Re: Row Level Security − leakproof-ness and performance implications - Mailing list pgsql-hackers

From Robert Haas
Subject Re: Row Level Security − leakproof-ness and performance implications
Date
Msg-id CA+TgmobXRw3Goxs73QwnS-5qEquU6dSnBBL7bJp2b9WnBNs=4A@mail.gmail.com
Whole thread Raw
In response to Re: Row Level Security − leakproof-ness and performance implications  (Joe Conway <mail@joeconway.com>)
Responses Re: Row Level Security − leakproof-ness and performance implications
List pgsql-hackers
On Thu, Feb 28, 2019 at 11:44 AM Joe Conway <mail@joeconway.com> wrote:
> No, and Tom stated as much too, but life is all about tradeoffs. Some
> people will find this an acceptable compromise. For those that don't
> they don't have to use it. IMHO we tend toward too much nannyism too often.

Well, I agree with that, too.

Hmm.  I don't think there's anything preventing you from implementing
this in "userspace," is there?  A logging hook could suppress all
error message text, and you could just mark all functions leakproof
after that, and you'd have this exact behavior in an existing release
with no core code changes, I think.

If you do that, or just stick this patch into your own distro, I would
be interested to hear some experiences from customers (and those who
support them) after some time had gone by.  I find it hard to imagine
delivering customer support in an environment configured this way, but
sometimes my imagination is limited.

-- 
Robert Haas
EnterpriseDB: http://www.enterprisedb.com
The Enterprise PostgreSQL Company


pgsql-hackers by date:

Previous
From: Joe Conway
Date:
Subject: Re: Row Level Security − leakproof-ness and performance implications
Next
From: Joe Conway
Date:
Subject: Re: Row Level Security − leakproof-ness and performance implications