Home > mailing lists

Re: Allow pg_signal_backend members to use pg_log_backend_memory_stats(). - Mailing list pgsql-hackers

From	Jeff Davis
Subject	Re: Allow pg_signal_backend members to use pg_log_backend_memory_stats().
Date	October 26, 2021 02:28:13
Msg-id	c70b496287118571efd1f7391430d70c56a71da9.camel@j-davis.com Whole thread Raw
In response to	Allow pg_signal_backend members to use pg_log_backend_memory_stats(). (Jeff Davis <pgsql@j-davis.com>)
Responses	Re: Allow pg_signal_backend members to use pg_log_backend_memory_stats(). ("Bossart, Nathan" <bossartn@amazon.com>)
List	pgsql-hackers

Tree view

On Mon, 2021-10-25 at 14:30 -0700, Andres Freund wrote:
> I don't get the reasoning behind the "except ..." logic. What does
> this
> actually protect against? A reasonable use case for this feature is
> is to
> monitor memory usage of all backends, and this restriction practially
> requires
> to still use a security definer function.

Nathan brought it up -- more as a question than a request, so perhaps
it's not necessary. I don't have a strong opinion about it, but I
included it to be conservative (easier to relax a privilege than to
tighten one).

I can cut out the in-function check entirely if there's no objection.

Regards,
    Jeff Davis

[1] https://postgr.es/m/33F34F0C-BB16-48DE-B125-95D340A54AE8@amazon.com

pgsql-hackers by date:

From: Tom Lane
Date: 26 October 2021, 01:52:18
Subject: Re: pg_dump versus ancient server versions

From: Jeff Davis
Date: 26 October 2021, 02:39:35
Subject: Re: Predefined role pg_maintenance for VACUUM, ANALYZE, CHECKPOINT.

Re: Allow pg_signal_backend members to use pg_log_backend_memory_stats(). - Mailing list pgsql-hackers

Previous

Next