mirror of
https://git.postgresql.org/git/postgresql.git
synced 2024-12-09 08:10:09 +08:00
dfc015dcf4
By default, $PGUSER has permission to unlink $PGLOG. If $PGUSER replaces $PGLOG with a symbolic link, the server will corrupt the link-targeted file by appending log messages. Since these scripts open $PGLOG as root, the attack works regardless of target file ownership. "make install" does not install these scripts anywhere. Users having manually installed them in the past should repeat that process to acquire this fix. Most script users have $PGLOG writable to root only, located in $PGDATA. Just before updating one of these scripts, such users should rename $PGLOG to $PGLOG.old. The script will then recreate $PGLOG with proper ownership. Reviewed by Peter Eisentraut. Reported by Antoine Scemama. Security: CVE-2017-12172
125 lines
3.5 KiB
Bash
125 lines
3.5 KiB
Bash
#! /bin/sh
|
|
|
|
# chkconfig: 2345 98 02
|
|
# description: PostgreSQL RDBMS
|
|
|
|
# This is an example of a start/stop script for SysV-style init, such
|
|
# as is used on Linux systems. You should edit some of the variables
|
|
# and maybe the 'echo' commands.
|
|
#
|
|
# Place this file at /etc/init.d/postgresql (or
|
|
# /etc/rc.d/init.d/postgresql) and make symlinks to
|
|
# /etc/rc.d/rc0.d/K02postgresql
|
|
# /etc/rc.d/rc1.d/K02postgresql
|
|
# /etc/rc.d/rc2.d/K02postgresql
|
|
# /etc/rc.d/rc3.d/S98postgresql
|
|
# /etc/rc.d/rc4.d/S98postgresql
|
|
# /etc/rc.d/rc5.d/S98postgresql
|
|
# Or, if you have chkconfig, simply:
|
|
# chkconfig --add postgresql
|
|
#
|
|
# Proper init scripts on Linux systems normally require setting lock
|
|
# and pid files under /var/run as well as reacting to network
|
|
# settings, so you should treat this with care.
|
|
|
|
# Original author: Ryan Kirkpatrick <pgsql@rkirkpat.net>
|
|
|
|
# contrib/start-scripts/linux
|
|
|
|
## EDIT FROM HERE
|
|
|
|
# Installation prefix
|
|
prefix=/usr/local/pgsql
|
|
|
|
# Data directory
|
|
PGDATA="/usr/local/pgsql/data"
|
|
|
|
# Who to run the postmaster as, usually "postgres". (NOT "root")
|
|
PGUSER=postgres
|
|
|
|
# Where to keep a log file
|
|
PGLOG="$PGDATA/serverlog"
|
|
|
|
# It's often a good idea to protect the postmaster from being killed by the
|
|
# OOM killer (which will tend to preferentially kill the postmaster because
|
|
# of the way it accounts for shared memory). To do that, uncomment these
|
|
# three lines:
|
|
#PG_OOM_ADJUST_FILE=/proc/self/oom_score_adj
|
|
#PG_MASTER_OOM_SCORE_ADJ=-1000
|
|
#PG_CHILD_OOM_SCORE_ADJ=0
|
|
# Older Linux kernels may not have /proc/self/oom_score_adj, but instead
|
|
# /proc/self/oom_adj, which works similarly except for having a different
|
|
# range of scores. For such a system, uncomment these three lines instead:
|
|
#PG_OOM_ADJUST_FILE=/proc/self/oom_adj
|
|
#PG_MASTER_OOM_SCORE_ADJ=-17
|
|
#PG_CHILD_OOM_SCORE_ADJ=0
|
|
|
|
## STOP EDITING HERE
|
|
|
|
# The path that is to be used for the script
|
|
PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin
|
|
|
|
# What to use to start up the postmaster. (If you want the script to wait
|
|
# until the server has started, you could use "pg_ctl start" here.)
|
|
DAEMON="$prefix/bin/postmaster"
|
|
|
|
# What to use to shut down the postmaster
|
|
PGCTL="$prefix/bin/pg_ctl"
|
|
|
|
set -e
|
|
|
|
# Only start if we can find the postmaster.
|
|
test -x $DAEMON ||
|
|
{
|
|
echo "$DAEMON not found"
|
|
if [ "$1" = "stop" ]
|
|
then exit 0
|
|
else exit 5
|
|
fi
|
|
}
|
|
|
|
# If we want to tell child processes to adjust their OOM scores, set up the
|
|
# necessary environment variables. Can't just export them through the "su".
|
|
if [ -e "$PG_OOM_ADJUST_FILE" -a -n "$PG_CHILD_OOM_SCORE_ADJ" ]
|
|
then
|
|
DAEMON_ENV="PG_OOM_ADJUST_FILE=$PG_OOM_ADJUST_FILE PG_OOM_ADJUST_VALUE=$PG_CHILD_OOM_SCORE_ADJ"
|
|
fi
|
|
|
|
|
|
# Parse command line parameters.
|
|
case $1 in
|
|
start)
|
|
echo -n "Starting PostgreSQL: "
|
|
test -e "$PG_OOM_ADJUST_FILE" && echo "$PG_MASTER_OOM_SCORE_ADJ" > "$PG_OOM_ADJUST_FILE"
|
|
su - $PGUSER -c "$DAEMON_ENV $DAEMON -D '$PGDATA' >>$PGLOG 2>&1 &"
|
|
echo "ok"
|
|
;;
|
|
stop)
|
|
echo -n "Stopping PostgreSQL: "
|
|
su - $PGUSER -c "$PGCTL stop -D '$PGDATA' -s"
|
|
echo "ok"
|
|
;;
|
|
restart)
|
|
echo -n "Restarting PostgreSQL: "
|
|
su - $PGUSER -c "$PGCTL stop -D '$PGDATA' -s"
|
|
test -e "$PG_OOM_ADJUST_FILE" && echo "$PG_MASTER_OOM_SCORE_ADJ" > "$PG_OOM_ADJUST_FILE"
|
|
su - $PGUSER -c "$DAEMON_ENV $DAEMON -D '$PGDATA' >>$PGLOG 2>&1 &"
|
|
echo "ok"
|
|
;;
|
|
reload)
|
|
echo -n "Reload PostgreSQL: "
|
|
su - $PGUSER -c "$PGCTL reload -D '$PGDATA' -s"
|
|
echo "ok"
|
|
;;
|
|
status)
|
|
su - $PGUSER -c "$PGCTL status -D '$PGDATA'"
|
|
;;
|
|
*)
|
|
# Print help
|
|
echo "Usage: $0 {start|stop|restart|reload|status}" 1>&2
|
|
exit 1
|
|
;;
|
|
esac
|
|
|
|
exit 0
|