On Fri, Jan 21, 2011 at 9:55 AM, Tom Lane <[email protected]> wrote: > Robert Haas <[email protected]> writes: >> For that matter, I wonder what happens with regular function >> permissions. If the plan inlines the function and then somebody goes >> and changes the permission on the function and makes it SECURITY >> DEFINER, what happens? > > ALTER FUNCTION is supposed to cause plan invalidation in such a case. > Not sure if GRANT plays nice with that though.
And in the case of SE-Linux, this could get changed from outside the database. Not sure how to handle that. I guess we could just never inline anything, but that might be an overreaction. -- Robert Haas EnterpriseDB: http://www.enterprisedb.com The Enterprise PostgreSQL Company -- Sent via pgsql-hackers mailing list ([email protected]) To make changes to your subscription: http://www.postgresql.org/mailpref/pgsql-hackers
