Fix permission-checking bug reported by Tim Burgess 10-Feb-03 (this time

for sure...). Rather than relying on the query context of a rangetable entry to identify what permissions it wants checked, store a full AclMode mask in each RTE, and check exactly those bits. This allows an RTE specifying, say, INSERT privilege on a view to be copied into a derived UPDATE query without changing meaning. Per recent discussion thread. initdb forced due to change of stored rule representation.
author: Tom Lane <tgl@sss.pgh.pa.us> 2004-01-14 23:01:55 +0000
committer: Tom Lane <tgl@sss.pgh.pa.us> 2004-01-14 23:01:55 +0000
commit: cfd7fb7ed4b66da97f88338d991843fa7e2fe59d (patch)
tree: f433f1281eba10a7ab2e563fa39eaf3228df32e8 /src/backend/nodes/readfuncs.c
parent: 01d320d421b3f82de799e86e8b9adac27c2f9a26 (diff)
1 files changed, 3 insertions, 4 deletions
diff --git a/src/backend/nodes/readfuncs.c b/src/backend/nodes/readfuncs.c
index bbfcb1b454e..93c71fd2247 100644
--- a/src/backend/nodes/readfuncs.c
+++ b/src/backend/nodes/readfuncs.c
@@ -8,7 +8,7 @@
  *
  *
  * IDENTIFICATION
- *	  $PostgreSQL: pgsql/src/backend/nodes/readfuncs.c,v 1.164 2004/01/07 18:56:26 neilc Exp $
+ *	  $PostgreSQL: pgsql/src/backend/nodes/readfuncs.c,v 1.165 2004/01/14 23:01:55 tgl Exp $
  *
  * NOTES
  *	  Path and Plan nodes do not have any readfuncs support, because we
@@ -939,9 +939,8 @@ _readRangeTblEntry(void)
 
 	READ_BOOL_FIELD(inh);
 	READ_BOOL_FIELD(inFromCl);
-	READ_BOOL_FIELD(checkForRead);
-	READ_BOOL_FIELD(checkForWrite);
-	READ_OID_FIELD(checkAsUser);
+	READ_UINT_FIELD(requiredPerms);
+	READ_UINT_FIELD(checkAsUser);
 
 	READ_DONE();
 }
author	Tom Lane <tgl@sss.pgh.pa.us>	2004-01-14 23:01:55 +0000
committer	Tom Lane <tgl@sss.pgh.pa.us>	2004-01-14 23:01:55 +0000
commit	cfd7fb7ed4b66da97f88338d991843fa7e2fe59d (patch)
tree	f433f1281eba10a7ab2e563fa39eaf3228df32e8 /src/backend/nodes/readfuncs.c
parent	01d320d421b3f82de799e86e8b9adac27c2f9a26 (diff)