Home > mailing lists

Re: Specification for Trusted PLs? - Mailing list pgsql-hackers

From	Tom Lane
Subject	Re: Specification for Trusted PLs?
Date	May 21, 2010 19:15:49
Msg-id	22555.1274469327@sss.pgh.pa.us Whole thread Raw
In response to	Re: Specification for Trusted PLs? (Robert Haas <robertmhaas@gmail.com>)
Responses	Re: Specification for Trusted PLs?
List	pgsql-hackers

Tree view

Robert Haas <robertmhaas@gmail.com> writes:
> On Fri, May 21, 2010 at 2:21 PM, Tom Lane <tgl@sss.pgh.pa.us> wrote:
>> (1) no access to system calls (including file and network I/O)
>> (2) no access to process memory, other than variables defined within the
>> PL.
>> What else?

> Doesn't subvert the general PostgreSQL security mechanisms?  Not sure
> how to formulate that.

As long as you can't do database access except via SPI, that should be
covered.  So I guess the next item on the list is no, or at least
restricted, access to functions outside the PL's own language.
        regards, tom lane

pgsql-hackers by date:

From: Tom Lane
Date: 21 May 2010, 19:13:32
Subject: Re: Specification for Trusted PLs?

From: "Greg Sabino Mullane"
Date: 21 May 2010, 19:22:08
Subject: Re: changed source files.

Re: Specification for Trusted PLs? - Mailing list pgsql-hackers

Previous

Next