| From: | Nathan Bossart <nathandbossart(at)gmail(dot)com> |
|---|---|
| To: | DIPESH DHAMELIYA <dipeshdhameliya125(at)gmail(dot)com> |
| Cc: | pgsql-hackers(at)postgresql(dot)org, tgl(at)sss(dot)pgh(dot)pa(dot)us |
| Subject: | Re: Clarification on DROP OWNED BY command in PG18 |
| Date: | 2025-09-16 14:38:02 |
| Message-ID: | aMl2Su_hRL9-G2Bq@nathan |
| Views: | Whole Thread | Raw Message | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
Thanks for reporting.
On Mon, Sep 15, 2025 at 10:43:06PM +0530, DIPESH DHAMELIYA wrote:
> Starting from commit 98fc31d (PG18 only), there is a new behaviour for
> DROP OWNED BY command where it deletes entries from pg_auth_members
> (including entries with ADMIN option). This change can cause a user/role
> to lose the ability to DROP the role for which DROP OWNED BY was
> executed. Even when following the documentation guidance[0], users cannot
> DROP ROLE (except superuser). The same guidance succeeds on
> REL_17_STABLE.
Yeah, that doesn't seem right to me. It's quite late in the game for v18,
and given the low severity of the bug that commit 98fc31d intended to fix
and the fact that it wasn't back-patched, I'm wondering if we should revert
for v18 and revisit in v19.
--
nathan
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Robert Haas | 2025-09-16 14:42:57 | Re: Improving the names generated for indexes on expressions |
| Previous Message | Robert Haas | 2025-09-16 14:17:42 | Re: plan shape work |