| From: | Stephen Frost <sfrost(at)snowman(dot)net> |
|---|---|
| To: | Andres Freund <andres(at)anarazel(dot)de> |
| Cc: | pgsql-hackers(at)postgresql(dot)org |
| Subject: | Re: Warnings around booleans |
| Date: | 2015-08-12 20:46:01 |
| Message-ID: | 20150812204601.GO3685@tamriel.snowman.net |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
* Andres Freund (andres(at)anarazel(dot)de) wrote:
> I find that a somewhat ugly coding pattern, but since the rest of the
> function is written that way...
Agreed, but not going to change it at this point.
Would love feedback on the attached. I included the variable renames
discussed previously with Noah as they're quite minor changes.
Had no trouble cherry-picking this back to 9.5.
> > I'll do that and add regression tests for it and any others which don't
> > get tested. My thinking on the test is to independently change each
> > value and then poll for all role attributes set and verify that the only
> > change made was the change expected.
>
> Do that if you like, but what I really think we should have is a test
> that tries to bypass rls and fails, then the user gets changes and it
> succeeds, and then it gets disabled and fails again. This really seems
> test-worthy behaviour to me.
I'll look at doing this also in the rowsecurity regression suite, but I
really like having this coverage of CREATE/ALTER ROLE too, plus testing
the role dump/restore paths in pg_dumpall which I don't think were being
covered at all previously...
Thanks!
Stephen
| Attachment | Content-Type | Size |
|---|---|---|
| bypassrls-fix.patch | text/x-diff | 30.6 KB |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Robert Haas | 2015-08-12 20:47:55 | Re: Raising our compiler requirements for 9.6 |
| Previous Message | Andres Freund | 2015-08-12 20:43:24 | Re: Raising our compiler requirements for 9.6 |