mirror of https://github.com/timescale/timescaledb.git synced 2025-05-15 18:13:18 +08:00

History

Nikhil Sontakke 7e43f45ccb Ensure superuser perms during copy/move chunk

There is a security loophole in current core Postgres, due to which
it's possible for a non-superuser to gain superuser access by attaching
dependencies like expression indexes, triggers, etc. before logical
replication commences.

To avoid this, we now ensure that the chunk objects that get created
for the subscription are done so as a superuser. This avoids malicious
dependencies by regular users.

2023-03-23 13:26:47 +05:30

bgw_policy

Get PortalContext when starting job

2023-02-20 10:54:05 +01:00

compression

Stats improvement for Uncompressed Chunks

2023-03-22 23:51:13 +05:30

continuous_aggs

Improve Realtime Continuous Aggregate performance

2023-03-22 16:35:23 -03:00

fdw

Use prepared statements for parameterized data node scans

2023-03-15 18:22:01 +04:00

nodes

Simplify control flow in decompress_chunk_exec

2023-03-22 13:08:22 +04:00

remote

Add check for malloc failure in libpq calls

2023-03-16 14:20:54 +01:00

build-defs.cmake

Add workflow and CMake support for formatting

2021-06-17 22:52:29 +02:00

chunk_api.c

Fix concurrent locking with chunk_data_node table

2023-03-06 18:40:59 +02:00

chunk_api.h

Add clang-tidy warning readability-inconsistent-declaration-parameter-name

2022-10-20 19:42:11 +04:00

chunk_copy.c

Ensure superuser perms during copy/move chunk

2023-03-23 13:26:47 +05:30

chunk_copy.h

Support op_id in copy/nove chunk API

2022-05-13 14:20:38 +05:30

chunk.c

Fix concurrent locking with chunk_data_node table

2023-03-06 18:40:59 +02:00

chunk.h

Fix DML HA in multi-node

2022-11-25 17:42:26 +05:30

CMakeLists.txt

Add option to compile without telemetry

2022-03-03 12:21:07 +01:00

data_node.c

Fix concurrent locking with chunk_data_node table

2023-03-06 18:40:59 +02:00

data_node.h

Fix perf regression due to DML HA

2023-03-03 18:34:05 +05:30

debug.c

Refactor tsl_debug_append_path

2022-02-23 16:44:19 +01:00

debug.h

Remove support for PG11

2021-06-01 20:21:06 +02:00

deparse.c

Fix compilation against PG15

2021-12-17 16:12:57 +03:00

deparse.h

Add clang-tidy warning readability-inconsistent-declaration-parameter-name

2022-10-20 19:42:11 +04:00

dist_backup.c

Fix perf regression due to DML HA

2023-03-03 18:34:05 +05:30

dist_backup.h

Add distributed restore point functionality

2021-02-25 15:39:50 +03:00

dist_util.c

Enable -Wextra

2022-10-27 16:06:58 +04:00

dist_util.h

Update .clang-format for version 14

2022-10-10 17:12:36 +03:00

hypertable.c

Add hypertable distributed argument and defaults

2022-08-29 17:44:16 +03:00

hypertable.h

Add ts_catalog subdirectory

2022-01-24 16:58:09 -05:00

init.c

Stats improvement for Uncompressed Chunks

2023-03-22 23:51:13 +05:30

partialize_finalize.c

Enable and fix -Wclobbered

2022-11-01 18:01:26 +04:00

partialize_finalize.h

Move all compatibility related files into compat directory

2021-08-28 05:17:22 +02:00

planner.c

Use custom node to block frozen chunk modifications

2022-11-25 19:56:48 +01:00

planner.h

Restructure planner code

2022-05-16 08:37:34 +02:00

process_utility.c

Fix segfault in Continuous Aggregates

2022-04-18 12:54:20 +03:00

process_utility.h

Rename on all continuous aggregate objects

2021-09-20 12:18:52 +02:00

README.module.md

Move enterprise features to community

2020-09-30 15:14:17 +03:00

reorder.c

Lock down search_path in SPI calls

2023-02-01 07:54:03 +01:00

reorder.h

Support non-superuser move chunk operations

2022-05-18 16:56:31 +05:30

telemetry.c

Add telemetry stats based on type of relation

2022-02-08 09:44:55 +01:00

telemetry.h

Add option to compile without telemetry

2022-03-03 12:21:07 +01:00

README.module.md

Submodule Licensing and Initialization

Loading and Activation

We link module loading and activation to the license GUC itself. We have a single GUC, the license, and load submodules based on what capabilities the license enables, i.e., an apache license-key does not load this module, while timescale key does. This ensures that the loader "does the right thing" with respect to the license, and a user cannot accidentally activate features they aren't licensed to use.

The actual loading and activation is done through check and assign hooks on the license GUC. On check we validate the license type and on assign we set the capabilities-struct in this module, if needed. The check and assign functions can be found in license_guc.c/h in the Apache-Licensed src.

Cross License Functions

To enable binaries which only contain Apache-Licensed code, we dynamically link in Timescale-Licensed code on license activation, and handle all function calls into the module via function pointers.

The registry in ts_cm_functions of type CrossModuleFunctions (declared in cross_module_fn.h and defined in cross_module_fn.c) stores all of the cross-module functions.

To add a new cross-module function you must:

Add a struct member CrossModuleFunctions.<function name>.
Add default function to ts_cm_functions_default that will be called from the Apache version, usually this function should just call error_no_default_fn. NOTE Due to function-pointer casting rules, the default function must have the exact same signature as the function pointer; you may not cast another function pointer of another type.
Add the overriding function to tsl_cm_functionsin init.c in this module.

To call a cross-module functions use ts_cm_functions-><function name>(args).