[PATCH] Use role name "system_user" instead of "user" for unsafe_tests

Started by Aleksander Alekseevalmost 3 years ago7 messages

aleksander@timescale.com

almost 3 years ago

1 attachment(s)

Hi,

While playing with a new single board computer (VisionFive 2) I
discovered that postgresql:unsafe_tests suite fails like this:

```
--- /home/user/projects/postgresql/src/test/modules/unsafe_tests/expected/rolenames.out
2023-04-11 14:58:57.844550612 +0000
+++ /home/user/projects/postgresql/build/testrun/unsafe_tests/regress/results/rolenames.out
    2023-04-11 17:54:22.999024391 +0000
@@ -53,6 +53,7 @@
 CREATE ROLE "current_user";
 CREATE ROLE "session_user";
 CREATE ROLE "user";
+ERROR:  role "user" already exists
 RESET client_min_messages;
 CREATE ROLE current_user; -- error
 ERROR:  CURRENT_USER cannot be used as a role name here
@@ -1089,4 +1090,5 @@
 DROP OWNED BY regress_testrol0, "Public", "current_role",
"current_user", regress_testrol1, regress_testrol2, regress_testrolx
CASCADE;
 DROP ROLE regress_testrol0, regress_testrol1, regress_testrol2,
regress_testrolx;
 DROP ROLE "Public", "None", "current_role", "current_user",
"session_user", "user";
+ERROR:  current user cannot be dropped
 DROP ROLE regress_role_haspriv, regress_role_nopriv;
```

This happens because the developers of this SBC choose the default
username "user", which I had no reason to change.

Test merely checks that we can distinguish a username "user" from the
USER keyword. Maybe it's worth replacing "user" with "system_user"? It
is also a keyword but is a less likely choice for the OS user name.

--
Best regards,
Aleksander Alekseev

Attachments:

v1-0001-Use-role-name-system_user-instead-of-user-for-uns.patchapplication/octet-stream; name=v1-0001-Use-role-name-system_user-instead-of-user-for-uns.patchDownload

From 3cf1890f89b2462b9373ca82c6f065ac38293ced Mon Sep 17 00:00:00 2001
From: Aleksander Alekseev <afiskon@gmail.com>
Date: Tue, 11 Apr 2023 18:18:44 +0000
Subject: [PATCH v1] Use role name "system_user" instead of "user" for
 unsafe_tests

This choice has a less likely chance to have a collision with an OS user
name.

Aleksander Alekseev, reviewed by TODO FIXME
Discussion: TODO FIXME
---
 src/test/modules/unsafe_tests/expected/rolenames.out | 4 ++--
 src/test/modules/unsafe_tests/sql/rolenames.sql      | 4 ++--
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/src/test/modules/unsafe_tests/expected/rolenames.out b/src/test/modules/unsafe_tests/expected/rolenames.out
index 61396b2a80..4989f0530b 100644
--- a/src/test/modules/unsafe_tests/expected/rolenames.out
+++ b/src/test/modules/unsafe_tests/expected/rolenames.out
@@ -52,7 +52,7 @@ CREATE ROLE "None";
 CREATE ROLE "current_role";
 CREATE ROLE "current_user";
 CREATE ROLE "session_user";
-CREATE ROLE "user";
+CREATE ROLE "system_user";
 RESET client_min_messages;
 CREATE ROLE current_user; -- error
 ERROR:  CURRENT_USER cannot be used as a role name here
@@ -1088,5 +1088,5 @@ REVOKE pg_read_all_settings FROM regress_role_haspriv;
 DROP SCHEMA test_roles_schema;
 DROP OWNED BY regress_testrol0, "Public", "current_role", "current_user", regress_testrol1, regress_testrol2, regress_testrolx CASCADE;
 DROP ROLE regress_testrol0, regress_testrol1, regress_testrol2, regress_testrolx;
-DROP ROLE "Public", "None", "current_role", "current_user", "session_user", "user";
+DROP ROLE "Public", "None", "current_role", "current_user", "session_user", "system_user";
 DROP ROLE regress_role_haspriv, regress_role_nopriv;
diff --git a/src/test/modules/unsafe_tests/sql/rolenames.sql b/src/test/modules/unsafe_tests/sql/rolenames.sql
index adac36536d..372a4a6e17 100644
--- a/src/test/modules/unsafe_tests/sql/rolenames.sql
+++ b/src/test/modules/unsafe_tests/sql/rolenames.sql
@@ -56,7 +56,7 @@ CREATE ROLE "None";
 CREATE ROLE "current_role";
 CREATE ROLE "current_user";
 CREATE ROLE "session_user";
-CREATE ROLE "user";
+CREATE ROLE "system_user";
 
 RESET client_min_messages;
 
@@ -500,5 +500,5 @@ REVOKE pg_read_all_settings FROM regress_role_haspriv;
 DROP SCHEMA test_roles_schema;
 DROP OWNED BY regress_testrol0, "Public", "current_role", "current_user", regress_testrol1, regress_testrol2, regress_testrolx CASCADE;
 DROP ROLE regress_testrol0, regress_testrol1, regress_testrol2, regress_testrolx;
-DROP ROLE "Public", "None", "current_role", "current_user", "session_user", "user";
+DROP ROLE "Public", "None", "current_role", "current_user", "session_user", "system_user";
 DROP ROLE regress_role_haspriv, regress_role_nopriv;
-- 
2.40.0

Andrew Dunstan

andrew@dunslane.net

almost 3 years ago

In reply to: Aleksander Alekseev (#1)

Re: [PATCH] Use role name "system_user" instead of "user" for unsafe_tests

On 2023-04-11 Tu 14:25, Aleksander Alekseev wrote:

Hi,

While playing with a new single board computer (VisionFive 2) I
discovered that postgresql:unsafe_tests suite fails like this:
```
--- /home/user/projects/postgresql/src/test/modules/unsafe_tests/expected/rolenames.out
2023-04-11 14:58:57.844550612 +0000
+++ /home/user/projects/postgresql/build/testrun/unsafe_tests/regress/results/rolenames.out
2023-04-11 17:54:22.999024391 +0000
@@ -53,6 +53,7 @@
CREATE ROLE "current_user";
CREATE ROLE "session_user";
CREATE ROLE "user";
+ERROR:  role "user" already exists
RESET client_min_messages;
CREATE ROLE current_user; -- error
ERROR:  CURRENT_USER cannot be used as a role name here
@@ -1089,4 +1090,5 @@
DROP OWNED BY regress_testrol0, "Public", "current_role",
"current_user", regress_testrol1, regress_testrol2, regress_testrolx
CASCADE;
DROP ROLE regress_testrol0, regress_testrol1, regress_testrol2,
regress_testrolx;
DROP ROLE "Public", "None", "current_role", "current_user",
"session_user", "user";
+ERROR:  current user cannot be dropped
DROP ROLE regress_role_haspriv, regress_role_nopriv;
```
This happens because the developers of this SBC choose the default
username "user", which I had no reason to change.

Test merely checks that we can distinguish a username "user" from the
USER keyword. Maybe it's worth replacing "user" with "system_user"? It
is also a keyword but is a less likely choice for the OS user name.

I don't think we can protect against all possible user names. Wouldn't
it be better to run the tests under an OS user with a different name,
like "marmaduke"? ("user" is a truly terrible default user name).

cheers

andrew

--
Andrew Dunstan
EDB:https://www.enterprisedb.com

Aleksander Alekseev

aleksander@timescale.com

almost 3 years ago

In reply to: Andrew Dunstan (#2)

Re: [PATCH] Use role name "system_user" instead of "user" for unsafe_tests

Hi Andrew,

I don't think we can protect against all possible user names. Wouldn't it be better to run the tests under an OS user with a different name, like "marmaduke"? ("user" is a truly terrible default user name).

100% agree. The point is not to protect against all possible user
names but merely to reduce the likelihood of the problem. For this
particular test there is no difference which keyword to use for the
test. I realize this is a minor problem, however the fix is trivial
too.

--
Best regards,
Aleksander Alekseev

Tom Lane

tgl@sss.pgh.pa.us

almost 3 years ago

In reply to: Aleksander Alekseev (#3)

Re: [PATCH] Use role name "system_user" instead of "user" for unsafe_tests

Aleksander Alekseev <aleksander@timescale.com> writes:

I don't think we can protect against all possible user names. Wouldn't it be better to run the tests under an OS user with a different name, like "marmaduke"? ("user" is a truly terrible default user name).

100% agree. The point is not to protect against all possible user
names but merely to reduce the likelihood of the problem.

It only reduces the likelihood if you assume that "system_user"
is less likely than "user" as a choice of OS user name to run
the tests under. That seems like a debatable assumption;
perhaps it's actually *more* likely.

Whether we need to have a test for this at all is perhaps a
more interesting argument.

regards, tom lane

Aleksander Alekseev

aleksander@timescale.com

almost 3 years ago

In reply to: Tom Lane (#4)

Re: [PATCH] Use role name "system_user" instead of "user" for unsafe_tests

Hi,

Whether we need to have a test for this at all is perhaps a
more interesting argument.

This was my initial thought but since somebody put it there I assumed
this is a very important test.

Any objections if we remove the tests for "user"?

--
Best regards,
Aleksander Alekseev

Michael Paquier

michael@paquier.xyz

almost 3 years ago

In reply to: Aleksander Alekseev (#5)

Re: [PATCH] Use role name "system_user" instead of "user" for unsafe_tests

On Wed, Apr 12, 2023 at 03:30:03PM +0300, Aleksander Alekseev wrote:

Any objections if we remove the tests for "user"?

Based on some rather-recent experience in this area with
COERCE_SQL_SYNTAX, the relationship between the SQL keywords and the
way they can handled internally could be tricky if this area of the
code is touched. So I would choose to keep these tests, FWIW.
--
Michael

Aleksander Alekseev

aleksander@timescale.com

over 2 years ago

In reply to: Michael Paquier (#6)

Re: [PATCH] Use role name "system_user" instead of "user" for unsafe_tests

Hi,

On Wed, Apr 12, 2023 at 03:30:03PM +0300, Aleksander Alekseev wrote:

Any objections if we remove the tests for "user"?

Based on some rather-recent experience in this area with
COERCE_SQL_SYNTAX, the relationship between the SQL keywords and the
way they can handled internally could be tricky if this area of the
code is touched. So I would choose to keep these tests, FWIW.

Thanks for the feedback. I see this is a controversial topic so in the
interest of saving our time I'm withdrawing the patch.

--
Best regards,
Aleksander Alekseev