| From: | Michael Paquier <michael(dot)paquier(at)gmail(dot)com> |
|---|---|
| To: | PostgreSQL mailing lists <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: Forbid use of LF and CR characters in database and role names |
| Date: | 2016-08-23 01:09:45 |
| Message-ID: | CAB7nPqSnWddQujUx6i5o2v6HHukMYjm=t3kOcoGOuOGT4Nit3w@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
On Fri, Aug 12, 2016 at 10:12 AM, Michael Paquier
<michael(dot)paquier(at)gmail(dot)com> wrote:
> Note that pg_dump[all] and pg_upgrade already have safeguards against
> those things per the same routines putting quotes for execution as
> commands into psql and shell. So attached is a patch to implement this
> restriction in the backend, and I am adding that to the next CF for
> 10.0. Attached is as well a script able to trigger those errors.
> Thoughts?
I am re-sending the patch. For a reason escaping me, it is showing up
as 'invalid/octet-stream'... (Thanks Bruce for noting that)
--
Michael
| Attachment | Content-Type | Size |
|---|---|---|
| forbid-cr-lf-v2.patch | text/plain | 3.2 KB |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Peter Geoghegan | 2016-08-23 01:19:21 | Re: Forbid use of LF and CR characters in database and role names |
| Previous Message | Craig Ringer | 2016-08-23 00:55:00 | Re: [PATCH] Transaction traceability - txid_status(bigint) |