farrokhi/pg_repack
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

An attempt to restrict the search path to avoid injections

Browse Source 
An alternative way to fix #168 which is not as invasive as the changes
in #171.

This currently breaks the current behaviour of the program as the tables
specified on command line are not found.
This commit is contained in:
Daniele Varrazzo 2018-03-20 20:47:06 +00:00
parent ce8e283f63
commit 914537edc7
2 changed files with 6 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
bin/pgut/pgut-fe.c
View File

@ -99,6 +99,9 @@ setup_workers(int num_workers)
break; break;
} }
/* Hardcode a search path to avoid injections into public or pg_temp */
pgut_command(conn, "SET search_path TO pg_catalog, pg_temp", 0, NULL);
/* Make sure each worker connection can work in non-blocking /* Make sure each worker connection can work in non-blocking
* mode. * mode.
*/ */

3
bin/pgut/pgut.c
View File

@ -504,6 +504,9 @@ pgut_connect(const char *info, YesNo prompt, int elevel)
termStringInfo(&add_pass); termStringInfo(&add_pass);
free(passwd); free(passwd);
/* Hardcode a search path to avoid injections into public or pg_temp */
pgut_command(conn, "SET search_path TO pg_catalog, pg_temp", 0, NULL);
return conn; return conn;
} }