Home > mailing lists

Re: Fixes for compiler warnings - Mailing list pgsql-hackers

From	Jeroen Vermeulen
Subject	Re: Fixes for compiler warnings
Date	January 20, 2009 15:01:47
Msg-id	4975F54F.4000703@xs4all.nl Whole thread Raw
In response to	Re: Fixes for compiler warnings (Peter Eisentraut <peter_e@gmx.net>)
List	pgsql-hackers

Tree view

Peter Eisentraut wrote:

> -Wformat-security warns about
> 
>     printf(var);
> 
> but not about
> 
>     printf(var, a);
> 
> I don't understand that; the crash or exploit potential is pretty much the 
> same in both cases.

Not sure this is the reason, but in the first case any risk is trivially 
avoided by using puts() or printf("%s", var) instead.  So printf(var) is 
almost certainly not what you mean.

I think that's a reasonable warning to have enabled, whereas the other 
one is more of a "try it sometime, you might find something" kind of 
warning.

Jeroen

pgsql-hackers by date:

From: Bruce Momjian
Date: 20 January 2009, 14:44:15
Subject: Re: FWD: Re: Updated backslash consistency patch

From: "Merlin Moncure"
Date: 20 January 2009, 15:10:13
Subject: Re: is 8.4 array_agg() supposed to work with array values?

Re: Fixes for compiler warnings - Mailing list pgsql-hackers

Previous

Next