From: | Marko Kreen <markokr(at)gmail(dot)com> |
---|---|
To: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
Cc: | Greg Stark <stark(at)enterprisedb(dot)com>, "David E(dot) Wheeler" <david(at)kineticode(dot)com>, Sam Mason <sam(at)samason(dot)me(dot)uk>, pgsql-hackers(at)postgresql(dot)org |
Subject: | Re: Unicode string literals versus the world |
Date: | 2009-04-15 18:41:13 |
Message-ID: | e51f66da0904151141k600bb27dv71b5dbc169f44d16@mail.gmail.com |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-hackers |
On 4/15/09, Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> wrote:
> Marko Kreen <markokr(at)gmail(dot)com> writes:
> > Whats wrong with requiring U& to conform with stdstr=off quoting rules?
>
> The sole and only excuse for that misbegotten syntax is to be exactly
> SQL spec compliant --- otherwise we might as well pick something saner.
> So it needs to work like stdstr=on. I thought Peter's proposal of
> rejecting it altogether when stdstr=off might be reasonable. The space
> sensitivity around the & still sucks, but I have not (yet) thought of
> a credible security exploit for that.
So the U& syntax is only available if stdstr=on? Sort of makes sense.
As both this and the doubling-\\ way would mean we should have usable
alternative in case of stdstr=off also, so in the end we have agreed
to accept \u also?
--
marko
From | Date | Subject | |
---|---|---|---|
Next Message | Andrew Dunstan | 2009-04-15 18:50:46 | Re: Unicode string literals versus the world |
Previous Message | Tom Lane | 2009-04-15 18:25:27 | Re: Unicode string literals versus the world |