| From: | "Joel Jacobson" <joel(at)compiler(dot)org> |
|---|---|
| To: | "Michael Paquier" <michael(at)paquier(dot)xyz> |
| Cc: | "Tom Lane" <tgl(at)sss(dot)pgh(dot)pa(dot)us>, "Postgres hackers" <pgsql-hackers(at)lists(dot)postgresql(dot)org> |
| Subject: | Re: pgsql: Add pg_get_acl() to get the ACL for a database object |
| Date: | 2024-07-05 08:40:39 |
| Message-ID: | f2539bff-64be-47f0-9f0b-df85d3cc0432@app.fastmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-committers pgsql-hackers |
On Fri, Jul 5, 2024, at 01:18, Michael Paquier wrote:
> I would still stick to only one function, with arguments coming from
> scanning pg_[sh]depend.
>
>> I found some code in aclchk.c on line 4452-4468 that seems useful,
>> but not sure. Maybe there is some other existing code that is better
>> as an inspiration?
>
> My first feelings about that was that subobjids are only used for
> pg_attribute, so if we use them as a base, it would look like:
> - Adding a new AttrNumber in ObjectProperty to track to which column
> the subobjid should apply and its catcache number (ATTNUM for the
> attribute number for fast lookup).
> - Extend get_catalog_object_by_oid() with more data: the attribute
> column for the subobjid scan stored in ObjectProperty, the subobjid
> value given by the caller. If get_catalog_object_by_oid()'s caller
> defines a subobjid, use get_object_catcache_oid() on it over the main
> OID one. If it cannot be found in the cache, use a scan key based on
> the class OID and the subobjid.
>
>> I guess we need to handle the RelationRelationId separately,
>> and handle all other classes using the current code in pg_get_acl()?
>
> But most of that simply blows away because we track the dependency to
> the attribute ACLs in pg_shdepend based on pg_class, not pg_attribute.
> get_attname() itself relies on ATTNUM, so perhaps that's OK to just
> add an exception based on RelationRelationId in the code path of
> pg_get_acl(). That makes me a bit uncomfortable to derive more from
> the other routines for the object descriptions, but we've been living
> with that in getObjectDescription() for years now, as well.
OK, I made an attempt to implement this, based on adapting code from
recordExtObjInitPriv() in aclchk.c, which retrieves ACL based on ATTNUM.
There are now two different code paths for columns and non-columns.
It sounds like a bigger refactoring in this area would be nice,
which would enable cleaning up code in other functions as well,
but maybe that's better to do as a separate project.
I've also updated func.sgml, adjusted pg_proc.dat, and added
regression tests for column privileges.
Regards,
Joel
| Attachment | Content-Type | Size |
|---|---|---|
| 0001-Extend-pg_get_acl-to-handle-sub-object-IDs.patch | application/octet-stream | 10.8 KB |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Michael Paquier | 2024-07-05 09:13:28 | pgsql: Support loading of injection points |
| Previous Message | Heikki Linnakangas | 2024-07-05 08:33:33 | pgsql: Lift limitation that PGPROC->links must be the first field |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Amit Kapila | 2024-07-05 08:53:13 | Re: Conflict Detection and Resolution |
| Previous Message | Heikki Linnakangas | 2024-07-05 08:34:06 | Re: Cleanup: PGProc->links doesn't need to be the first field anymore |