mirror of
				https://github.com/postgres/postgres.git
				synced 2025-10-25 13:17:41 +03:00 
			
		
		
		
	Rework internals of changing a type's ownership
This is necessary so that REASSIGN OWNED does the right thing with
composite types, to wit, that it also alters ownership of the type's
pg_class entry -- previously, the pg_class entry remained owned by the
original user, which caused later other failures such as the new owner's
inability to use ALTER TYPE to rename an attribute of the affected
composite.  Also, if the original owner is later dropped, the pg_class
entry becomes owned by a non-existant user which is bogus.
To fix, create a new routine AlterTypeOwner_oid which knows whether to
pass the request to ATExecChangeOwner or deal with it directly, and use
that in shdepReassignOwner rather than calling AlterTypeOwnerInternal
directly.  AlterTypeOwnerInternal is now simpler in that it only
modifies the pg_type entry and recurses to handle a possible array type;
higher-level tasks are handled by either AlterTypeOwner directly or
AlterTypeOwner_oid.
I took the opportunity to add a few more objects to the test rig for
REASSIGN OWNED, so that more cases are exercised.  Additional ones could
be added for superuser-only-ownable objects (such as FDWs and event
triggers) but I didn't want to push my luck by adding a new superuser to
the tests on a backpatchable bug fix.
Per bug #13666 reported by Chris Pacejo.
This is a backpatch of commit 756e7b4c9d to branches 9.1 -- 9.4.
			
			
This commit is contained in:
		| @@ -1349,7 +1349,7 @@ shdepReassignOwned(List *roleids, Oid newrole) | |||||||
| 					break; | 					break; | ||||||
|  |  | ||||||
| 				case TypeRelationId: | 				case TypeRelationId: | ||||||
| 					AlterTypeOwnerInternal(sdepForm->objid, newrole, true); | 					AlterTypeOwner_oid(sdepForm->objid, newrole, true); | ||||||
| 					break; | 					break; | ||||||
|  |  | ||||||
| 				case OperatorRelationId: | 				case OperatorRelationId: | ||||||
|   | |||||||
| @@ -7567,8 +7567,7 @@ ATExecChangeOwner(Oid relationOid, Oid newOwnerId, bool recursing, LOCKMODE lock | |||||||
| 		 * Also change the ownership of the table's row type, if it has one | 		 * Also change the ownership of the table's row type, if it has one | ||||||
| 		 */ | 		 */ | ||||||
| 		if (tuple_class->relkind != RELKIND_INDEX) | 		if (tuple_class->relkind != RELKIND_INDEX) | ||||||
| 			AlterTypeOwnerInternal(tuple_class->reltype, newOwnerId, | 			AlterTypeOwnerInternal(tuple_class->reltype, newOwnerId); | ||||||
| 							 tuple_class->relkind == RELKIND_COMPOSITE_TYPE); |  | ||||||
|  |  | ||||||
| 		/* | 		/* | ||||||
| 		 * If we are operating on a table, also change the ownership of any | 		 * If we are operating on a table, also change the ownership of any | ||||||
|   | |||||||
| @@ -2717,33 +2717,7 @@ AlterTypeOwner(List *names, Oid newOwnerId) | |||||||
| 							   get_namespace_name(typTup->typnamespace)); | 							   get_namespace_name(typTup->typnamespace)); | ||||||
| 		} | 		} | ||||||
|  |  | ||||||
| 		/* | 		AlterTypeOwner_oid(typeOid, newOwnerId, true); | ||||||
| 		 * If it's a composite type, invoke ATExecChangeOwner so that we fix |  | ||||||
| 		 * up the pg_class entry properly.  That will call back to |  | ||||||
| 		 * AlterTypeOwnerInternal to take care of the pg_type entry(s). |  | ||||||
| 		 */ |  | ||||||
| 		if (typTup->typtype == TYPTYPE_COMPOSITE) |  | ||||||
| 			ATExecChangeOwner(typTup->typrelid, newOwnerId, true, AccessExclusiveLock); |  | ||||||
| 		else |  | ||||||
| 		{ |  | ||||||
| 			/* |  | ||||||
| 			 * We can just apply the modification directly. |  | ||||||
| 			 * |  | ||||||
| 			 * okay to scribble on typTup because it's a copy |  | ||||||
| 			 */ |  | ||||||
| 			typTup->typowner = newOwnerId; |  | ||||||
|  |  | ||||||
| 			simple_heap_update(rel, &tup->t_self, tup); |  | ||||||
|  |  | ||||||
| 			CatalogUpdateIndexes(rel, tup); |  | ||||||
|  |  | ||||||
| 			/* Update owner dependency reference */ |  | ||||||
| 			changeDependencyOnOwner(TypeRelationId, typeOid, newOwnerId); |  | ||||||
|  |  | ||||||
| 			/* If it has an array type, update that too */ |  | ||||||
| 			if (OidIsValid(typTup->typarray)) |  | ||||||
| 				AlterTypeOwnerInternal(typTup->typarray, newOwnerId, false); |  | ||||||
| 		} |  | ||||||
| 	} | 	} | ||||||
|  |  | ||||||
| 	/* Clean up */ | 	/* Clean up */ | ||||||
| @@ -2751,19 +2725,56 @@ AlterTypeOwner(List *names, Oid newOwnerId) | |||||||
| } | } | ||||||
|  |  | ||||||
| /* | /* | ||||||
|  * AlterTypeOwnerInternal - change type owner unconditionally |  * AlterTypeOwner_oid - change type owner unconditionally | ||||||
|  * |  * | ||||||
|  * This is currently only used to propagate ALTER TABLE/TYPE OWNER to a |  * This function recurses to handle a pg_class entry, if necessary.  It | ||||||
|  * table's rowtype or an array type, and to implement REASSIGN OWNED BY. |  * invokes any necessary access object hooks.  If hasDependEntry is TRUE, this | ||||||
|  * It assumes the caller has done all needed checks.  The function will |  * function modifies the pg_shdepend entry appropriately (this should be | ||||||
|  * automatically recurse to an array type if the type has one. |  * passed as FALSE only for table rowtypes and array types). | ||||||
|  * |  * | ||||||
|  * hasDependEntry should be TRUE if type is expected to have a pg_shdepend |  * This is used by ALTER TABLE/TYPE OWNER commands, as well as by REASSIGN | ||||||
|  * entry (ie, it's not a table rowtype nor an array type). |  * OWNED BY.  It assumes the caller has done all needed check. | ||||||
|  */ |  */ | ||||||
| void | void | ||||||
| AlterTypeOwnerInternal(Oid typeOid, Oid newOwnerId, | AlterTypeOwner_oid(Oid typeOid, Oid newOwnerId, bool hasDependEntry) | ||||||
| 					   bool hasDependEntry) | { | ||||||
|  | 	Relation	rel; | ||||||
|  | 	HeapTuple	tup; | ||||||
|  | 	Form_pg_type typTup; | ||||||
|  |  | ||||||
|  | 	rel = heap_open(TypeRelationId, RowExclusiveLock); | ||||||
|  |  | ||||||
|  | 	tup = SearchSysCache1(TYPEOID, ObjectIdGetDatum(typeOid)); | ||||||
|  | 	if (!HeapTupleIsValid(tup)) | ||||||
|  | 		elog(ERROR, "cache lookup failed for type %u", typeOid); | ||||||
|  | 	typTup = (Form_pg_type) GETSTRUCT(tup); | ||||||
|  |  | ||||||
|  | 	/* | ||||||
|  | 	 * If it's a composite type, invoke ATExecChangeOwner so that we fix up the | ||||||
|  | 	 * pg_class entry properly.  That will call back to AlterTypeOwnerInternal | ||||||
|  | 	 * to take care of the pg_type entry(s). | ||||||
|  | 	 */ | ||||||
|  | 	if (typTup->typtype == TYPTYPE_COMPOSITE) | ||||||
|  | 		ATExecChangeOwner(typTup->typrelid, newOwnerId, true, AccessExclusiveLock); | ||||||
|  | 	else | ||||||
|  | 		AlterTypeOwnerInternal(typeOid, newOwnerId); | ||||||
|  |  | ||||||
|  | 	/* Update owner dependency reference */ | ||||||
|  | 	if (hasDependEntry) | ||||||
|  | 		changeDependencyOnOwner(TypeRelationId, typeOid, newOwnerId); | ||||||
|  |  | ||||||
|  | 	ReleaseSysCache(tup); | ||||||
|  | 	heap_close(rel, RowExclusiveLock); | ||||||
|  | } | ||||||
|  |  | ||||||
|  | /* | ||||||
|  |  * AlterTypeOwnerInternal - bare-bones type owner change. | ||||||
|  |  * | ||||||
|  |  * This routine simply modifies the owner of a pg_type entry, and recurses | ||||||
|  |  * to handle a possible array type. | ||||||
|  |  */ | ||||||
|  | void | ||||||
|  | AlterTypeOwnerInternal(Oid typeOid, Oid newOwnerId) | ||||||
| { | { | ||||||
| 	Relation	rel; | 	Relation	rel; | ||||||
| 	HeapTuple	tup; | 	HeapTuple	tup; | ||||||
| @@ -2785,13 +2796,9 @@ AlterTypeOwnerInternal(Oid typeOid, Oid newOwnerId, | |||||||
|  |  | ||||||
| 	CatalogUpdateIndexes(rel, tup); | 	CatalogUpdateIndexes(rel, tup); | ||||||
|  |  | ||||||
| 	/* Update owner dependency reference, if it has one */ |  | ||||||
| 	if (hasDependEntry) |  | ||||||
| 		changeDependencyOnOwner(TypeRelationId, typeOid, newOwnerId); |  | ||||||
|  |  | ||||||
| 	/* If it has an array type, update that too */ | 	/* If it has an array type, update that too */ | ||||||
| 	if (OidIsValid(typTup->typarray)) | 	if (OidIsValid(typTup->typarray)) | ||||||
| 		AlterTypeOwnerInternal(typTup->typarray, newOwnerId, false); | 		AlterTypeOwnerInternal(typTup->typarray, newOwnerId); | ||||||
|  |  | ||||||
| 	/* Clean up */ | 	/* Clean up */ | ||||||
| 	heap_close(rel, RowExclusiveLock); | 	heap_close(rel, RowExclusiveLock); | ||||||
|   | |||||||
| @@ -39,8 +39,8 @@ extern List *GetDomainConstraints(Oid typeOid); | |||||||
|  |  | ||||||
| extern void RenameType(List *names, const char *newTypeName); | extern void RenameType(List *names, const char *newTypeName); | ||||||
| extern void AlterTypeOwner(List *names, Oid newOwnerId); | extern void AlterTypeOwner(List *names, Oid newOwnerId); | ||||||
| extern void AlterTypeOwnerInternal(Oid typeOid, Oid newOwnerId, | extern void AlterTypeOwner_oid(Oid typeOid, Oid newOwnerId, bool hasDependEntry); | ||||||
| 					   bool hasDependEntry); | extern void AlterTypeOwnerInternal(Oid typeOid, Oid newOwnerId); | ||||||
| extern void AlterTypeNamespace(List *names, const char *newschema); | extern void AlterTypeNamespace(List *names, const char *newschema); | ||||||
| extern Oid	AlterTypeNamespace_oid(Oid typeOid, Oid nspOid, ObjectAddresses *objsMoved); | extern Oid	AlterTypeNamespace_oid(Oid typeOid, Oid nspOid, ObjectAddresses *objsMoved); | ||||||
| extern Oid	AlterTypeNamespaceInternal(Oid typeOid, Oid nspOid, | extern Oid	AlterTypeNamespaceInternal(Oid typeOid, Oid nspOid, | ||||||
|   | |||||||
| @@ -89,15 +89,32 @@ DROP OWNED BY regression_user1; | |||||||
| \d deptest | \d deptest | ||||||
| -- Test REASSIGN OWNED | -- Test REASSIGN OWNED | ||||||
| GRANT ALL ON deptest1 TO regression_user1; | GRANT ALL ON deptest1 TO regression_user1; | ||||||
|  | GRANT CREATE ON DATABASE regression TO regression_user1; | ||||||
| SET SESSION AUTHORIZATION regression_user1; | SET SESSION AUTHORIZATION regression_user1; | ||||||
|  | CREATE SCHEMA deptest; | ||||||
| CREATE TABLE deptest (a serial primary key, b text); | CREATE TABLE deptest (a serial primary key, b text); | ||||||
| NOTICE:  CREATE TABLE will create implicit sequence "deptest_a_seq" for serial column "deptest.a" | NOTICE:  CREATE TABLE will create implicit sequence "deptest_a_seq" for serial column "deptest.a" | ||||||
| NOTICE:  CREATE TABLE / PRIMARY KEY will create implicit index "deptest_pkey" for table "deptest" | NOTICE:  CREATE TABLE / PRIMARY KEY will create implicit index "deptest_pkey" for table "deptest" | ||||||
|  | ALTER DEFAULT PRIVILEGES FOR ROLE regression_user1 IN SCHEMA deptest | ||||||
|  |   GRANT ALL ON TABLES TO regression_user2; | ||||||
|  | CREATE FUNCTION deptest_func() RETURNS void LANGUAGE plpgsql | ||||||
|  |   AS $$ BEGIN END; $$; | ||||||
|  | CREATE TYPE deptest_enum AS ENUM ('red'); | ||||||
| CREATE TABLE deptest2 (f1 int); | CREATE TABLE deptest2 (f1 int); | ||||||
| -- make a serial column the hard way | -- make a serial column the hard way | ||||||
| CREATE SEQUENCE ss1; | CREATE SEQUENCE ss1; | ||||||
| ALTER TABLE deptest2 ALTER f1 SET DEFAULT nextval('ss1'); | ALTER TABLE deptest2 ALTER f1 SET DEFAULT nextval('ss1'); | ||||||
| ALTER SEQUENCE ss1 OWNED BY deptest2.f1; | ALTER SEQUENCE ss1 OWNED BY deptest2.f1; | ||||||
|  | -- When reassigning ownership of a composite type, its pg_class entry | ||||||
|  | -- should match | ||||||
|  | CREATE TYPE deptest_t AS (a int); | ||||||
|  | SELECT typowner = relowner | ||||||
|  | FROM pg_type JOIN pg_class c ON typrelid = c.oid WHERE typname = 'deptest_t'; | ||||||
|  |  ?column?  | ||||||
|  | ---------- | ||||||
|  |  t | ||||||
|  | (1 row) | ||||||
|  |  | ||||||
| RESET SESSION AUTHORIZATION; | RESET SESSION AUTHORIZATION; | ||||||
| REASSIGN OWNED BY regression_user1 TO regression_user2; | REASSIGN OWNED BY regression_user1 TO regression_user2; | ||||||
| \dt deptest | \dt deptest | ||||||
| @@ -107,10 +124,19 @@ REASSIGN OWNED BY regression_user1 TO regression_user2; | |||||||
|  public | deptest | table | regression_user2 |  public | deptest | table | regression_user2 | ||||||
| (1 row) | (1 row) | ||||||
|  |  | ||||||
|  | SELECT typowner = relowner | ||||||
|  | FROM pg_type JOIN pg_class c ON typrelid = c.oid WHERE typname = 'deptest_t'; | ||||||
|  |  ?column?  | ||||||
|  | ---------- | ||||||
|  |  t | ||||||
|  | (1 row) | ||||||
|  |  | ||||||
| -- doesn't work: grant still exists | -- doesn't work: grant still exists | ||||||
| DROP USER regression_user1; | DROP USER regression_user1; | ||||||
| ERROR:  role "regression_user1" cannot be dropped because some objects depend on it | ERROR:  role "regression_user1" cannot be dropped because some objects depend on it | ||||||
| DETAIL:  privileges for table deptest1 | DETAIL:  owner of default privileges on new relations belonging to role regression_user1 in schema deptest | ||||||
|  | privileges for database regression | ||||||
|  | privileges for table deptest1 | ||||||
| DROP OWNED BY regression_user1; | DROP OWNED BY regression_user1; | ||||||
| DROP USER regression_user1; | DROP USER regression_user1; | ||||||
| \set VERBOSITY terse | \set VERBOSITY terse | ||||||
|   | |||||||
| @@ -74,20 +74,36 @@ DROP OWNED BY regression_user1; | |||||||
|  |  | ||||||
| -- Test REASSIGN OWNED | -- Test REASSIGN OWNED | ||||||
| GRANT ALL ON deptest1 TO regression_user1; | GRANT ALL ON deptest1 TO regression_user1; | ||||||
|  | GRANT CREATE ON DATABASE regression TO regression_user1; | ||||||
|  |  | ||||||
| SET SESSION AUTHORIZATION regression_user1; | SET SESSION AUTHORIZATION regression_user1; | ||||||
|  | CREATE SCHEMA deptest; | ||||||
| CREATE TABLE deptest (a serial primary key, b text); | CREATE TABLE deptest (a serial primary key, b text); | ||||||
|  | ALTER DEFAULT PRIVILEGES FOR ROLE regression_user1 IN SCHEMA deptest | ||||||
|  |   GRANT ALL ON TABLES TO regression_user2; | ||||||
|  | CREATE FUNCTION deptest_func() RETURNS void LANGUAGE plpgsql | ||||||
|  |   AS $$ BEGIN END; $$; | ||||||
|  | CREATE TYPE deptest_enum AS ENUM ('red'); | ||||||
|  |  | ||||||
| CREATE TABLE deptest2 (f1 int); | CREATE TABLE deptest2 (f1 int); | ||||||
| -- make a serial column the hard way | -- make a serial column the hard way | ||||||
| CREATE SEQUENCE ss1; | CREATE SEQUENCE ss1; | ||||||
| ALTER TABLE deptest2 ALTER f1 SET DEFAULT nextval('ss1'); | ALTER TABLE deptest2 ALTER f1 SET DEFAULT nextval('ss1'); | ||||||
| ALTER SEQUENCE ss1 OWNED BY deptest2.f1; | ALTER SEQUENCE ss1 OWNED BY deptest2.f1; | ||||||
| RESET SESSION AUTHORIZATION; |  | ||||||
|  |  | ||||||
|  | -- When reassigning ownership of a composite type, its pg_class entry | ||||||
|  | -- should match | ||||||
|  | CREATE TYPE deptest_t AS (a int); | ||||||
|  | SELECT typowner = relowner | ||||||
|  | FROM pg_type JOIN pg_class c ON typrelid = c.oid WHERE typname = 'deptest_t'; | ||||||
|  |  | ||||||
|  | RESET SESSION AUTHORIZATION; | ||||||
| REASSIGN OWNED BY regression_user1 TO regression_user2; | REASSIGN OWNED BY regression_user1 TO regression_user2; | ||||||
| \dt deptest | \dt deptest | ||||||
|  |  | ||||||
|  | SELECT typowner = relowner | ||||||
|  | FROM pg_type JOIN pg_class c ON typrelid = c.oid WHERE typname = 'deptest_t'; | ||||||
|  |  | ||||||
| -- doesn't work: grant still exists | -- doesn't work: grant still exists | ||||||
| DROP USER regression_user1; | DROP USER regression_user1; | ||||||
| DROP OWNED BY regression_user1; | DROP OWNED BY regression_user1; | ||||||
|   | |||||||
		Reference in New Issue
	
	Block a user