postgresql

mirror of https://git.postgresql.org/git/postgresql.git synced 2024-10-02 08:51:18 +02:00

Go to file

Tom Lane a2944d8724 Fix missed corner cases for grantable permissions on GUCs. We allow users to set the values of not-yet-loaded extension GUCs, remembering those values in "placeholder" GUC entries. When/if the extension is loaded later in the session, we need to verify that the user had permissions to set the GUC. That was done correctly before commit `a0ffa885e`, but as of that commit, we'd check the permissions of the active role when the LOAD happens, not the role that had set the value. (This'd be a security bug if it had made it into a released version.) In principle this is simple enough to fix: we just need to remember the exact role OID that set each GUC value, and use that not GetUserID() when verifying permissions. Maintaining that data in the guc.c data structures is slightly tedious, but fortunately it's all basically just copy-n-paste of the logic for tracking the GucSource of each setting, as we were already doing. Another oversight is that validate_option_array_item() hadn't been taught to check for granted GUC privileges. This appears to manifest only in that ALTER ROLE/DATABASE RESET ALL will fail to reset settings that the user should be allowed to reset. Patch by myself and Nathan Bossart, per report from Nathan Bossart. Back-patch to v15 where the faulty code came in. Discussion: https://postgr.es/m/20220706224727.GA2158260@nathanxps13		2022-07-19 17:22:31 -04:00
config	Pre-beta mechanical code beautification.	2022-05-12 15:17:30 -04:00
contrib	Deal with paths containing \ and spaces in basebackup_to_shell tests	2022-07-18 10:21:55 -07:00
doc	relnotes: clarify pg_basebackup compression options	2022-07-19 16:45:25 -04:00
src	Fix missed corner cases for grantable permissions on GUCs.	2022-07-19 17:22:31 -04:00
.cirrus.yml	Make upgradecheck a no-op in MSVC's vcregress.pl	2022-04-02 12:06:11 +09:00
.dir-locals.el
.editorconfig
.git-blame-ignore-revs	Add `82d0ffae3` to git-blame-ignore-revs.	2022-06-30 11:08:12 -04:00
.gitattributes	Remove trailing whitespace from *.sgml files.	2022-04-20 11:04:49 -04:00
.gitignore
aclocal.m4	Probe $PROVE not $PERL while checking for modules needed by TAP tests.	2021-11-22 12:54:52 -05:00
configure	Stamp 15beta2.	2022-06-27 16:11:56 -04:00
configure.ac	Stamp 15beta2.	2022-06-27 16:11:56 -04:00
COPYRIGHT	Update copyright for 2022	2022-01-07 19:04:57 -05:00
GNUmakefile.in	Run tests of libpq on installcheck-world, checkprep and check-world	2022-06-03 13:15:20 +09:00
HISTORY	Canonicalize some URLs	2020-02-10 20:47:50 +01:00
Makefile	Dynamically find correct installation docs in Makefile.	2022-01-19 14:48:25 +01:00
README	Canonicalize some URLs	2020-02-10 20:47:50 +01:00
README.git	Canonicalize some URLs	2020-02-10 20:47:50 +01:00

README

PostgreSQL Database Management System
=====================================

This directory contains the source code distribution of the PostgreSQL
database management system.

PostgreSQL is an advanced object-relational database management system
that supports an extended subset of the SQL standard, including
transactions, foreign keys, subqueries, triggers, user-defined types
and functions.  This distribution also contains C language bindings.

PostgreSQL has many language interfaces, many of which are listed here:

	https://www.postgresql.org/download/

See the file INSTALL for instructions on how to build and install
PostgreSQL.  That file also lists supported operating systems and
hardware platforms and contains information regarding any other
software packages that are required to build or run the PostgreSQL
system.  Copyright and license information can be found in the
file COPYRIGHT.  A comprehensive documentation set is included in this
distribution; it can be read as described in the installation
instructions.

The latest version of this software may be obtained at
https://www.postgresql.org/download/.  For more information look at our
web site located at https://www.postgresql.org/.