rust/neon
1
0
Fork 0
mirror of https://github.com/neondatabase/neon.git synced 2026-01-04 12:02:55 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
1a45b2ec900b37c40608ca94a1d9d37cad12fce8
neon/test_runner/fixtures
History
Dimitri Fontaine 1a45b2ec90 Review security model for executing Event Trigger code. (#12463) 
When a function is owned by a superuser (bootstrap user or otherwise),
we consider it safe to run it. Only a superuser could have installed it,
typically from CREATE EXTENSION script: we trust the code to execute.

## Problem

This is intended to solve running pg_graphql Event Triggers
graphql_watch_ddl and graphql_watch_drop which are executing the secdef
function graphql.increment_schema_version().

## Summary of changes

Allow executing Event Trigger function owned by a superuser and with
SECURITY DEFINER properties. The Event Trigger code runs with superuser
privileges, and we consider that it's fine.

---------

Co-authored-by: Tristan Partin <tristan.partin@databricks.com>
2025-07-10 08:06:33 +00:00
..
endpoint
Replica promotion in compute_ctl (#12183)
2025-07-09 12:55:10 +00:00
pageserver
fix(pageserver): ensure remote size gets computed (#12520)
2025-07-09 15:35:19 +00:00
safekeeper
storage: rename term -> last_log_term in TimelineMembershipSwitchResponse (#12481)
2025-07-07 09:22:03 +00:00
__init__.py
Enable all pyupgrade checks in ruff
2024-10-08 14:32:26 -05:00
auth_tokens.py
ruff: enable TC — flake8-type-checking (#11368)
2025-03-30 18:58:33 +00:00
benchmark_fixture.py
ruff: enable TC — flake8-type-checking (#11368)
2025-03-30 18:58:33 +00:00
common_types.py
pageserver: issue concurrent IO on the read path (#9353)
2025-01-22 15:30:23 +00:00
compare_fixtures.py
ruff: enable TC — flake8-type-checking (#11368)
2025-03-30 18:58:33 +00:00
compute_migrations.py
Add more substantial tests for compute migrations (#9811)
2025-01-02 18:37:50 +00:00
compute_reconfigure.py
ruff: enable TC — flake8-type-checking (#11368)
2025-03-30 18:58:33 +00:00
fast_import.py
pageserver: hook importing timelines up into disk usage eviction (#12038)
2025-05-29 13:01:10 +00:00
h2server.py
ruff: enable TC — flake8-type-checking (#11368)
2025-03-30 18:58:33 +00:00
httpserver.py
Improve typing in test_runner/fixtures/httpserver.py (#10103)
2024-12-11 22:21:42 +00:00
log_helper.py
Improve some typing in test_runner
2024-10-09 15:42:22 -05:00
metrics.py
PS changes #1 (#12467)
2025-07-08 19:43:01 +00:00
neon_api.py
Respect limits for projects for the Random Operations test (#12184)
2025-06-10 15:59:51 +00:00
neon_cli.py
offload_lfc_interval_seconds in ComputeSpec (#12447)
2025-07-04 18:49:57 +00:00
neon_fixtures.py
Review security model for executing Event Trigger code. (#12463)
2025-07-10 08:06:33 +00:00
overlayfs.py
Improve some typing in test_runner
2024-10-09 15:42:22 -05:00
parametrize.py
ruff: enable TC — flake8-type-checking (#11368)
2025-03-30 18:58:33 +00:00
paths.py
ruff: enable TC — flake8-type-checking (#11368)
2025-03-30 18:58:33 +00:00
pg_config.py
Add remote extension test with library component (#11301)
2025-04-24 22:33:46 +00:00
pg_stats.py
Enable all pyupgrade checks in ruff
2024-10-08 14:32:26 -05:00
pg_version.py
Python 3.11 (#9515)
2024-11-21 16:25:31 +00:00
port_distributor.py
Python 3.11 (#9515)
2024-11-21 16:25:31 +00:00
remote_storage.py
ruff: enable TC — flake8-type-checking (#11368)
2025-03-30 18:58:33 +00:00
reruns.py
ruff: enable TC — flake8-type-checking (#11368)
2025-03-30 18:58:33 +00:00
safekeeper_utils.py
safekeeper: allow remote deletion to proceed after dropped requests (#11042)
2025-03-03 16:03:51 +00:00
slow.py
ruff: enable TC — flake8-type-checking (#11368)
2025-03-30 18:58:33 +00:00
storage_controller_proxy.py
ruff: enable TC — flake8-type-checking (#11368)
2025-03-30 18:58:33 +00:00
utils.py
tests: attach final metrics to allure report (#11604)
2025-04-16 10:26:47 +00:00
workload.py
ruff: enable TC — flake8-type-checking (#11368)
2025-03-30 18:58:33 +00:00