From:
Alex Hunsaker <badalex(at)gmail(dot)com>
To:
Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
Cc:
Tim Bunce <Tim(dot)Bunce(at)pobox(dot)com>, pgsql-hackers(at)postgresql(dot)org, Robert Haas <robertmhaas(at)gmail(dot)com>
Subject:
Re: Add on_trusted_init and on_untrusted_init to plperl UPDATED [PATCH]
Date:
2010-02-03 18:49:01
Message-ID:
34d269d41002031049q1ab33a61v4f13a67b8c25009b@mail.gmail.com (view raw or flat )
Thread:
2010-01-30 15:49:43 from Tim Bunce <Tim(dot)Bunce(at)pobox(dot)com>
2010-02-03 03:42:21 from Alex Hunsaker <badalex(at)gmail(dot)com>
2010-02-03 03:46:13 from Robert Haas <robertmhaas(at)gmail(dot)com>
2010-02-03 03:46:54 from Robert Haas <robertmhaas(at)gmail(dot)com>
2010-02-03 03:51:15 from Alvaro Herrera <alvherre(at)commandprompt(dot)com>
2010-02-03 03:54:32 from Robert Haas <robertmhaas(at)gmail(dot)com>
2010-02-03 04:30:31 from Alex Hunsaker <badalex(at)gmail(dot)com>
2010-02-03 04:38:33 from Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
2010-02-03 05:13:06 from Alex Hunsaker <badalex(at)gmail(dot)com>
2010-02-03 05:50:35 from Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
2010-02-03 07:11:16 from Magnus Hagander <magnus(at)hagander(dot)net>
2010-02-03 07:46:38 from Alex Hunsaker <badalex(at)gmail(dot)com>
2010-02-03 08:06:03 from Alex Hunsaker <badalex(at)gmail(dot)com>
2010-02-03 13:41:36 from Andrew Dunstan <andrew(at)dunslane(dot)net>
2010-02-03 14:51:35 from Alex Hunsaker <badalex(at)gmail(dot)com>
2010-02-03 14:55:11 from Robert Haas <robertmhaas(at)gmail(dot)com>
2010-02-03 15:34:04 from Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
2010-02-03 16:31:30 from Tim Bunce <Tim(dot)Bunce(at)pobox(dot)com>
2010-02-03 17:18:51 from Alex Hunsaker <badalex(at)gmail(dot)com>
2010-02-03 17:21:49 from Alex Hunsaker <badalex(at)gmail(dot)com>
2010-02-03 17:27:27 from "David E(dot) Wheeler" <david(at)kineticode(dot)com>
2010-02-03 17:56:53 from Tim Bunce <Tim(dot)Bunce(at)pobox(dot)com>
2010-02-03 18:27:24 from Alex Hunsaker <badalex(at)gmail(dot)com>
2010-02-03 18:28:02 from Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
2010-02-03 18:43:40 from Alex Hunsaker <badalex(at)gmail(dot)com>
2010-02-03 18:49:01 from Alex Hunsaker <badalex(at)gmail(dot)com>
2010-02-03 19:20:04 from Robert Haas <robertmhaas(at)gmail(dot)com>
2010-02-03 18:51:47 from Andrew Dunstan <andrew(at)dunslane(dot)net>
2010-02-03 19:04:47 from Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
2010-02-03 19:15:56 from "David E(dot) Wheeler" <david(at)kineticode(dot)com>
2010-02-03 19:22:03 from Alex Hunsaker <badalex(at)gmail(dot)com>
2010-02-03 19:29:14 from Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
2010-02-03 19:38:38 from Tim Bunce <Tim(dot)Bunce(at)pobox(dot)com>
2010-02-03 19:53:00 from Robert Haas <robertmhaas(at)gmail(dot)com>
2010-02-03 23:41:43 from Andrew Dunstan <andrew(at)dunslane(dot)net>
2010-02-04 02:13:11 from Robert Haas <robertmhaas(at)gmail(dot)com>
2010-02-12 05:22:28 from Robert Haas <robertmhaas(at)gmail(dot)com>
2010-02-12 10:40:13 from Tim Bunce <Tim(dot)Bunce(at)pobox(dot)com>
2010-02-12 13:53:01 from Andrew Dunstan <andrew(at)dunslane(dot)net>
2010-02-12 15:16:42 from Robert Haas <robertmhaas(at)gmail(dot)com>
2010-02-12 13:56:48 from Andrew Dunstan <andrew(at)dunslane(dot)net>
2010-02-12 15:24:40 from Robert Haas <robertmhaas(at)gmail(dot)com>
Lists:
pgsql-hackers
On Wed, Feb 3, 2010 at 11:43, Alex Hunsaker <badalex(at)gmail(dot)com> wrote:
> On Wed, Feb 3, 2010 at 11:28, Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> wrote:
>> Tim Bunce <Tim(dot)Bunce(at)pobox(dot)com> writes:
>>> I do see a need for a GRANT check and I'm adding one now (based on
>>> the code in CreateFunction() in functioncmds.c - thanks to RhodiumToad
>>> on IRC for the pointer).
>>
>> What exactly are you proposing to check, and where, and what do you
>> think that will fix?
>
> Non plperl ...
Put another way:
HEAD: only people with plperl granted can make functions to manipulate $_SHARED
PATCH: anyone can set plperl.plperl_safe_init (but note not
plperlu_init as its SUSER) and manipulate $_SHARED
Proposed fix: only people with plperl granted can set
plperl.plplerl_safe_init and hence restore HEAD behavior
In response to
Responses
pgsql-hackers by date
Next :From: Andrew DunstanDate: 2010-02-03 18:51:47Subject : Re: Add on_trusted_init and on_untrusted_init to plperl
UPDATED [PATCH]Previous :From : Tom LaneDate : 2010-02-03 18:48:36Subject : Re: PG 9.0 and standard_conforming_strings
