postgresql

mirror of https://github.com/postgres/postgres.git synced 2026-04-23 15:19:08 -04:00

History

Nathan Bossart 71ea0d6795 Restrict psql meta-commands in plain-text dumps. A malicious server could inject psql meta-commands into plain-text dump output (i.e., scripts created with pg_dump --format=plain, pg_dumpall, or pg_restore --file) that are run at restore time on the machine running psql. To fix, introduce a new "restricted" mode in psql that blocks all meta-commands (except for \unrestrict to exit the mode), and teach pg_dump, pg_dumpall, and pg_restore to use this mode in plain-text dumps. While at it, encourage users to only restore dumps generated from trusted servers or to inspect it beforehand, since restoring causes the destination to execute arbitrary code of the source superusers' choice. However, the client running the dump and restore needn't trust the source or destination superusers. Reported-by: Martin Rakhmanov Reported-by: Matthieu Denais <litezeraw@gmail.com> Reported-by: RyotaK <ryotak.mail@gmail.com> Suggested-by: Tom Lane <tgl@sss.pgh.pa.us> Reviewed-by: Noah Misch <noah@leadboat.com> Reviewed-by: Michael Paquier <michael@paquier.xyz> Reviewed-by: Peter Eisentraut <peter@eisentraut.org> Security: CVE-2025-8714 Backpatch-through: 13		2025-08-11 09:00:00 -05:00
..
authentication	In username-map substitution, cope with more than one \1.	2025-07-13 13:52:32 -04:00
examples	libpq: Deprecate pg_int64.	2025-03-25 21:40:00 +13:00
icu	Update copyright for 2025	2025-01-01 11:21:55 -05:00
isolation	Fix concurrent update trigger issues with MERGE in a CTE.	2025-07-18 09:55:43 +01:00
kerberos	Replace deprecated log_connections values in docs and tests	2025-05-22 17:14:54 -04:00
ldap	Replace deprecated log_connections values in docs and tests	2025-05-22 17:14:54 -04:00
locale	Update copyright for 2025	2025-01-01 11:21:55 -05:00
mb	Fix MB regression tests for WAL-logging of hash indexes.	2017-03-15 07:25:36 -04:00
modules	oauth: Track total call count during a client flow	2025-08-08 08:44:56 -07:00
perl	Handle timeout in PostgreSQL::Test::Cluster::is_alive()	2025-07-29 17:03:07 +09:00
postmaster	Run pgperltidy	2025-06-29 21:14:21 -04:00
recovery	Restrict psql meta-commands in plain-text dumps.	2025-08-11 09:00:00 -05:00
regress	Restrict psql meta-commands in plain-text dumps.	2025-08-11 09:00:00 -05:00
ssl	Fix sslkeylogfile error handling logging	2025-07-10 23:26:51 +02:00
subscription	Detect and report update_deleted conflicts.	2025-08-04 04:02:47 +00:00
Makefile	Add PG_TEST_EXTRA configure option to the Make builds	2024-11-04 14:09:38 +02:00
meson.build	Update copyright for 2025	2025-01-01 11:21:55 -05:00
README	Remove the option to build thread_test.c outside configure.	2020-10-21 12:08:48 -04:00

README

PostgreSQL tests
================

This directory contains a variety of test infrastructure as well as some of the
tests in PostgreSQL. Not all tests are here -- in particular, there are more in
individual contrib/ modules and in src/bin.

Not all these tests get run by "make check". Check src/test/Makefile to see
which tests get run automatically.

authentication/
  Tests for authentication (but see also below)

examples/
  Demonstration programs for libpq that double as regression tests via
  "make check"

isolation/
  Tests for concurrent behavior at the SQL level

kerberos/
  Tests for Kerberos/GSSAPI authentication and encryption

ldap/
  Tests for LDAP-based authentication

locale/
  Sanity checks for locale data, encodings, etc

mb/
  Tests for multibyte encoding (UTF-8) support

modules/
  Extensions used only or mainly for test purposes, generally not suitable
  for installing in production databases

perl/
  Infrastructure for Perl-based TAP tests

recovery/
  Test suite for recovery and replication

regress/
  PostgreSQL's main regression test suite, pg_regress

ssl/
  Tests to exercise and verify SSL certificate handling

subscription/
  Tests for logical replication