Quick Links

Re: Specification for Trusted PLs?

From:	Josh Berkus <josh(at)agliodbs(dot)com>
To:	pgsql-hackers(at)postgresql(dot)org
Subject:	Re: Specification for Trusted PLs?
Date:	2010-05-21 15:55:31
Message-ID:	4BF6ACF3.2040907@agliodbs.com
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

So, here's a working definition:

1) cannot directly read or write files on the server.
2) cannot bind network ports
3) uses only the SPI interface to interact with postgresql tables etc.
4) does any logging only using elog to the postgres log

Questions:

a) it seems like there should be some kind of restriction on access to
memory, but I'm not clear on how that would be defined.

b) where are we with the whole trusted module thing? Like for CPAN
modules etc.

--
-- Josh Berkus
PostgreSQL Experts Inc.
http://www.pgexperts.com

In response to

Re: Specification for Trusted PLs? at 2010-05-21 13:04:01 from Tom Lane

Responses

Re: Specification for Trusted PLs? at 2010-05-21 15:57:33 from Magnus Hagander
Re: Specification for Trusted PLs? at 2010-05-24 02:25:57 from Craig Ringer

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Magnus Hagander	2010-05-21 15:57:33	Re: Specification for Trusted PLs?
Previous Message	Pavel Stehule	2010-05-21 15:10:43	Re: unnailing shared relations (was Re: global temporary tables)