]> git.decadent.org.uk Git - dak.git/commitdiff
projects / dak.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 1a77823)
Set search_path to a secure value.
authorAnsgar Burchardt <ansgar@debian.org>
Fri, 19 Aug 2011 18:05:42 +0000 (20:05 +0200)
committerAnsgar Burchardt <ansgar@debian.org>
Fri, 19 Aug 2011 18:05:42 +0000 (20:05 +0200)
dak/dakdb/update66.py patch | blob | history

diff --git a/dak/dakdb/update66.py b/dak/dakdb/update66.py
index 2f108bae7744086d12b419ee0c203c3aaaa1e7df..c9ec9b2b7b25181d23a9d1cbbdaf22984bdbf507 100755 (executable)
--- a/dak/dakdb/update66.py
+++ b/dak/dakdb/update66.py
@@ -123,7 +123,8 @@ BEGIN
 
   RETURN NEW;
 END;
-$$ LANGUAGE plpgsql VOLATILE SECURITY DEFINER""");
+$$ LANGUAGE plpgsql VOLATILE SECURITY DEFINER
+SET search_path = public, pg_temp""");
 
         c.execute("""CREATE OR REPLACE FUNCTION trigger_override_update() RETURNS TRIGGER AS $$
 DECLARE
@@ -182,7 +183,8 @@ BEGIN
 
   RETURN NEW;
 END;
-$$ LANGUAGE plpgsql VOLATILE SECURITY DEFINER""");
+$$ LANGUAGE plpgsql VOLATILE SECURITY DEFINER
+SET search_path = public, pg_temp""");
 
         c.execute("CREATE TRIGGER trigger_bin_associations_audit AFTER INSERT OR DELETE ON bin_associations FOR EACH ROW EXECUTE PROCEDURE trigger_binsrc_assoc_update()")
         c.execute("CREATE TRIGGER trigger_src_associations_audit AFTER INSERT OR DELETE ON src_associations FOR EACH ROW EXECUTE PROCEDURE trigger_binsrc_assoc_update()")
dak changes to support and test code signing