Home > mailing lists

Re: Re: [COMMITTERS] pgsql: Prevent the injection of invalidly encoded strings by PL/Python - Mailing list pgsql-hackers

From	Tom Lane
Subject	Re: Re: [COMMITTERS] pgsql: Prevent the injection of invalidly encoded strings by PL/Python
Date	March 22, 2010 23:30:08
Msg-id	16506.1269300593@sss.pgh.pa.us Whole thread Raw
In response to	Re: [COMMITTERS] pgsql: Prevent the injection of invalidly encoded strings by PL/Python (Peter Eisentraut <peter_e@gmx.net>)
Responses	Re: Re: [COMMITTERS] pgsql: Prevent the injection of invalidly encoded strings by PL/Python
List	pgsql-hackers

Tree view

Peter Eisentraut <peter_e@gmx.net> writes:
> I have never used Tcl before just now, and the documentation is sketchy,
> but it looks like the behavior of Tcl is kind of mixed in this area.

> Escapes such as "\xd0" are apparently converted to Unicode code points
> rather than bytes when the appropriate OS locale is set.  So that is
> safe.  Except that it doesn't work in some locale/charset setups, such
> as EUC_JP.  To adapt Hannu's original example:

The pltcl code special-cases Unicode IIRC.
        regards, tom lane

pgsql-hackers by date:

From: Bruce Momjian
Date: 22 March 2010, 23:13:05
Subject: Re: 9.0 release notes done

From: Andrew Dunstan
Date: 22 March 2010, 23:38:59
Subject: Re: xmlconcat (was 9.0 release notes done)

Re: Re: [COMMITTERS] pgsql: Prevent the injection of invalidly encoded strings by PL/Python - Mailing list pgsql-hackers

Previous

Next