PQinitOpenSSL(int do_ssl, int do_crypto); When do_ssl is non-zero, libpq will initialize the OpenSSL library before first opening a database connection. When do_crypto is non-zero, the libcrypto library Meskes) • Apply upstream fix for blowfish signed-character bug (CVE-2011-2483) (Tom Lane) contrib/pg_crypto’s blowfish encryption code could give wrong results on platforms where char is signed (which is most) Meskes) • Apply upstream fix for blowfish signed-character bug (CVE-2011-2483) (Tom Lane) contrib/pg_crypto’s blowfish encryption code could give wrong results on platforms where char is signed (which is most)

do_ssl, int do_crypto); 615 Chapter 30. libpq - C Library When do_ssl is non-zero, libpq will initialize the OpenSSL library before first opening a database connection. When do_crypto is non-zero, the blowfish signed-character bug (CVE-2011-2483) (Tom Lane) 1737 Appendix E. Release Notes contrib/pg_crypto’s blowfish encryption code could give wrong results on platforms where char is signed (which is most) Meskes) • Apply upstream fix for blowfish signed-character bug (CVE-2011-2483) (Tom Lane) contrib/pg_crypto’s blowfish encryption code could give wrong results on platforms where char is signed (which is most)

PQinitOpenSSL(int do_ssl, int do_crypto); When do_ssl is non-zero, libpq will initialize the OpenSSL library before first opening a database connection. When do_crypto is non-zero, the libcrypto library Meskes) • Apply upstream fix for blowfish signed-character bug (CVE-2011-2483) (Tom Lane) contrib/pg_crypto’s blowfish encryption code could give wrong results on platforms where char is signed (which is most) Meskes) • Apply upstream fix for blowfish signed-character bug (CVE-2011-2483) (Tom Lane) contrib/pg_crypto’s blowfish encryption code could give wrong results on platforms where char is signed (which is most)

PQinitOpenSSL(int do_ssl, int do_crypto); When do_ssl is non-zero, libpq will initialize the OpenSSL library before first opening a database connection. When do_crypto is non-zero, the libcrypto library Meskes) • Apply upstream fix for blowfish signed-character bug (CVE-2011-2483) (Tom Lane) contrib/pg_crypto’s blowfish encryption code could give wrong results on platforms where char is signed (which is most) Meskes) • Apply upstream fix for blowfish signed-character bug (CVE-2011-2483) (Tom Lane) contrib/pg_crypto’s blowfish encryption code could give wrong results on platforms where char is signed (which is most)

PQinitOpenSSL(int do_ssl, int do_crypto); When do_ssl is non-zero, libpq will initialize the OpenSSL library before first opening a database connection. When do_crypto is non-zero, the libcrypto library Meskes) • Apply upstream fix for blowfish signed-character bug (CVE-2011-2483) (Tom Lane) contrib/pg_crypto’s blowfish encryption code could give wrong results on platforms where char is signed (which is most) Meskes) • Apply upstream fix for blowfish signed-character bug (CVE-2011-2483) (Tom Lane) contrib/pg_crypto’s blowfish encryption code could give wrong results on platforms where char is signed (which is most)

PQinitOpenSSL(int do_ssl, int do_crypto); When do_ssl is non-zero, libpq will initialize the OpenSSL library before first opening a database connection. When do_crypto is non-zero, the libcrypto library Meskes) • Apply upstream fix for blowfish signed-character bug (CVE-2011-2483) (Tom Lane) contrib/pg_crypto’s blowfish encryption code could give wrong results on platforms where char is signed (which is most) Meskes) • Apply upstream fix for blowfish signed-character bug (CVE-2011-2483) (Tom Lane) contrib/pg_crypto’s blowfish encryption code could give wrong results on platforms where char is signed (which is most)

PQinitOpenSSL(int do_ssl, int do_crypto); When do_ssl is non-zero, libpq will initialize the OpenSSL library before first opening a database connection. When do_crypto is non-zero, the libcrypto library Meskes) • Apply upstream fix for blowfish signed-character bug (CVE-2011-2483) (Tom Lane) contrib/pg_crypto’s blowfish encryption code could give wrong results on platforms where char is signed (which is most) Meskes) • Apply upstream fix for blowfish signed-character bug (CVE-2011-2483) (Tom Lane) contrib/pg_crypto’s blowfish encryption code could give wrong results on platforms where char is signed (which is most)

PQinitOpenSSL(int do_ssl, int do_crypto); When do_ssl is non-zero, libpq will initialize the OpenSSL library before first opening a database connection. When do_crypto is non-zero, the libcrypto library Meskes) • Apply upstream fix for blowfish signed-character bug (CVE-2011-2483) (Tom Lane) contrib/pg_crypto’s blowfish encryption code could give wrong results on platforms where char is signed (which is most) Meskes) • Apply upstream fix for blowfish signed-character bug (CVE-2011-2483) (Tom Lane) contrib/pg_crypto’s blowfish encryption code could give wrong results on platforms where char is signed (which is most)

Meskes) • Apply upstream fix for blowfish signed-character bug (CVE-2011-2483) (Tom Lane) contrib/pg_crypto’s blowfish encryption code could give wrong results on platforms where char is signed (which is most) Kurosawa) • Apply upstream fix for blowfish signed-character bug (CVE-2011-2483) (Tom Lane) contrib/pg_crypto’s blowfish encryption code could give wrong results on platforms where char is signed (which is most) SSL connections. 2. Trust both system and database administrator. If you cannot, then better do crypto inside client application. F.20.6.4. Useful reading • http://www.gnupg.org/gph/en/manual.html

Meskes) • Apply upstream fix for blowfish signed-character bug (CVE-2011-2483) (Tom Lane) contrib/pg_crypto’s blowfish encryption code could give wrong results on platforms where char is signed (which is most) blowfish signed-character bug (CVE-2011-2483) (Tom Lane) 1532 Appendix E. Release Notes contrib/pg_crypto’s blowfish encryption code could give wrong results on platforms where char is signed (which is most) SSL connections. 2. Trust both system and database administrator. If you cannot, then better do crypto inside client application. F.20.6.4. Useful reading • http://www.gnupg.org/gph/en/manual.html