Home > mailing lists

Re: RFC: Logging plan of the running query - Mailing list pgsql-hackers

From	Dilip Kumar
Subject	Re: RFC: Logging plan of the running query
Date	May 13, 2021 14:43:47
Msg-id	CAFiTN-vQcDtyc5aRF1RNo-VgRzMcZ4E1qKTybvHpzUV1FEjqBA@mail.gmail.com Whole thread Raw
In response to	Re: RFC: Logging plan of the running query (Bharath Rupireddy <bharath.rupireddyforpostgres@gmail.com>)
Responses	Re: RFC: Logging plan of the running query
List	pgsql-hackers

Tree view

On Thu, May 13, 2021 at 4:16 PM Bharath Rupireddy
<bharath.rupireddyforpostgres@gmail.com> wrote:
>
> I'm saying that -  currently, queries are logged with LOG level when
> the log_statement GUC is set. The queries might be sent to the
> non-superuser clients. So, your point of "sending the plan to those
> clients is not a good idea from a security perspective" gets violated
> right? Should the log level be changed(in the below code) from "LOG"
> to "LOG_SERVER_ONLY"? I think we can discuss this separately so as not
> to sidetrack the main feature.
>
>     /* Log immediately if dictated by log_statement */
>     if (check_log_statement(parsetree_list))
>     {
>         ereport(LOG,
>                 (errmsg("statement: %s", query_string),
>                  errhidestmt(true),
>                  errdetail_execute(parsetree_list)));
>

Yes, that was my exact point, that in this particular code log with
LOG_SERVER_ONLY.

Like this.
     /* Log immediately if dictated by log_statement */
     if (check_log_statement(parsetree_list))
     {
         ereport(LOG_SERVER_ONLY,
.....


-- 
Regards,
Dilip Kumar
EnterpriseDB: http://www.enterprisedb.com

pgsql-hackers by date:

From: Michael Paquier
Date: 13 May 2021, 14:11:19
Subject: Re: subscriptioncheck failure

From: Bharath Rupireddy
Date: 13 May 2021, 14:45:12
Subject: Re: RFC: Logging plan of the running query

Re: RFC: Logging plan of the running query - Mailing list pgsql-hackers

Previous

Next