Commit 6dc24961 authored by Peter Eisentraut's avatar Peter Eisentraut

Code cleanup of user name and user id handling in the backend. The current

user is now defined in terms of the user id, the user name is only computed
upon request (for display purposes). This is kind of the opposite of the
previous state, which would maintain the user name and compute the user id
for permission checks.

Besides perhaps saving a few cycles (integer vs string), this now creates a
single point of attack for changing the user id during a connection, for
purposes of "setuid" functions, etc.
parent daf1e3a7
...@@ -8,7 +8,7 @@ ...@@ -8,7 +8,7 @@
* Portions Copyright (c) 1994, Regents of the University of California * Portions Copyright (c) 1994, Regents of the University of California
* *
* IDENTIFICATION * IDENTIFICATION
* $Header: /cvsroot/pgsql/src/backend/bootstrap/bootstrap.c,v 1.92 2000/08/03 19:19:06 tgl Exp $ * $Header: /cvsroot/pgsql/src/backend/bootstrap/bootstrap.c,v 1.93 2000/09/06 14:15:14 petere Exp $
* *
*------------------------------------------------------------------------- *-------------------------------------------------------------------------
*/ */
...@@ -355,7 +355,7 @@ BootstrapMain(int argc, char *argv[]) ...@@ -355,7 +355,7 @@ BootstrapMain(int argc, char *argv[])
/* /*
* backend initialization * backend initialization
*/ */
InitPostgres(dbName); InitPostgres(dbName, NULL);
LockDisable(true); LockDisable(true);
if (IsUnderPostmaster && !xloginit) if (IsUnderPostmaster && !xloginit)
......
...@@ -8,7 +8,7 @@ ...@@ -8,7 +8,7 @@
* *
* *
* IDENTIFICATION * IDENTIFICATION
* $Header: /cvsroot/pgsql/src/backend/catalog/aclchk.c,v 1.39 2000/07/31 22:39:13 tgl Exp $ * $Header: /cvsroot/pgsql/src/backend/catalog/aclchk.c,v 1.40 2000/09/06 14:15:15 petere Exp $
* *
* NOTES * NOTES
* See acl.h. * See acl.h.
...@@ -355,21 +355,22 @@ aclcheck(char *relname, Acl *acl, AclId id, AclIdType idtype, AclMode mode) ...@@ -355,21 +355,22 @@ aclcheck(char *relname, Acl *acl, AclId id, AclIdType idtype, AclMode mode)
} }
int32 int32
pg_aclcheck(char *relname, char *usename, AclMode mode) pg_aclcheck(char *relname, Oid userid, AclMode mode)
{ {
HeapTuple tuple; HeapTuple tuple;
AclId id;
Acl *acl = (Acl *) NULL; Acl *acl = (Acl *) NULL;
int32 result; int32 result;
char *usename;
Relation relation; Relation relation;
tuple = SearchSysCacheTuple(SHADOWNAME, tuple = SearchSysCacheTuple(SHADOWSYSID,
PointerGetDatum(usename), ObjectIdGetDatum(userid),
0, 0, 0); 0, 0, 0);
if (!HeapTupleIsValid(tuple)) if (!HeapTupleIsValid(tuple))
elog(ERROR, "pg_aclcheck: user \"%s\" not found", elog(ERROR, "pg_aclcheck: invalid user id %u",
usename); (unsigned) userid);
id = (AclId) ((Form_pg_shadow) GETSTRUCT(tuple))->usesysid;
usename = NameStr(((Form_pg_shadow) GETSTRUCT(tuple))->usename);
/* /*
* Deny anyone permission to update a system catalog unless * Deny anyone permission to update a system catalog unless
...@@ -445,28 +446,28 @@ pg_aclcheck(char *relname, char *usename, AclMode mode) ...@@ -445,28 +446,28 @@ pg_aclcheck(char *relname, char *usename, AclMode mode)
} }
heap_close(relation, RowExclusiveLock); heap_close(relation, RowExclusiveLock);
#endif #endif
result = aclcheck(relname, acl, id, (AclIdType) ACL_IDTYPE_UID, mode); result = aclcheck(relname, acl, userid, (AclIdType) ACL_IDTYPE_UID, mode);
if (acl) if (acl)
pfree(acl); pfree(acl);
return result; return result;
} }
int32 int32
pg_ownercheck(const char *usename, pg_ownercheck(Oid userid,
const char *value, const char *value,
int cacheid) int cacheid)
{ {
HeapTuple tuple; HeapTuple tuple;
AclId user_id, AclId owner_id = 0;
owner_id = 0; char *usename;
tuple = SearchSysCacheTuple(SHADOWNAME, tuple = SearchSysCacheTuple(SHADOWSYSID,
PointerGetDatum(usename), ObjectIdGetDatum(userid),
0, 0, 0); 0, 0, 0);
if (!HeapTupleIsValid(tuple)) if (!HeapTupleIsValid(tuple))
elog(ERROR, "pg_ownercheck: user \"%s\" not found", elog(ERROR, "pg_ownercheck: invalid user id %u",
usename); (unsigned) userid);
user_id = (AclId) ((Form_pg_shadow) GETSTRUCT(tuple))->usesysid; usename = NameStr(((Form_pg_shadow) GETSTRUCT(tuple))->usename);
/* /*
* Superusers bypass all permission-checking. * Superusers bypass all permission-checking.
...@@ -513,26 +514,26 @@ pg_ownercheck(const char *usename, ...@@ -513,26 +514,26 @@ pg_ownercheck(const char *usename,
break; break;
} }
return user_id == owner_id; return userid == owner_id;
} }
int32 int32
pg_func_ownercheck(char *usename, pg_func_ownercheck(Oid userid,
char *funcname, char *funcname,
int nargs, int nargs,
Oid *arglist) Oid *arglist)
{ {
HeapTuple tuple; HeapTuple tuple;
AclId user_id, AclId owner_id;
owner_id; char *username;
tuple = SearchSysCacheTuple(SHADOWNAME, tuple = SearchSysCacheTuple(SHADOWSYSID,
PointerGetDatum(usename), ObjectIdGetDatum(userid),
0, 0, 0); 0, 0, 0);
if (!HeapTupleIsValid(tuple)) if (!HeapTupleIsValid(tuple))
elog(ERROR, "pg_func_ownercheck: user \"%s\" not found", elog(ERROR, "pg_func_ownercheck: invalid user id %u",
usename); (unsigned) userid);
user_id = (AclId) ((Form_pg_shadow) GETSTRUCT(tuple))->usesysid; username = NameStr(((Form_pg_shadow) GETSTRUCT(tuple))->usename);
/* /*
* Superusers bypass all permission-checking. * Superusers bypass all permission-checking.
...@@ -541,7 +542,7 @@ pg_func_ownercheck(char *usename, ...@@ -541,7 +542,7 @@ pg_func_ownercheck(char *usename,
{ {
#ifdef ACLDEBUG_TRACE #ifdef ACLDEBUG_TRACE
elog(DEBUG, "pg_ownercheck: user \"%s\" is superuser", elog(DEBUG, "pg_ownercheck: user \"%s\" is superuser",
usename); username);
#endif #endif
return 1; return 1;
} }
...@@ -556,25 +557,25 @@ pg_func_ownercheck(char *usename, ...@@ -556,25 +557,25 @@ pg_func_ownercheck(char *usename,
owner_id = ((Form_pg_proc) GETSTRUCT(tuple))->proowner; owner_id = ((Form_pg_proc) GETSTRUCT(tuple))->proowner;
return user_id == owner_id; return userid == owner_id;
} }
int32 int32
pg_aggr_ownercheck(char *usename, pg_aggr_ownercheck(Oid userid,
char *aggname, char *aggname,
Oid basetypeID) Oid basetypeID)
{ {
HeapTuple tuple; HeapTuple tuple;
AclId user_id, AclId owner_id;
owner_id; char *username;
tuple = SearchSysCacheTuple(SHADOWNAME, tuple = SearchSysCacheTuple(SHADOWSYSID,
PointerGetDatum(usename), PointerGetDatum(userid),
0, 0, 0); 0, 0, 0);
if (!HeapTupleIsValid(tuple)) if (!HeapTupleIsValid(tuple))
elog(ERROR, "pg_aggr_ownercheck: user \"%s\" not found", elog(ERROR, "pg_aggr_ownercheck: invalid user id %u",
usename); (unsigned) userid);
user_id = (AclId) ((Form_pg_shadow) GETSTRUCT(tuple))->usesysid; username = NameStr(((Form_pg_shadow) GETSTRUCT(tuple))->usename);
/* /*
* Superusers bypass all permission-checking. * Superusers bypass all permission-checking.
...@@ -583,7 +584,7 @@ pg_aggr_ownercheck(char *usename, ...@@ -583,7 +584,7 @@ pg_aggr_ownercheck(char *usename,
{ {
#ifdef ACLDEBUG_TRACE #ifdef ACLDEBUG_TRACE
elog(DEBUG, "pg_aggr_ownercheck: user \"%s\" is superuser", elog(DEBUG, "pg_aggr_ownercheck: user \"%s\" is superuser",
usename); username);
#endif #endif
return 1; return 1;
} }
...@@ -598,5 +599,5 @@ pg_aggr_ownercheck(char *usename, ...@@ -598,5 +599,5 @@ pg_aggr_ownercheck(char *usename,
owner_id = ((Form_pg_aggregate) GETSTRUCT(tuple))->aggowner; owner_id = ((Form_pg_aggregate) GETSTRUCT(tuple))->aggowner;
return user_id == owner_id; return userid == owner_id;
} }
...@@ -8,7 +8,7 @@ ...@@ -8,7 +8,7 @@
* *
* *
* IDENTIFICATION * IDENTIFICATION
* $Header: /cvsroot/pgsql/src/backend/commands/analyze.c,v 1.5 2000/08/21 17:22:32 tgl Exp $ * $Header: /cvsroot/pgsql/src/backend/commands/analyze.c,v 1.6 2000/09/06 14:15:16 petere Exp $
* *
*------------------------------------------------------------------------- *-------------------------------------------------------------------------
...@@ -99,7 +99,7 @@ analyze_rel(Oid relid, List *anal_cols2, int MESSAGE_LEVEL) ...@@ -99,7 +99,7 @@ analyze_rel(Oid relid, List *anal_cols2, int MESSAGE_LEVEL)
onerel = heap_open(relid, AccessShareLock); onerel = heap_open(relid, AccessShareLock);
#ifndef NO_SECURITY #ifndef NO_SECURITY
if (!pg_ownercheck(GetPgUserName(), RelationGetRelationName(onerel), if (!pg_ownercheck(GetUserId(), RelationGetRelationName(onerel),
RELNAME)) RELNAME))
{ {
/* we already did an elog during vacuum /* we already did an elog during vacuum
......
...@@ -8,7 +8,7 @@ ...@@ -8,7 +8,7 @@
* *
* *
* IDENTIFICATION * IDENTIFICATION
* $Header: /cvsroot/pgsql/src/backend/commands/Attic/command.c,v 1.97 2000/08/29 04:20:43 momjian Exp $ * $Header: /cvsroot/pgsql/src/backend/commands/Attic/command.c,v 1.98 2000/09/06 14:15:16 petere Exp $
* *
* NOTES * NOTES
* The PerformAddAttribute() code, like most of the relation * The PerformAddAttribute() code, like most of the relation
...@@ -308,7 +308,7 @@ AlterTableAddColumn(const char *relationName, ...@@ -308,7 +308,7 @@ AlterTableAddColumn(const char *relationName,
elog(ERROR, "ALTER TABLE: relation \"%s\" is a system catalog", elog(ERROR, "ALTER TABLE: relation \"%s\" is a system catalog",
relationName); relationName);
#ifndef NO_SECURITY #ifndef NO_SECURITY
if (!pg_ownercheck(UserName, relationName, RELNAME)) if (!pg_ownercheck(GetUserId(), relationName, RELNAME))
elog(ERROR, "ALTER TABLE: permission denied"); elog(ERROR, "ALTER TABLE: permission denied");
#endif #endif
...@@ -523,7 +523,7 @@ AlterTableAlterColumn(const char *relationName, ...@@ -523,7 +523,7 @@ AlterTableAlterColumn(const char *relationName,
elog(ERROR, "ALTER TABLE: relation \"%s\" is a system catalog", elog(ERROR, "ALTER TABLE: relation \"%s\" is a system catalog",
relationName); relationName);
#ifndef NO_SECURITY #ifndef NO_SECURITY
if (!pg_ownercheck(UserName, relationName, RELNAME)) if (!pg_ownercheck(GetUserId(), relationName, RELNAME))
elog(ERROR, "ALTER TABLE: permission denied"); elog(ERROR, "ALTER TABLE: permission denied");
#endif #endif
...@@ -935,7 +935,7 @@ AlterTableDropColumn(const char *relationName, ...@@ -935,7 +935,7 @@ AlterTableDropColumn(const char *relationName,
elog(ERROR, "ALTER TABLE: relation \"%s\" is a system catalog", elog(ERROR, "ALTER TABLE: relation \"%s\" is a system catalog",
relationName); relationName);
#ifndef NO_SECURITY #ifndef NO_SECURITY
if (!pg_ownercheck(UserName, relationName, RELNAME)) if (!pg_ownercheck(GetUserId(), relationName, RELNAME))
elog(ERROR, "ALTER TABLE: permission denied"); elog(ERROR, "ALTER TABLE: permission denied");
#endif #endif
...@@ -1095,7 +1095,7 @@ AlterTableAddConstraint(char *relationName, ...@@ -1095,7 +1095,7 @@ AlterTableAddConstraint(char *relationName,
elog(ERROR, "ALTER TABLE / ADD CONSTRAINT passed invalid constraint."); elog(ERROR, "ALTER TABLE / ADD CONSTRAINT passed invalid constraint.");
#ifndef NO_SECURITY #ifndef NO_SECURITY
if (!pg_ownercheck(UserName, relationName, RELNAME)) if (!pg_ownercheck(GetUserId(), relationName, RELNAME))
elog(ERROR, "ALTER TABLE: permission denied"); elog(ERROR, "ALTER TABLE: permission denied");
#endif #endif
...@@ -1484,7 +1484,7 @@ AlterTableCreateToastTable(const char *relationName, bool silent) ...@@ -1484,7 +1484,7 @@ AlterTableCreateToastTable(const char *relationName, bool silent)
* permissions checking. XXX exactly what is appropriate here? * permissions checking. XXX exactly what is appropriate here?
*/ */
#ifndef NO_SECURITY #ifndef NO_SECURITY
if (!pg_ownercheck(UserName, relationName, RELNAME)) if (!pg_ownercheck(GetUserId(), relationName, RELNAME))
elog(ERROR, "ALTER TABLE: permission denied"); elog(ERROR, "ALTER TABLE: permission denied");
#endif #endif
...@@ -1723,9 +1723,9 @@ LockTableCommand(LockStmt *lockstmt) ...@@ -1723,9 +1723,9 @@ LockTableCommand(LockStmt *lockstmt)
rel = heap_openr(lockstmt->relname, NoLock); rel = heap_openr(lockstmt->relname, NoLock);
if (lockstmt->mode == AccessShareLock) if (lockstmt->mode == AccessShareLock)
aclresult = pg_aclcheck(lockstmt->relname, GetPgUserName(), ACL_RD); aclresult = pg_aclcheck(lockstmt->relname, GetUserId(), ACL_RD);
else else
aclresult = pg_aclcheck(lockstmt->relname, GetPgUserName(), ACL_WR); aclresult = pg_aclcheck(lockstmt->relname, GetUserId(), ACL_WR);
if (aclresult != ACLCHECK_OK) if (aclresult != ACLCHECK_OK)
elog(ERROR, "LOCK TABLE: permission denied"); elog(ERROR, "LOCK TABLE: permission denied");
......
...@@ -281,7 +281,7 @@ CommentRelation(int reltype, char *relname, char *comment) ...@@ -281,7 +281,7 @@ CommentRelation(int reltype, char *relname, char *comment)
/*** First, check object security ***/ /*** First, check object security ***/
#ifndef NO_SECURITY #ifndef NO_SECURITY
if (!pg_ownercheck(GetPgUserName(), relname, RELNAME)) if (!pg_ownercheck(GetUserId(), relname, RELNAME))
elog(ERROR, "you are not permitted to comment on class '%s'", relname); elog(ERROR, "you are not permitted to comment on class '%s'", relname);
#endif #endif
...@@ -347,7 +347,7 @@ CommentAttribute(char *relname, char *attrname, char *comment) ...@@ -347,7 +347,7 @@ CommentAttribute(char *relname, char *attrname, char *comment)
/*** First, check object security ***/ /*** First, check object security ***/
#ifndef NO_SECURITY #ifndef NO_SECURITY
if (!pg_ownercheck(GetPgUserName(), relname, RELNAME)) if (!pg_ownercheck(GetUserId(), relname, RELNAME))
elog(ERROR, "you are not permitted to comment on class '%s\'", relname); elog(ERROR, "you are not permitted to comment on class '%s\'", relname);
#endif #endif
...@@ -395,9 +395,8 @@ CommentDatabase(char *database, char *comment) ...@@ -395,9 +395,8 @@ CommentDatabase(char *database, char *comment)
HeapScanDesc scan; HeapScanDesc scan;
Oid oid; Oid oid;
bool superuser; bool superuser;
int4 dba, int4 dba;
userid; Oid userid;
char *username;
/*** First find the tuple in pg_database for the database ***/ /*** First find the tuple in pg_database for the database ***/
...@@ -416,12 +415,11 @@ CommentDatabase(char *database, char *comment) ...@@ -416,12 +415,11 @@ CommentDatabase(char *database, char *comment)
/*** Now, fetch user information ***/ /*** Now, fetch user information ***/
username = GetPgUserName(); userid = GetUserId();
usertuple = SearchSysCacheTuple(SHADOWNAME, PointerGetDatum(username), usertuple = SearchSysCacheTuple(SHADOWSYSID, ObjectIdGetDatum(userid),
0, 0, 0); 0, 0, 0);
if (!HeapTupleIsValid(usertuple)) if (!HeapTupleIsValid(usertuple))
elog(ERROR, "current user '%s' does not exist", username); elog(ERROR, "invalid user id %u", (unsigned) userid);
userid = ((Form_pg_shadow) GETSTRUCT(usertuple))->usesysid;
superuser = ((Form_pg_shadow) GETSTRUCT(usertuple))->usesuper; superuser = ((Form_pg_shadow) GETSTRUCT(usertuple))->usesuper;
/*** Allow if the userid matches the database dba or is a superuser ***/ /*** Allow if the userid matches the database dba or is a superuser ***/
...@@ -461,16 +459,14 @@ CommentRewrite(char *rule, char *comment) ...@@ -461,16 +459,14 @@ CommentRewrite(char *rule, char *comment)
HeapTuple rewritetuple; HeapTuple rewritetuple;
Oid oid; Oid oid;
char *user, char *relation;
*relation;
int aclcheck; int aclcheck;
/*** First, validate user ***/ /*** First, validate user ***/
#ifndef NO_SECURITY #ifndef NO_SECURITY
user = GetPgUserName();
relation = RewriteGetRuleEventRel(rule); relation = RewriteGetRuleEventRel(rule);
aclcheck = pg_aclcheck(relation, user, ACL_RU); aclcheck = pg_aclcheck(relation, GetUserId(), ACL_RU);
if (aclcheck != ACLCHECK_OK) if (aclcheck != ACLCHECK_OK)
{ {
elog(ERROR, "you are not permitted to comment on rule '%s'", elog(ERROR, "you are not permitted to comment on rule '%s'",
...@@ -510,13 +506,11 @@ CommentType(char *type, char *comment) ...@@ -510,13 +506,11 @@ CommentType(char *type, char *comment)
HeapTuple typetuple; HeapTuple typetuple;
Oid oid; Oid oid;
char *user;
/*** First, validate user ***/ /*** First, validate user ***/
#ifndef NO_SECURITY #ifndef NO_SECURITY
user = GetPgUserName(); if (!pg_ownercheck(GetUserId(), type, TYPENAME))
if (!pg_ownercheck(user, type, TYPENAME))
{ {
elog(ERROR, "you are not permitted to comment on type '%s'", elog(ERROR, "you are not permitted to comment on type '%s'",
type); type);
...@@ -556,7 +550,6 @@ CommentAggregate(char *aggregate, char *argument, char *comment) ...@@ -556,7 +550,6 @@ CommentAggregate(char *aggregate, char *argument, char *comment)
Oid baseoid, Oid baseoid,
oid; oid;
bool defined; bool defined;
char *user;
/*** First, attempt to determine the base aggregate oid ***/ /*** First, attempt to determine the base aggregate oid ***/
...@@ -572,8 +565,7 @@ CommentAggregate(char *aggregate, char *argument, char *comment) ...@@ -572,8 +565,7 @@ CommentAggregate(char *aggregate, char *argument, char *comment)
/*** Next, validate the user's attempt to comment ***/ /*** Next, validate the user's attempt to comment ***/
#ifndef NO_SECURITY #ifndef NO_SECURITY
user = GetPgUserName(); if (!pg_aggr_ownercheck(GetUserId(), aggregate, baseoid))
if (!pg_aggr_ownercheck(user, aggregate, baseoid))
{ {
if (argument) if (argument)
{ {
...@@ -629,8 +621,7 @@ CommentProc(char *function, List *arguments, char *comment) ...@@ -629,8 +621,7 @@ CommentProc(char *function, List *arguments, char *comment)
functuple; functuple;
Oid oid, Oid oid,
argoids[FUNC_MAX_ARGS]; argoids[FUNC_MAX_ARGS];
char *user, char *argument;
*argument;
int i, int i,
argcount; argcount;
...@@ -662,8 +653,7 @@ CommentProc(char *function, List *arguments, char *comment) ...@@ -662,8 +653,7 @@ CommentProc(char *function, List *arguments, char *comment)
/*** Now, validate the user's ability to comment on this function ***/ /*** Now, validate the user's ability to comment on this function ***/
#ifndef NO_SECURITY #ifndef NO_SECURITY
user = GetPgUserName(); if (!pg_func_ownercheck(GetUserId(), function, argcount, argoids))
if (!pg_func_ownercheck(user, function, argcount, argoids))
elog(ERROR, "you are not permitted to comment on function '%s'", elog(ERROR, "you are not permitted to comment on function '%s'",
function); function);
#endif #endif
...@@ -708,7 +698,6 @@ CommentOperator(char *opername, List *arguments, char *comment) ...@@ -708,7 +698,6 @@ CommentOperator(char *opername, List *arguments, char *comment)
rightoid = InvalidOid; rightoid = InvalidOid;
bool defined; bool defined;
char oprtype = 0, char oprtype = 0,
*user,
*lefttype = NULL, *lefttype = NULL,
*righttype = NULL; *righttype = NULL;
...@@ -762,8 +751,7 @@ CommentOperator(char *opername, List *arguments, char *comment) ...@@ -762,8 +751,7 @@ CommentOperator(char *opername, List *arguments, char *comment)
/*** Valid user's ability to comment on this operator ***/ /*** Valid user's ability to comment on this operator ***/
#ifndef NO_SECURITY #ifndef NO_SECURITY
user = GetPgUserName(); if (!pg_ownercheck(GetUserId(), (char *) ObjectIdGetDatum(oid), OPEROID))
if (!pg_ownercheck(user, (char *) ObjectIdGetDatum(oid), OPEROID))
{ {
elog(ERROR, "you are not permitted to comment on operator '%s'", elog(ERROR, "you are not permitted to comment on operator '%s'",
opername); opername);
...@@ -805,13 +793,11 @@ CommentTrigger(char *trigger, char *relname, char *comment) ...@@ -805,13 +793,11 @@ CommentTrigger(char *trigger, char *relname, char *comment)
HeapScanDesc scan; HeapScanDesc scan;
ScanKeyData entry; ScanKeyData entry;
Oid oid = InvalidOid; Oid oid = InvalidOid;
char *user;
/*** First, validate the user's action ***/ /*** First, validate the user's action ***/
#ifndef NO_SECURITY #ifndef NO_SECURITY
user = GetPgUserName(); if (!pg_ownercheck(GetUserId(), relname, RELNAME))
if (!pg_ownercheck(user, relname, RELNAME))
{ {
elog(ERROR, "you are not permitted to comment on trigger '%s' %s '%s'", elog(ERROR, "you are not permitted to comment on trigger '%s' %s '%s'",
trigger, "defined for relation", relname); trigger, "defined for relation", relname);
......
...@@ -7,7 +7,7 @@ ...@@ -7,7 +7,7 @@
* *
* *
* IDENTIFICATION * IDENTIFICATION
* $Header: /cvsroot/pgsql/src/backend/commands/copy.c,v 1.121 2000/08/22 04:06:21 tgl Exp $ * $Header: /cvsroot/pgsql/src/backend/commands/copy.c,v 1.122 2000/09/06 14:15:16 petere Exp $
* *
*------------------------------------------------------------------------- *-------------------------------------------------------------------------
*/ */
...@@ -272,7 +272,6 @@ DoCopy(char *relname, bool binary, bool oids, bool from, bool pipe, ...@@ -272,7 +272,6 @@ DoCopy(char *relname, bool binary, bool oids, bool from, bool pipe,
FILE *fp; FILE *fp;
Relation rel; Relation rel;
extern char *UserName; /* defined in global.c */
const AclMode required_access = from ? ACL_WR : ACL_RD; const AclMode required_access = from ? ACL_WR : ACL_RD;
int result; int result;
...@@ -281,7 +280,7 @@ DoCopy(char *relname, bool binary, bool oids, bool from, bool pipe, ...@@ -281,7 +280,7 @@ DoCopy(char *relname, bool binary, bool oids, bool from, bool pipe,
*/ */
rel = heap_openr(relname, (from ? RowExclusiveLock : AccessShareLock)); rel = heap_openr(relname, (from ? RowExclusiveLock : AccessShareLock));
result = pg_aclcheck(relname, UserName, required_access); result = pg_aclcheck(relname, GetUserId(), required_access);
if (result != ACLCHECK_OK) if (result != ACLCHECK_OK)
elog(ERROR, "%s: %s", relname, aclcheck_error_strings[result]); elog(ERROR, "%s: %s", relname, aclcheck_error_strings[result]);
if (!pipe && !superuser()) if (!pipe && !superuser())
......
...@@ -8,7 +8,7 @@ ...@@ -8,7 +8,7 @@
* *
* *
* IDENTIFICATION * IDENTIFICATION
* $Header: /cvsroot/pgsql/src/backend/commands/dbcommands.c,v 1.59 2000/08/03 16:34:01 tgl Exp $ * $Header: /cvsroot/pgsql/src/backend/commands/dbcommands.c,v 1.60 2000/09/06 14:15:16 petere Exp $
* *
*------------------------------------------------------------------------- *-------------------------------------------------------------------------
*/ */
...@@ -37,7 +37,7 @@ ...@@ -37,7 +37,7 @@
/* non-export function prototypes */ /* non-export function prototypes */
static bool static bool
get_user_info(const char *name, int4 *use_sysid, bool *use_super, bool *use_createdb); get_user_info(Oid use_sysid, bool *use_super, bool *use_createdb);
static bool static bool
get_db_info(const char *name, char *dbpath, Oid *dbIdP, int4 *ownerIdP); get_db_info(const char *name, char *dbpath, Oid *dbIdP, int4 *ownerIdP);
...@@ -54,7 +54,6 @@ createdb(const char *dbname, const char *dbpath, int encoding) ...@@ -54,7 +54,6 @@ createdb(const char *dbname, const char *dbpath, int encoding)
char buf[2 * MAXPGPATH + 100]; char buf[2 * MAXPGPATH + 100];
char *loc; char *loc;
char locbuf[512]; char locbuf[512];
int4 user_id;
int ret; int ret;
bool use_super, bool use_super,
use_createdb; use_createdb;
...@@ -64,7 +63,7 @@ createdb(const char *dbname, const char *dbpath, int encoding) ...@@ -64,7 +63,7 @@ createdb(const char *dbname, const char *dbpath, int encoding)
Datum new_record[Natts_pg_database]; Datum new_record[Natts_pg_database];
char new_record_nulls[Natts_pg_database] = {' ', ' ', ' ', ' '}; char new_record_nulls[Natts_pg_database] = {' ', ' ', ' ', ' '};
if (!get_user_info(GetPgUserName(), &user_id, &use_super, &use_createdb)) if (!get_user_info(GetUserId(), &use_super, &use_createdb))
elog(ERROR, "current user name is invalid"); elog(ERROR, "current user name is invalid");
if (!use_createdb && !use_super) if (!use_createdb && !use_super)
...@@ -100,7 +99,7 @@ createdb(const char *dbname, const char *dbpath, int encoding) ...@@ -100,7 +99,7 @@ createdb(const char *dbname, const char *dbpath, int encoding)
/* Form tuple */ /* Form tuple */
new_record[Anum_pg_database_datname - 1] = DirectFunctionCall1(namein, new_record[Anum_pg_database_datname - 1] = DirectFunctionCall1(namein,
CStringGetDatum(dbname)); CStringGetDatum(dbname));
new_record[Anum_pg_database_datdba - 1] = Int32GetDatum(user_id); new_record[Anum_pg_database_datdba - 1] = Int32GetDatum(GetUserId());
new_record[Anum_pg_database_encoding - 1] = Int32GetDatum(encoding); new_record[Anum_pg_database_encoding - 1] = Int32GetDatum(encoding);
new_record[Anum_pg_database_datpath - 1] = DirectFunctionCall1(textin, new_record[Anum_pg_database_datpath - 1] = DirectFunctionCall1(textin,
CStringGetDatum(locbuf)); CStringGetDatum(locbuf));
...@@ -174,8 +173,7 @@ createdb(const char *dbname, const char *dbpath, int encoding) ...@@ -174,8 +173,7 @@ createdb(const char *dbname, const char *dbpath, int encoding)
void void
dropdb(const char *dbname) dropdb(const char *dbname)
{ {
int4 user_id, int4 db_owner;
db_owner;
bool use_super; bool use_super;
Oid db_id; Oid db_id;
char *path, char *path,
...@@ -197,13 +195,13 @@ dropdb(const char *dbname) ...@@ -197,13 +195,13 @@ dropdb(const char *dbname)
if (IsTransactionBlock()) if (IsTransactionBlock())
elog(ERROR, "DROP DATABASE: May not be called in a transaction block"); elog(ERROR, "DROP DATABASE: May not be called in a transaction block");
if (!get_user_info(GetPgUserName(), &user_id, &use_super, NULL)) if (!get_user_info(GetUserId(), &use_super, NULL))
elog(ERROR, "Current user name is invalid"); elog(ERROR, "Current user name is invalid");
if (!get_db_info(dbname, dbpath, &db_id, &db_owner)) if (!get_db_info(dbname, dbpath, &db_id, &db_owner))
elog(ERROR, "DROP DATABASE: Database \"%s\" does not exist", dbname); elog(ERROR, "DROP DATABASE: Database \"%s\" does not exist", dbname);
if (user_id != db_owner && !use_super) if (GetUserId() != db_owner && !use_super)
elog(ERROR, "DROP DATABASE: Permission denied"); elog(ERROR, "DROP DATABASE: Permission denied");
path = ExpandDatabasePath(dbpath); path = ExpandDatabasePath(dbpath);
...@@ -374,20 +372,17 @@ get_db_info(const char *name, char *dbpath, Oid *dbIdP, int4 *ownerIdP) ...@@ -374,20 +372,17 @@ get_db_info(const char *name, char *dbpath, Oid *dbIdP, int4 *ownerIdP)
static bool static bool
get_user_info(const char *name, int4 *use_sysid, bool *use_super, bool *use_createdb) get_user_info(Oid use_sysid, bool *use_super, bool *use_createdb)
{ {
HeapTuple utup; HeapTuple utup;
AssertArg(name); utup = SearchSysCacheTuple(SHADOWSYSID,
utup = SearchSysCacheTuple(SHADOWNAME, ObjectIdGetDatum(use_sysid),
PointerGetDatum(name),
0, 0, 0); 0, 0, 0);
if (!HeapTupleIsValid(utup)) if (!HeapTupleIsValid(utup))
return false; return false;
if (use_sysid)
*use_sysid = ((Form_pg_shadow) GETSTRUCT(utup))->usesysid;
if (use_super) if (use_super)
*use_super = ((Form_pg_shadow) GETSTRUCT(utup))->usesuper; *use_super = ((Form_pg_shadow) GETSTRUCT(utup))->usesuper;
if (use_createdb) if (use_createdb)
......
...@@ -8,7 +8,7 @@ ...@@ -8,7 +8,7 @@
* *
* *
* IDENTIFICATION * IDENTIFICATION
* $Header: /cvsroot/pgsql/src/backend/commands/indexcmds.c,v 1.37 2000/08/20 00:44:19 tgl Exp $ * $Header: /cvsroot/pgsql/src/backend/commands/indexcmds.c,v 1.38 2000/09/06 14:15:16 petere Exp $
* *
*------------------------------------------------------------------------- *-------------------------------------------------------------------------
*/ */
...@@ -697,15 +697,11 @@ ReindexDatabase(const char *dbname, bool force, bool all) ...@@ -697,15 +697,11 @@ ReindexDatabase(const char *dbname, bool force, bool all)
{ {
Relation relation, Relation relation,
relationRelation; relationRelation;
HeapTuple usertuple, HeapTuple dbtuple,
dbtuple,
tuple; tuple;
HeapScanDesc scan; HeapScanDesc scan;
int4 user_id, int4 db_owner;
db_owner;
bool superuser;
Oid db_id; Oid db_id;
char *username;
ScanKeyData scankey; ScanKeyData scankey;
MemoryContext private_context; MemoryContext private_context;
MemoryContext old; MemoryContext old;
...@@ -717,14 +713,6 @@ ReindexDatabase(const char *dbname, bool force, bool all) ...@@ -717,14 +713,6 @@ ReindexDatabase(const char *dbname, bool force, bool all)
AssertArg(dbname); AssertArg(dbname);
username = GetPgUserName();
usertuple = SearchSysCacheTuple(SHADOWNAME, PointerGetDatum(username),
0, 0, 0);
if (!HeapTupleIsValid(usertuple))
elog(ERROR, "Current user \"%s\" is invalid.", username);
user_id = ((Form_pg_shadow) GETSTRUCT(usertuple))->usesysid;
superuser = ((Form_pg_shadow) GETSTRUCT(usertuple))->usesuper;
relation = heap_openr(DatabaseRelationName, AccessShareLock); relation = heap_openr(DatabaseRelationName, AccessShareLock);
ScanKeyEntryInitialize(&scankey, 0, Anum_pg_database_datname, ScanKeyEntryInitialize(&scankey, 0, Anum_pg_database_datname,
F_NAMEEQ, NameGetDatum(dbname)); F_NAMEEQ, NameGetDatum(dbname));
...@@ -737,7 +725,7 @@ ReindexDatabase(const char *dbname, bool force, bool all) ...@@ -737,7 +725,7 @@ ReindexDatabase(const char *dbname, bool force, bool all)
heap_endscan(scan); heap_endscan(scan);
heap_close(relation, NoLock); heap_close(relation, NoLock);
if (user_id != db_owner && !superuser) if (GetUserId() != db_owner && !superuser())
elog(ERROR, "REINDEX DATABASE: Permission denied."); elog(ERROR, "REINDEX DATABASE: Permission denied.");
if (db_id != MyDatabaseId) if (db_id != MyDatabaseId)
......
...@@ -8,7 +8,7 @@ ...@@ -8,7 +8,7 @@
* *
* *
* IDENTIFICATION * IDENTIFICATION
* $Header: /cvsroot/pgsql/src/backend/commands/Attic/remove.c,v 1.50 2000/07/04 06:11:29 tgl Exp $ * $Header: /cvsroot/pgsql/src/backend/commands/Attic/remove.c,v 1.51 2000/09/06 14:15:16 petere Exp $
* *
*------------------------------------------------------------------------- *-------------------------------------------------------------------------
*/ */
...@@ -47,7 +47,6 @@ RemoveOperator(char *operatorName, /* operator name */ ...@@ -47,7 +47,6 @@ RemoveOperator(char *operatorName, /* operator name */
Oid typeId1 = InvalidOid; Oid typeId1 = InvalidOid;
Oid typeId2 = InvalidOid; Oid typeId2 = InvalidOid;
bool defined; bool defined;
char *userName;
char oprtype; char oprtype;
if (typeName1) if (typeName1)
...@@ -88,8 +87,7 @@ RemoveOperator(char *operatorName, /* operator name */ ...@@ -88,8 +87,7 @@ RemoveOperator(char *operatorName, /* operator name */
if (HeapTupleIsValid(tup)) if (HeapTupleIsValid(tup))
{ {
#ifndef NO_SECURITY #ifndef NO_SECURITY
userName = GetPgUserName(); if (!pg_ownercheck(GetUserId(),
if (!pg_ownercheck(userName,
(char *) ObjectIdGetDatum(tup->t_data->t_oid), (char *) ObjectIdGetDatum(tup->t_data->t_oid),
OPEROID)) OPEROID))
elog(ERROR, "RemoveOperator: operator '%s': permission denied", elog(ERROR, "RemoveOperator: operator '%s': permission denied",
...@@ -257,11 +255,9 @@ RemoveType(char *typeName) /* type name to be removed */ ...@@ -257,11 +255,9 @@ RemoveType(char *typeName) /* type name to be removed */
HeapTuple tup; HeapTuple tup;
Oid typeOid; Oid typeOid;
char *shadow_type; char *shadow_type;
char *userName;
#ifndef NO_SECURITY #ifndef NO_SECURITY
userName = GetPgUserName(); if (!pg_ownercheck(GetUserId(), typeName, TYPENAME))
if (!pg_ownercheck(userName, typeName, TYPENAME))
elog(ERROR, "RemoveType: type '%s': permission denied", elog(ERROR, "RemoveType: type '%s': permission denied",
typeName); typeName);
#endif #endif
...@@ -318,7 +314,6 @@ RemoveFunction(char *functionName, /* function name to be removed */ ...@@ -318,7 +314,6 @@ RemoveFunction(char *functionName, /* function name to be removed */
Relation relation; Relation relation;
HeapTuple tup; HeapTuple tup;
Oid argList[FUNC_MAX_ARGS]; Oid argList[FUNC_MAX_ARGS];
char *userName;
char *typename; char *typename;
int i; int i;
...@@ -346,8 +341,7 @@ RemoveFunction(char *functionName, /* function name to be removed */ ...@@ -346,8 +341,7 @@ RemoveFunction(char *functionName, /* function name to be removed */
} }
#ifndef NO_SECURITY #ifndef NO_SECURITY
userName = GetPgUserName(); if (!pg_func_ownercheck(GetUserId(), functionName, nargs, argList))
if (!pg_func_ownercheck(userName, functionName, nargs, argList))
{ {
elog(ERROR, "RemoveFunction: function '%s': permission denied", elog(ERROR, "RemoveFunction: function '%s': permission denied",
functionName); functionName);
...@@ -388,7 +382,6 @@ RemoveAggregate(char *aggName, char *aggType) ...@@ -388,7 +382,6 @@ RemoveAggregate(char *aggName, char *aggType)
{ {
Relation relation; Relation relation;
HeapTuple tup; HeapTuple tup;
char *userName;
Oid basetypeID = InvalidOid; Oid basetypeID = InvalidOid;
bool defined; bool defined;
...@@ -413,8 +406,7 @@ RemoveAggregate(char *aggName, char *aggType) ...@@ -413,8 +406,7 @@ RemoveAggregate(char *aggName, char *aggType)
basetypeID = 0; basetypeID = 0;
#ifndef NO_SECURITY #ifndef NO_SECURITY
userName = GetPgUserName(); if (!pg_aggr_ownercheck(GetUserId(), aggName, basetypeID))
if (!pg_aggr_ownercheck(userName, aggName, basetypeID))
{ {
if (aggType) if (aggType)
{ {
......
...@@ -8,7 +8,7 @@ ...@@ -8,7 +8,7 @@
* *
* *
* IDENTIFICATION * IDENTIFICATION
* $Header: /cvsroot/pgsql/src/backend/commands/Attic/rename.c,v 1.46 2000/06/20 06:41:13 tgl Exp $ * $Header: /cvsroot/pgsql/src/backend/commands/Attic/rename.c,v 1.47 2000/09/06 14:15:16 petere Exp $
* *
*------------------------------------------------------------------------- *-------------------------------------------------------------------------
*/ */
...@@ -53,7 +53,6 @@ void ...@@ -53,7 +53,6 @@ void
renameatt(char *relname, renameatt(char *relname,
char *oldattname, char *oldattname,
char *newattname, char *newattname,
char *userName,
int recurse) int recurse)
{ {
Relation targetrelation; Relation targetrelation;
...@@ -74,7 +73,7 @@ renameatt(char *relname, ...@@ -74,7 +73,7 @@ renameatt(char *relname,
relname); relname);
#ifndef NO_SECURITY #ifndef NO_SECURITY
if (!IsBootstrapProcessingMode() && if (!IsBootstrapProcessingMode() &&
!pg_ownercheck(userName, relname, RELNAME)) !pg_ownercheck(GetUserId(), relname, RELNAME))
elog(ERROR, "renameatt: you do not own class \"%s\"", elog(ERROR, "renameatt: you do not own class \"%s\"",
relname); relname);
#endif #endif
...@@ -129,7 +128,7 @@ renameatt(char *relname, ...@@ -129,7 +128,7 @@ renameatt(char *relname,
NameStr(((Form_pg_class) GETSTRUCT(reltup))->relname), NameStr(((Form_pg_class) GETSTRUCT(reltup))->relname),
NAMEDATALEN); NAMEDATALEN);
/* note we need not recurse again! */ /* note we need not recurse again! */
renameatt(childname, oldattname, newattname, userName, 0); renameatt(childname, oldattname, newattname, 0);
} }
} }
......
...@@ -201,7 +201,7 @@ nextval(PG_FUNCTION_ARGS) ...@@ -201,7 +201,7 @@ nextval(PG_FUNCTION_ARGS)
rescnt = 0; rescnt = 0;
#ifndef NO_SECURITY #ifndef NO_SECURITY
if (pg_aclcheck(seqname, GetPgUserName(), ACL_WR) != ACLCHECK_OK) if (pg_aclcheck(seqname, GetUserId(), ACL_WR) != ACLCHECK_OK)
elog(ERROR, "%s.nextval: you don't have permissions to set sequence %s", elog(ERROR, "%s.nextval: you don't have permissions to set sequence %s",
seqname, seqname); seqname, seqname);
#endif #endif
...@@ -298,7 +298,7 @@ currval(PG_FUNCTION_ARGS) ...@@ -298,7 +298,7 @@ currval(PG_FUNCTION_ARGS)
int32 result; int32 result;
#ifndef NO_SECURITY #ifndef NO_SECURITY
if (pg_aclcheck(seqname, GetPgUserName(), ACL_RD) != ACLCHECK_OK) if (pg_aclcheck(seqname, GetUserId(), ACL_RD) != ACLCHECK_OK)
elog(ERROR, "%s.currval: you don't have permissions to read sequence %s", elog(ERROR, "%s.currval: you don't have permissions to read sequence %s",
seqname, seqname); seqname, seqname);
#endif #endif
...@@ -328,7 +328,7 @@ setval(PG_FUNCTION_ARGS) ...@@ -328,7 +328,7 @@ setval(PG_FUNCTION_ARGS)
Form_pg_sequence seq; Form_pg_sequence seq;
#ifndef NO_SECURITY #ifndef NO_SECURITY
if (pg_aclcheck(seqname, GetPgUserName(), ACL_WR) != ACLCHECK_OK) if (pg_aclcheck(seqname, GetUserId(), ACL_WR) != ACLCHECK_OK)
elog(ERROR, "%s.setval: you don't have permissions to set sequence %s", elog(ERROR, "%s.setval: you don't have permissions to set sequence %s",
seqname, seqname); seqname, seqname);
#endif #endif
......
...@@ -7,7 +7,7 @@ ...@@ -7,7 +7,7 @@
* Portions Copyright (c) 1994, Regents of the University of California * Portions Copyright (c) 1994, Regents of the University of California
* *
* IDENTIFICATION * IDENTIFICATION
* $Header: /cvsroot/pgsql/src/backend/commands/trigger.c,v 1.76 2000/08/11 23:45:28 tgl Exp $ * $Header: /cvsroot/pgsql/src/backend/commands/trigger.c,v 1.77 2000/09/06 14:15:16 petere Exp $
* *
*------------------------------------------------------------------------- *-------------------------------------------------------------------------
*/ */
...@@ -69,7 +69,7 @@ CreateTrigger(CreateTrigStmt *stmt) ...@@ -69,7 +69,7 @@ CreateTrigger(CreateTrigStmt *stmt)
elog(ERROR, "CreateTrigger: can't create trigger for system relation %s", stmt->relname); elog(ERROR, "CreateTrigger: can't create trigger for system relation %s", stmt->relname);
#ifndef NO_SECURITY #ifndef NO_SECURITY
if (!pg_ownercheck(GetPgUserName(), stmt->relname, RELNAME)) if (!pg_ownercheck(GetUserId(), stmt->relname, RELNAME))
elog(ERROR, "%s: %s", stmt->relname, aclcheck_error_strings[ACLCHECK_NOT_OWNER]); elog(ERROR, "%s: %s", stmt->relname, aclcheck_error_strings[ACLCHECK_NOT_OWNER]);
#endif #endif
...@@ -309,7 +309,7 @@ DropTrigger(DropTrigStmt *stmt) ...@@ -309,7 +309,7 @@ DropTrigger(DropTrigStmt *stmt)
int tgfound = 0; int tgfound = 0;
#ifndef NO_SECURITY #ifndef NO_SECURITY
if (!pg_ownercheck(GetPgUserName(), stmt->relname, RELNAME)) if (!pg_ownercheck(GetUserId(), stmt->relname, RELNAME))
elog(ERROR, "%s: %s", stmt->relname, aclcheck_error_strings[ACLCHECK_NOT_OWNER]); elog(ERROR, "%s: %s", stmt->relname, aclcheck_error_strings[ACLCHECK_NOT_OWNER]);
#endif #endif
......
...@@ -8,7 +8,7 @@ ...@@ -8,7 +8,7 @@
* *
* *
* IDENTIFICATION * IDENTIFICATION
* $Header: /cvsroot/pgsql/src/backend/commands/vacuum.c,v 1.163 2000/07/14 22:17:42 tgl Exp $ * $Header: /cvsroot/pgsql/src/backend/commands/vacuum.c,v 1.164 2000/09/06 14:15:16 petere Exp $
* *
*------------------------------------------------------------------------- *-------------------------------------------------------------------------
...@@ -404,7 +404,7 @@ vacuum_rel(Oid relid, bool analyze, bool is_toastrel) ...@@ -404,7 +404,7 @@ vacuum_rel(Oid relid, bool analyze, bool is_toastrel)
toast_relid = onerel->rd_rel->reltoastrelid; toast_relid = onerel->rd_rel->reltoastrelid;
#ifndef NO_SECURITY #ifndef NO_SECURITY
if (!pg_ownercheck(GetPgUserName(), RelationGetRelationName(onerel), if (!pg_ownercheck(GetUserId(), RelationGetRelationName(onerel),
RELNAME)) RELNAME))
{ {
elog(NOTICE, "Skipping \"%s\" --- only table owner can VACUUM it", elog(NOTICE, "Skipping \"%s\" --- only table owner can VACUUM it",
......
...@@ -27,7 +27,7 @@ ...@@ -27,7 +27,7 @@
* *
* *
* IDENTIFICATION * IDENTIFICATION
* $Header: /cvsroot/pgsql/src/backend/executor/execMain.c,v 1.124 2000/08/22 04:06:19 tgl Exp $ * $Header: /cvsroot/pgsql/src/backend/executor/execMain.c,v 1.125 2000/09/06 14:15:17 petere Exp $
* *
*------------------------------------------------------------------------- *-------------------------------------------------------------------------
*/ */
...@@ -571,8 +571,8 @@ ExecCheckRTEPerms(RangeTblEntry *rte, CmdType operation, ...@@ -571,8 +571,8 @@ ExecCheckRTEPerms(RangeTblEntry *rte, CmdType operation,
bool isResultRelation, bool resultIsScanned) bool isResultRelation, bool resultIsScanned)
{ {
char *relName; char *relName;
char *userName;
int32 aclcheck_result; int32 aclcheck_result;
Oid userid;
if (rte->skipAcl) if (rte->skipAcl)
{ {
...@@ -588,14 +588,14 @@ ExecCheckRTEPerms(RangeTblEntry *rte, CmdType operation, ...@@ -588,14 +588,14 @@ ExecCheckRTEPerms(RangeTblEntry *rte, CmdType operation,
relName = rte->relname; relName = rte->relname;
/* /*
* Note: GetPgUserName is presently fast enough that there's no harm * Note: GetUserId() is presently fast enough that there's no harm
* in calling it separately for each RTE. If that stops being true, * in calling it separately for each RTE. If that stops being true,
* we could call it once in ExecCheckQueryPerms and pass the userName * we could call it once in ExecCheckQueryPerms and pass the userid
* down from there. But for now, no need for the extra clutter. * down from there. But for now, no need for the extra clutter.
*/ */
userName = GetPgUserName(); userid = GetUserId();
#define CHECK(MODE) pg_aclcheck(relName, userName, MODE) #define CHECK(MODE) pg_aclcheck(relName, userid, MODE)
if (isResultRelation) if (isResultRelation)
{ {
......
...@@ -8,10 +8,13 @@ ...@@ -8,10 +8,13 @@
* *
* *
* IDENTIFICATION * IDENTIFICATION
* $Header: /cvsroot/pgsql/src/backend/main/main.c,v 1.29 2000/01/26 05:56:30 momjian Exp $ * $Header: /cvsroot/pgsql/src/backend/main/main.c,v 1.30 2000/09/06 14:15:19 petere Exp $
* *
*------------------------------------------------------------------------- *-------------------------------------------------------------------------
*/ */
#include "postgres.h"
#include <pwd.h>
#include <unistd.h> #include <unistd.h>
#if defined(__alpha__) && !defined(linux) #if defined(__alpha__) && !defined(linux)
...@@ -22,7 +25,6 @@ ...@@ -22,7 +25,6 @@
#undef ASSEMBLER #undef ASSEMBLER
#endif #endif
#include "postgres.h"
#ifdef USE_LOCALE #ifdef USE_LOCALE
#include <locale.h> #include <locale.h>
#endif #endif
...@@ -100,5 +102,15 @@ main(int argc, char *argv[]) ...@@ -100,5 +102,15 @@ main(int argc, char *argv[])
exit(BootstrapMain(argc - 1, argv + 1)); /* remove the -boot arg exit(BootstrapMain(argc - 1, argv + 1)); /* remove the -boot arg
* from the command line */ * from the command line */
else else
exit(PostgresMain(argc, argv, argc, argv)); {
struct passwd *pw;
pw = getpwuid(geteuid());
if (!pw)
{
fprintf(stderr, "%s: invalid current euid", argv[0]);
exit(1);
}
exit(PostgresMain(argc, argv, argc, argv, pw->pw_name));
}
} }
...@@ -11,7 +11,7 @@ ...@@ -11,7 +11,7 @@
* *
* *
* IDENTIFICATION * IDENTIFICATION
* $Header: /cvsroot/pgsql/src/backend/postmaster/postmaster.c,v 1.164 2000/08/30 14:54:22 momjian Exp $ * $Header: /cvsroot/pgsql/src/backend/postmaster/postmaster.c,v 1.165 2000/09/06 14:15:19 petere Exp $
* *
* NOTES * NOTES
* *
...@@ -1635,11 +1635,11 @@ BackendStartup(Port *port) ...@@ -1635,11 +1635,11 @@ BackendStartup(Port *port)
i; i;
#ifdef CYR_RECODE #ifdef CYR_RECODE
#define NR_ENVIRONMENT_VBL 6 #define NR_ENVIRONMENT_VBL 5
char ChTable[80]; char ChTable[80];
#else #else
#define NR_ENVIRONMENT_VBL 5 #define NR_ENVIRONMENT_VBL 4
#endif #endif
static char envEntry[NR_ENVIRONMENT_VBL][2 * ARGV_SIZE]; static char envEntry[NR_ENVIRONMENT_VBL][2 * ARGV_SIZE];
...@@ -1655,19 +1655,17 @@ BackendStartup(Port *port) ...@@ -1655,19 +1655,17 @@ BackendStartup(Port *port)
putenv(envEntry[0]); putenv(envEntry[0]);
sprintf(envEntry[1], "POSTID=%d", NextBackendTag); sprintf(envEntry[1], "POSTID=%d", NextBackendTag);
putenv(envEntry[1]); putenv(envEntry[1]);
sprintf(envEntry[2], "PG_USER=%s", port->user); sprintf(envEntry[2], "PGDATA=%s", DataDir);
putenv(envEntry[2]); putenv(envEntry[2]);
sprintf(envEntry[3], "PGDATA=%s", DataDir); sprintf(envEntry[3], "IPC_KEY=%d", ipc_key);
putenv(envEntry[3]); putenv(envEntry[3]);
sprintf(envEntry[4], "IPC_KEY=%d", ipc_key);
putenv(envEntry[4]);
#ifdef CYR_RECODE #ifdef CYR_RECODE
GetCharSetByHost(ChTable, port->raddr.in.sin_addr.s_addr, DataDir); GetCharSetByHost(ChTable, port->raddr.in.sin_addr.s_addr, DataDir);
if (*ChTable != '\0') if (*ChTable != '\0')
{ {
sprintf(envEntry[5], "PG_RECODETABLE=%s", ChTable); sprintf(envEntry[4], "PG_RECODETABLE=%s", ChTable);
putenv(envEntry[5]); putenv(envEntry[4]);
} }
#endif #endif
...@@ -1931,7 +1929,7 @@ DoBackend(Port *port) ...@@ -1931,7 +1929,7 @@ DoBackend(Port *port)
fprintf(stderr, ")\n"); fprintf(stderr, ")\n");
} }
return (PostgresMain(ac, av, real_argc, real_argv)); return (PostgresMain(ac, av, real_argc, real_argv, port->user));
} }
/* /*
......
...@@ -7,7 +7,7 @@ ...@@ -7,7 +7,7 @@
* *
* *
* IDENTIFICATION * IDENTIFICATION
* $Header: /cvsroot/pgsql/src/backend/rewrite/Attic/locks.c,v 1.30 2000/07/09 04:56:32 tgl Exp $ * $Header: /cvsroot/pgsql/src/backend/rewrite/Attic/locks.c,v 1.31 2000/09/06 14:15:20 petere Exp $
* *
*------------------------------------------------------------------------- *-------------------------------------------------------------------------
*/ */
...@@ -175,7 +175,7 @@ matchLocks(CmdType event, ...@@ -175,7 +175,7 @@ matchLocks(CmdType event,
typedef struct typedef struct
{ {
char *evowner; Oid evowner;
} checkLockPerms_context; } checkLockPerms_context;
static bool static bool
...@@ -289,7 +289,7 @@ checkLockPerms(List *locks, Query *parsetree, int rt_index) ...@@ -289,7 +289,7 @@ checkLockPerms(List *locks, Query *parsetree, int rt_index)
elog(ERROR, "cache lookup for userid %d failed", elog(ERROR, "cache lookup for userid %d failed",
ev_rel->rd_rel->relowner); ev_rel->rd_rel->relowner);
userform = (Form_pg_shadow) GETSTRUCT(usertup); userform = (Form_pg_shadow) GETSTRUCT(usertup);
context.evowner = pstrdup(NameStr(userform->usename)); context.evowner = userform->usesysid;
heap_close(ev_rel, AccessShareLock); heap_close(ev_rel, AccessShareLock);
/* /*
......
...@@ -7,7 +7,7 @@ ...@@ -7,7 +7,7 @@
* *
* *
* IDENTIFICATION * IDENTIFICATION
* $Header: /cvsroot/pgsql/src/backend/rewrite/rewriteHandler.c,v 1.78 2000/08/08 15:42:14 tgl Exp $ * $Header: /cvsroot/pgsql/src/backend/rewrite/rewriteHandler.c,v 1.79 2000/09/06 14:15:20 petere Exp $
* *
*------------------------------------------------------------------------- *-------------------------------------------------------------------------
*/ */
...@@ -1137,7 +1137,7 @@ fireRules(Query *parsetree, ...@@ -1137,7 +1137,7 @@ fireRules(Query *parsetree,
if (!rte->skipAcl) if (!rte->skipAcl)
{ {
acl_rc = pg_aclcheck(rte->relname, acl_rc = pg_aclcheck(rte->relname,
GetPgUserName(), reqperm); GetUserId(), reqperm);
if (acl_rc != ACLCHECK_OK) if (acl_rc != ACLCHECK_OK)
{ {
elog(ERROR, "%s: %s", elog(ERROR, "%s: %s",
......
...@@ -8,7 +8,7 @@ ...@@ -8,7 +8,7 @@
* *
* *
* IDENTIFICATION * IDENTIFICATION
* $Header: /cvsroot/pgsql/src/backend/tcop/postgres.c,v 1.174 2000/08/30 20:30:06 tgl Exp $ * $Header: /cvsroot/pgsql/src/backend/tcop/postgres.c,v 1.175 2000/09/06 14:15:21 petere Exp $
* *
* NOTES * NOTES
* this is the "main" module of the postgres backend and * this is the "main" module of the postgres backend and
...@@ -818,27 +818,26 @@ usage(char *progname) ...@@ -818,27 +818,26 @@ usage(char *progname)
/* ---------------------------------------------------------------- /* ----------------------------------------------------------------
* PostgresMain * PostgresMain
* postgres main loop * postgres main loop -- all backends, interactive or otherwise start here
* all backends, interactive or otherwise start here
* *
* argc/argv are the command line arguments to be used. When being forked * argc/argv are the command line arguments to be used. When being forked
* by the postmaster, these are not the original argv array of the process. * by the postmaster, these are not the original argv array of the process.
* real_argc/real_argv point to the original argv array, which is needed by * real_argc/real_argv point to the original argv array, which is needed by
* PS_INIT_STATUS on some platforms. * `ps' display on some platforms. username is the (possibly authenticated)
* PostgreSQL user name to be used for the session.
* ---------------------------------------------------------------- * ----------------------------------------------------------------
*/ */
int int
PostgresMain(int argc, char *argv[], int real_argc, char *real_argv[]) PostgresMain(int argc, char *argv[], int real_argc, char *real_argv[], const char * username)
{ {
int flag; int flag;
char *DBName = NULL; const char *DBName = NULL;
bool secure = true; bool secure = true;
int errs = 0; int errs = 0;
int firstchar; int firstchar;
StringInfo parser_input; StringInfo parser_input;
char *userName;
char *remote_host; char *remote_host;
unsigned short remote_port; unsigned short remote_port;
...@@ -1244,12 +1243,6 @@ PostgresMain(int argc, char *argv[], int real_argc, char *real_argv[]) ...@@ -1244,12 +1243,6 @@ PostgresMain(int argc, char *argv[], int real_argc, char *real_argv[])
pqsignal(SIGTTOU, SIG_DFL); pqsignal(SIGTTOU, SIG_DFL);
pqsignal(SIGCONT, SIG_DFL); pqsignal(SIGCONT, SIG_DFL);
/*
* Get user name (needed now in case it is the default database name)
* and check command line validity
*/
SetPgUserName();
userName = GetPgUserName();
if (IsUnderPostmaster) if (IsUnderPostmaster)
{ {
...@@ -1274,9 +1267,9 @@ PostgresMain(int argc, char *argv[], int real_argc, char *real_argv[]) ...@@ -1274,9 +1267,9 @@ PostgresMain(int argc, char *argv[], int real_argc, char *real_argv[])
} }
else if (argc - optind == 1) else if (argc - optind == 1)
DBName = argv[optind]; DBName = argv[optind];
else if ((DBName = userName) == NULL) else if ((DBName = username) == NULL)
{ {
fprintf(stderr, "%s: USER undefined and no database specified\n", fprintf(stderr, "%s: user name undefined and no database specified\n",
argv[0]); argv[0]);
proc_exit(0); proc_exit(0);
} }
...@@ -1361,20 +1354,20 @@ PostgresMain(int argc, char *argv[], int real_argc, char *real_argv[]) ...@@ -1361,20 +1354,20 @@ PostgresMain(int argc, char *argv[], int real_argc, char *real_argv[])
* references to optarg or getenv() from above will be invalid * references to optarg or getenv() from above will be invalid
* after this call. Better use strdup or something similar. * after this call. Better use strdup or something similar.
*/ */
init_ps_display(real_argc, real_argv, userName, DBName, remote_host); init_ps_display(real_argc, real_argv, username, DBName, remote_host);
set_ps_display("startup"); set_ps_display("startup");
} }
if (Log_connections) if (Log_connections)
elog(DEBUG, "connection: host=%s user=%s database=%s", elog(DEBUG, "connection: host=%s user=%s database=%s",
remote_host, userName, DBName); remote_host, username, DBName);
/* /*
* general initialization * general initialization
*/ */
if (DebugLvl > 1) if (DebugLvl > 1)
elog(DEBUG, "InitPostgres"); elog(DEBUG, "InitPostgres");
InitPostgres(DBName); InitPostgres(DBName, username);
#ifdef MULTIBYTE #ifdef MULTIBYTE
/* set default client encoding */ /* set default client encoding */
...@@ -1404,7 +1397,7 @@ PostgresMain(int argc, char *argv[], int real_argc, char *real_argv[]) ...@@ -1404,7 +1397,7 @@ PostgresMain(int argc, char *argv[], int real_argc, char *real_argv[])
if (!IsUnderPostmaster) if (!IsUnderPostmaster)
{ {
puts("\nPOSTGRES backend interactive interface "); puts("\nPOSTGRES backend interactive interface ");
puts("$Revision: 1.174 $ $Date: 2000/08/30 20:30:06 $\n"); puts("$Revision: 1.175 $ $Date: 2000/09/06 14:15:21 $\n");
} }
/* /*
......
...@@ -10,7 +10,7 @@ ...@@ -10,7 +10,7 @@
* *
* *
* IDENTIFICATION * IDENTIFICATION
* $Header: /cvsroot/pgsql/src/backend/tcop/utility.c,v 1.91 2000/07/05 12:45:26 wieck Exp $ * $Header: /cvsroot/pgsql/src/backend/tcop/utility.c,v 1.92 2000/09/06 14:15:21 petere Exp $
* *
*------------------------------------------------------------------------- *-------------------------------------------------------------------------
*/ */
...@@ -74,9 +74,6 @@ ProcessUtility(Node *parsetree, ...@@ -74,9 +74,6 @@ ProcessUtility(Node *parsetree,
char *commandTag = NULL; char *commandTag = NULL;
char *relname; char *relname;
char *relationName; char *relationName;
char *userName;
userName = GetPgUserName();
switch (nodeTag(parsetree)) switch (nodeTag(parsetree))
{ {
...@@ -200,7 +197,7 @@ ProcessUtility(Node *parsetree, ...@@ -200,7 +197,7 @@ ProcessUtility(Node *parsetree,
/* close rel, but keep lock until end of xact */ /* close rel, but keep lock until end of xact */
heap_close(rel, NoLock); heap_close(rel, NoLock);
#ifndef NO_SECURITY #ifndef NO_SECURITY
if (!pg_ownercheck(userName, relname, RELNAME)) if (!pg_ownercheck(GetUserId(), relname, RELNAME))
elog(ERROR, "you do not own class \"%s\"", elog(ERROR, "you do not own class \"%s\"",
relname); relname);
#endif #endif
...@@ -234,7 +231,7 @@ ProcessUtility(Node *parsetree, ...@@ -234,7 +231,7 @@ ProcessUtility(Node *parsetree,
heap_close(rel, NoLock); heap_close(rel, NoLock);
#ifndef NO_SECURITY #ifndef NO_SECURITY
if (!pg_ownercheck(userName, relname, RELNAME)) if (!pg_ownercheck(GetUserId(), relname, RELNAME))
elog(ERROR, "you do not own class \"%s\"", relname); elog(ERROR, "you do not own class \"%s\"", relname);
#endif #endif
TruncateRelation(relname); TruncateRelation(relname);
...@@ -299,7 +296,7 @@ ProcessUtility(Node *parsetree, ...@@ -299,7 +296,7 @@ ProcessUtility(Node *parsetree,
elog(ERROR, "ALTER TABLE: relation \"%s\" is a system catalog", elog(ERROR, "ALTER TABLE: relation \"%s\" is a system catalog",
relname); relname);
#ifndef NO_SECURITY #ifndef NO_SECURITY
if (!pg_ownercheck(userName, relname, RELNAME)) if (!pg_ownercheck(GetUserId(), relname, RELNAME))
elog(ERROR, "permission denied"); elog(ERROR, "permission denied");
#endif #endif
...@@ -333,7 +330,6 @@ ProcessUtility(Node *parsetree, ...@@ -333,7 +330,6 @@ ProcessUtility(Node *parsetree,
renameatt(relname, /* relname */ renameatt(relname, /* relname */
stmt->column, /* old att name */ stmt->column, /* old att name */
stmt->newname, /* new att name */ stmt->newname, /* new att name */
userName,
stmt->inh); /* recursive? */ stmt->inh); /* recursive? */
} }
} }
...@@ -405,7 +401,7 @@ ProcessUtility(Node *parsetree, ...@@ -405,7 +401,7 @@ ProcessUtility(Node *parsetree,
/* close rel, but keep lock until end of xact */ /* close rel, but keep lock until end of xact */
heap_close(rel, NoLock); heap_close(rel, NoLock);
#ifndef NO_SECURITY #ifndef NO_SECURITY
if (!pg_ownercheck(userName, relname, RELNAME)) if (!pg_ownercheck(GetUserId(), relname, RELNAME))
elog(ERROR, "you do not own class \"%s\"", elog(ERROR, "you do not own class \"%s\"",
relname); relname);
#endif #endif
...@@ -484,7 +480,7 @@ ProcessUtility(Node *parsetree, ...@@ -484,7 +480,7 @@ ProcessUtility(Node *parsetree,
#ifndef NO_SECURITY #ifndef NO_SECURITY
relname = stmt->object->relname; relname = stmt->object->relname;
aclcheck_result = pg_aclcheck(relname, userName, ACL_RU); aclcheck_result = pg_aclcheck(relname, GetUserId(), ACL_RU);
if (aclcheck_result != ACLCHECK_OK) if (aclcheck_result != ACLCHECK_OK)
elog(ERROR, "%s: %s", relname, aclcheck_error_strings[aclcheck_result]); elog(ERROR, "%s: %s", relname, aclcheck_error_strings[aclcheck_result]);
#endif #endif
...@@ -529,7 +525,7 @@ ProcessUtility(Node *parsetree, ...@@ -529,7 +525,7 @@ ProcessUtility(Node *parsetree,
elog(ERROR, "class \"%s\" is a system catalog index", elog(ERROR, "class \"%s\" is a system catalog index",
relname); relname);
#ifndef NO_SECURITY #ifndef NO_SECURITY
if (!pg_ownercheck(userName, relname, RELNAME)) if (!pg_ownercheck(GetUserId(), relname, RELNAME))
elog(ERROR, "%s: %s", relname, aclcheck_error_strings[ACLCHECK_NOT_OWNER]); elog(ERROR, "%s: %s", relname, aclcheck_error_strings[ACLCHECK_NOT_OWNER]);
#endif #endif
RemoveIndex(relname); RemoveIndex(relname);
...@@ -542,7 +538,7 @@ ProcessUtility(Node *parsetree, ...@@ -542,7 +538,7 @@ ProcessUtility(Node *parsetree,
#ifndef NO_SECURITY #ifndef NO_SECURITY
relationName = RewriteGetRuleEventRel(rulename); relationName = RewriteGetRuleEventRel(rulename);
aclcheck_result = pg_aclcheck(relationName, userName, ACL_RU); aclcheck_result = pg_aclcheck(relationName, GetUserId(), ACL_RU);
if (aclcheck_result != ACLCHECK_OK) if (aclcheck_result != ACLCHECK_OK)
elog(ERROR, "%s: %s", relationName, aclcheck_error_strings[aclcheck_result]); elog(ERROR, "%s: %s", relationName, aclcheck_error_strings[aclcheck_result]);
#endif #endif
...@@ -564,7 +560,7 @@ ProcessUtility(Node *parsetree, ...@@ -564,7 +560,7 @@ ProcessUtility(Node *parsetree,
ruleName = MakeRetrieveViewRuleName(viewName); ruleName = MakeRetrieveViewRuleName(viewName);
relationName = RewriteGetRuleEventRel(ruleName); relationName = RewriteGetRuleEventRel(ruleName);
if (!pg_ownercheck(userName, relationName, RELNAME)) if (!pg_ownercheck(GetUserId(), relationName, RELNAME))
elog(ERROR, "%s: %s", relationName, aclcheck_error_strings[ACLCHECK_NOT_OWNER]); elog(ERROR, "%s: %s", relationName, aclcheck_error_strings[ACLCHECK_NOT_OWNER]);
pfree(ruleName); pfree(ruleName);
#endif #endif
...@@ -881,7 +877,7 @@ ProcessUtility(Node *parsetree, ...@@ -881,7 +877,7 @@ ProcessUtility(Node *parsetree,
relname); relname);
} }
#ifndef NO_SECURITY #ifndef NO_SECURITY
if (!pg_ownercheck(userName, relname, RELNAME)) if (!pg_ownercheck(GetUserId(), relname, RELNAME))
elog(ERROR, "%s: %s", relname, aclcheck_error_strings[ACLCHECK_NOT_OWNER]); elog(ERROR, "%s: %s", relname, aclcheck_error_strings[ACLCHECK_NOT_OWNER]);
#endif #endif
ReindexIndex(relname, stmt->force); ReindexIndex(relname, stmt->force);
...@@ -899,7 +895,7 @@ ProcessUtility(Node *parsetree, ...@@ -899,7 +895,7 @@ ProcessUtility(Node *parsetree,
relname); relname);
} }
#ifndef NO_SECURITY #ifndef NO_SECURITY
if (!pg_ownercheck(userName, relname, RELNAME)) if (!pg_ownercheck(GetUserId(), relname, RELNAME))
elog(ERROR, "%s: %s", relname, aclcheck_error_strings[ACLCHECK_NOT_OWNER]); elog(ERROR, "%s: %s", relname, aclcheck_error_strings[ACLCHECK_NOT_OWNER]);
#endif #endif
ReindexTable(relname, stmt->force); ReindexTable(relname, stmt->force);
......
...@@ -8,7 +8,7 @@ ...@@ -8,7 +8,7 @@
* *
* *
* IDENTIFICATION * IDENTIFICATION
* $Header: /cvsroot/pgsql/src/backend/utils/init/globals.c,v 1.45 2000/05/31 00:28:32 petere Exp $ * $Header: /cvsroot/pgsql/src/backend/utils/init/globals.c,v 1.46 2000/09/06 14:15:22 petere Exp $
* *
* NOTES * NOTES
* Globals used all over the place should be declared here and not * Globals used all over the place should be declared here and not
...@@ -54,7 +54,6 @@ char OutputFileName[MAXPGPATH] = ""; ...@@ -54,7 +54,6 @@ char OutputFileName[MAXPGPATH] = "";
BackendId MyBackendId; BackendId MyBackendId;
BackendTag MyBackendTag; BackendTag MyBackendTag;
char *UserName = NULL;
char *DatabaseName = NULL; char *DatabaseName = NULL;
char *DatabasePath = NULL; char *DatabasePath = NULL;
......
...@@ -8,7 +8,7 @@ ...@@ -8,7 +8,7 @@
* *
* *
* IDENTIFICATION * IDENTIFICATION
* $Header: /cvsroot/pgsql/src/backend/utils/init/miscinit.c,v 1.53 2000/08/03 16:34:24 tgl Exp $ * $Header: /cvsroot/pgsql/src/backend/utils/init/miscinit.c,v 1.54 2000/09/06 14:15:22 petere Exp $
* *
*------------------------------------------------------------------------- *-------------------------------------------------------------------------
*/ */
...@@ -273,87 +273,67 @@ convertstr(unsigned char *buff, int len, int dest) ...@@ -273,87 +273,67 @@ convertstr(unsigned char *buff, int len, int dest)
#endif #endif
/* ---------------- /* ----------------
* GetPgUserName and SetPgUserName * GetPgUserName
*
* SetPgUserName must be called before InitPostgres, since the setuid()
* is done there.
* ---------------- * ----------------
*/ */
char * char *
GetPgUserName(void) GetPgUserName(void)
{ {
return UserName; HeapTuple tuple;
} Oid userid;
void userid = GetUserId();
SetPgUserName(void)
{
#ifndef NO_SECURITY
char *p;
struct passwd *pw;
if (IsUnderPostmaster) tuple = SearchSysCacheTuple(SHADOWSYSID, ObjectIdGetDatum(userid), 0, 0, 0);
{ if (!HeapTupleIsValid(tuple))
/* use the (possibly) authenticated name that's provided */ elog(ERROR, "invalid user id %u", (unsigned) userid);
if (!(p = getenv("PG_USER")))
elog(FATAL, "SetPgUserName: PG_USER environment variable is unset"); return pstrdup( NameStr(((Form_pg_shadow) GETSTRUCT(tuple))->usename) );
}
else
{
/* setuid() has not yet been done, see above comment */
if (!(pw = getpwuid(geteuid())))
elog(FATAL, "SetPgUserName: no entry in host passwd file");
p = pw->pw_name;
}
if (UserName)
free(UserName);
UserName = malloc(strlen(p) + 1);
strcpy(UserName, p);
#endif /* NO_SECURITY */
} }
/* ---------------------------------------------------------------- /* ----------------------------------------------------------------
* GetUserId and SetUserId * GetUserId and SetUserId
* ---------------------------------------------------------------- * ----------------------------------------------------------------
*/ */
static Oid UserId = InvalidOid; static Oid UserId = InvalidOid;
int
Oid
GetUserId() GetUserId()
{ {
AssertState(OidIsValid(UserId)); AssertState(OidIsValid(UserId));
return UserId; return UserId;
} }
void void
SetUserId() SetUserId(Oid newid)
{ {
HeapTuple userTup; UserId = newid;
char *userName; }
AssertState(!OidIsValid(UserId)); /* only once */ void
SetUserIdFromUserName(const char *username)
{
HeapTuple userTup;
/* /*
* Don't do scans if we're bootstrapping, none of the system catalogs * Don't do scans if we're bootstrapping, none of the system catalogs
* exist yet, and they should be owned by postgres anyway. * exist yet, and they should be owned by postgres anyway.
*/ */
if (IsBootstrapProcessingMode()) AssertState(!IsBootstrapProcessingMode());
{
UserId = geteuid();
return;
}
userName = GetPgUserName();
userTup = SearchSysCacheTuple(SHADOWNAME, userTup = SearchSysCacheTuple(SHADOWNAME,
PointerGetDatum(userName), PointerGetDatum(username),
0, 0, 0); 0, 0, 0);
if (!HeapTupleIsValid(userTup)) if (!HeapTupleIsValid(userTup))
elog(FATAL, "SetUserId: user '%s' is not in '%s'", elog(FATAL, "user \"%s\" does not exist", username);
userName, SetUserId( ((Form_pg_shadow) GETSTRUCT(userTup))->usesysid );
ShadowRelationName);
UserId = (Oid) ((Form_pg_shadow) GETSTRUCT(userTup))->usesysid;
} }
/*------------------------------------------------------------------------- /*-------------------------------------------------------------------------
* *
* posmaster pid file stuffs. $DATADIR/postmaster.pid is created when: * posmaster pid file stuffs. $DATADIR/postmaster.pid is created when:
......
...@@ -8,19 +8,19 @@ ...@@ -8,19 +8,19 @@
* *
* *
* IDENTIFICATION * IDENTIFICATION
* $Header: /cvsroot/pgsql/src/backend/utils/init/postinit.c,v 1.64 2000/08/06 04:39:10 tgl Exp $ * $Header: /cvsroot/pgsql/src/backend/utils/init/postinit.c,v 1.65 2000/09/06 14:15:22 petere Exp $
* *
* *
*------------------------------------------------------------------------- *-------------------------------------------------------------------------
*/ */
#include "postgres.h"
#include <fcntl.h> #include <fcntl.h>
#include <sys/file.h> #include <sys/file.h>
#include <sys/types.h> #include <sys/types.h>
#include <math.h> #include <math.h>
#include <unistd.h> #include <unistd.h>
#include "postgres.h"
#include "access/heapam.h" #include "access/heapam.h"
#include "catalog/catname.h" #include "catalog/catname.h"
#include "catalog/pg_database.h" #include "catalog/pg_database.h"
...@@ -223,7 +223,7 @@ int lockingOff = 0; /* backend -L switch */ ...@@ -223,7 +223,7 @@ int lockingOff = 0; /* backend -L switch */
/* /*
*/ */
void void
InitPostgres(const char *dbname) InitPostgres(const char *dbname, const char *username)
{ {
bool bootstrap = IsBootstrapProcessingMode(); bool bootstrap = IsBootstrapProcessingMode();
...@@ -366,16 +366,19 @@ InitPostgres(const char *dbname) ...@@ -366,16 +366,19 @@ InitPostgres(const char *dbname)
/* replace faked-up relcache entries with the real info */ /* replace faked-up relcache entries with the real info */
RelationCacheInitializePhase2(); RelationCacheInitializePhase2();
if (lockingOff)
LockDisable(true);
/* /*
* Set ourselves to the proper user id and figure out our postgres * Set ourselves to the proper user id and figure out our postgres
* user id. If we ever add security so that we check for valid * user id.
* postgres users, we might do it here.
*/ */
setuid(geteuid()); if (bootstrap)
SetUserId(); SetUserId(geteuid());
else
SetUserIdFromUserName(username);
if (lockingOff) setuid(geteuid());
LockDisable(true);
/* /*
* Unless we are bootstrapping, double-check that InitMyDatabaseInfo() * Unless we are bootstrapping, double-check that InitMyDatabaseInfo()
......
...@@ -9,7 +9,7 @@ ...@@ -9,7 +9,7 @@
* *
* *
* IDENTIFICATION * IDENTIFICATION
* $Header: /cvsroot/pgsql/src/backend/utils/misc/superuser.c,v 1.14 2000/01/26 05:57:28 momjian Exp $ * $Header: /cvsroot/pgsql/src/backend/utils/misc/superuser.c,v 1.15 2000/09/06 14:15:22 petere Exp $
* *
* DESCRIPTION * DESCRIPTION
* See superuser(). * See superuser().
...@@ -30,8 +30,8 @@ superuser(void) ...@@ -30,8 +30,8 @@ superuser(void)
--------------------------------------------------------------------------*/ --------------------------------------------------------------------------*/
HeapTuple utup; HeapTuple utup;
utup = SearchSysCacheTuple(SHADOWNAME, utup = SearchSysCacheTuple(SHADOWSYSID,
PointerGetDatum(GetPgUserName()), ObjectIdGetDatum(GetUserId()),
0, 0, 0); 0, 0, 0);
Assert(utup != NULL); Assert(utup != NULL);
return ((Form_pg_shadow) GETSTRUCT(utup))->usesuper; return ((Form_pg_shadow) GETSTRUCT(utup))->usesuper;
......
...@@ -7,7 +7,7 @@ ...@@ -7,7 +7,7 @@
* Portions Copyright (c) 1996-2000, PostgreSQL, Inc * Portions Copyright (c) 1996-2000, PostgreSQL, Inc
* Portions Copyright (c) 1994, Regents of the University of California * Portions Copyright (c) 1994, Regents of the University of California
* *
* $Id: rename.h,v 1.8 2000/01/26 05:58:00 momjian Exp $ * $Id: rename.h,v 1.9 2000/09/06 14:15:25 petere Exp $
* *
*------------------------------------------------------------------------- *-------------------------------------------------------------------------
*/ */
...@@ -17,7 +17,7 @@ ...@@ -17,7 +17,7 @@
extern void renameatt(char *relname, extern void renameatt(char *relname,
char *oldattname, char *oldattname,
char *newattname, char *newattname,
char *userName, int recurse); int recurse);
extern void renamerel(const char *oldrelname, extern void renamerel(const char *oldrelname,
const char *newrelname); const char *newrelname);
......
...@@ -12,7 +12,7 @@ ...@@ -12,7 +12,7 @@
* Portions Copyright (c) 1996-2000, PostgreSQL, Inc * Portions Copyright (c) 1996-2000, PostgreSQL, Inc
* Portions Copyright (c) 1994, Regents of the University of California * Portions Copyright (c) 1994, Regents of the University of California
* *
* $Id: miscadmin.h,v 1.64 2000/08/03 16:34:43 tgl Exp $ * $Id: miscadmin.h,v 1.65 2000/09/06 14:15:24 petere Exp $
* *
* NOTES * NOTES
* some of the information in this file will be moved to * some of the information in this file will be moved to
...@@ -51,8 +51,6 @@ extern long MyCancelKey; ...@@ -51,8 +51,6 @@ extern long MyCancelKey;
extern char OutputFileName[]; extern char OutputFileName[];
extern char *UserName;
/* /*
* done in storage/backendid.h for now. * done in storage/backendid.h for now.
* *
...@@ -130,9 +128,9 @@ extern void SetDatabaseName(const char *name); ...@@ -130,9 +128,9 @@ extern void SetDatabaseName(const char *name);
extern void SetDatabasePath(const char *path); extern void SetDatabasePath(const char *path);
extern char *GetPgUserName(void); extern char *GetPgUserName(void);
extern void SetPgUserName(void); extern Oid GetUserId(void);
extern int GetUserId(void); extern void SetUserId(Oid userid);
extern void SetUserId(void); extern void SetUserIdFromUserName(const char *username);
extern int FindExec(char *full_path, const char *argv0, const char *binary_name); extern int FindExec(char *full_path, const char *argv0, const char *binary_name);
extern int CheckPathAccess(char *path, char *name, int open_mode); extern int CheckPathAccess(char *path, char *name, int open_mode);
...@@ -186,7 +184,7 @@ typedef int16 ExitStatus; ...@@ -186,7 +184,7 @@ typedef int16 ExitStatus;
extern int lockingOff; extern int lockingOff;
extern void InitPostgres(const char *dbname); extern void InitPostgres(const char *dbname, const char *username);
extern void BaseInit(void); extern void BaseInit(void);
/* one of the ways to get out of here */ /* one of the ways to get out of here */
......
...@@ -7,7 +7,7 @@ ...@@ -7,7 +7,7 @@
* Portions Copyright (c) 1996-2000, PostgreSQL, Inc * Portions Copyright (c) 1996-2000, PostgreSQL, Inc
* Portions Copyright (c) 1994, Regents of the University of California * Portions Copyright (c) 1994, Regents of the University of California
* *
* $Id: tcopprot.h,v 1.33 2000/08/29 09:36:51 petere Exp $ * $Id: tcopprot.h,v 1.34 2000/09/06 14:15:28 petere Exp $
* *
* OLD COMMENTS * OLD COMMENTS
* This file was created so that other c files could get the two * This file was created so that other c files could get the two
...@@ -45,7 +45,7 @@ extern void handle_warn(SIGNAL_ARGS); ...@@ -45,7 +45,7 @@ extern void handle_warn(SIGNAL_ARGS);
extern void die(SIGNAL_ARGS); extern void die(SIGNAL_ARGS);
extern void CancelQuery(void); extern void CancelQuery(void);
extern int PostgresMain(int argc, char *argv[], extern int PostgresMain(int argc, char *argv[],
int real_argc, char *real_argv[]); int real_argc, char *real_argv[], const char *username);
extern void ResetUsage(void); extern void ResetUsage(void);
extern void ShowUsage(void); extern void ShowUsage(void);
extern FILE * StatFp; extern FILE * StatFp;
......
...@@ -7,7 +7,7 @@ ...@@ -7,7 +7,7 @@
* Portions Copyright (c) 1996-2000, PostgreSQL, Inc * Portions Copyright (c) 1996-2000, PostgreSQL, Inc
* Portions Copyright (c) 1994, Regents of the University of California * Portions Copyright (c) 1994, Regents of the University of California
* *
* $Id: acl.h,v 1.26 2000/07/31 22:39:02 tgl Exp $ * $Id: acl.h,v 1.27 2000/09/06 14:15:31 petere Exp $
* *
* NOTES * NOTES
* For backward-compatibility purposes we have to allow there * For backward-compatibility purposes we have to allow there
...@@ -197,11 +197,11 @@ extern void ChangeAcl(char *relname, AclItem *mod_aip, unsigned modechg); ...@@ -197,11 +197,11 @@ extern void ChangeAcl(char *relname, AclItem *mod_aip, unsigned modechg);
extern AclId get_grosysid(char *groname); extern AclId get_grosysid(char *groname);
extern char *get_groname(AclId grosysid); extern char *get_groname(AclId grosysid);
extern int32 pg_aclcheck(char *relname, char *usename, AclMode mode); extern int32 pg_aclcheck(char *relname, Oid userid, AclMode mode);
extern int32 pg_ownercheck(const char *usename, const char *value, int cacheid); extern int32 pg_ownercheck(Oid userid, const char *value, int cacheid);
extern int32 pg_func_ownercheck(char *usename, char *funcname, extern int32 pg_func_ownercheck(Oid userid, char *funcname,
int nargs, Oid *arglist); int nargs, Oid *arglist);
extern int32 pg_aggr_ownercheck(char *usename, char *aggname, extern int32 pg_aggr_ownercheck(Oid userid, char *aggname,
Oid basetypeID); Oid basetypeID);
#endif /* ACL_H */ #endif /* ACL_H */
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment