NotificationsYou must be signed in to change notification settings
Fork6
Star31

Commit29dd6d8

committed

Prevent non-superusers from reading pg_backend_memory_contexts, by default.

pg_backend_memory_contexts view contains some internal information ofmemory contexts. Since exposing them to any users by default may causesecurity issue, this commit allows only superusers to read this view,by default, like we do for pg_shmem_allocations view.Bump catalog version.Author: Atsushi TorikoshiReviewed-by: Michael Paquier, Fujii MasaoDiscussion:https://postgr.es/m/1414992.1597849297@sss.pgh.pa.us

1 parentc34605d commit29dd6d8Copy full SHA for 29dd6d8

File tree

3 files changed

-1

lines changed

doc/src/sgml
- catalogs.sgml
src
- backend/catalog
  - system_views.sql
- include/catalog
  - catversion.h

3 files changed

-1

lines changed

`‎doc/src/sgml/catalogs.sgml`

Lines changed: 4 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -9697,6 +9697,10 @@ SCRAM-SHA-256$<replaceable><iteration count></replaceable>:<replaceable>&l`
`9697`	`9697`	`</tgroup>`
`9698`	`9698`	`</table>`
`9699`	`9699`
	`9700`	`+ <para>`
	`9701`	`+ By default, the <structname>pg_backend_memory_contexts</structname> view can be`
	`9702`	`+ read only by superusers.`
	`9703`	`+ </para>`
`9700`	`9704`	`</sect1>`
`9701`	`9705`
`9702`	`9706`	`<sect1 id="view-pg-config">`

`‎src/backend/catalog/system_views.sql`

Lines changed: 3 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -557,6 +557,9 @@ REVOKE EXECUTE ON FUNCTION pg_get_shmem_allocations() FROM PUBLIC;`
`557`	`557`	`CREATEVIEWpg_backend_memory_contextsAS`
`558`	`558`	`SELECT*FROM pg_get_backend_memory_contexts();`
`559`	`559`
	`560`	`+REVOKE ALLON pg_backend_memory_contextsFROM PUBLIC;`
	`561`	`+REVOKE EXECUTEON FUNCTION pg_get_backend_memory_contexts()FROM PUBLIC;`
	`562`	`+`
`560`	`563`	`-- Statistics views`
`561`	`564`
`562`	`565`	`CREATEVIEWpg_stat_all_tablesAS`

`‎src/include/catalog/catversion.h`

Lines changed: 1 addition & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -53,6 +53,6 @@`
`53`	`53`	`*/`
`54`	`54`
`55`	`55`	`/yyyymmddN /`
`56`		`-#defineCATALOG_VERSION_NO202008191`
	`56`	`+#defineCATALOG_VERSION_NO202008261`
`57`	`57`
`58`	`58`	`#endif`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit29dd6d8

File tree

3 files changed

3 files changed

`‎doc/src/sgml/catalogs.sgml`

`‎src/backend/catalog/system_views.sql`

`‎src/include/catalog/catversion.h`

0 commit comments