NotificationsYou must be signed in to change notification settings
Fork6
Star31

Commit9406884

committed

Fix column-privilege leak in error-message paths

While building error messages to return to the user,BuildIndexValueDescription and ri_ReportViolation would happily includethe entire key or entire row in the result returned to the user, even ifthe user didn't have access to view all of the columns being included.Instead, include only those columns which the user is providing or whichthe user has select rights on. If the user does not have any rightsto view the table or any of the columns involved then no detail isprovided and a NULL value is returned from BuildIndexValueDescription.Note that, for key cases, the user must have access to all of thecolumns for the key to be shown; a partial key will not be returned.Back-patch all the way, as column-level privileges are now in allsupported versions.This has been assignedCVE-2014-8161, but since the issue and the patchhave already been publicized on pgsql-hackers, there's no point in tryingto hide this commit.

1 parent8eb1e9d commit9406884Copy full SHA for 9406884

File tree

10 files changed

+215

-35

lines changed

src
- backend
  - access
    - index
      - genam.c
    - nbtree
      - nbtinsert.c
  - commands
    - copy.c
    - trigger.c
  - executor
    - execMain.c
    - execUtils.c
  - utils
    - adt
      - ri_triggers.c
    - sort
      - tuplesort.c
- test/regress
  - expected
    - privileges.out
  - sql
    - privileges.sql

10 files changed

+215

-35

lines changed

`‎src/backend/access/index/genam.c`

Lines changed: 58 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -25,9 +25,11 @@`
`25`	`25`	`#include"miscadmin.h"`
`26`	`26`	`#include"pgstat.h"`
`27`	`27`	`#include"storage/bufmgr.h"`
	`28`	`+#include"utils/acl.h"`
`28`	`29`	`#include"utils/builtins.h"`
`29`	`30`	`#include"utils/lsyscache.h"`
`30`	`31`	`#include"utils/rel.h"`
	`32`	`+#include"utils/syscache.h"`
`31`	`33`	`#include"utils/tqual.h"`
`32`	`34`
`33`	`35`
`@@ -150,6 +152,11 @@ IndexScanEnd(IndexScanDesc scan)`
`150`	`152`	`* form "(key_name, ...)=(key_value, ...)". This is currently used`
`151`	`153`	`* for building unique-constraint and exclusion-constraint error messages.`
`152`	`154`	`*`
	`155`	`+ * Note that if the user does not have permissions to view all of the`
	`156`	`+ * columns involved then a NULL is returned. Returning a partial key seems`
	`157`	`+ * unlikely to be useful and we have no way to know which of the columns the`
	`158`	`+ * user provided.`
	`159`	`+ *`
`153`	`160`	`* The passed-in values/nulls arrays are the "raw" input to the index AM,`
`154`	`161`	`* e.g. results of FormIndexDatum --- this is not necessarily what is stored`
`155`	`162`	`* in the index, but it's what the user perceives to be stored.`
`@@ -159,13 +166,62 @@ BuildIndexValueDescription(Relation indexRelation,`
`159`	`166`	`Datumvalues,boolisnull)`
`160`	`167`	`{`
`161`	`168`	`StringInfoDatabuf;`
	`169`	`+Form_pg_indexidxrec;`
	`170`	`+HeapTupleht_idx;`
`162`	`171`	`intnatts=indexRelation->rd_rel->relnatts;`
`163`	`172`	`inti;`
	`173`	`+intkeyno;`
	`174`	`+Oidindexrelid=RelationGetRelid(indexRelation);`
	`175`	`+Oidindrelid;`
	`176`	`+AclResultaclresult;`
	`177`	`+`
	`178`	`+/*`
	`179`	`+ * Check permissions- if the user does not have access to view all of the`
	`180`	`+ * key columns then return NULL to avoid leaking data.`
	`181`	`+ *`
	`182`	`+ * First we need to check table-level SELECT access and then, if`
	`183`	`+ * there is no access there, check column-level permissions.`
	`184`	`+ */`
	`185`	`+`
	`186`	`+/*`
	`187`	`+ * Fetch the pg_index tuple by the Oid of the index`
	`188`	`+ */`
	`189`	`+ht_idx=SearchSysCache1(INDEXRELID,ObjectIdGetDatum(indexrelid));`
	`190`	`+if (!HeapTupleIsValid(ht_idx))`
	`191`	`+elog(ERROR,"cache lookup failed for index %u",indexrelid);`
	`192`	`+idxrec= (Form_pg_index)GETSTRUCT(ht_idx);`
	`193`	`+`
	`194`	`+indrelid=idxrec->indrelid;`
	`195`	`+Assert(indexrelid==idxrec->indexrelid);`
	`196`	`+`
	`197`	`+/* Table-level SELECT is enough, if the user has it */`
	`198`	`+aclresult=pg_class_aclcheck(indrelid,GetUserId(),ACL_SELECT);`
	`199`	`+if (aclresult!=ACLCHECK_OK)`
	`200`	`+{`
	`201`	`+/*`
	`202`	`+ * No table-level access, so step through the columns in the`
	`203`	`+ * index and make sure the user has SELECT rights on all of them.`
	`204`	`+ */`
	`205`	`+for (keyno=0;keyno<idxrec->indnatts;keyno++)`
	`206`	`+{`
	`207`	`+AttrNumberattnum=idxrec->indkey.values[keyno];`
	`208`	`+`
	`209`	`+aclresult=pg_attribute_aclcheck(indrelid,attnum,GetUserId(),`
	`210`	`+ACL_SELECT);`
	`211`	`+`
	`212`	`+if (aclresult!=ACLCHECK_OK)`
	`213`	`+{`
	`214`	`+/* No access, so clean up and return */`
	`215`	`+ReleaseSysCache(ht_idx);`
	`216`	`+returnNULL;`
	`217`	`+}`
	`218`	`+}`
	`219`	`+}`
	`220`	`+ReleaseSysCache(ht_idx);`
`164`	`221`
`165`	`222`	`initStringInfo(&buf);`
`166`	`223`	`appendStringInfo(&buf,"(%s)=(",`
`167`		`-pg_get_indexdef_columns(RelationGetRelid(indexRelation),`
`168`		`- true));`
	`224`	`+pg_get_indexdef_columns(indexrelid, true));`
`169`	`225`
`170`	`226`	`for (i=0;i<natts;i++)`
`171`	`227`	`{`

`‎src/backend/access/nbtree/nbtinsert.c`

Lines changed: 7 additions & 3 deletions

Original file line number	Diff line number	Diff line change
`@@ -385,16 +385,20 @@ _bt_check_unique(Relation rel, IndexTuple itup, Relation heapRel,`
`385`	`385`	`{`
`386`	`386`	`Datumvalues[INDEX_MAX_KEYS];`
`387`	`387`	`boolisnull[INDEX_MAX_KEYS];`
	`388`	`+char*key_desc;`
`388`	`389`
`389`	`390`	`index_deform_tuple(itup,RelationGetDescr(rel),`
`390`	`391`	`values,isnull);`
	`392`	`+`
	`393`	`+key_desc=BuildIndexValueDescription(rel,values,`
	`394`	`+isnull);`
	`395`	`+`
`391`	`396`	`ereport(ERROR,`
`392`	`397`	`(errcode(ERRCODE_UNIQUE_VIOLATION),`
`393`	`398`	`errmsg("duplicate key value violates unique constraint \"%s\"",`
`394`	`399`	`RelationGetRelationName(rel)),`
`395`		`-errdetail("Key %s already exists.",`
`396`		`-BuildIndexValueDescription(rel,`
`397`		`-values,isnull))));`
	`400`	`+key_desc ?errdetail("Key %s already exists.",`
	`401`	`+key_desc) :0));`
`398`	`402`	`}`
`399`	`403`	`}`
`400`	`404`	`elseif (all_dead)`

`‎src/backend/commands/copy.c`

Lines changed: 5 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -148,6 +148,7 @@ typedef struct CopyStateData`
`148`	`148`	`Oidtypioparams;/ array of element types for in_functions */`
`149`	`149`	`intdefmap;/ array of default att numbers */`
`150`	`150`	`ExprState*defexprs;/ array of default att expressions */`
	`151`	`+List*range_table;`
`151`	`152`
`152`	`153`	`/*`
`153`	`154`	`* These variables are used to reduce overhead in textual COPY FROM.`
`@@ -737,6 +738,7 @@ DoCopy(const CopyStmt stmt, const char queryString)`
`737`	`738`	`boolpipe= (stmt->filename==NULL);`
`738`	`739`	`Relationrel;`
`739`	`740`	`uint64processed;`
	`741`	`+RangeTblEntry*rte;`
`740`	`742`
`741`	`743`	`/* Disallow file COPY except to superusers. */`
`742`	`744`	`if (!pipe&& !superuser())`
`@@ -750,7 +752,6 @@ DoCopy(const CopyStmt stmt, const char queryString)`
`750`	`752`	`{`
`751`	`753`	`TupleDesctupDesc;`
`752`	`754`	`AclModerequired_access= (is_from ?ACL_INSERT :ACL_SELECT);`
`753`		`-RangeTblEntry*rte;`
`754`	`755`	`List*attnums;`
`755`	`756`	`ListCell*cur;`
`756`	`757`
`@@ -795,13 +796,15 @@ DoCopy(const CopyStmt stmt, const char queryString)`
`795`	`796`
`796`	`797`	`cstate=BeginCopyFrom(rel,stmt->filename,`
`797`	`798`	`stmt->attlist,stmt->options);`
	`799`	`+cstate->range_table=list_make1(rte);`
`798`	`800`	`processed=CopyFrom(cstate);/* copy from file to database */`
`799`	`801`	`EndCopyFrom(cstate);`
`800`	`802`	`}`
`801`	`803`	`else`
`802`	`804`	`{`
`803`	`805`	`cstate=BeginCopyTo(rel,stmt->query,queryString,stmt->filename,`
`804`	`806`	`stmt->attlist,stmt->options);`
	`807`	`+cstate->range_table=list_make1(rte);`
`805`	`808`	`processed=DoCopyTo(cstate);/* copy from database to file */`
`806`	`809`	`EndCopyTo(cstate);`
`807`	`810`	`}`
`@@ -1933,6 +1936,7 @@ CopyFrom(CopyState cstate)`
`1933`	`1936`	`estate->es_result_relations=resultRelInfo;`
`1934`	`1937`	`estate->es_num_result_relations=1;`
`1935`	`1938`	`estate->es_result_relation_info=resultRelInfo;`
	`1939`	`+estate->es_range_table=cstate->range_table;`
`1936`	`1940`
`1937`	`1941`	`/* Set up a tuple slot too */`
`1938`	`1942`	`myslot=ExecInitExtraTupleSlot(estate);`

`‎src/backend/commands/trigger.c`

Lines changed: 6 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -60,6 +60,12 @@`
`60`	`60`	`intSessionReplicationRole=SESSION_REPLICATION_ROLE_ORIGIN;`
`61`	`61`
`62`	`62`
	`63`	`+/*`
	`64`	`+ * Note that this macro also exists in executor/execMain.c. There does not`
	`65`	`+ * appear to be any good header to put it into, given the structures that`
	`66`	`+ * it uses, so we let them be duplicated. Be sure to update both if one needs`
	`67`	`+ * to be changed, however.`
	`68`	`+ */`
`63`	`69`	`#defineGetModifiedColumns(relinfo,estate) \`
`64`	`70`	`(rt_fetch((relinfo)->ri_RangeTableIndex, (estate)->es_range_table)->modifiedCols)`
`65`	`71`

`‎src/backend/executor/execMain.c`

Lines changed: 9 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -95,6 +95,15 @@ static void intorel_receive(TupleTableSlot slot, DestReceiver self);`
`95`	`95`	`staticvoidintorel_shutdown(DestReceiver*self);`
`96`	`96`	`staticvoidintorel_destroy(DestReceiver*self);`
`97`	`97`
	`98`	`+/*`
	`99`	`+ * Note that this macro also exists in commands/trigger.c. There does not`
	`100`	`+ * appear to be any good header to put it into, given the structures that`
	`101`	`+ * it uses, so we let them be duplicated. Be sure to update both if one needs`
	`102`	`+ * to be changed, however.`
	`103`	`+ */`
	`104`	`+#defineGetModifiedColumns(relinfo,estate) \`
	`105`	`+(rt_fetch((relinfo)->ri_RangeTableIndex, (estate)->es_range_table)->modifiedCols)`
	`106`	`+`
`98`	`107`	`/* end of local decls */`
`99`	`108`
`100`	`109`

`‎src/backend/executor/execUtils.c`

Lines changed: 8 additions & 4 deletions

Original file line number	Diff line number	Diff line change
`@@ -1307,15 +1307,19 @@ check_exclusion_constraint(Relation heap, Relation index, IndexInfo *indexInfo,`
`1307`	`1307`	`(errcode(ERRCODE_EXCLUSION_VIOLATION),`
`1308`	`1308`	`errmsg("could not create exclusion constraint \"%s\"",`
`1309`	`1309`	`RelationGetRelationName(index)),`
`1310`		`-errdetail("Key %s conflicts with key %s.",`
`1311`		`-error_new,error_existing)));`
	`1310`	`+error_new&&error_existing ?`
	`1311`	`+errdetail("Key %s conflicts with key %s.",`
	`1312`	`+error_new,error_existing) :`
	`1313`	`+errdetail("Key conflicts exist.")));`
`1312`	`1314`	`else`
`1313`	`1315`	`ereport(ERROR,`
`1314`	`1316`	`(errcode(ERRCODE_EXCLUSION_VIOLATION),`
`1315`	`1317`	`errmsg("conflicting key value violates exclusion constraint \"%s\"",`
`1316`	`1318`	`RelationGetRelationName(index)),`
`1317`		`-errdetail("Key %s conflicts with existing key %s.",`
`1318`		`-error_new,error_existing)));`
	`1319`	`+error_new&&error_existing ?`
	`1320`	`+errdetail("Key %s conflicts with existing key %s.",`
	`1321`	`+error_new,error_existing) :`
	`1322`	`+errdetail("Key conflicts with existing key.")));`
`1319`	`1323`	`}`
`1320`	`1324`
`1321`	`1325`	`index_endscan(index_scan);`

`‎src/backend/utils/adt/ri_triggers.c`

Lines changed: 63 additions & 22 deletions

Original file line number	Diff line number	Diff line change
`@@ -3495,6 +3495,9 @@ ri_ReportViolation(RI_QueryKey qkey, const char constrname,`
`3495`	`3495`	`boolonfk;`
`3496`	`3496`	`intidx,`
`3497`	`3497`	`key_idx;`
	`3498`	`+Oidrel_oid;`
	`3499`	`+AclResultaclresult;`
	`3500`	`+boolhas_perm= true;`
`3498`	`3501`
`3499`	`3502`	`if (spi_err)`
`3500`	`3503`	`ereport(ERROR,`
`@@ -3513,12 +3516,14 @@ ri_ReportViolation(RI_QueryKey qkey, const char constrname,`
`3513`	`3516`	`if (onfk)`
`3514`	`3517`	`{`
`3515`	`3518`	`key_idx=RI_KEYPAIR_FK_IDX;`
	`3519`	`+rel_oid=fk_rel->rd_id;`
`3516`	`3520`	`if (tupdesc==NULL)`
`3517`	`3521`	`tupdesc=fk_rel->rd_att;`
`3518`	`3522`	`}`
`3519`	`3523`	`else`
`3520`	`3524`	`{`
`3521`	`3525`	`key_idx=RI_KEYPAIR_PK_IDX;`
	`3526`	`+rel_oid=pk_rel->rd_id;`
`3522`	`3527`	`if (tupdesc==NULL)`
`3523`	`3528`	`tupdesc=pk_rel->rd_att;`
`3524`	`3529`	`}`
`@@ -3538,45 +3543,81 @@ ri_ReportViolation(RI_QueryKey qkey, const char constrname,`
`3538`	`3543`	`RelationGetRelationName(pk_rel))));`
`3539`	`3544`	`}`
`3540`	`3545`
`3541`		`-/* Get printable versions of the keys involved */`
`3542`		`-initStringInfo(&key_names);`
`3543`		`-initStringInfo(&key_values);`
`3544`		`-for (idx=0;idx<qkey->nkeypairs;idx++)`
	`3546`	`+/*`
	`3547`	`+ * Check permissions- if the user does not have access to view the data in`
	`3548`	`+ * any of the key columns then we don't include the errdetail() below.`
	`3549`	`+ *`
	`3550`	`+ * Check table-level permissions first and, failing that, column-level`
	`3551`	`+ * privileges.`
	`3552`	`+ */`
	`3553`	`+aclresult=pg_class_aclcheck(rel_oid,GetUserId(),ACL_SELECT);`
	`3554`	`+if (aclresult!=ACLCHECK_OK)`
`3545`	`3555`	`{`
`3546`		`-intfnum=qkey->keypair[idx][key_idx];`
`3547`		`-char*name,`
`3548`		`-*val;`
`3549`		`-`
`3550`		`-name=SPI_fname(tupdesc,fnum);`
`3551`		`-val=SPI_getvalue(violator,tupdesc,fnum);`
`3552`		`-if (!val)`
`3553`		`-val="null";`
	`3556`	`+/* Try for column-level permissions */`
	`3557`	`+for (idx=0;idx<qkey->nkeypairs;idx++)`
	`3558`	`+{`
	`3559`	`+aclresult=pg_attribute_aclcheck(rel_oid,qkey->keypair[idx][key_idx],`
	`3560`	`+GetUserId(),`
	`3561`	`+ACL_SELECT);`
	`3562`	`+/* No access to the key */`
	`3563`	`+if (aclresult!=ACLCHECK_OK)`
	`3564`	`+{`
	`3565`	`+has_perm= false;`
	`3566`	`+break;`
	`3567`	`+}`
	`3568`	`+}`
	`3569`	`+}`
`3554`	`3570`
`3555`		`-if (idx>0)`
	`3571`	`+if (has_perm)`
	`3572`	`+{`
	`3573`	`+/* Get printable versions of the keys involved */`
	`3574`	`+initStringInfo(&key_names);`
	`3575`	`+initStringInfo(&key_values);`
	`3576`	`+for (idx=0;idx<qkey->nkeypairs;idx++)`
`3556`	`3577`	`{`
`3557`		`-appendStringInfoString(&key_names,", ");`
`3558`		`-appendStringInfoString(&key_values,", ");`
	`3578`	`+intfnum=qkey->keypair[idx][key_idx];`
	`3579`	`+char*name,`
	`3580`	`+*val;`
	`3581`	`+`
	`3582`	`+name=SPI_fname(tupdesc,fnum);`
	`3583`	`+val=SPI_getvalue(violator,tupdesc,fnum);`
	`3584`	`+if (!val)`
	`3585`	`+val="null";`
	`3586`	`+`
	`3587`	`+if (idx>0)`
	`3588`	`+{`
	`3589`	`+appendStringInfoString(&key_names,", ");`
	`3590`	`+appendStringInfoString(&key_values,", ");`
	`3591`	`+}`
	`3592`	`+appendStringInfoString(&key_names,name);`
	`3593`	`+appendStringInfoString(&key_values,val);`
`3559`	`3594`	`}`
`3560`		`-appendStringInfoString(&key_names,name);`
`3561`		`-appendStringInfoString(&key_values,val);`
`3562`	`3595`	`}`
`3563`	`3596`
`3564`	`3597`	`if (onfk)`
`3565`	`3598`	`ereport(ERROR,`
`3566`	`3599`	`(errcode(ERRCODE_FOREIGN_KEY_VIOLATION),`
`3567`	`3600`	`errmsg("insert or update on table \"%s\" violates foreign key constraint \"%s\"",`
`3568`		`-RelationGetRelationName(fk_rel),constrname),`
`3569`		`-errdetail("Key (%s)=(%s) is not present in table \"%s\".",`
`3570`		`-key_names.data,key_values.data,`
`3571`		`-RelationGetRelationName(pk_rel))));`
	`3601`	`+RelationGetRelationName(fk_rel),`
	`3602`	`+constrname),`
	`3603`	`+has_perm ?`
	`3604`	`+errdetail("Key (%s)=(%s) is not present in table \"%s\".",`
	`3605`	`+key_names.data,key_values.data,`
	`3606`	`+RelationGetRelationName(pk_rel)) :`
	`3607`	`+errdetail("Key is not present in table \"%s\".",`
	`3608`	`+RelationGetRelationName(pk_rel))));`
`3572`	`3609`	`else`
`3573`	`3610`	`ereport(ERROR,`
`3574`	`3611`	`(errcode(ERRCODE_FOREIGN_KEY_VIOLATION),`
`3575`	`3612`	`errmsg("update or delete on table \"%s\" violates foreign key constraint \"%s\" on table \"%s\"",`
`3576`	`3613`	`RelationGetRelationName(pk_rel),`
`3577`		`-constrname,RelationGetRelationName(fk_rel)),`
	`3614`	`+constrname,`
	`3615`	`+RelationGetRelationName(fk_rel)),`
	`3616`	`+has_perm ?`
`3578`	`3617`	`errdetail("Key (%s)=(%s) is still referenced from table \"%s\".",`
`3579`	`3618`	`key_names.data,key_values.data,`
	`3619`	`+RelationGetRelationName(fk_rel)) :`
	`3620`	`+errdetail("Key is still referenced from table \"%s\".",`
`3580`	`3621`	`RelationGetRelationName(fk_rel))));`
`3581`	`3622`	`}`
`3582`	`3623`

`‎src/backend/utils/sort/tuplesort.c`

Lines changed: 6 additions & 3 deletions

Original file line number	Diff line number	Diff line change
`@@ -3124,15 +3124,18 @@ comparetup_index_btree(const SortTuple a, const SortTuple b,`
`3124`	`3124`	`{`
`3125`	`3125`	`Datumvalues[INDEX_MAX_KEYS];`
`3126`	`3126`	`boolisnull[INDEX_MAX_KEYS];`
	`3127`	`+char*key_desc;`
`3127`	`3128`
`3128`	`3129`	`index_deform_tuple(tuple1,tupDes,values,isnull);`
	`3130`	`+`
	`3131`	`+key_desc=BuildIndexValueDescription(state->indexRel,values,isnull);`
	`3132`	`+`
`3129`	`3133`	`ereport(ERROR,`
`3130`	`3134`	`(errcode(ERRCODE_UNIQUE_VIOLATION),`
`3131`	`3135`	`errmsg("could not create unique index \"%s\"",`
`3132`	`3136`	`RelationGetRelationName(state->indexRel)),`
`3133`		`-errdetail("Key %s is duplicated.",`
`3134`		`-BuildIndexValueDescription(state->indexRel,`
`3135`		`-values,isnull))));`
	`3137`	`+key_desc ?errdetail("Key %s is duplicated.",key_desc) :`
	`3138`	`+errdetail("Duplicate keys exist.")));`
`3136`	`3139`	`}`
`3137`	`3140`
`3138`	`3141`	`/*`

`‎src/test/regress/expected/privileges.out`

Lines changed: 28 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -362,6 +362,34 @@ SELECT atest6 FROM atest6; -- ok`
`362`	`362`	`(0 rows)`
`363`	`363`
`364`	`364`	`COPY atest6 TO stdout; -- ok`
	`365`	`+-- check error reporting with column privs`
	`366`	`+SET SESSION AUTHORIZATION regressuser1;`
	`367`	`+CREATE TABLE t1 (c1 int, c2 int, c3 int check (c3 < 5), primary key (c1, c2));`
	`368`	`+NOTICE: CREATE TABLE / PRIMARY KEY will create implicit index "t1_pkey" for table "t1"`
	`369`	`+GRANT SELECT (c1) ON t1 TO regressuser2;`
	`370`	`+GRANT INSERT (c1, c2, c3) ON t1 TO regressuser2;`
	`371`	`+GRANT UPDATE (c1, c2, c3) ON t1 TO regressuser2;`
	`372`	`+-- seed data`
	`373`	`+INSERT INTO t1 VALUES (1, 1, 1);`
	`374`	`+INSERT INTO t1 VALUES (1, 2, 1);`
	`375`	`+INSERT INTO t1 VALUES (2, 1, 2);`
	`376`	`+INSERT INTO t1 VALUES (2, 2, 2);`
	`377`	`+INSERT INTO t1 VALUES (3, 1, 3);`
	`378`	`+SET SESSION AUTHORIZATION regressuser2;`
	`379`	`+INSERT INTO t1 (c1, c2) VALUES (1, 1); -- fail, but row not shown`
	`380`	`+ERROR: duplicate key value violates unique constraint "t1_pkey"`
	`381`	`+UPDATE t1 SET c2 = 1; -- fail, but row not shown`
	`382`	`+ERROR: duplicate key value violates unique constraint "t1_pkey"`
	`383`	`+INSERT INTO t1 (c1, c2) VALUES (null, null); -- fail, but see columns being inserted`
	`384`	`+ERROR: null value in column "c1" violates not-null constraint`
	`385`	`+INSERT INTO t1 (c3) VALUES (null); -- fail, but see columns being inserted or have SELECT`
	`386`	`+ERROR: null value in column "c1" violates not-null constraint`
	`387`	`+INSERT INTO t1 (c1) VALUES (5); -- fail, but see columns being inserted or have SELECT`
	`388`	`+ERROR: null value in column "c2" violates not-null constraint`
	`389`	`+UPDATE t1 SET c3 = 10; -- fail, but see columns with SELECT rights, or being modified`
	`390`	`+ERROR: new row for relation "t1" violates check constraint "t1_c3_check"`
	`391`	`+SET SESSION AUTHORIZATION regressuser1;`
	`392`	`+DROP TABLE t1;`
`365`	`393`	`-- test column-level privileges when involved with DELETE`
`366`	`394`	`SET SESSION AUTHORIZATION regressuser1;`
`367`	`395`	`ALTER TABLE atest6 ADD COLUMN three integer;`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit9406884

File tree

10 files changed

10 files changed

`‎src/backend/access/index/genam.c`

`‎src/backend/access/nbtree/nbtinsert.c`

`‎src/backend/commands/copy.c`

`‎src/backend/commands/trigger.c`

`‎src/backend/executor/execMain.c`

`‎src/backend/executor/execUtils.c`

`‎src/backend/utils/adt/ri_triggers.c`

`‎src/backend/utils/sort/tuplesort.c`

`‎src/test/regress/expected/privileges.out`

0 commit comments