NotificationsYou must be signed in to change notification settings
Fork6
Star31

Commit7b30490

committed

First step done,

below is the patch to have views to override the permission checks for the accessed tables. Now we can do the following: CREATE VIEW db_user AS SELECT usename, usesysid, usecreatedb, usetrace, usecatupd, '**********'::text as passwd, valuntil FROM pg_user; REVOKE ALL ON pg_user FROM public; REVOKE ALL ON db_user FROM public; GRANT SELECT ON db_user TO public;

1 parent7343288 commit7b30490Copy full SHA for 7b30490

File tree

7 files changed

+126

-17

lines changed

src
- backend
  - executor
    - execMain.c
  - nodes
    - copyfuncs.c
  - parser
    - gram.c
    - scan.c
  - rewrite
    - rewriteHandler.c
- include/nodes
  - parsenodes.h
- interfaces/ecpg
  - Makefile

7 files changed

+126

-17

lines changed

`‎src/backend/executor/execMain.c‎`

Lines changed: 12 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -26,7 +26,7 @@`
`26`	`26`	`*`
`27`	`27`	`*`
`28`	`28`	`* IDENTIFICATION`
`29`		`- * $Header: /cvsroot/pgsql/src/backend/executor/execMain.c,v 1.42 1998/02/13 03:26:38 vadim Exp $`
	`29`	`+ * $Header: /cvsroot/pgsql/src/backend/executor/execMain.c,v 1.43 1998/02/21 06:31:37 scrappy Exp $`
`30`	`30`	`*`
`31`	`31`	`*-------------------------------------------------------------------------`
`32`	`32`	`*/`
`@@ -299,6 +299,17 @@ ExecCheckPerms(CmdType operation,`
`299`	`299`	`{`
`300`	`300`	`RangeTblEntry*rte=lfirst(lp);`
`301`	`301`
	`302`	`+if (rte->skipAcl)`
	`303`	`+{`
	`304`	`+/*`
	`305`	`+ * This happens if the access to this table is due`
	`306`	`+ * to a view query rewriting - the rewrite handler`
	`307`	`+ * checked the permissions against the view owner,`
	`308`	`+ * so we just skip this entry.`
	`309`	`+ */`
	`310`	`+continue;`
	`311`	`+}`
	`312`	`+`
`302`	`313`	`relid=rte->relid;`
`303`	`314`	`htp=SearchSysCacheTuple(RELOID,`
`304`	`315`	`ObjectIdGetDatum(relid),`

`‎src/backend/nodes/copyfuncs.c‎`

Lines changed: 2 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -7,7 +7,7 @@`
`7`	`7`	`*`
`8`	`8`	`*`
`9`	`9`	`* IDENTIFICATION`
`10`		`- * $Header: /cvsroot/pgsql/src/backend/nodes/copyfuncs.c,v 1.38 1998/02/13 03:27:42 vadim Exp $`
	`10`	`+ * $Header: /cvsroot/pgsql/src/backend/nodes/copyfuncs.c,v 1.39 1998/02/21 06:31:40 scrappy Exp $`
`11`	`11`	`*`
`12`	`12`	`*-------------------------------------------------------------------------`
`13`	`13`	`*/`
`@@ -1495,6 +1495,7 @@ _copyRangeTblEntry(RangeTblEntry *from)`
`1495`	`1495`	`newnode->relid=from->relid;`
`1496`	`1496`	`newnode->inh=from->inh;`
`1497`	`1497`	`newnode->inFromCl=from->inFromCl;`
	`1498`	`+newnode->skipAcl=from->skipAcl;`
`1498`	`1499`
`1499`	`1500`
`1500`	`1501`	`returnnewnode;`

`‎src/backend/parser/gram.c‎`

Lines changed: 4 additions & 4 deletions

Original file line number	Diff line number	Diff line change
`@@ -210,7 +210,7 @@`
`210`	`210`	`*`
`211`	`211`	`*`
`212`	`212`	`* IDENTIFICATION`
`213`		`- * $Header: /cvsroot/pgsql/src/backend/parser/Attic/gram.c,v 2.1 1998/02/18 07:28:06 thomas Exp $`
	`213`	`+ * $Header: /cvsroot/pgsql/src/backend/parser/Attic/gram.c,v 2.2 1998/02/21 06:31:46 scrappy Exp $`
`214`	`214`	`*`
`215`	`215`	`* HISTORY`
`216`	`216`	`* AUTHORDATEMAJOR EVENT`
`@@ -3753,7 +3753,7 @@ static const short yycheck[] = { 3,`
`3753`	`3753`	`-1,-1,-1,172`
`3754`	`3754`	`};`
`3755`	`3755`	/* --C-- Note some compilers choke on comments on `#line' lines. */
`3756`		`-#line 3 "/usr/lib/bison.simple"`
	`3756`	`+#line 3 "/usr/share/misc/bison.simple"`
`3757`	`3757`
`3758`	`3758`	`/* Skeleton output parser for bison,`
`3759`	`3759`	`Copyright (C) 1984, 1989, 1990 Free Software Foundation, Inc.`
`@@ -3946,7 +3946,7 @@ __yy_memcpy (char to, char from, int count)`
`3946`	`3946`	`#endif`
`3947`	`3947`	`#endif`
`3948`	`3948`
`3949`		`-#line 196 "/usr/lib/bison.simple"`
	`3949`	`+#line 196 "/usr/share/misc/bison.simple"`
`3950`	`3950`
`3951`	`3951`	`/* The user can define YYPARSE_PARAM as the name of an argument to be passed`
`3952`	`3952`	`into yyparse. The argument should have type void *.`
`@@ -9401,7 +9401,7 @@ case 842:`
`9401`	`9401`	`break;}`
`9402`	`9402`	`}`
`9403`	`9403`	`/* the action file gets copied in in place of this dollarsign */`
`9404`		`-#line 498 "/usr/lib/bison.simple"`
	`9404`	`+#line 498 "/usr/share/misc/bison.simple"`
`9405`	`9405`
`9406`	`9406`	`yyvsp-=yylen;`
`9407`	`9407`	`yyssp-=yylen;`

`‎src/backend/parser/scan.c‎`

Lines changed: 2 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -1,7 +1,7 @@`
`1`	`1`	`/* A lexical scanner generated by flex */`
`2`	`2`
`3`	`3`	`/* Scanner skeleton version:`
`4`		`- * $Header: /cvsroot/pgsql/src/backend/parser/Attic/scan.c,v 1.14 1998/02/18 07:23:22 thomas Exp $`
	`4`	`+ * $Header: /cvsroot/pgsql/src/backend/parser/Attic/scan.c,v 1.15 1998/02/21 06:31:52 scrappy Exp $`
`5`	`5`	`*/`
`6`	`6`
`7`	`7`	`#defineFLEX_SCANNER`
`@@ -547,7 +547,7 @@ char *yytext;`
`547`	`547`	`*`
`548`	`548`	`*`
`549`	`549`	`* IDENTIFICATION`
`550`		`- * $Header: /cvsroot/pgsql/src/backend/parser/Attic/scan.c,v 1.14 1998/02/18 07:23:22 thomas Exp $`
	`550`	`+ * $Header: /cvsroot/pgsql/src/backend/parser/Attic/scan.c,v 1.15 1998/02/21 06:31:52 scrappy Exp $`
`551`	`551`	`*`
`552`	`552`	`*-------------------------------------------------------------------------`
`553`	`553`	`*/`

`‎src/backend/rewrite/rewriteHandler.c‎`

Lines changed: 104 additions & 6 deletions

Original file line number	Diff line number	Diff line change
`@@ -6,10 +6,11 @@`
`6`	`6`	`*`
`7`	`7`	`*`
`8`	`8`	`* IDENTIFICATION`
`9`		`- * $Header: /cvsroot/pgsql/src/backend/rewrite/rewriteHandler.c,v 1.11 1998/01/2104:24:36 momjian Exp $`
	`9`	`+ * $Header: /cvsroot/pgsql/src/backend/rewrite/rewriteHandler.c,v 1.12 1998/02/2106:31:57 scrappy Exp $`
`10`	`10`	`*`
`11`	`11`	`*-------------------------------------------------------------------------`
`12`	`12`	`*/`
	`13`	`+#include<string.h>`
`13`	`14`	`#include"postgres.h"`
`14`	`15`	`#include"miscadmin.h"`
`15`	`16`	`#include"utils/palloc.h"`
`@@ -29,13 +30,19 @@`
`29`	`30`	`#include"commands/creatinh.h"`
`30`	`31`	`#include"access/heapam.h"`
`31`	`32`
	`33`	`+#include"utils/syscache.h"`
	`34`	`+#include"utils/acl.h"`
	`35`	`+#include"catalog/pg_user.h"`
	`36`	`+`
`32`	`37`	`staticvoidApplyRetrieveRule(Queryparsetree,RewriteRulerule,`
`33`		`-intrt_index,intrelation_level,int*modified);`
	`38`	`+intrt_index,intrelation_level,`
	`39`	`+Relationrelation,int*modified);`
`34`	`40`	`staticListfireRules(Queryparsetree,intrt_index,CmdTypeevent,`
`35`	`41`	`boolinstead_flag,Listlocks,List**qual_products);`
`36`	`42`	`staticvoidQueryRewriteSubLink(Node*node);`
`37`	`43`	`staticListQueryRewriteOne(Queryparsetree);`
`38`	`44`	`staticListdeepRewriteQuery(Queryparsetree);`
	`45`	`+staticvoidCheckViewPerms(Relationview,List*rtable);`
`39`	`46`
`40`	`47`	`/*`
`41`	`48`	`* gatherRewriteMeta -`
`@@ -219,7 +226,7 @@ FireRetrieveRulesAtQuery(Query *parsetree,`
`219`	`226`	`*instead_flag= TRUE;`
`220`	`227`	`returnrule_lock->actions;`
`221`	`228`	`}`
`222`		`-ApplyRetrieveRule(parsetree,rule_lock,rt_index,relation_level,`
	`229`	`+ApplyRetrieveRule(parsetree,rule_lock,rt_index,relation_level,relation,`
`223`	`230`	`&modified);`
`224`	`231`	`if (modified)`
`225`	`232`	`{`
`@@ -247,6 +254,7 @@ ApplyRetrieveRule(Query *parsetree,`
`247`	`254`	`RewriteRule*rule,`
`248`	`255`	`intrt_index,`
`249`	`256`	`intrelation_level,`
	`257`	`+Relationrelation,`
`250`	`258`	`int*modified)`
`251`	`259`	`{`
`252`	`260`	`Query*rule_action=NULL;`
`@@ -256,16 +264,41 @@ ApplyRetrieveRule(Query *parsetree,`
`256`	`264`	`intnothing,`
`257`	`265`	`rt_length;`
`258`	`266`	`intbadsql= FALSE;`
	`267`	`+intviewAclOverride= FALSE;`
`259`	`268`
`260`	`269`	`rule_qual=rule->qual;`
`261`	`270`	`if (rule->actions)`
`262`	`271`	`{`
`263`	`272`	`if (length(rule->actions)>1)/* ??? because we don't handle`
`264`		`- * rules with more than one`
`265`		`- * action? -ay */`
	`273`	`+ * rules with more than one`
	`274`	`+ * action? -ay */`
	`275`	`+`
	`276`	`+/* WARNING!!!`
	`277`	`+ * If we sometimes handle`
	`278`	`+ * rules with more than one`
	`279`	`+ * action, the view acl checks`
	`280`	`+ * might get broken.`
	`281`	`+ * viewAclOverride should only`
	`282`	`+ * become true (below) if this`
	`283`	`+ * is a relation_level, instead,`
	`284`	`+ * select query - Jan`
	`285`	`+ */`
`266`	`286`	`return;`
`267`	`287`	`rule_action=copyObject(lfirst(rule->actions));`
`268`	`288`	`nothing= FALSE;`
	`289`	`+`
	`290`	`+/*`
	`291`	`+ * If this rule is on the relation level, the rule action`
	`292`	`+ * is a select and the rule is instead then it must be`
	`293`	`+ * a view. Permissions for views now follow the owner of`
	`294`	`+ * the view, not the current user.`
	`295`	`+ */`
	`296`	`+if (relation_level&&rule_action->commandType==CMD_SELECT`
	`297`	`+&&rule->isInstead)`
	`298`	`+{`
	`299`	`+CheckViewPerms(relation,rule_action->rtable);`
	`300`	`+viewAclOverride= TRUE;`
	`301`	`+}`
`269`	`302`	`}`
`270`	`303`	`else`
`271`	`304`	`{`
`@@ -284,7 +317,30 @@ ApplyRetrieveRule(Query *parsetree,`
`284`	`317`	`rte->inFromCl= false;`
`285`	`318`	`}`
`286`	`319`	`rt_length=length(rtable);`
`287`		`-rtable=nconc(rtable,copyObject(rule_action->rtable));`
	`320`	`+`
	`321`	`+if (viewAclOverride)`
	`322`	`+{`
	`323`	`+Listrule_rtable,rule_rt;`
	`324`	`+RangeTblEntry*rte;`
	`325`	`+`
	`326`	`+rule_rtable=copyObject(rule_action->rtable);`
	`327`	`+foreach(rule_rt,rule_rtable)`
	`328`	`+{`
	`329`	`+rte=lfirst(rule_rt);`
	`330`	`+`
	`331`	`+/*`
	`332`	`+ * tell the executor that the ACL check on this`
	`333`	`+ * range table entry is already done`
	`334`	`+ */`
	`335`	`+rte->skipAcl= true;`
	`336`	`+}`
	`337`	`+`
	`338`	`+rtable=nconc(rtable,rule_rtable);`
	`339`	`+}`
	`340`	`+else`
	`341`	`+{`
	`342`	`+rtable=nconc(rtable,copyObject(rule_action->rtable));`
	`343`	`+}`
`288`	`344`	`parsetree->rtable=rtable;`
`289`	`345`
`290`	`346`	`rule_action->rtable=rtable;`
`@@ -750,3 +806,45 @@ deepRewriteQuery(Query *parsetree)`
`750`	`806`
`751`	`807`	`returnrewritten;`
`752`	`808`	`}`
	`809`	`+`
	`810`	`+`
	`811`	`+staticvoid`
	`812`	`+CheckViewPerms(Relationview,List*rtable)`
	`813`	`+{`
	`814`	`+HeapTupleutup;`
	`815`	`+NameDatauname;`
	`816`	`+List*rt;`
	`817`	`+RangeTblEntry*rte;`
	`818`	`+int32aclcheck_res;`
	`819`	`+`
	`820`	`+/*`
	`821`	`+ * get the usename of the view's owner`
	`822`	`+ */`
	`823`	`+utup=SearchSysCacheTuple(USESYSID,view->rd_rel->relowner,0,0,0);`
	`824`	`+if (!HeapTupleIsValid(utup))`
	`825`	`+{`
	`826`	`+elog(ERROR,"cache lookup for userid %d failed",`
	`827`	`+view->rd_rel->relowner);`
	`828`	`+}`
	`829`	`+StrNCpy(uname.data,`
	`830`	`+((Form_pg_user)GETSTRUCT(utup))->usename.data,`
	`831`	`+NAMEDATALEN);`
	`832`	`+`
	`833`	`+/*`
	`834`	`+ * check that we have read access to all the`
	`835`	`+ * classes in the range table of the view`
	`836`	`+ */`
	`837`	`+foreach(rt,rtable)`
	`838`	`+{`
	`839`	`+rte= (RangeTblEntry*)lfirst(rt);`
	`840`	`+`
	`841`	`+aclcheck_res=pg_aclcheck(rte->relname,uname.data,ACL_RD);`
	`842`	`+if (aclcheck_res!=ACLCHECK_OK)`
	`843`	`+{`
	`844`	`+elog(ERROR,"%s: %s",rte->relname,aclcheck_error_strings[aclcheck_res]);`
	`845`	`+}`
	`846`	`+}`
	`847`	`+}`
	`848`	`+`
	`849`	`+`
	`850`	`+`

`‎src/include/nodes/parsenodes.h‎`

Lines changed: 2 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -6,7 +6,7 @@`
`6`	`6`	`*`
`7`	`7`	`* Copyright (c) 1994, Regents of the University of California`
`8`	`8`	`*`
`9`		`- * $Id: parsenodes.h,v 1.47 1998/02/10 16:04:26 momjian Exp $`
	`9`	`+ * $Id: parsenodes.h,v 1.48 1998/02/21 06:32:02 scrappy Exp $`
`10`	`10`	`*`
`11`	`11`	`*-------------------------------------------------------------------------`
`12`	`12`	`*/`
`@@ -864,6 +864,7 @@ typedef struct RangeTblEntry`
`864`	`864`	`Oidrelid;`
`865`	`865`	`boolinh;/* inheritance? */`
`866`	`866`	`boolinFromCl;/* comes from From Clause */`
	`867`	`+boolskipAcl;/* skip ACL check in executor */`
`867`	`868`	`}RangeTblEntry;`
`868`	`869`
`869`	`870`	`/*`

`‎src/interfaces/ecpg/Makefile‎`

Lines changed: 0 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -1,7 +1,5 @@`
`1`	`1`	`SUBDIRS = include lib preproc doc`
`2`	`2`
`3`	`3`	`allinstalluninstallclean:`
`4`		`-$(MAKE) -C include$@`
`5`	`4`	`$(MAKE) -C lib$@`
`6`	`5`	`$(MAKE) -C preproc$@`
`7`		`-#$(MAKE) -C doc $@`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit7b30490

File tree

7 files changed

7 files changed

`‎src/backend/executor/execMain.c‎`

`‎src/backend/nodes/copyfuncs.c‎`

`‎src/backend/parser/gram.c‎`

`‎src/backend/parser/scan.c‎`

`‎src/backend/rewrite/rewriteHandler.c‎`

`‎src/include/nodes/parsenodes.h‎`

`‎src/interfaces/ecpg/Makefile‎`

0 commit comments