Quick Links

Re: Allowing to create LEAKPROOF functions to non-superuser

From:	Andres Freund <andres(at)anarazel(dot)de>
To:	Andrey Borodin <x4mmm(at)yandex-team(dot)ru>
Cc:	Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>, pgsql-hackers <pgsql-hackers(at)postgresql(dot)org>
Subject:	Re: Allowing to create LEAKPROOF functions to non-superuser
Date:	2021-04-12 21:01:47
Message-ID:	20210412210147.jpn3gcgfgpdcrc43@alap3.anarazel.de
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

Hi,

On 2021-04-12 23:51:02 +0300, Andrey Borodin wrote:
> Do I risk having some extra superusers in my installation if I allow
> everyone to create LEAKPROOF functions?

I think that depends on what you define "superuser" to exactly
be. Defining it as "has a path to executing arbitrary native code", I
don't think, if implemented sensibly, allowing to set LEAKPROOF on new
functions would equate superuser permissions. But you soon after might
hit further limitations where lifting them would have such a risk,
e.g. defining new types with in/out functions.

Greetings,

Andres Freund

In response to

Re: Allowing to create LEAKPROOF functions to non-superuser at 2021-04-12 20:51:02 from Andrey Borodin

Responses

Re: Allowing to create LEAKPROOF functions to non-superuser at 2021-04-12 21:10:35 from Andrey Borodin
Re: Allowing to create LEAKPROOF functions to non-superuser at 2021-04-12 21:14:20 from Tom Lane

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Andrey Borodin	2021-04-12 21:10:35	Re: Allowing to create LEAKPROOF functions to non-superuser
Previous Message	Andrey Borodin	2021-04-12 20:59:53	Re: Allowing to create LEAKPROOF functions to non-superuser