PostgreSQL Source Code git master
Loading...
Searching...
No Matches
Typedefs | Functions
seclabel.h File Reference
#include "catalog/objectaddress.h"
Include dependency graph for seclabel.h:
This graph shows which files directly or indirectly include this file:

Go to the source code of this file.

Typedefs

typedef void(* check_object_relabel_type) (const ObjectAddress *object, const char *seclabel)
 

Functions

charGetSecurityLabel (const ObjectAddress *object, const char *provider)
 
void SetSecurityLabel (const ObjectAddress *object, const char *provider, const char *label)
 
void DeleteSecurityLabel (const ObjectAddress *object)
 
void DeleteSharedSecurityLabel (Oid objectId, Oid classId)
 
ObjectAddress ExecSecLabelStmt (SecLabelStmt *stmt)
 
void register_label_provider (const char *provider_name, check_object_relabel_type hook)
 

Typedef Documentation

◆ check_object_relabel_type

typedef void(* check_object_relabel_type) (const ObjectAddress *object, const char *seclabel)

Definition at line 29 of file seclabel.h.

Function Documentation

◆ DeleteSecurityLabel()

void DeleteSecurityLabel ( const ObjectAddress object)
extern

Definition at line 523 of file seclabel.c.

524{
525 Relation pg_seclabel;
526 ScanKeyData skey[3];
527 SysScanDesc scan;
528 HeapTuple oldtup;
529 int nkeys;
530
531 /* Shared objects have their own security label catalog. */
532 if (IsSharedRelation(object->classId))
533 {
534 Assert(object->objectSubId == 0);
535 DeleteSharedSecurityLabel(object->objectId, object->classId);
536 return;
537 }
538
539 ScanKeyInit(&skey[0],
540 Anum_pg_seclabel_objoid,
541 BTEqualStrategyNumber, F_OIDEQ,
542 ObjectIdGetDatum(object->objectId));
543 ScanKeyInit(&skey[1],
544 Anum_pg_seclabel_classoid,
545 BTEqualStrategyNumber, F_OIDEQ,
546 ObjectIdGetDatum(object->classId));
547 if (object->objectSubId != 0)
548 {
549 ScanKeyInit(&skey[2],
550 Anum_pg_seclabel_objsubid,
551 BTEqualStrategyNumber, F_INT4EQ,
552 Int32GetDatum(object->objectSubId));
553 nkeys = 3;
554 }
555 else
556 nkeys = 2;
557
558 pg_seclabel = table_open(SecLabelRelationId, RowExclusiveLock);
559
560 scan = systable_beginscan(pg_seclabel, SecLabelObjectIndexId, true,
561 NULL, nkeys, skey);
562 while (HeapTupleIsValid(oldtup = systable_getnext(scan)))
563 CatalogTupleDelete(pg_seclabel, &oldtup->t_self);
564 systable_endscan(scan);
565
566 table_close(pg_seclabel, RowExclusiveLock);
567}
Assert
#define Assert(condition)
Definition c.h:873
IsSharedRelation
bool IsSharedRelation(Oid relationId)
Definition catalog.c:304
systable_endscan
void systable_endscan(SysScanDesc sysscan)
Definition genam.c:603
systable_getnext
HeapTuple systable_getnext(SysScanDesc sysscan)
Definition genam.c:514
systable_beginscan
SysScanDesc systable_beginscan(Relation heapRelation, Oid indexId, bool indexOK, Snapshot snapshot, int nkeys, ScanKey key)
Definition genam.c:388
HeapTupleIsValid
#define HeapTupleIsValid(tuple)
Definition htup.h:78
CatalogTupleDelete
void CatalogTupleDelete(Relation heapRel, const ItemPointerData *tid)
Definition indexing.c:365
RowExclusiveLock
#define RowExclusiveLock
Definition lockdefs.h:38
ObjectIdGetDatum
static Datum ObjectIdGetDatum(Oid X)
Definition postgres.h:262
Int32GetDatum
static Datum Int32GetDatum(int32 X)
Definition postgres.h:222
fb
static int fb(int x)
Definition preproc-init.c:92
ScanKeyInit
void ScanKeyInit(ScanKey entry, AttrNumber attributeNumber, StrategyNumber strategy, RegProcedure procedure, Datum argument)
Definition scankey.c:76
DeleteSharedSecurityLabel
void DeleteSharedSecurityLabel(Oid objectId, Oid classId)
Definition seclabel.c:491
BTEqualStrategyNumber
#define BTEqualStrategyNumber
Definition stratnum.h:31
table_close
void table_close(Relation relation, LOCKMODE lockmode)
Definition table.c:126
table_open
Relation table_open(Oid relationId, LOCKMODE lockmode)
Definition table.c:40

References Assert, BTEqualStrategyNumber, CatalogTupleDelete(), ObjectAddress::classId, DeleteSharedSecurityLabel(), fb(), HeapTupleIsValid, Int32GetDatum(), IsSharedRelation(), ObjectAddress::objectId, ObjectIdGetDatum(), ObjectAddress::objectSubId, RowExclusiveLock, ScanKeyInit(), systable_beginscan(), systable_endscan(), systable_getnext(), table_close(), and table_open().

Referenced by deleteOneObject().

◆ DeleteSharedSecurityLabel()

void DeleteSharedSecurityLabel ( Oid  objectId,
Oid  classId 
)
extern

Definition at line 491 of file seclabel.c.

492{
493 Relation pg_shseclabel;
494 ScanKeyData skey[2];
495 SysScanDesc scan;
496 HeapTuple oldtup;
497
498 ScanKeyInit(&skey[0],
499 Anum_pg_shseclabel_objoid,
500 BTEqualStrategyNumber, F_OIDEQ,
501 ObjectIdGetDatum(objectId));
502 ScanKeyInit(&skey[1],
503 Anum_pg_shseclabel_classoid,
504 BTEqualStrategyNumber, F_OIDEQ,
505 ObjectIdGetDatum(classId));
506
507 pg_shseclabel = table_open(SharedSecLabelRelationId, RowExclusiveLock);
508
509 scan = systable_beginscan(pg_shseclabel, SharedSecLabelObjectIndexId, true,
510 NULL, 2, skey);
511 while (HeapTupleIsValid(oldtup = systable_getnext(scan)))
512 CatalogTupleDelete(pg_shseclabel, &oldtup->t_self);
513 systable_endscan(scan);
514
515 table_close(pg_shseclabel, RowExclusiveLock);
516}

References BTEqualStrategyNumber, CatalogTupleDelete(), fb(), HeapTupleIsValid, ObjectIdGetDatum(), RowExclusiveLock, ScanKeyInit(), systable_beginscan(), systable_endscan(), systable_getnext(), table_close(), and table_open().

Referenced by DeleteSecurityLabel(), dropdb(), DropRole(), and DropTableSpace().

◆ ExecSecLabelStmt()

ObjectAddress ExecSecLabelStmt ( SecLabelStmt stmt)
extern

Definition at line 115 of file seclabel.c.

116{
117 LabelProvider *provider = NULL;
118 ObjectAddress address;
119 Relation relation;
120 ListCell *lc;
121
122 /*
123 * Find the named label provider, or if none specified, check whether
124 * there's exactly one, and if so use it.
125 */
126 if (stmt->provider == NULL)
127 {
128 if (label_provider_list == NIL)
129 ereport(ERROR,
130 (errcode(ERRCODE_INVALID_PARAMETER_VALUE),
131 errmsg("no security label providers have been loaded")));
132 if (list_length(label_provider_list) != 1)
133 ereport(ERROR,
134 (errcode(ERRCODE_INVALID_PARAMETER_VALUE),
135 errmsg("must specify provider when multiple security label providers have been loaded")));
136 provider = (LabelProvider *) linitial(label_provider_list);
137 }
138 else
139 {
140 foreach(lc, label_provider_list)
141 {
142 LabelProvider *lp = lfirst(lc);
143
144 if (strcmp(stmt->provider, lp->provider_name) == 0)
145 {
146 provider = lp;
147 break;
148 }
149 }
150 if (provider == NULL)
151 ereport(ERROR,
152 (errcode(ERRCODE_INVALID_PARAMETER_VALUE),
153 errmsg("security label provider \"%s\" is not loaded",
154 stmt->provider)));
155 }
156
157 if (!SecLabelSupportsObjectType(stmt->objtype))
158 ereport(ERROR,
159 (errcode(ERRCODE_WRONG_OBJECT_TYPE),
160 errmsg("security labels are not supported for this type of object")));
161
162 /*
163 * Translate the parser representation which identifies this object into
164 * an ObjectAddress. get_object_address() will throw an error if the
165 * object does not exist, and will also acquire a lock on the target to
166 * guard against concurrent modifications.
167 */
168 address = get_object_address(stmt->objtype, stmt->object,
169 &relation, ShareUpdateExclusiveLock, false);
170
171 /* Require ownership of the target object. */
172 check_object_ownership(GetUserId(), stmt->objtype, address,
173 stmt->object, relation);
174
175 /* Perform other integrity checks as needed. */
176 switch (stmt->objtype)
177 {
178 case OBJECT_COLUMN:
179
180 /*
181 * Allow security labels only on columns of tables, views,
182 * materialized views, composite types, and foreign tables (which
183 * are the only relkinds for which pg_dump will dump labels).
184 */
185 if (relation->rd_rel->relkind != RELKIND_RELATION &&
186 relation->rd_rel->relkind != RELKIND_VIEW &&
187 relation->rd_rel->relkind != RELKIND_MATVIEW &&
188 relation->rd_rel->relkind != RELKIND_COMPOSITE_TYPE &&
189 relation->rd_rel->relkind != RELKIND_FOREIGN_TABLE &&
190 relation->rd_rel->relkind != RELKIND_PARTITIONED_TABLE)
191 ereport(ERROR,
192 (errcode(ERRCODE_WRONG_OBJECT_TYPE),
193 errmsg("cannot set security label on relation \"%s\"",
194 RelationGetRelationName(relation)),
195 errdetail_relkind_not_supported(relation->rd_rel->relkind)));
196 break;
197 default:
198 break;
199 }
200
201 /* Provider gets control here, may throw ERROR to veto new label. */
202 provider->hook(&address, stmt->label);
203
204 /* Apply new label. */
205 SetSecurityLabel(&address, provider->provider_name, stmt->label);
206
207 /*
208 * If get_object_address() opened the relation for us, we close it to keep
209 * the reference count correct - but we retain any locks acquired by
210 * get_object_address() until commit time, to guard against concurrent
211 * activity.
212 */
213 if (relation != NULL)
214 relation_close(relation, NoLock);
215
216 return address;
217}
errcode
int errcode(int sqlerrcode)
Definition elog.c:863
errmsg
int errmsg(const char *fmt,...)
Definition elog.c:1080
ERROR
#define ERROR
Definition elog.h:39
ereport
#define ereport(elevel,...)
Definition elog.h:150
stmt
#define stmt
Definition indent_codes.h:59
NoLock
#define NoLock
Definition lockdefs.h:34
ShareUpdateExclusiveLock
#define ShareUpdateExclusiveLock
Definition lockdefs.h:39
GetUserId
Oid GetUserId(void)
Definition miscinit.c:469
check_object_ownership
void check_object_ownership(Oid roleid, ObjectType objtype, ObjectAddress address, Node *object, Relation relation)
Definition objectaddress.c:2390
get_object_address
ObjectAddress get_object_address(ObjectType objtype, Node *object, Relation *relp, LOCKMODE lockmode, bool missing_ok)
Definition objectaddress.c:922
OBJECT_COLUMN
@ OBJECT_COLUMN
Definition parsenodes.h:2358
errdetail_relkind_not_supported
int errdetail_relkind_not_supported(char relkind)
Definition pg_class.c:24
lfirst
#define lfirst(lc)
Definition pg_list.h:172
list_length
static int list_length(const List *l)
Definition pg_list.h:152
NIL
#define NIL
Definition pg_list.h:68
linitial
#define linitial(l)
Definition pg_list.h:178
RelationGetRelationName
#define RelationGetRelationName(relation)
Definition rel.h:548
SetSecurityLabel
void SetSecurityLabel(const ObjectAddress *object, const char *provider, const char *label)
Definition seclabel.c:404
label_provider_list
static List * label_provider_list
Definition seclabel.c:34
SecLabelSupportsObjectType
static bool SecLabelSupportsObjectType(ObjectType objtype)
Definition seclabel.c:37
relation_close
void relation_close(Relation relation, LOCKMODE lockmode)
Definition relation.c:205
RelationData::rd_rel
Form_pg_class rd_rel
Definition rel.h:111

References check_object_ownership(), ereport, errcode(), errdetail_relkind_not_supported(), errmsg(), ERROR, fb(), get_object_address(), GetUserId(), label_provider_list, lfirst, linitial, list_length(), NIL, NoLock, OBJECT_COLUMN, RelationData::rd_rel, relation_close(), RelationGetRelationName, SecLabelSupportsObjectType(), SetSecurityLabel(), ShareUpdateExclusiveLock, and stmt.

Referenced by ProcessUtilitySlow(), and standard_ProcessUtility().

◆ GetSecurityLabel()

char * GetSecurityLabel ( const ObjectAddress object,
const char provider 
)
extern

Definition at line 272 of file seclabel.c.

273{
274 Relation pg_seclabel;
275 ScanKeyData keys[4];
276 SysScanDesc scan;
277 HeapTuple tuple;
278 Datum datum;
279 bool isnull;
280 char *seclabel = NULL;
281
282 /* Shared objects have their own security label catalog. */
283 if (IsSharedRelation(object->classId))
284 return GetSharedSecurityLabel(object, provider);
285
286 /* Must be an unshared object, so examine pg_seclabel. */
287 ScanKeyInit(&keys[0],
288 Anum_pg_seclabel_objoid,
289 BTEqualStrategyNumber, F_OIDEQ,
290 ObjectIdGetDatum(object->objectId));
291 ScanKeyInit(&keys[1],
292 Anum_pg_seclabel_classoid,
293 BTEqualStrategyNumber, F_OIDEQ,
294 ObjectIdGetDatum(object->classId));
295 ScanKeyInit(&keys[2],
296 Anum_pg_seclabel_objsubid,
297 BTEqualStrategyNumber, F_INT4EQ,
298 Int32GetDatum(object->objectSubId));
299 ScanKeyInit(&keys[3],
300 Anum_pg_seclabel_provider,
301 BTEqualStrategyNumber, F_TEXTEQ,
302 CStringGetTextDatum(provider));
303
304 pg_seclabel = table_open(SecLabelRelationId, AccessShareLock);
305
306 scan = systable_beginscan(pg_seclabel, SecLabelObjectIndexId, true,
307 NULL, 4, keys);
308
309 tuple = systable_getnext(scan);
310 if (HeapTupleIsValid(tuple))
311 {
312 datum = heap_getattr(tuple, Anum_pg_seclabel_label,
313 RelationGetDescr(pg_seclabel), &isnull);
314 if (!isnull)
315 seclabel = TextDatumGetCString(datum);
316 }
317 systable_endscan(scan);
318
319 table_close(pg_seclabel, AccessShareLock);
320
321 return seclabel;
322}
CStringGetTextDatum
#define CStringGetTextDatum(s)
Definition builtins.h:97
TextDatumGetCString
#define TextDatumGetCString(d)
Definition builtins.h:98
heap_getattr
static Datum heap_getattr(HeapTuple tup, int attnum, TupleDesc tupleDesc, bool *isnull)
Definition htup_details.h:904
AccessShareLock
#define AccessShareLock
Definition lockdefs.h:36
Datum
uint64_t Datum
Definition postgres.h:70
RelationGetDescr
#define RelationGetDescr(relation)
Definition rel.h:540
GetSharedSecurityLabel
static char * GetSharedSecurityLabel(const ObjectAddress *object, const char *provider)
Definition seclabel.c:224

References AccessShareLock, BTEqualStrategyNumber, ObjectAddress::classId, CStringGetTextDatum, fb(), GetSharedSecurityLabel(), heap_getattr(), HeapTupleIsValid, Int32GetDatum(), IsSharedRelation(), ObjectAddress::objectId, ObjectIdGetDatum(), ObjectAddress::objectSubId, RelationGetDescr, ScanKeyInit(), systable_beginscan(), systable_endscan(), systable_getnext(), table_close(), table_open(), and TextDatumGetCString.

Referenced by sepgsql_avc_check_perms(), sepgsql_avc_trusted_proc(), and sepgsql_get_label().

◆ register_label_provider()

void register_label_provider ( const char provider_name,
check_object_relabel_type  hook 
)
extern

Definition at line 570 of file seclabel.c.

571{
572 LabelProvider *provider;
573 MemoryContext oldcxt;
574
575 oldcxt = MemoryContextSwitchTo(TopMemoryContext);
576 provider = palloc_object(LabelProvider);
577 provider->provider_name = pstrdup(provider_name);
578 provider->hook = hook;
579 label_provider_list = lappend(label_provider_list, provider);
580 MemoryContextSwitchTo(oldcxt);
581}
palloc_object
#define palloc_object(type)
Definition fe_memutils.h:74
lappend
List * lappend(List *list, void *datum)
Definition list.c:339
pstrdup
char * pstrdup(const char *in)
Definition mcxt.c:1781
TopMemoryContext
MemoryContext TopMemoryContext
Definition mcxt.c:166
MemoryContextSwitchTo
static MemoryContext MemoryContextSwitchTo(MemoryContext context)
Definition palloc.h:124

References fb(), label_provider_list, lappend(), MemoryContextSwitchTo(), palloc_object, pstrdup(), and TopMemoryContext.

Referenced by _PG_init().

◆ SetSecurityLabel()

void SetSecurityLabel ( const ObjectAddress object,
const char provider,
const char label 
)
extern

Definition at line 404 of file seclabel.c.

406{
407 Relation pg_seclabel;
408 ScanKeyData keys[4];
409 SysScanDesc scan;
410 HeapTuple oldtup;
411 HeapTuple newtup = NULL;
412 Datum values[Natts_pg_seclabel];
413 bool nulls[Natts_pg_seclabel];
414 bool replaces[Natts_pg_seclabel];
415
416 /* Shared objects have their own security label catalog. */
417 if (IsSharedRelation(object->classId))
418 {
419 SetSharedSecurityLabel(object, provider, label);
420 return;
421 }
422
423 /* Prepare to form or update a tuple, if necessary. */
424 memset(nulls, false, sizeof(nulls));
425 memset(replaces, false, sizeof(replaces));
426 values[Anum_pg_seclabel_objoid - 1] = ObjectIdGetDatum(object->objectId);
427 values[Anum_pg_seclabel_classoid - 1] = ObjectIdGetDatum(object->classId);
428 values[Anum_pg_seclabel_objsubid - 1] = Int32GetDatum(object->objectSubId);
429 values[Anum_pg_seclabel_provider - 1] = CStringGetTextDatum(provider);
430 if (label != NULL)
431 values[Anum_pg_seclabel_label - 1] = CStringGetTextDatum(label);
432
433 /* Use the index to search for a matching old tuple */
434 ScanKeyInit(&keys[0],
435 Anum_pg_seclabel_objoid,
436 BTEqualStrategyNumber, F_OIDEQ,
437 ObjectIdGetDatum(object->objectId));
438 ScanKeyInit(&keys[1],
439 Anum_pg_seclabel_classoid,
440 BTEqualStrategyNumber, F_OIDEQ,
441 ObjectIdGetDatum(object->classId));
442 ScanKeyInit(&keys[2],
443 Anum_pg_seclabel_objsubid,
444 BTEqualStrategyNumber, F_INT4EQ,
445 Int32GetDatum(object->objectSubId));
446 ScanKeyInit(&keys[3],
447 Anum_pg_seclabel_provider,
448 BTEqualStrategyNumber, F_TEXTEQ,
449 CStringGetTextDatum(provider));
450
451 pg_seclabel = table_open(SecLabelRelationId, RowExclusiveLock);
452
453 scan = systable_beginscan(pg_seclabel, SecLabelObjectIndexId, true,
454 NULL, 4, keys);
455
456 oldtup = systable_getnext(scan);
457 if (HeapTupleIsValid(oldtup))
458 {
459 if (label == NULL)
460 CatalogTupleDelete(pg_seclabel, &oldtup->t_self);
461 else
462 {
463 replaces[Anum_pg_seclabel_label - 1] = true;
464 newtup = heap_modify_tuple(oldtup, RelationGetDescr(pg_seclabel),
465 values, nulls, replaces);
466 CatalogTupleUpdate(pg_seclabel, &oldtup->t_self, newtup);
467 }
468 }
469 systable_endscan(scan);
470
471 /* If we didn't find an old tuple, insert a new one */
472 if (newtup == NULL && label != NULL)
473 {
474 newtup = heap_form_tuple(RelationGetDescr(pg_seclabel),
475 values, nulls);
476 CatalogTupleInsert(pg_seclabel, newtup);
477 }
478
479 /* Update indexes, if necessary */
480 if (newtup != NULL)
481 heap_freetuple(newtup);
482
483 table_close(pg_seclabel, RowExclusiveLock);
484}
values
static Datum values[MAXATTR]
Definition bootstrap.c:155
heap_modify_tuple
HeapTuple heap_modify_tuple(HeapTuple tuple, TupleDesc tupleDesc, const Datum *replValues, const bool *replIsnull, const bool *doReplace)
Definition heaptuple.c:1210
heap_form_tuple
HeapTuple heap_form_tuple(TupleDesc tupleDescriptor, const Datum *values, const bool *isnull)
Definition heaptuple.c:1117
heap_freetuple
void heap_freetuple(HeapTuple htup)
Definition heaptuple.c:1435
CatalogTupleUpdate
void CatalogTupleUpdate(Relation heapRel, const ItemPointerData *otid, HeapTuple tup)
Definition indexing.c:313
CatalogTupleInsert
void CatalogTupleInsert(Relation heapRel, HeapTuple tup)
Definition indexing.c:233
label
static char * label
Definition pg_basebackup.c:135
SetSharedSecurityLabel
static void SetSharedSecurityLabel(const ObjectAddress *object, const char *provider, const char *label)
Definition seclabel.c:329

References BTEqualStrategyNumber, CatalogTupleDelete(), CatalogTupleInsert(), CatalogTupleUpdate(), ObjectAddress::classId, CStringGetTextDatum, fb(), heap_form_tuple(), heap_freetuple(), heap_modify_tuple(), HeapTupleIsValid, Int32GetDatum(), IsSharedRelation(), label, ObjectAddress::objectId, ObjectIdGetDatum(), ObjectAddress::objectSubId, RelationGetDescr, RowExclusiveLock, ScanKeyInit(), SetSharedSecurityLabel(), systable_beginscan(), systable_endscan(), systable_getnext(), table_close(), table_open(), and values.

Referenced by exec_object_restorecon(), ExecSecLabelStmt(), sepgsql_attribute_post_create(), sepgsql_database_post_create(), sepgsql_proc_post_create(), sepgsql_relation_post_create(), and sepgsql_schema_post_create().