Re: Tightening up allowed custom GUC names
| От | Robert Haas |
|---|---|
| Тема | Re: Tightening up allowed custom GUC names |
| Дата | |
| Msg-id | CA+TgmoaR_dW4ZxhMW8+eUijnqVEyxZikhdfBSP5G=5jczdSFPQ@mail.gmail.com обсуждение исходный текст |
| Ответ на | Re: Tightening up allowed custom GUC names (Noah Misch <noah@leadboat.com>) |
| Ответы |
Re: Tightening up allowed custom GUC names
|
| Список | pgsql-hackers |
On Tue, Feb 9, 2021 at 6:02 PM Noah Misch <noah@leadboat.com> wrote: > > * A case could be made for tightening things up a lot more, and not > > allowing anything that doesn't look like an identifier. I'm not > > pushing for that, as it seems more likely to break existing > > applications than the narrow restriction proposed here. But I could > > live with it if people prefer that way. > > I'd prefer that. Characters like backslash, space, and double quote have > significant potential to reveal bugs, while having negligible application > beyond revealing bugs. I'm not sure exactly what the rule should be here, but in general I agree that a broader prohibition might be better. It's hard to understand the rationale behind a system that doesn't allow robert.max-workers as a GUC name, but does permit ro b"ert.max^Hworkers. +1 for not back-patching whatever we do here. -- Robert Haas EDB: http://www.enterprisedb.com
В списке pgsql-hackers по дате отправления: