Re: Re: pgsql: Convert contrib/seg's bool-returning SQL functions to V1 call co

Поиск
Список
Период
Сортировка
От Tom Lane
Тема Re: Re: pgsql: Convert contrib/seg's bool-returning SQL functions to V1 call co
Дата
Msg-id 5393.1461725984@sss.pgh.pa.us
обсуждение исходный текст
Ответ на Re: Re: pgsql: Convert contrib/seg's bool-returning SQL functions to V1 call co  (Andres Freund <andres@anarazel.de>)
Ответы Re: Re: pgsql: Convert contrib/seg's bool-returning SQL functions to V1 call co  (Andres Freund <andres@anarazel.de>)
Список pgsql-committers
Дерево обсуждения 
Andres Freund <andres@anarazel.de> writes:
> I don't understand why we don't just drop V0. It makes debugging harder,
> exploitation easier (call arbitrary functions), and really has no
> features making it desirable.

What's the argument that it makes debugging harder?  Especially if
you aren't using it?

I don't particularly buy the "easier exploitation" argument, either.
You can't create a C function without superuser, and if you've got
superuser there are plenty of ways to run arbitrary code.

I'd agree that there are no desirable features that would motivate
writing new code in V0.  But that's not the reason for keeping it;
the reason for keeping it is to avoid unnecessarily breaking
existing extension code.

            regards, tom lane

В списке pgsql-committers по дате отправления:

Предыдущее
От: Robert Haas
Дата:
Сообщение: pgsql: Fix pg_get_functiondef to dump parallel-safety markings.
Следующее
От: Andres Freund
Дата:
Сообщение: Re: Re: pgsql: Convert contrib/seg's bool-returning SQL functions to V1 call co