Home > mailing lists

BUG #5275: validate_exec in port/exec.c only reads u/g/o, not ACLs - Mailing list pgsql-bugs

From	James Bellinger
Subject	BUG #5275: validate_exec in port/exec.c only reads u/g/o, not ACLs
Date	January 13, 2010 20:07:55
Msg-id	201001132058.o0DKwcGc035187@wwwmaster.postgresql.org Whole thread Raw
Responses	Re: BUG #5275: validate_exec in port/exec.c only reads u/g/o, not ACLs (Tom Lane <tgl@sss.pgh.pa.us>)
List	pgsql-bugs

Tree view

The following bug has been logged online:

Bug reference:      5275
Logged by:          James Bellinger
Email address:      jfb@zer7.com
PostgreSQL version: 8.4.2
Operating system:   Ubuntu 9.10
Description:        validate_exec in port/exec.c only reads u/g/o, not ACLs
Details:

Howdy,

I'm not certain of the actual *purpose* for this function even checking in
the first place, but the result is that, if Postgres gets its access via an
ACL, it will say 'invalid binary' here and there, will not be able to find
its own executables, etc. I can see no purpose for this function.

That said, currently, the reason it gives these errors is that it only
checks user/group/other. Linux ACLs are not checked. If this function really
needs to exist as is, this ought to be fixed.

Thanks

James

pgsql-bugs by date:

From: "Vincenzo Romano"
Date: 13 January 2010, 18:20:17
Subject: BUG #5274: [PL/PgSQL] EXECUTE ... USING variable expansion

From: Tom Lane
Date: 13 January 2010, 20:29:10
Subject: Re: BUG #5275: validate_exec in port/exec.c only reads u/g/o, not ACLs

BUG #5275: validate_exec in port/exec.c only reads u/g/o, not ACLs - Mailing list pgsql-bugs

Previous

Next