Home > mailing lists

Re: Fixing insecure security definer functions - Mailing list pgsql-hackers

From	Sergiy Vyshnevetskiy
Subject	Re: Fixing insecure security definer functions
Date	August 10, 2007 19:07:18
Msg-id	Pine.LNX.4.64.0708102115590.28860@uanet.vostok.net Whole thread Raw
In response to	Re: Fixing insecure security definer functions (Tom Lane <tgl@sss.pgh.pa.us>)
List	pgsql-hackers

Tree view

> 3. Add optional clauses to CREATE FUNCTION and ALTER FUNCTION to specify
> the propath value.  I suggest, but am not wedded to,
>     PATH 'foo, bar'
>     PATH NONE
> Since PATH NONE is the default, it's not really needed in CREATE
> FUNCTION, but it seems useful to allow it for ALTER FUNCTION.

I think NONE may be a bit misleading, as if path will be empty.
CURRENT sounds better for this.

Add    PATH SAVED
as shorthand to    PATH current_setting('search_path')
as well.

Default should be SAVED for SECURITY DEFINER functions.
A parameter to set the default for SECURITY INVOKER functions would be 
nice too.

pgsql-hackers by date:

From: Gregory Stark
Date: 10 August 2007, 19:00:49
Subject: Re: crypting prosrc in pg_proc

From: Steve Atkins
Date: 10 August 2007, 19:11:16
Subject: Re: crypting prosrc in pg_proc

Re: Fixing insecure security definer functions - Mailing list pgsql-hackers

Previous

Next