From: | Christoph Berg <myon(at)debian(dot)org> |
---|---|
To: | Pavel Raiskup <praiskup(at)redhat(dot)com> |
Cc: | pgsql-odbc(at)postgresql(dot)org, Hiroshi Saito <hiroshi(at)winpg(dot)jp> |
Subject: | Re: psqlODBC 09.05.0200 Released |
Date: | 2016-04-22 10:19:28 |
Message-ID: | 20160422101928.GC4890@msg.df7cb.de |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-announce pgsql-odbc |
Re: Pavel Raiskup 2016-04-14 <2358560(dot)7dzo2vKd9I(at)nb(dot)usersys(dot)redhat(dot)com>
> Hi, fyi, I keep getting...
Hi,
I'm getting exactly the same diff on Debian unstable.
Do we simply have to update expected/param-conversions{,_1}.out or is
there a bug in the (testing?) code?
> + cat ./regression.diffs
> *** ./expected/param-conversions.out Sat Apr 9 14:19:08 2016
> --- results/param-conversions.out Thu Apr 14 15:44:56 2016
> ***************
> *** 72,83 ****
>
> Testing "SELECT 1.3 > ?" with SQL_C_CHAR -> SQL_FLOAT param "3', 'injected, BAD!', '1"...
> SQLExecDirect failed
> ! 22P02=ERROR: invalid input syntax for type double precision: "3', 'injected, BAD!', '1";
> Error while executing the query
>
> Testing "SELECT 1.4 > ?" with SQL_C_CHAR -> SQL_FLOAT param "4 \'bad', '1"...
> SQLExecDirect failed
> ! 22P02=ERROR: invalid input syntax for type double precision: "4 \'bad', '1";
> Error while executing the query
>
> Testing "SELECT 1-?" with SQL_C_CHAR -> SQL_INTEGER param "-1"...
> --- 72,83 ----
>
> Testing "SELECT 1.3 > ?" with SQL_C_CHAR -> SQL_FLOAT param "3', 'injected, BAD!', '1"...
> SQLExecDirect failed
> ! 22P02=ERROR: invalid input syntax for type numeric: "3', 'injected, BAD!', '1";
> Error while executing the query
>
> Testing "SELECT 1.4 > ?" with SQL_C_CHAR -> SQL_FLOAT param "4 \'bad', '1"...
> SQLExecDirect failed
> ! 22P02=ERROR: invalid input syntax for type numeric: "4 \'bad', '1";
> Error while executing the query
>
> Testing "SELECT 1-?" with SQL_C_CHAR -> SQL_INTEGER param "-1"...
> + read line
>
> ... on Fedora 23. I'll try to look more carefuly next week unless there
> is somebody quicker than me.
Christoph
From | Date | Subject | |
---|---|---|---|
Next Message | Pavel Raiskup | 2016-04-22 10:31:42 | Re: psqlODBC 09.05.0200 Released |
Previous Message | Pavel Raiskup | 2016-04-21 10:32:16 | Re: psqlODBC 09.05.0200 Released |
From | Date | Subject | |
---|---|---|---|
Next Message | Pavel Raiskup | 2016-04-22 10:31:42 | Re: psqlODBC 09.05.0200 Released |
Previous Message | Pavel Raiskup | 2016-04-21 10:32:16 | Re: psqlODBC 09.05.0200 Released |