Re: sepgsql contrib module - Mailing list pgsql-hackers

From Robert Haas
Subject Re: sepgsql contrib module
Date
Msg-id AANLkTimSWss+z6SBH_ApXcziSD08+UFLS+CXPDP9K11W@mail.gmail.com
Whole thread Raw
In response to Re: sepgsql contrib module  (KaiGai Kohei <kaigai@ak.jp.nec.com>)
Responses Re: sepgsql contrib module
List pgsql-hackers
2011/1/21 KaiGai Kohei <kaigai@ak.jp.nec.com>:
> - Add checks to avoid inlining function without db_procedure:{execute}
>  permission. Sorry, process:{transition} shall be checked in other place.

Hrm.  What happens if permissions change between plan time and execution time?

For that matter, I wonder what happens with regular function
permissions.  If the plan inlines the function and then somebody goes
and changes the permission on the function and makes it SECURITY
DEFINER, what happens?

--
Robert Haas
EnterpriseDB: http://www.enterprisedb.com
The Enterprise PostgreSQL Company


pgsql-hackers by date:

Previous
From: Itagaki Takahiro
Date:
Subject: Re: SQL/MED - file_fdw
Next
From: Robert Haas
Date:
Subject: Re: SQL/MED - file_fdw