| From: | Kohei Kaigai <Kohei(dot)Kaigai(at)EU(dot)NEC(dot)COM> |
|---|---|
| To: | "robertmhaas(at)gmail(dot)com" <robertmhaas(at)gmail(dot)com> |
| Cc: | "pgsql-hackers(at)postgresql(dot)org" <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | [sepgsql] missing checks of process:transition on trusted procedure invocation |
| Date: | 2011-04-04 15:01:51 |
| Message-ID: | A9F5079BABDEE646AEBDB6831725762C52B55BDAA0@EUEXCLU01.EU.NEC.COM |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
Sorry, I missed a permission check on invocation of trusted procedures.
When client's label getting switched to Y from X, we needed to check
process:transition permission between label X and label Y.
It is same manner when OS launches a program with a special label to
cause domain transition.
The attached patch adds checks this permission when user tries to
invoke a trusted procedure and switch security label of the client.
In addition, it also adds a case of regression test of this problem.
Thanks,
--
NEC Europe Ltd, SAP Global Competence Center
KaiGai Kohei <kohei(dot)kaigai(at)eu(dot)nec(dot)com>
| Attachment | Content-Type | Size |
|---|---|---|
| sepgsql-fix-domain-transition.1.patch | application/octet-stream | 4.6 KB |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Robert Haas | 2011-04-04 15:04:09 | Re: GSoC proposal: Fast GiST index build |
| Previous Message | Robert Haas | 2011-04-04 15:01:15 | Re: cast from integer to money |