Home > mailing lists

Re: SQL:2011 Application Time Update & Delete - Mailing list pgsql-hackers

From	Chao Li
Subject	Re: SQL:2011 Application Time Update & Delete
Date	November 14 11:38:31
Msg-id	9B820A52-D2F6-465D-B258-6FE8EBA59FAE@gmail.com Whole thread Raw
In response to	Re: SQL:2011 Application Time Update & Delete (Chao Li <li.evan.chao@gmail.com>)
List	pgsql-hackers

Tree view


> On Nov 14, 2025, at 12:10, Chao Li <li.evan.chao@gmail.com> wrote:
>
> 21 - 0008 - ri_triggers.c
> ```
> + quoteOneName(attname,
> +  RIAttName(fk_rel, riinfo->fk_attnums[i]));
> ```
>
> This patch uses quoteOneName() a lot. This function simply add double quotes without much checks which is unsafe. I
thinkquote_identifier() is more preferred. 

I looked further, and realized that quoteOneName() is widely used in ri_triggers.c and the dest string are all defined
assize of MAX_QUOTED_REL_NAME_LEN. 

So I take back comment 21.

Best regards,
--
Chao Li (Evan)
HighGo Software Co., Ltd.
https://www.highgo.com/

pgsql-hackers by date:

From: Peter Eisentraut
Date: 14 November, 11:11:48
Subject: Re: Update timezone to C99

From: Alexander Kukushkin
Date: 14 November, 11:41:52
Subject: Re: Issue with logical replication slot during switchover

Re: SQL:2011 Application Time Update & Delete - Mailing list pgsql-hackers

Previous

Next