Commit 846fcc85 authored by Robert Haas's avatar Robert Haas

Fix problems with the "role" GUC and parallel query.

Without this fix, dropping a role can sometimes result in parallel
query failures in sessions that have used "SET ROLE" to assume the
dropped role, even if that setting isn't active any more.

Report by Pavan Deolasee.  Patch by Amit Kapila, reviewed by me.

Discussion: http://postgr.es/m/CABOikdOomRcZsLsLK+Z+qENM1zxyaWnAvFh3MJZzZnnKiF+REg@mail.gmail.com
parent 5f397129
...@@ -75,9 +75,11 @@ typedef struct FixedParallelState ...@@ -75,9 +75,11 @@ typedef struct FixedParallelState
Oid database_id; Oid database_id;
Oid authenticated_user_id; Oid authenticated_user_id;
Oid current_user_id; Oid current_user_id;
Oid outer_user_id;
Oid temp_namespace_id; Oid temp_namespace_id;
Oid temp_toast_namespace_id; Oid temp_toast_namespace_id;
int sec_context; int sec_context;
bool is_superuser;
PGPROC *parallel_master_pgproc; PGPROC *parallel_master_pgproc;
pid_t parallel_master_pid; pid_t parallel_master_pid;
BackendId parallel_master_backend_id; BackendId parallel_master_backend_id;
...@@ -296,6 +298,8 @@ InitializeParallelDSM(ParallelContext *pcxt) ...@@ -296,6 +298,8 @@ InitializeParallelDSM(ParallelContext *pcxt)
shm_toc_allocate(pcxt->toc, sizeof(FixedParallelState)); shm_toc_allocate(pcxt->toc, sizeof(FixedParallelState));
fps->database_id = MyDatabaseId; fps->database_id = MyDatabaseId;
fps->authenticated_user_id = GetAuthenticatedUserId(); fps->authenticated_user_id = GetAuthenticatedUserId();
fps->outer_user_id = GetCurrentRoleId();
fps->is_superuser = session_auth_is_superuser;
GetUserIdAndSecContext(&fps->current_user_id, &fps->sec_context); GetUserIdAndSecContext(&fps->current_user_id, &fps->sec_context);
GetTempNamespaceState(&fps->temp_namespace_id, GetTempNamespaceState(&fps->temp_namespace_id,
&fps->temp_toast_namespace_id); &fps->temp_toast_namespace_id);
...@@ -1115,6 +1119,13 @@ ParallelWorkerMain(Datum main_arg) ...@@ -1115,6 +1119,13 @@ ParallelWorkerMain(Datum main_arg)
*/ */
InvalidateSystemCaches(); InvalidateSystemCaches();
/*
* Restore current role id. Skip verifying whether session user is
* allowed to become this role and blindly restore the leader's state for
* current role.
*/
SetCurrentRoleId(fps->outer_user_id, fps->is_superuser);
/* Restore user ID and security context. */ /* Restore user ID and security context. */
SetUserIdAndSecContext(fps->current_user_id, fps->sec_context); SetUserIdAndSecContext(fps->current_user_id, fps->sec_context);
......
...@@ -446,6 +446,7 @@ char *event_source; ...@@ -446,6 +446,7 @@ char *event_source;
bool row_security; bool row_security;
bool check_function_bodies = true; bool check_function_bodies = true;
bool default_with_oids = false; bool default_with_oids = false;
bool session_auth_is_superuser;
int log_min_error_statement = ERROR; int log_min_error_statement = ERROR;
int log_min_messages = WARNING; int log_min_messages = WARNING;
...@@ -492,7 +493,6 @@ int huge_pages; ...@@ -492,7 +493,6 @@ int huge_pages;
* and is kept in sync by assign_hooks. * and is kept in sync by assign_hooks.
*/ */
static char *syslog_ident_str; static char *syslog_ident_str;
static bool session_auth_is_superuser;
static double phony_random_seed; static double phony_random_seed;
static char *client_encoding_string; static char *client_encoding_string;
static char *datestyle_string; static char *datestyle_string;
...@@ -8986,12 +8986,18 @@ read_nondefault_variables(void) ...@@ -8986,12 +8986,18 @@ read_nondefault_variables(void)
* constants; a few, like server_encoding and lc_ctype, are handled specially * constants; a few, like server_encoding and lc_ctype, are handled specially
* outside the serialize/restore procedure. Therefore, SerializeGUCState() * outside the serialize/restore procedure. Therefore, SerializeGUCState()
* never sends these, and RestoreGUCState() never changes them. * never sends these, and RestoreGUCState() never changes them.
*
* Role is a special variable in the sense that its current value can be an
* invalid value and there are multiple ways by which that can happen (like
* after setting the role, someone drops it). So we handle it outside of
* serialize/restore machinery.
*/ */
static bool static bool
can_skip_gucvar(struct config_generic *gconf) can_skip_gucvar(struct config_generic *gconf)
{ {
return gconf->context == PGC_POSTMASTER || return gconf->context == PGC_POSTMASTER ||
gconf->context == PGC_INTERNAL || gconf->source == PGC_S_DEFAULT; gconf->context == PGC_INTERNAL || gconf->source == PGC_S_DEFAULT ||
strcmp(gconf->name, "role") == 0;
} }
/* /*
...@@ -9252,7 +9258,6 @@ SerializeGUCState(Size maxsize, char *start_address) ...@@ -9252,7 +9258,6 @@ SerializeGUCState(Size maxsize, char *start_address)
Size actual_size; Size actual_size;
Size bytes_left; Size bytes_left;
int i; int i;
int i_role = -1;
/* Reserve space for saving the actual size of the guc state */ /* Reserve space for saving the actual size of the guc state */
Assert(maxsize > sizeof(actual_size)); Assert(maxsize > sizeof(actual_size));
...@@ -9260,19 +9265,7 @@ SerializeGUCState(Size maxsize, char *start_address) ...@@ -9260,19 +9265,7 @@ SerializeGUCState(Size maxsize, char *start_address)
bytes_left = maxsize - sizeof(actual_size); bytes_left = maxsize - sizeof(actual_size);
for (i = 0; i < num_guc_variables; i++) for (i = 0; i < num_guc_variables; i++)
{ serialize_variable(&curptr, &bytes_left, guc_variables[i]);
/*
* It's pretty ugly, but we've got to force "role" to be initialized
* after "session_authorization"; otherwise, the latter will override
* the former.
*/
if (strcmp(guc_variables[i]->name, "role") == 0)
i_role = i;
else
serialize_variable(&curptr, &bytes_left, guc_variables[i]);
}
if (i_role >= 0)
serialize_variable(&curptr, &bytes_left, guc_variables[i_role]);
/* Store actual size without assuming alignment of start_address. */ /* Store actual size without assuming alignment of start_address. */
actual_size = maxsize - bytes_left - sizeof(actual_size); actual_size = maxsize - bytes_left - sizeof(actual_size);
......
...@@ -245,6 +245,7 @@ extern bool log_btree_build_stats; ...@@ -245,6 +245,7 @@ extern bool log_btree_build_stats;
extern PGDLLIMPORT bool check_function_bodies; extern PGDLLIMPORT bool check_function_bodies;
extern bool default_with_oids; extern bool default_with_oids;
extern bool session_auth_is_superuser;
extern int log_min_error_statement; extern int log_min_error_statement;
extern int log_min_messages; extern int log_min_messages;
......
...@@ -508,6 +508,22 @@ SELECT make_record(x) FROM (SELECT generate_series(1, 5) x) ss ORDER BY x; ...@@ -508,6 +508,22 @@ SELECT make_record(x) FROM (SELECT generate_series(1, 5) x) ss ORDER BY x;
ROLLBACK TO SAVEPOINT settings; ROLLBACK TO SAVEPOINT settings;
DROP function make_record(n int); DROP function make_record(n int);
-- test the sanity of parallel query after the active role is dropped.
drop role if exists regress_parallel_worker;
NOTICE: role "regress_parallel_worker" does not exist, skipping
create role regress_parallel_worker;
set role regress_parallel_worker;
reset session authorization;
drop role regress_parallel_worker;
set force_parallel_mode = 1;
select count(*) from tenk1;
count
-------
10000
(1 row)
reset force_parallel_mode;
reset role;
-- to increase the parallel query test coverage -- to increase the parallel query test coverage
SAVEPOINT settings; SAVEPOINT settings;
SET LOCAL force_parallel_mode = 1; SET LOCAL force_parallel_mode = 1;
......
...@@ -201,6 +201,17 @@ SELECT make_record(x) FROM (SELECT generate_series(1, 5) x) ss ORDER BY x; ...@@ -201,6 +201,17 @@ SELECT make_record(x) FROM (SELECT generate_series(1, 5) x) ss ORDER BY x;
ROLLBACK TO SAVEPOINT settings; ROLLBACK TO SAVEPOINT settings;
DROP function make_record(n int); DROP function make_record(n int);
-- test the sanity of parallel query after the active role is dropped.
drop role if exists regress_parallel_worker;
create role regress_parallel_worker;
set role regress_parallel_worker;
reset session authorization;
drop role regress_parallel_worker;
set force_parallel_mode = 1;
select count(*) from tenk1;
reset force_parallel_mode;
reset role;
-- to increase the parallel query test coverage -- to increase the parallel query test coverage
SAVEPOINT settings; SAVEPOINT settings;
SET LOCAL force_parallel_mode = 1; SET LOCAL force_parallel_mode = 1;
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment