Home > mailing lists

Re: [BUGS] Server crash while trying to read expression using pg_get_expr() - Mailing list pgsql-hackers

From	Tom Lane
Subject	Re: [BUGS] Server crash while trying to read expression using pg_get_expr()
Date	June 9, 2010 14:35:13
Msg-id	24476.1276094097@sss.pgh.pa.us Whole thread Raw
In response to	Re: [BUGS] Server crash while trying to read expression using pg_get_expr() (Heikki Linnakangas <heikki.linnakangas@enterprisedb.com>)
Responses	Re: [BUGS] Server crash while trying to read expression using pg_get_expr() Re: [BUGS] Server crash while trying to read expression using pg_get_expr()
List	pgsql-hackers

Tree view

Heikki Linnakangas <heikki.linnakangas@enterprisedb.com> writes:
> We have two options:

> 1. Make pg_get_expr() handle arbitrary (possibly even malicious) input 
> gracefully.

> 2. Restrict pg_get_expr() to superusers only.

I think #1 is a fool's errand.  There is far too much structure to a
node tree that is outside the scope of what readfuncs.c is capable of
understanding.
        regards, tom lane

pgsql-hackers by date:

From: Robert Haas
Date: 09 June 2010, 13:43:32
Subject: Re: Adding XMLEXISTS to the grammar

From: Heikki Linnakangas
Date: 09 June 2010, 14:38:56
Subject: Re: [BUGS] Server crash while trying to read expression using pg_get_expr()

Re: [BUGS] Server crash while trying to read expression using pg_get_expr() - Mailing list pgsql-hackers

Previous

Next