| From: | Ryan Murphy <ryanfmurphy(at)gmail(dot)com> |
|---|---|
| To: | Andres Freund <andres(at)anarazel(dot)de> |
| Cc: | Michael Paquier <michael(dot)paquier(at)gmail(dot)com>, PostgreSQL mailing lists <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: Patch: initdb: "'" for QUOTE_PATH (non-windows) |
| Date: | 2016-08-18 02:35:44 |
| Message-ID: | CAHeEsBeb_rXt3z5KyNbT1BEihjX28EFrCXA48MDDSPExOZxqhw@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
> I think that's actually a good thing to forbid.
I think I agree Andres, there are already comments in the appendShellString
function to this effect - they say that CR/LF chars in a file name are
mostly used for malicious hacking attempts anyways - I know I've hardly
ever needed a newline in a file name.
Did you see anything else in my code that you have recommendations about?
I made sure to free the PQExpBufferStr vars that I allocated.
Best,
Ryan
On Wed, Aug 17, 2016 at 7:41 PM, Andres Freund <andres(at)anarazel(dot)de> wrote:
> On 2016-08-18 09:14:44 +0900, Michael Paquier wrote:
> > On Thu, Aug 18, 2016 at 12:21 AM, Ryan Murphy <ryanfmurphy(at)gmail(dot)com>
> wrote:
> > > I have created a better patch (attached) that correctly escapes the
> shell
> > > arguments using PQExpBufferStr and the appendShellString function, as
> per
> > > Michael and Andres' suggestions.
> > >
> > > Further suggestions welcome of course.
> >
> > As far as I know, it is perfectly possible to have LF/CR in a path
> > name (that's bad practice btw...), and your patch would make initdb
> > fail in such cases. Do we want to authorize that?
>
> I think that's actually a good thing to forbid.
>
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Peter Eisentraut | 2016-08-18 02:37:53 | Re: Add -c to rsync commands on SR tutorial wiki page |
| Previous Message | Joshua Bay | 2016-08-18 02:06:36 | Re: Way to access LSN (for each transaction) by directly talking to postgres? |