Home > mailing lists

prevent non-superuser terminate bgworker running as superuser - Mailing list pgsql-hackers

From	Hemanth Sandrana
Subject	prevent non-superuser terminate bgworker running as superuser
Date	October 19, 2023 20:49:09
Msg-id	CAAB6CY5H7Yp3jfMWP25tA0AMYbY5eSogS7GNbGEXN0KRmmxy1g@mail.gmail.com Whole thread Raw
Responses	Re: prevent non-superuser terminate bgworker running as superuser
List	pgsql-hackers

Tree view

Hi All,

Currently, BackgroundWorker connected to a database by calling
BackgroundWorkerInitializeConnection with username as NULL can be
terminated by non-superuser with pg_signal_backend privilege. When the
username is NULL the bgworker process runs as superuser (which is
expected as per the documentation -
https://www.postgresql.org/docs/current/bgworker.html ), but can the
non-superuser (with pg_signal_backend) terminate this superuser owned
process?
We (Mahendrakar and Myself) think that this is a bug and proposing a
fix that sets MyProc->roleId to BOOTSTRAP_SUPERUSERID, similar to
InitializeSessionUserId, to prevent non-superuser terminating it.

Please let us know your comments.

Thanks,
Hemanth Sandrana

Attachment

v1-0001-prevent-non-superuser-terminating-superuser-owned.patch

pgsql-hackers by date:

From: Robert Haas
Date: 19 October 2023, 20:44:20
Subject: controlling meson's parallelism (and some whining)

From: Robert Haas
Date: 19 October 2023, 21:48:56
Subject: Re: New WAL record to detect the checkpoint redo location

prevent non-superuser terminate bgworker running as superuser - Mailing list pgsql-hackers

Attachment

Previous

Next