From fbc4322f3eb9e2d9cdf4cc3d50f67bbb4ad8fcc1 Mon Sep 17 00:00:00 2001
From: Mateus Santos <msantos@wikimedia.org>
Date: Wed, 18 Jul 2018 10:47:37 -0300
Subject: [PATCH 1/2] Mitigate risks on search_path vulnerability

---
 postgis-vt-util.sql | 10 +++++-----
 src/LineLabel.sql   |  2 +-
 src/MercBuffer.sql  |  2 +-
 src/MercDWithin.sql |  2 +-
 src/MercLength.sql  |  2 +-
 src/Z.sql           |  2 +-
 6 files changed, 10 insertions(+), 10 deletions(-)

diff --git a/postgis-vt-util.sql b/postgis-vt-util.sql
index 32c37a5..e386887 100644
--- a/postgis-vt-util.sql
+++ b/postgis-vt-util.sql
@@ -232,7 +232,7 @@ begin
         -- if length is 0 geom is (probably) a point; keep it
         return true;
     else
-        return length(label) between 1 and ST_Length(g)/(2^(20-zoom));
+        return pg_catalog.length(label) between 1 and ST_Length(g)/(2^(20-zoom));
     end if;
 end;
 $func$;
@@ -310,7 +310,7 @@ $func$
 begin
     return ST_Buffer(
         g,
-        distance / cos(radians(ST_Y(ST_Transform(ST_Centroid(g),4326))))
+        distance / pg_catalog.cos(pg_catalog.radians(ST_Y(ST_Transform(ST_Centroid(g),4326))))
     );
 end;
 $func$;
@@ -344,7 +344,7 @@ begin
     return ST_Dwithin(
         g1,
         g2,
-        distance / cos(radians(ST_Y(ST_Transform(ST_Centroid(g1),4326))))
+        distance / pg_catalog.cos(pg_catalog.radians(ST_Y(ST_Transform(ST_Centroid(g1),4326))))
     );
 end;
 $func$;
@@ -368,7 +368,7 @@ create or replace function MercLength (g geometry)
     language plpgsql immutable as
 $func$
 begin
-    return ST_Length(g) * cos(radians(ST_Y(ST_Transform(ST_Centroid(g),4326))));
+    return ST_Length(g) * pg_catalog.cos(pg_catalog.radians(ST_Y(ST_Transform(ST_Centroid(g),4326))));
 end;
 $func$;
 
@@ -681,7 +681,7 @@ select
   case
     -- Don't bother if the scale is larger than ~zoom level 0
     when $1 > 600000000 or $1 = 0 then null
-    else cast (round(log(2,559082264.028/$1)) as integer)
+    else cast (pg_catalog.round(pg_catalog.log(2,559082264.028/$1)) as integer)
   end;
 $func$;
 
diff --git a/src/LineLabel.sql b/src/LineLabel.sql
index 443a784..5b79886 100644
--- a/src/LineLabel.sql
+++ b/src/LineLabel.sql
@@ -28,7 +28,7 @@ begin
         -- if length is 0 geom is (probably) a point; keep it
         return true;
     else
-        return length(label) between 1 and ST_Length(g)/(2^(20-zoom));
+        return pg_catalog.length(label) between 1 and ST_Length(g)/(2^(20-zoom));
     end if;
 end;
 $func$;
diff --git a/src/MercBuffer.sql b/src/MercBuffer.sql
index b346a86..965a0ba 100644
--- a/src/MercBuffer.sql
+++ b/src/MercBuffer.sql
@@ -21,7 +21,7 @@ $func$
 begin
     return ST_Buffer(
         g,
-        distance / cos(radians(ST_Y(ST_Transform(ST_Centroid(g),4326))))
+        distance / pg_catalog.cos(pg_catalog.radians(ST_Y(ST_Transform(ST_Centroid(g),4326))))
     );
 end;
 $func$;
diff --git a/src/MercDWithin.sql b/src/MercDWithin.sql
index e99f8ca..5ecb73f 100644
--- a/src/MercDWithin.sql
+++ b/src/MercDWithin.sql
@@ -26,7 +26,7 @@ begin
     return ST_Dwithin(
         g1,
         g2,
-        distance / cos(radians(ST_Y(ST_Transform(ST_Centroid(g1),4326))))
+        distance / pg_catalog.cos(pg_catalog.radians(ST_Y(ST_Transform(ST_Centroid(g1),4326))))
     );
 end;
 $func$;
diff --git a/src/MercLength.sql b/src/MercLength.sql
index f8cd17e..6858502 100644
--- a/src/MercLength.sql
+++ b/src/MercLength.sql
@@ -16,7 +16,7 @@ create or replace function MercLength (g geometry)
     language plpgsql immutable as
 $func$
 begin
-    return ST_Length(g) * cos(radians(ST_Y(ST_Transform(ST_Centroid(g),4326))));
+    return ST_Length(g) * pg_catalog.cos(pg_catalog.radians(ST_Y(ST_Transform(ST_Centroid(g),4326))));
 end;
 $func$;
 
diff --git a/src/Z.sql b/src/Z.sql
index f3fd820..898b231 100644
--- a/src/Z.sql
+++ b/src/Z.sql
@@ -31,7 +31,7 @@ select
   case
     -- Don't bother if the scale is larger than ~zoom level 0
     when $1 > 600000000 or $1 = 0 then null
-    else cast (round(log(2,559082264.028/$1)) as integer)
+    else cast (pg_catalog.round(pg_catalog.log(2,559082264.028/$1)) as integer)
   end;
 $func$;
 

From 81d3100f97dee7bf447f3f49606839497dd12639 Mon Sep 17 00:00:00 2001
From: Mateus Santos <msantos@wikimedia.org>
Date: Wed, 18 Jul 2018 11:05:24 -0300
Subject: [PATCH 2/2] Adding changes to CHANGELOG

---
 CHANGELOG.md | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 1574758..747f5a1 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,6 +1,13 @@
 Changelog
 =========
 
+v1.2.2
+------
+
+- Change queries to call functions with a specific schema.object form, for
+  objects that exist in the pg_catalog, to mitigate the search_path 
+  vulnerability.
+
 v1.2.1
 ------