On Wed, 30 Jul 2008, Alvaro Herrera wrote:
> I think being able to return cstring from a user defined function is
> quite dangerous already. I doubt we would ever give that capability to
> I do agree that creating base types should require a superuser though.
> It too seems dangerous just on principle, even if today there's no
> actual hole (that we already know of).
pl/java already allows non-superusers to create functions returning
cstring and base types built off of these functions. It seems safe to me
if pl/java is doing the construction of cstring from a user provided
In response to
pgsql-hackers by date
|Next:||From: David Fetter||Date: 2008-07-31 20:06:07|
|Subject: Re: Fixing DISTINCT ON for duplicate keys|
|Previous:||From: Tom Lane||Date: 2008-07-31 19:10:35|
|Subject: Re: Fixing DISTINCT ON for duplicate keys |