Skip site navigation (1) Skip section navigation (2)

Updates of SE-PostgreSQL 8.4devel patches (r1076)

From: KaiGai Kohei <kaigai(at)ak(dot)jp(dot)nec(dot)com>
To: pgsql-hackers(at)postgresql(dot)org
Cc: Bruce Momjian <bruce(at)momjian(dot)us>, Josh Berkus <josh(at)agliodbs(dot)com>, KaiGai Kohei <kaigai(at)kaigai(dot)gr(dot)jp>, Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>, Robert Haas <robertmhaas(at)gmail(dot)com>
Subject: Updates of SE-PostgreSQL 8.4devel patches (r1076)
Date: 2008-10-01 06:48:24
Message-ID: (view raw or whole thread)
Lists: pgsql-hackers
I updated the following SE-PostgreSQL patches:


- Patches are rebased to the latest CVS HEAD.
- Improvement of performance penalty for access checks.
   Reworks in access vector chache enables to reduce performance loss, as follows:
   It shows about 8% loss in maximum, and larger scale database give us
   smaller losses in trend.
- Add a hook to check permission on "COPY TO/FROM <file>".
   In the previous version, SE-PostgreSQL does not check permissions
   to the file used in COPY statement. It is fixed.
- Documentation updates
   - Descriptions for build & install are reworked, because most of
     security policy for SE-PostgreSQL now got merged into the upstream
     selinux-policy package.
   - Add a "Limitation" section to describe about covert channel and
     reference integrity.

OSS Platform Development Division, NEC
KaiGai Kohei <kaigai(at)ak(dot)jp(dot)nec(dot)com>

In response to


pgsql-hackers by date

Next:From: Paul SchlieDate: 2008-10-01 06:57:47
Subject: Re: Block-level CRC checks
Previous:From: Gurjeet SinghDate: 2008-10-01 05:12:28
Subject: Re: Bad error message

Privacy Policy | About PostgreSQL
Copyright © 1996-2015 The PostgreSQL Global Development Group