| From: | Christoph Berg <myon(at)debian(dot)org> |
|---|---|
| To: | Andres Freund <andres(at)anarazel(dot)de> |
| Cc: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>, Justin Pryzby <pryzby(at)telsasoft(dot)com>, pgsql-hackers(at)lists(dot)postgresql(dot)org |
| Subject: | Re: pg17.3 PQescapeIdentifier() ignores len |
| Date: | 2025-02-15 16:55:12 |
| Message-ID: | Z7DG8LX-vEt7Asdy@msg.df7cb.de |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
Re: Andres Freund
> > What's missing in the PG regression tests to see that problem?
>
> Well, the expanded tests added as part of the fix would catch it, but I agree,
> it's a problem this wasn't caught beforehand.
Oh sorry, I was actually skimming the git log to see if there is a
test, but then failed to realize there is one. Thanks!
> I don't think that common uses of PQescapeIdentifier/Literal are likely to
> catch the problem, so it's perhaps not too surprising it wasn't caught. Which,
> I guess, shows that we really need more explicit edge-case coverage of at
> least the most crucial APIs (we barely have any). There's pretty much no way
> that pg_regress or TAP test style tests are going to catch a problem like
> this.
What I can do is to trigger regression tests on all packages on
apt.postgresql.org after the minor releases have been built and then
raise any flags before the release goes out.
Except that pygresql isn't yet a package on apt.pg.o... will fix that
now. This time, the problem was caught by Debian's CI machinery.
Christoph
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Mark Wong | 2025-02-15 16:55:32 | Re: New buildfarm animals with FIPS mode enabled |
| Previous Message | Andres Freund | 2025-02-15 16:16:52 | Re: pg17.3 PQescapeIdentifier() ignores len |