Ensure cached plans are correctly marked as dependent on role.

If a CTE, subquery, sublink, security invoker view, or coercion projection references a table with row-level security policies, we neglected to mark the plan as potentially dependent on which role is executing it. This could lead to later executions in the same session returning or hiding rows that should have been hidden or returned instead. Reported-by: Wolfgang Walther Reviewed-by: Noah Misch Security: CVE-2024-10976 Backpatch-through: 12
author: Nathan Bossart 2024-11-11 15:00:00 +0000
committer: Nathan Bossart 2024-11-11 15:00:00 +0000
commit: 952ff31e2a89e8ca79ecb12d61fddbeac3d89176 (patch)
tree: 5bc7bb20a64566bf5ee61ff64c7ee0caf794ca33 /src/tools
parent: e428cd058f0bebb5782b0c263565b0ad088e9650 (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/src/tools/pgindent/typedefs.list b/src/tools/pgindent/typedefs.list
index bf89c3eb0c6..f55dc102937 100644
--- a/src/tools/pgindent/typedefs.list
+++ b/src/tools/pgindent/typedefs.list
@@ -2950,6 +2950,7 @@ fill_string_relopt
 finalize_primnode_context
 find_dependent_phvs_context
 find_expr_references_context
+fireRIRonSubLink_context
 fix_join_expr_context
 fix_scan_expr_context
 fix_upper_expr_context
author	Nathan Bossart	2024-11-11 15:00:00 +0000
committer	Nathan Bossart	2024-11-11 15:00:00 +0000
commit	952ff31e2a89e8ca79ecb12d61fddbeac3d89176 (patch)
tree	5bc7bb20a64566bf5ee61ff64c7ee0caf794ca33 /src/tools
parent	e428cd058f0bebb5782b0c263565b0ad088e9650 (diff)