Home > mailing lists

Re: RLS bug in expanding security quals - Mailing list pgsql-hackers

From	Haribabu Kommi
Subject	Re: RLS bug in expanding security quals
Date	October 9, 2015 04:13:23
Msg-id	CAJrrPGeHmf2O-+sBeddeKG+pUvzq2JCtStGjqRd-gEix2OAhiQ@mail.gmail.com Whole thread Raw
In response to	Re: RLS bug in expanding security quals (Dean Rasheed <dean.a.rasheed@gmail.com>)
Responses	Re: RLS bug in expanding security quals (Stephen Frost <sfrost@snowman.net>)
List	pgsql-hackers

Tree view

On Fri, Oct 9, 2015 at 3:50 AM, Dean Rasheed <dean.a.rasheed@gmail.com> wrote:
> On 8 October 2015 at 15:05, Dean Rasheed <dean.a.rasheed@gmail.com> wrote:
>> Attached is a simple patch that appears to work, but it needs more
>> testing (and some regression tests).
>>
>
> Here's an updated patch with an extra regression test case that
> triggers the issue.
>
> I've also updated the function comment for expand_security_quals() to
> better explain the situations where it actually has work to do --
> tables with RLS and updates to auto-updatable security barrier views,
> but not SELECTs from security berrier views. This explains why this
> bug doesn't affect security barrier views (UNION ALL views aren't
> auto-updatable), so only 9.5 and HEAD need to be patched.

Thanks for the patch. I didn't find any problem in my test with the patch.

Regards,
Hari Babu
Fujitsu Australia

pgsql-hackers by date:

From: Kyotaro HORIGUCHI
Date: 09 October 2015, 03:59:59
Subject: Re: PATCH: index-only scans with partial indexes

From: Stephen Frost
Date: 09 October 2015, 05:48:21
Subject: Re: RLS bug in expanding security quals

Re: RLS bug in expanding security quals - Mailing list pgsql-hackers

Previous

Next