• Home
  • History
  • Annotate
Name Date Size #Lines LOC

..08-Nov-2021-

expected/H08-Nov-2021-118116

sql/H08-Nov-2021-11672

.gitignoreH A D08-Nov-202155 54

MakefileH A D08-Nov-2021499 2115

READMEH A D08-Nov-20211.2 KiB4230

dummy_seclabel--1.0.sqlH A D08-Nov-2021314 94

dummy_seclabel.cH A D08-Nov-20211.4 KiB6337

dummy_seclabel.controlH A D08-Nov-2021135 54

README

1The dummy_seclabel module exists only to support regression testing of
2the SECURITY LABEL statement.  It is not intended to be used in production.
3
4Rationale
5=========
6
7The SECURITY LABEL statement allows the user to assign security labels to
8database objects; however, security labels can only be assigned when
9specifically allowed by a loadable module, so this module is provided to
10allow proper regression testing.
11
12Security label providers intended to be used in production will typically be
13dependent on a platform-specific feature such as SELinux.  This module is
14platform-independent, and therefore better-suited to regression testing.
15
16Usage
17=====
18
19Here's a simple example of usage:
20
21# postgresql.conf
22shared_preload_libraries = 'dummy_seclabel'
23
24postgres=# CREATE TABLE t (a int, b text);
25CREATE TABLE
26postgres=# SECURITY LABEL ON TABLE t IS 'classified';
27SECURITY LABEL
28
29The dummy_seclabel module provides only four hardcoded
30labels: unclassified, classified,
31secret, and top secret.
32It does not allow any other strings as security labels.
33
34These labels are not used to enforce access controls.  They are only used
35to check whether the SECURITY LABEL statement works as expected,
36or not.
37
38Author
39======
40
41KaiGai Kohei <kaigai@ak.jp.nec.com>
42