Home > mailing lists

Re: Per-function search_path => per-function GUC settings - Mailing list pgsql-hackers

From	Zdenek Kotala
Subject	Re: Per-function search_path => per-function GUC settings
Date	September 11, 2007 14:57:21
Msg-id	46E6ACBD.4030707@sun.com Whole thread Raw
In response to	Re: Per-function search_path => per-function GUC settings (Tom Lane <tgl@sss.pgh.pa.us>)
List	pgsql-hackers

Tree view

Tom Lane wrote:
> Zdenek Kotala <Zdenek.Kotala@Sun.COM> writes:
>> I have a question about what does happen if search path is not defined 
>> for SECURITY DEFINER function. My expectation is that SECURITY DEFINER 
>> function should defined empty search patch in this case.
> 
> Your expectation is incorrect.  We are not in the business of breaking
> every application in sight, which is what that would do.  

Oh. I see. In this point of view I suggest to add some warning about 
potential security issue if SECURITY DEFINER function will create 
without preset search_path. I'm aware that a lot of developer forget to 
modify their application.

    Zdenek

pgsql-hackers by date:

From: Tom Lane
Date: 11 September 2007, 14:49:47
Subject: Re: What is happening on buildfarm member dugong

From: Zdenek Kotala
Date: 11 September 2007, 15:13:56
Subject: Re: pgcrypto related backend crash on solaris 10/x86_64

Re: Per-function search_path => per-function GUC settings - Mailing list pgsql-hackers

Previous

Next