Thread: When will trusted PL/Python be supported?
Dears, It seems to me that we have untrusted PL/Python for a long time, but till now we still do not support trusted plpython. I'd like to know is supporting trusted PL/Python still in the schedule? What is the reason for the current lack of support, and do we have any relevant email discussion? Regards Bowen Shi
> It seems to me that we have untrusted PL/Python for a long time, but > till now we still do not support trusted plpython. > > I'd like to know is supporting trusted PL/Python still in the > schedule? What is the reason for the current lack of support, and do > we have any relevant email discussion? AFAIR the consensus was that Python cannot really be (made to be) trusted in the PG sense which is why plpython/trusted was *removed*. Karsten
On 6/27/23 04:46, Bowen Shi wrote: > Dears, > > It seems to me that we have untrusted PL/Python for a long time, but > till now we still do not support trusted plpython. > > I'd like to know is supporting trusted PL/Python still in the > schedule? What is the reason for the current lack of support, and do > we have any relevant email discussion? https://www.postgresql.org/docs/7.4/release-7-4.html Release date: 2003-11-17 ... " Make PL/Python an untr"usted language, now called plpythonu (Kevin Jacobs, Tom) The Python language no longer supports a restricted execution environment, so the trusted version of PL/Python was removed. If this situation changes, a version of PL/Python that can be used by non-superusers will be readded. " The situation has not changed. > > Regards > Bowen Shi > > -- Adrian Klaver adrian.klaver@aklaver.com
Adrian Klaver <adrian.klaver@aklaver.com> writes: > On 6/27/23 04:46, Bowen Shi wrote: >> I'd like to know is supporting trusted PL/Python still in the >> schedule? What is the reason for the current lack of support, and do >> we have any relevant email discussion? https://www.postgresql.org/message-id/flat/20030525224833.GO31407%40tummy.com https://www.postgresql.org/message-id/flat/Pine.LNX.4.44.0306182125590.17051-100000%40penguin.theopalgroup.com There's been a little bit of discussion of using RestrictedPython: https://www.postgresql.org/message-id/flat/9d1f8d830808041008v50104fd8p6181d5ddce85a6a%40mail.gmail.com but it doesn't seem to have gone anywhere. regards, tom lane
On Tue, Jun 27, 2023 at 12:17 PM Tom Lane <tgl@sss.pgh.pa.us> wrote: > > Adrian Klaver <adrian.klaver@aklaver.com> writes: > > On 6/27/23 04:46, Bowen Shi wrote: > >> I'd like to know is supporting trusted PL/Python still in the > >> schedule? What is the reason for the current lack of support, and do > >> we have any relevant email discussion? > > https://www.postgresql.org/message-id/flat/20030525224833.GO31407%40tummy.com > > https://www.postgresql.org/message-id/flat/Pine.LNX.4.44.0306182125590.17051-100000%40penguin.theopalgroup.com > > There's been a little bit of discussion of using RestrictedPython: > > https://www.postgresql.org/message-id/flat/9d1f8d830808041008v50104fd8p6181d5ddce85a6a%40mail.gmail.com > > but it doesn't seem to have gone anywhere. Off-topic, but I am amazed folks like Tom and Adrian remember those conversations and can actually find them in the archives. Jeff