Home > mailing lists

Re: Misplaced superuser check in pg_log_backend_memory_contexts() - Mailing list pgsql-hackers

From	Michael Paquier
Subject	Re: Misplaced superuser check in pg_log_backend_memory_contexts()
Date	June 8, 2021 05:49:06
Msg-id	YL7aoiXXfIYtUOwj@paquier.xyz Whole thread Raw
In response to	Re: Misplaced superuser check in pg_log_backend_memory_contexts() (Tom Lane <tgl@sss.pgh.pa.us>)
Responses	Re: Misplaced superuser check in pg_log_backend_memory_contexts() Re: Misplaced superuser check in pg_log_backend_memory_contexts()
List	pgsql-hackers

Tree view

On Sun, Jun 06, 2021 at 11:13:40AM -0400, Tom Lane wrote:
> Julien Rouhaud <rjuju123@gmail.com> writes:
>> However +1 for the patch, as it seems more consistent to always get a
>> permission failure if you're not a superuser.
>
> Yeah, it's just weird if such a check is not the first thing
> in the function.  Even if you can convince yourself that the
> actions taken before that don't create any security issue today,
> it's not hard to imagine that innocent future code rearrangements
> could break that argument.  What's the value of postponing the
> check anyway?

Thanks for the input, I have applied the patch.
--
Michael

Attachment

signature.asc

pgsql-hackers by date:

From: "Joel Jacobson"
Date: 08 June 2021, 05:48:20
Subject: Re: security_definer_search_path GUC

From: Julien Rouhaud
Date: 08 June 2021, 05:50:08
Subject: Re: A modest proposal vis hierarchical queries: MINUS in the column list

Re: Misplaced superuser check in pg_log_backend_memory_contexts() - Mailing list pgsql-hackers

Attachment

Previous

Next