhaas@gmail.com>)
Responses	Re: Security lessons from liblzma
List	pgsql-hackers

Tree view

Robert Haas <robertmhaas@gmail.com> writes:
> On Thu, Apr 4, 2024 at 4:25 PM Daniel Gustafsson <daniel@yesql.se> wrote:
>> I don't disagree, like I said that very email: it's non-trivial and I wish we
>> could make it better somehow, but I don't hav an abundance of good ideas.

> Is the basic issue that we can't rely on the necessary toolchain to be
> present on every machine where someone might try to build PostgreSQL?

IIUC, it's not really that, but that regenerating these files is
expensive; multiple seconds even on fast machines.  Putting that
into tests that are run many times a day is unappetizing.

            regards, tom lane

pgsql-hackers by date:

From: Tom Lane
Date: 04 April 2024, 20:43:36
Subject: Re: Add bump memory context type and use it for tuplesorts

From: Daniel Gustafsson
Date: 04 April 2024, 20:48:27
Subject: Re: Security lessons from liblzma

Re: Security lessons from liblzma - Mailing list pgsql-hackers

Previous

Next