!2351 回合PG漏洞：CVE-2022-2625，创建extension中带有create or replace语句可能导致越权

Merge pull request !2351 from luajk/CVE-2022-2625
2022-11-08 09:34:30 +00:00
parent 52f4f49e2f ee2a769222
commit 85c2f70b5c
10 changed files with 125 additions and 17 deletions
--- a/src/include/catalog/dependency.h
+++ b/src/include/catalog/dependency.h
@ -289,6 +289,8 @@ extern void recordMultipleDependencies(const ObjectAddress *depender,
 extern void recordDependencyOnCurrentExtension(const ObjectAddress *object,
                                               bool isReplace);

+extern void checkMembershipInCurrentExtension(const ObjectAddress *object);
+
 extern void recordPinnedDependency(const ObjectAddress *object);

 extern bool IsPackageDependType(Oid typOid, Oid pkgOid, bool isRefCur = false);
--- a/src/include/catalog/objectaddress.h
+++ b/src/include/catalog/objectaddress.h
@ -41,6 +41,16 @@ typedef struct ObjectAddress
    char        deptype;        /* Indicates the deptype that the object is referenced by other object. */
 } ObjectAddress;

+#define ObjectAddressSubSet(addr, class_id, object_id, object_sub_id) \
+	do { \
+		(addr).classId = (class_id); \
+		(addr).objectId = (object_id); \
+		(addr).objectSubId = (object_sub_id); \
+	} while (0)
+
+#define ObjectAddressSet(addr, class_id, object_id) \
+	ObjectAddressSubSet(addr, class_id, object_id, 0)
+
 extern ObjectAddress get_object_address(ObjectType objtype, List *objname,
 				   List *objargs, Relation *relp,
 				   LOCKMODE lockmode, bool missing_ok);