Re: Exposure related to GUC value of ssl_passphrase_command

Fujii Masao <masao.fujii@oss.nttdata.com>

From: Fujii Masao <masao.fujii@oss.nttdata.com>
To: keisuke kuroda <keisuke.kuroda.3862@gmail.com>, pgsql-hackers@lists.postgresql.org
Cc: Insung Moon <tsukiwamoon.pgsql@gmail.com>
Date: 2020-03-09T02:43:52Z
Lists: pgsql-hackers

On 2020/03/06 16:20, keisuke kuroda wrote:
> The following review has been posted through the commitfest application:
> make installcheck-world:  tested, passed
> Implements feature:       tested, passed
> Spec compliant:           tested, passed
> Documentation:            not tested
> 
> I tested the patch on the master branch (addd034) and it works fine.
> 
> I think that test case which non-superuser can't see this parameter is unnecessary.
> There is a similar test for pg_read_all_settings role.
> 
> The new status of this patch is: Ready for Committer

Pushed! Thanks!

Regards,


-- 
Fujii Masao
NTT DATA CORPORATION
Advanced Platform Technology Group
Research and Development Headquarters



Commits

  1. Mark ssl_passphrase_command as GUC_SUPERUSER_ONLY.