pg_snakeoil

PostgreSQL动态链接库反病毒功能

概览

扩展包名	版本	分类	许可证	语言
`pg_snakeoil`	`1.4`	SEC	PostgreSQL	C

ID	扩展名	Bin	Lib	Load	Create	Trust	Reloc	模式
7380	`pg_snakeoil`	否	是	是	是	否	是	-

相关扩展	`pg_crash` `pg_cheat_funcs` `pg_dirtyread` `pg_savior` `pg_surgery` `pageinspect` `pg_catcheck` `amcheck`

require clamV libs

版本

类型	仓库	版本	PG 大版本	包名	依赖
EXT	MIXED	`1.4`	1817161514	`pg_snakeoil`	-
RPM	PIGSTY	`1.4`	1817161514	`pg_snakeoil_$v`	-
DEB	PGDG	`1.4`	1817161514	`postgresql-$v-snakeoil`	-

OS / PG	PG18	PG17	PG16	PG15	PG14
el8.x86_64	PIGSTY 1.4 el8.x86_64.pg18 : pg_snakeoil_18 pg_snakeoil_18-1.4-1PIGSTY.el8.x86_64.rpm PIGSTY · 1.4 · 16.1KiB pg_snakeoil_18-1.4-1PGDG.rhel8.x86_64.rpm PGDG · 1.4 · 15.3KiB	PIGSTY 1.4 el8.x86_64.pg17 : pg_snakeoil_17 pg_snakeoil_17-1.4-1PIGSTY.el8.x86_64.rpm PIGSTY · 1.4 · 16.1KiB pg_snakeoil_17-1.4-1PGDG.rhel8.x86_64.rpm PGDG · 1.4 · 15.4KiB	PIGSTY 1.4 el8.x86_64.pg16 : pg_snakeoil_16 pg_snakeoil_16-1.4-1PIGSTY.el8.x86_64.rpm PIGSTY · 1.4 · 16.1KiB pg_snakeoil_16-1.4-1PGDG.rhel8.x86_64.rpm PGDG · 1.4 · 15.4KiB	PIGSTY 1.4 el8.x86_64.pg15 : pg_snakeoil_15 pg_snakeoil_15-1.4-1PIGSTY.el8.x86_64.rpm PIGSTY · 1.4 · 16.3KiB pg_snakeoil_15-1.4-1PGDG.rhel8.x86_64.rpm PGDG · 1.4 · 15.5KiB	PIGSTY 1.4 el8.x86_64.pg14 : pg_snakeoil_14 pg_snakeoil_14-1.4-1PIGSTY.el8.x86_64.rpm PIGSTY · 1.4 · 16.3KiB pg_snakeoil_14-1.4-1PGDG.rhel8.x86_64.rpm PGDG · 1.4 · 15.5KiB
el8.aarch64	PIGSTY 1.4 el8.aarch64.pg18 : pg_snakeoil_18 pg_snakeoil_18-1.4-1PIGSTY.el8.aarch64.rpm PIGSTY · 1.4 · 16.2KiB pg_snakeoil_18-1.4-1PGDG.rhel8.aarch64.rpm PGDG · 1.4 · 15.2KiB	PIGSTY 1.4 el8.aarch64.pg17 : pg_snakeoil_17 pg_snakeoil_17-1.4-1PIGSTY.el8.aarch64.rpm PIGSTY · 1.4 · 16.2KiB pg_snakeoil_17-1.4-1PGDG.rhel8.aarch64.rpm PGDG · 1.4 · 15.3KiB	PIGSTY 1.4 el8.aarch64.pg16 : pg_snakeoil_16 pg_snakeoil_16-1.4-1PIGSTY.el8.aarch64.rpm PIGSTY · 1.4 · 16.2KiB pg_snakeoil_16-1.4-1PGDG.rhel8.aarch64.rpm PGDG · 1.4 · 15.2KiB	PIGSTY 1.4 el8.aarch64.pg15 : pg_snakeoil_15 pg_snakeoil_15-1.4-1PIGSTY.el8.aarch64.rpm PIGSTY · 1.4 · 16.3KiB pg_snakeoil_15-1.4-1PGDG.rhel8.aarch64.rpm PGDG · 1.4 · 15.4KiB	PIGSTY 1.4 el8.aarch64.pg14 : pg_snakeoil_14 pg_snakeoil_14-1.4-1PIGSTY.el8.aarch64.rpm PIGSTY · 1.4 · 16.3KiB pg_snakeoil_14-1.4-1PGDG.rhel8.aarch64.rpm PGDG · 1.4 · 15.4KiB
el9.x86_64	PIGSTY 1.4 el9.x86_64.pg18 : pg_snakeoil_18 pg_snakeoil_18-1.4-1PIGSTY.el9.x86_64.rpm PIGSTY · 1.4 · 16.1KiB pg_snakeoil_18-1.4-1PGDG.rhel9.x86_64.rpm PGDG · 1.4 · 15.5KiB	PIGSTY 1.4 el9.x86_64.pg17 : pg_snakeoil_17 pg_snakeoil_17-1.4-1PIGSTY.el9.x86_64.rpm PIGSTY · 1.4 · 16.2KiB pg_snakeoil_17-1.4-1PGDG.rhel9.x86_64.rpm PGDG · 1.4 · 15.6KiB	PIGSTY 1.4 el9.x86_64.pg16 : pg_snakeoil_16 pg_snakeoil_16-1.4-1PIGSTY.el9.x86_64.rpm PIGSTY · 1.4 · 16.2KiB pg_snakeoil_16-1.4-1PGDG.rhel9.x86_64.rpm PGDG · 1.4 · 15.6KiB	PIGSTY 1.4 el9.x86_64.pg15 : pg_snakeoil_15 pg_snakeoil_15-1.4-1PIGSTY.el9.x86_64.rpm PIGSTY · 1.4 · 16.3KiB pg_snakeoil_15-1.4-1PGDG.rhel9.x86_64.rpm PGDG · 1.4 · 15.8KiB	PIGSTY 1.4 el9.x86_64.pg14 : pg_snakeoil_14 pg_snakeoil_14-1.4-1PIGSTY.el9.x86_64.rpm PIGSTY · 1.4 · 16.3KiB pg_snakeoil_14-1.4-1PGDG.rhel9.x86_64.rpm PGDG · 1.4 · 15.8KiB
el9.aarch64	PIGSTY 1.4 el9.aarch64.pg18 : pg_snakeoil_18 pg_snakeoil_18-1.4-1PIGSTY.el9.aarch64.rpm PIGSTY · 1.4 · 16.0KiB pg_snakeoil_18-1.4-1PGDG.rhel9.aarch64.rpm PGDG · 1.4 · 15.1KiB	PIGSTY 1.4 el9.aarch64.pg17 : pg_snakeoil_17 pg_snakeoil_17-1.4-1PIGSTY.el9.aarch64.rpm PIGSTY · 1.4 · 16.0KiB pg_snakeoil_17-1.4-1PGDG.rhel9.aarch64.rpm PGDG · 1.4 · 15.1KiB	PIGSTY 1.4 el9.aarch64.pg16 : pg_snakeoil_16 pg_snakeoil_16-1.4-1PIGSTY.el9.aarch64.rpm PIGSTY · 1.4 · 16.0KiB pg_snakeoil_16-1.4-1PGDG.rhel9.aarch64.rpm PGDG · 1.4 · 15.1KiB	PIGSTY 1.4 el9.aarch64.pg15 : pg_snakeoil_15 pg_snakeoil_15-1.4-1PIGSTY.el9.aarch64.rpm PIGSTY · 1.4 · 16.2KiB pg_snakeoil_15-1.4-1PGDG.rhel9.aarch64.rpm PGDG · 1.4 · 15.3KiB	PIGSTY 1.4 el9.aarch64.pg14 : pg_snakeoil_14 pg_snakeoil_14-1.4-1PIGSTY.el9.aarch64.rpm PIGSTY · 1.4 · 16.2KiB pg_snakeoil_14-1.4-1PGDG.rhel9.aarch64.rpm PGDG · 1.4 · 15.3KiB
el10.x86_64	PIGSTY 1.4 el10.x86_64.pg18 : pg_snakeoil_18 pg_snakeoil_18-1.4-1PIGSTY.el10.x86_64.rpm PIGSTY · 1.4 · 16.1KiB	PIGSTY 1.4 el10.x86_64.pg17 : pg_snakeoil_17 pg_snakeoil_17-1.4-1PIGSTY.el10.x86_64.rpm PIGSTY · 1.4 · 16.1KiB pg_snakeoil_17-1.4-1PGDG.rhel10.x86_64.rpm PGDG · 1.4 · 15.9KiB	PIGSTY 1.4 el10.x86_64.pg16 : pg_snakeoil_16 pg_snakeoil_16-1.4-1PIGSTY.el10.x86_64.rpm PIGSTY · 1.4 · 16.1KiB pg_snakeoil_16-1.4-1PGDG.rhel10.x86_64.rpm PGDG · 1.4 · 15.9KiB	PIGSTY 1.4 el10.x86_64.pg15 : pg_snakeoil_15 pg_snakeoil_15-1.4-1PIGSTY.el10.x86_64.rpm PIGSTY · 1.4 · 16.3KiB pg_snakeoil_15-1.4-1PGDG.rhel10.x86_64.rpm PGDG · 1.4 · 16.1KiB	PIGSTY 1.4 el10.x86_64.pg14 : pg_snakeoil_14 pg_snakeoil_14-1.4-1PIGSTY.el10.x86_64.rpm PIGSTY · 1.4 · 16.3KiB pg_snakeoil_14-1.4-1PGDG.rhel10.x86_64.rpm PGDG · 1.4 · 16.1KiB
el10.aarch64	PIGSTY 1.4 el10.aarch64.pg18 : pg_snakeoil_18 pg_snakeoil_18-1.4-1PIGSTY.el10.aarch64.rpm PIGSTY · 1.4 · 16.1KiB	PIGSTY 1.4 el10.aarch64.pg17 : pg_snakeoil_17 pg_snakeoil_17-1.4-1PIGSTY.el10.aarch64.rpm PIGSTY · 1.4 · 16.2KiB pg_snakeoil_17-1.4-1PGDG.rhel10.aarch64.rpm PGDG · 1.4 · 15.8KiB	PIGSTY 1.4 el10.aarch64.pg16 : pg_snakeoil_16 pg_snakeoil_16-1.4-1PIGSTY.el10.aarch64.rpm PIGSTY · 1.4 · 16.2KiB pg_snakeoil_16-1.4-1PGDG.rhel10.aarch64.rpm PGDG · 1.4 · 15.8KiB	PIGSTY 1.4 el10.aarch64.pg15 : pg_snakeoil_15 pg_snakeoil_15-1.4-1PIGSTY.el10.aarch64.rpm PIGSTY · 1.4 · 16.4KiB pg_snakeoil_15-1.4-1PGDG.rhel10.aarch64.rpm PGDG · 1.4 · 16.0KiB	PIGSTY 1.4 el10.aarch64.pg14 : pg_snakeoil_14 pg_snakeoil_14-1.4-1PIGSTY.el10.aarch64.rpm PIGSTY · 1.4 · 16.4KiB pg_snakeoil_14-1.4-1PGDG.rhel10.aarch64.rpm PGDG · 1.4 · 16.0KiB
d12.x86_64	PGDG 1.4 d12.x86_64.pg18 : postgresql-18-snakeoil postgresql-18-snakeoil_1.4-3.pgdg12+2_amd64.deb PGDG · 1.4 · 16.9KiB	PGDG 1.4 d12.x86_64.pg17 : postgresql-17-snakeoil postgresql-17-snakeoil_1.4-3.pgdg12+2_amd64.deb PGDG · 1.4 · 16.9KiB	PGDG 1.4 d12.x86_64.pg16 : postgresql-16-snakeoil postgresql-16-snakeoil_1.4-3.pgdg12+2_amd64.deb PGDG · 1.4 · 16.9KiB	PGDG 1.4 d12.x86_64.pg15 : postgresql-15-snakeoil postgresql-15-snakeoil_1.4-3.pgdg12+2_amd64.deb PGDG · 1.4 · 17.0KiB	PGDG 1.4 d12.x86_64.pg14 : postgresql-14-snakeoil postgresql-14-snakeoil_1.4-3.pgdg12+2_amd64.deb PGDG · 1.4 · 17.0KiB
d12.aarch64	PGDG 1.4 d12.aarch64.pg18 : postgresql-18-snakeoil postgresql-18-snakeoil_1.4-3.pgdg12+2_arm64.deb PGDG · 1.4 · 16.4KiB	PGDG 1.4 d12.aarch64.pg17 : postgresql-17-snakeoil postgresql-17-snakeoil_1.4-3.pgdg12+2_arm64.deb PGDG · 1.4 · 16.4KiB	PGDG 1.4 d12.aarch64.pg16 : postgresql-16-snakeoil postgresql-16-snakeoil_1.4-3.pgdg12+2_arm64.deb PGDG · 1.4 · 16.4KiB	PGDG 1.4 d12.aarch64.pg15 : postgresql-15-snakeoil postgresql-15-snakeoil_1.4-3.pgdg12+2_arm64.deb PGDG · 1.4 · 16.5KiB	PGDG 1.4 d12.aarch64.pg14 : postgresql-14-snakeoil postgresql-14-snakeoil_1.4-3.pgdg12+2_arm64.deb PGDG · 1.4 · 16.5KiB
d13.x86_64	PGDG 1.4 d13.x86_64.pg18 : postgresql-18-snakeoil postgresql-18-snakeoil_1.4-3.pgdg13+1_amd64.deb PGDG · 1.4 · 16.8KiB	PGDG 1.4 d13.x86_64.pg17 : postgresql-17-snakeoil postgresql-17-snakeoil_1.4-3.pgdg13+1_amd64.deb PGDG · 1.4 · 16.8KiB	PGDG 1.4 d13.x86_64.pg16 : postgresql-16-snakeoil postgresql-16-snakeoil_1.4-3.pgdg13+1_amd64.deb PGDG · 1.4 · 16.8KiB	PGDG 1.4 d13.x86_64.pg15 : postgresql-15-snakeoil postgresql-15-snakeoil_1.4-3.pgdg13+1_amd64.deb PGDG · 1.4 · 17.0KiB	PGDG 1.4 d13.x86_64.pg14 : postgresql-14-snakeoil postgresql-14-snakeoil_1.4-3.pgdg13+1_amd64.deb PGDG · 1.4 · 17.0KiB
d13.aarch64	PGDG 1.4 d13.aarch64.pg18 : postgresql-18-snakeoil postgresql-18-snakeoil_1.4-3.pgdg13+1_arm64.deb PGDG · 1.4 · 16.4KiB	PGDG 1.4 d13.aarch64.pg17 : postgresql-17-snakeoil postgresql-17-snakeoil_1.4-3.pgdg13+1_arm64.deb PGDG · 1.4 · 16.4KiB	PGDG 1.4 d13.aarch64.pg16 : postgresql-16-snakeoil postgresql-16-snakeoil_1.4-3.pgdg13+1_arm64.deb PGDG · 1.4 · 16.4KiB	PGDG 1.4 d13.aarch64.pg15 : postgresql-15-snakeoil postgresql-15-snakeoil_1.4-3.pgdg13+1_arm64.deb PGDG · 1.4 · 16.6KiB	PGDG 1.4 d13.aarch64.pg14 : postgresql-14-snakeoil postgresql-14-snakeoil_1.4-3.pgdg13+1_arm64.deb PGDG · 1.4 · 16.5KiB
u22.x86_64	PGDG 1.4 u22.x86_64.pg18 : postgresql-18-snakeoil postgresql-18-snakeoil_1.4-3.pgdg22.04+1_amd64.deb PGDG · 1.4 · 16.6KiB	PGDG 1.4 u22.x86_64.pg17 : postgresql-17-snakeoil postgresql-17-snakeoil_1.4-3.pgdg22.04+1_amd64.deb PGDG · 1.4 · 17.1KiB	PGDG 1.4 u22.x86_64.pg16 : postgresql-16-snakeoil postgresql-16-snakeoil_1.4-3.pgdg22.04+1_amd64.deb PGDG · 1.4 · 17.1KiB	PGDG 1.4 u22.x86_64.pg15 : postgresql-15-snakeoil postgresql-15-snakeoil_1.4-3.pgdg22.04+1_amd64.deb PGDG · 1.4 · 17.2KiB	PGDG 1.4 u22.x86_64.pg14 : postgresql-14-snakeoil postgresql-14-snakeoil_1.4-3.pgdg22.04+1_amd64.deb PGDG · 1.4 · 17.2KiB
u22.aarch64	PGDG 1.4 u22.aarch64.pg18 : postgresql-18-snakeoil postgresql-18-snakeoil_1.4-3.pgdg22.04+1_arm64.deb PGDG · 1.4 · 16.4KiB	PGDG 1.4 u22.aarch64.pg17 : postgresql-17-snakeoil postgresql-17-snakeoil_1.4-3.pgdg22.04+1_arm64.deb PGDG · 1.4 · 17.0KiB	PGDG 1.4 u22.aarch64.pg16 : postgresql-16-snakeoil postgresql-16-snakeoil_1.4-3.pgdg22.04+1_arm64.deb PGDG · 1.4 · 17.0KiB	PGDG 1.4 u22.aarch64.pg15 : postgresql-15-snakeoil postgresql-15-snakeoil_1.4-3.pgdg22.04+1_arm64.deb PGDG · 1.4 · 17.2KiB	PGDG 1.4 u22.aarch64.pg14 : postgresql-14-snakeoil postgresql-14-snakeoil_1.4-3.pgdg22.04+1_arm64.deb PGDG · 1.4 · 17.1KiB
u24.x86_64	PGDG 1.4 u24.x86_64.pg18 : postgresql-18-snakeoil postgresql-18-snakeoil_1.4-3.pgdg24.04+1_amd64.deb PGDG · 1.4 · 16.9KiB	PGDG 1.4 u24.x86_64.pg17 : postgresql-17-snakeoil postgresql-17-snakeoil_1.4-3.pgdg24.04+1_amd64.deb PGDG · 1.4 · 16.9KiB	PGDG 1.4 u24.x86_64.pg16 : postgresql-16-snakeoil postgresql-16-snakeoil_1.4-3.pgdg24.04+1_amd64.deb PGDG · 1.4 · 16.9KiB	PGDG 1.4 u24.x86_64.pg15 : postgresql-15-snakeoil postgresql-15-snakeoil_1.4-3.pgdg24.04+1_amd64.deb PGDG · 1.4 · 17.0KiB	PGDG 1.4 u24.x86_64.pg14 : postgresql-14-snakeoil postgresql-14-snakeoil_1.4-3.pgdg24.04+1_amd64.deb PGDG · 1.4 · 17.0KiB
u24.aarch64	PGDG 1.4 u24.aarch64.pg18 : postgresql-18-snakeoil postgresql-18-snakeoil_1.4-3.pgdg24.04+1_arm64.deb PGDG · 1.4 · 16.4KiB	PGDG 1.4 u24.aarch64.pg17 : postgresql-17-snakeoil postgresql-17-snakeoil_1.4-3.pgdg24.04+1_arm64.deb PGDG · 1.4 · 16.4KiB	PGDG 1.4 u24.aarch64.pg16 : postgresql-16-snakeoil postgresql-16-snakeoil_1.4-3.pgdg24.04+1_arm64.deb PGDG · 1.4 · 16.4KiB	PGDG 1.4 u24.aarch64.pg15 : postgresql-15-snakeoil postgresql-15-snakeoil_1.4-3.pgdg24.04+1_arm64.deb PGDG · 1.4 · 16.5KiB	PGDG 1.4 u24.aarch64.pg14 : postgresql-14-snakeoil postgresql-14-snakeoil_1.4-3.pgdg24.04+1_arm64.deb PGDG · 1.4 · 16.5KiB

构建

您可以使用 pig build 命令构建 pg_snakeoil 扩展的 RPM 包：

pig build pkg pg_snakeoil         # 构建 RPM 包

安装

您可以直接安装 pg_snakeoil 扩展包的预置二进制包，首先确保 PGDG 和 PIGSTY 仓库已经添加并启用：

pig repo add pgsql -u          # 添加仓库并更新缓存

使用 pig 或者是 apt/yum/dnf 安装扩展：

pig install pg_snakeoil;          # 当前活跃 PG 版本安装

pig ext install -y pg_snakeoil -v 18  # PG 18
pig ext install -y pg_snakeoil -v 17  # PG 17
pig ext install -y pg_snakeoil -v 16  # PG 16
pig ext install -y pg_snakeoil -v 15  # PG 15
pig ext install -y pg_snakeoil -v 14  # PG 14

dnf install -y pg_snakeoil_18       # PG 18
dnf install -y pg_snakeoil_17       # PG 17
dnf install -y pg_snakeoil_16       # PG 16
dnf install -y pg_snakeoil_15       # PG 15
dnf install -y pg_snakeoil_14       # PG 14

apt install -y postgresql-18-snakeoil   # PG 18
apt install -y postgresql-17-snakeoil   # PG 17
apt install -y postgresql-16-snakeoil   # PG 16
apt install -y postgresql-15-snakeoil   # PG 15
apt install -y postgresql-14-snakeoil   # PG 14

预加载配置：

shared_preload_libraries = 'pg_snakeoil';

创建扩展：

CREATE EXTENSION pg_snakeoil;

用法

pg_snakeoil: PostgreSQL 数据的 ClamAV 防病毒扫描

pg_snakeoil 提供对 PostgreSQL 中存储数据的 ClamAV 病毒扫描功能，不干扰正常的数据库操作。

CREATE EXTENSION pg_snakeoil;

函数

函数	返回类型	描述
`so_is_infected(text)`	`bool`	检查文本数据是否匹配病毒特征
`so_is_infected(bytea)`	`bool`	检查 bytea 数据是否匹配病毒特征
`so_virus_name(text)`	`text`	如果感染则返回病毒名称，否则返回空字符串
`so_virus_name(bytea)`	`text`	如果感染则返回病毒名称，否则返回 NULL
`so_update_signatures()`	`bool`	重新加载病毒特征库，如有变化返回 true

即时扫描

SELECT so_is_infected('Not a virus!');
-- f

SELECT so_is_infected('X5O!P%@AP[4\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*');
-- t

SELECT so_virus_name('X5O!P%@AP[4\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*');
-- Eicar-Test-Signature

使用域进行实时防护

CREATE DOMAIN safe_text AS text CHECK (NOT so_is_infected(value));
CREATE TABLE t1 (safe safe_text);

INSERT INTO t1 VALUES ('This text is safe!');
-- INSERT

INSERT INTO t1 VALUES('X5O!P%@AP...');
-- NOTICE: Virus found: Eicar-Test-Signature
-- ERROR: value for domain safe_text violates check constraint "safe_text_check"

使用触发器进行实时防护

CREATE OR REPLACE FUNCTION check_virus() RETURNS trigger AS $$
BEGIN
    IF so_is_infected(NEW.content) THEN
        RAISE EXCEPTION 'Virus detected: %', so_virus_name(NEW.content);
    END IF;
    RETURN NEW;
END;
$$ LANGUAGE plpgsql;

CREATE TRIGGER virus_check BEFORE INSERT OR UPDATE ON uploads
    FOR EACH ROW EXECUTE FUNCTION check_virus();

意见反馈

这个页面对您有帮助吗？

感谢反馈！请告诉我们如何改进。

抱歉给您带来不便。请告诉我们如何改进。

最后修改 2026-03-14: update extension metadata (953cbd0)