Fix cascading privilege revoke to notice when privileges are still held. If we revoke a grant option from some role X, but X still holds the option via another grant, we should not recursively revoke the privilege from role(s) Y that X had granted it to. This was supposedly fixed as one aspect of commit 4b2dafcc0b1a579ef5daaa2728223006d1ff98e9, but I must not have tested it, because in fact that code never worked: it forgot to shift the grant-option bits back over when masking the bits being revoked.
Per bug #6728 from Daniel German. Back-patch to all active branches, since this has been wrong since 8.0. Branch ------ master Details ------- http://git.postgresql.org/pg/commitdiff/ec8a0135c3228087761ad3cdba18aebb01c7e17a Modified Files -------------- src/backend/utils/adt/acl.c | 4 +- src/test/regress/expected/privileges.out | 50 ++++++++++++++++++++++++++++++ src/test/regress/sql/privileges.sql | 24 ++++++++++++++ 3 files changed, 76 insertions(+), 2 deletions(-) -- Sent via pgsql-committers mailing list ([email protected]) To make changes to your subscription: http://www.postgresql.org/mailpref/pgsql-committers
