| From: | Kohei KaiGai <kaigai(at)kaigai(dot)gr(dot)jp> |
|---|---|
| To: | PgHacker <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | [bugfix] sepgsql missed a case of CREATE TABLE AS |
| Date: | 2012-09-02 18:41:04 |
| Message-ID: | CADyhKSVWKjCKY3cDeQG6qp7OczqsbJtT9cihk3HB7TkvcEDD+Q@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
The attached patch fixes a bug in sepgsql module.
Could you apply both v9.2 and master branch?
When post_create hook is invoked, sepgsql's handler checks
whether the current invocation context needs to have permission
checks according to the command-tag saved on ProcessUtility_hook.
But it overlooked T_CreateTableAs tag, thus, neither of security
label nor permission checks were applied, as if the routine did
on toast relation.
This patch adds this command tag as a context to check permissions.
Thanks,
--
KaiGai Kohei <kaigai(at)kaigai(dot)gr(dot)jp>
| Attachment | Content-Type | Size |
|---|---|---|
| sepgsql-fixbug-create-table-as.patch | application/octet-stream | 487 bytes |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Kohei KaiGai | 2012-09-02 18:53:22 | [bugfix] sepgsql didn't follow the latest core API changes |
| Previous Message | james | 2012-09-02 17:40:54 | BUG #7515: DROP TABLE IF EXISTS fails if schema does not exist |