pg_snakeoil

The PostgreSQL Antivirus

Overview

Package	Version	Category	License	Language
`pg_snakeoil`	`1.4`	SEC	PostgreSQL	C

ID	Extension	Bin	Lib	Load	Create	Trust	Reloc	Schema
7380	`pg_snakeoil`	No	Yes	Yes	No	No	Yes	-

Related	`pg_crash` `pg_cheat_funcs` `pg_dirtyread` `pg_savior` `pg_surgery` `pageinspect` `pg_catcheck` `amcheck`

require clamV libs

Version

Type	Repo	Version	PG Ver	Package	Deps
EXT	MIXED	`1.4`	1817161514	`pg_snakeoil`	-
RPM	PIGSTY	`1.4`	1817161514	`pg_snakeoil_$v`	-
DEB	PGDG	`1.4`	1817161514	`postgresql-$v-snakeoil`	-

OS / PG	PG18	PG17	PG16	PG15	PG14
el8.x86_64	PIGSTY 1.4 el8.x86_64.pg18 : pg_snakeoil_18 pg_snakeoil_18-1.4-1PIGSTY.el8.x86_64.rpm PIGSTY · 1.4 · 16.1KiB pg_snakeoil_18-1.4-1PGDG.rhel8.x86_64.rpm PGDG · 1.4 · 15.3KiB	PIGSTY 1.4 el8.x86_64.pg17 : pg_snakeoil_17 pg_snakeoil_17-1.4-1PIGSTY.el8.x86_64.rpm PIGSTY · 1.4 · 16.1KiB pg_snakeoil_17-1.4-1PGDG.rhel8.x86_64.rpm PGDG · 1.4 · 15.4KiB	PIGSTY 1.4 el8.x86_64.pg16 : pg_snakeoil_16 pg_snakeoil_16-1.4-1PIGSTY.el8.x86_64.rpm PIGSTY · 1.4 · 16.1KiB pg_snakeoil_16-1.4-1PGDG.rhel8.x86_64.rpm PGDG · 1.4 · 15.4KiB	PIGSTY 1.4 el8.x86_64.pg15 : pg_snakeoil_15 pg_snakeoil_15-1.4-1PIGSTY.el8.x86_64.rpm PIGSTY · 1.4 · 16.3KiB pg_snakeoil_15-1.4-1PGDG.rhel8.x86_64.rpm PGDG · 1.4 · 15.5KiB	PIGSTY 1.4 el8.x86_64.pg14 : pg_snakeoil_14 pg_snakeoil_14-1.4-1PIGSTY.el8.x86_64.rpm PIGSTY · 1.4 · 16.3KiB pg_snakeoil_14-1.4-1PGDG.rhel8.x86_64.rpm PGDG · 1.4 · 15.5KiB
el8.aarch64	PIGSTY 1.4 el8.aarch64.pg18 : pg_snakeoil_18 pg_snakeoil_18-1.4-1PIGSTY.el8.aarch64.rpm PIGSTY · 1.4 · 16.2KiB pg_snakeoil_18-1.4-1PGDG.rhel8.aarch64.rpm PGDG · 1.4 · 15.2KiB	PIGSTY 1.4 el8.aarch64.pg17 : pg_snakeoil_17 pg_snakeoil_17-1.4-1PIGSTY.el8.aarch64.rpm PIGSTY · 1.4 · 16.2KiB pg_snakeoil_17-1.4-1PGDG.rhel8.aarch64.rpm PGDG · 1.4 · 15.3KiB	PIGSTY 1.4 el8.aarch64.pg16 : pg_snakeoil_16 pg_snakeoil_16-1.4-1PIGSTY.el8.aarch64.rpm PIGSTY · 1.4 · 16.2KiB pg_snakeoil_16-1.4-1PGDG.rhel8.aarch64.rpm PGDG · 1.4 · 15.2KiB	PIGSTY 1.4 el8.aarch64.pg15 : pg_snakeoil_15 pg_snakeoil_15-1.4-1PIGSTY.el8.aarch64.rpm PIGSTY · 1.4 · 16.3KiB pg_snakeoil_15-1.4-1PGDG.rhel8.aarch64.rpm PGDG · 1.4 · 15.4KiB	PIGSTY 1.4 el8.aarch64.pg14 : pg_snakeoil_14 pg_snakeoil_14-1.4-1PIGSTY.el8.aarch64.rpm PIGSTY · 1.4 · 16.3KiB pg_snakeoil_14-1.4-1PGDG.rhel8.aarch64.rpm PGDG · 1.4 · 15.4KiB
el9.x86_64	PIGSTY 1.4 el9.x86_64.pg18 : pg_snakeoil_18 pg_snakeoil_18-1.4-1PIGSTY.el9.x86_64.rpm PIGSTY · 1.4 · 16.1KiB pg_snakeoil_18-1.4-1PGDG.rhel9.x86_64.rpm PGDG · 1.4 · 15.5KiB	PIGSTY 1.4 el9.x86_64.pg17 : pg_snakeoil_17 pg_snakeoil_17-1.4-1PIGSTY.el9.x86_64.rpm PIGSTY · 1.4 · 16.2KiB pg_snakeoil_17-1.4-1PGDG.rhel9.x86_64.rpm PGDG · 1.4 · 15.6KiB	PIGSTY 1.4 el9.x86_64.pg16 : pg_snakeoil_16 pg_snakeoil_16-1.4-1PIGSTY.el9.x86_64.rpm PIGSTY · 1.4 · 16.2KiB pg_snakeoil_16-1.4-1PGDG.rhel9.x86_64.rpm PGDG · 1.4 · 15.6KiB	PIGSTY 1.4 el9.x86_64.pg15 : pg_snakeoil_15 pg_snakeoil_15-1.4-1PIGSTY.el9.x86_64.rpm PIGSTY · 1.4 · 16.3KiB pg_snakeoil_15-1.4-1PGDG.rhel9.x86_64.rpm PGDG · 1.4 · 15.8KiB	PIGSTY 1.4 el9.x86_64.pg14 : pg_snakeoil_14 pg_snakeoil_14-1.4-1PIGSTY.el9.x86_64.rpm PIGSTY · 1.4 · 16.3KiB pg_snakeoil_14-1.4-1PGDG.rhel9.x86_64.rpm PGDG · 1.4 · 15.8KiB
el9.aarch64	PIGSTY 1.4 el9.aarch64.pg18 : pg_snakeoil_18 pg_snakeoil_18-1.4-1PIGSTY.el9.aarch64.rpm PIGSTY · 1.4 · 16.0KiB pg_snakeoil_18-1.4-1PGDG.rhel9.aarch64.rpm PGDG · 1.4 · 15.1KiB	PIGSTY 1.4 el9.aarch64.pg17 : pg_snakeoil_17 pg_snakeoil_17-1.4-1PIGSTY.el9.aarch64.rpm PIGSTY · 1.4 · 16.0KiB pg_snakeoil_17-1.4-1PGDG.rhel9.aarch64.rpm PGDG · 1.4 · 15.1KiB	PIGSTY 1.4 el9.aarch64.pg16 : pg_snakeoil_16 pg_snakeoil_16-1.4-1PIGSTY.el9.aarch64.rpm PIGSTY · 1.4 · 16.0KiB pg_snakeoil_16-1.4-1PGDG.rhel9.aarch64.rpm PGDG · 1.4 · 15.1KiB	PIGSTY 1.4 el9.aarch64.pg15 : pg_snakeoil_15 pg_snakeoil_15-1.4-1PIGSTY.el9.aarch64.rpm PIGSTY · 1.4 · 16.2KiB pg_snakeoil_15-1.4-1PGDG.rhel9.aarch64.rpm PGDG · 1.4 · 15.3KiB	PIGSTY 1.4 el9.aarch64.pg14 : pg_snakeoil_14 pg_snakeoil_14-1.4-1PIGSTY.el9.aarch64.rpm PIGSTY · 1.4 · 16.2KiB pg_snakeoil_14-1.4-1PGDG.rhel9.aarch64.rpm PGDG · 1.4 · 15.3KiB
el10.x86_64	PIGSTY 1.4 el10.x86_64.pg18 : pg_snakeoil_18 pg_snakeoil_18-1.4-1PIGSTY.el10.x86_64.rpm PIGSTY · 1.4 · 16.1KiB	PIGSTY 1.4 el10.x86_64.pg17 : pg_snakeoil_17 pg_snakeoil_17-1.4-1PIGSTY.el10.x86_64.rpm PIGSTY · 1.4 · 16.1KiB pg_snakeoil_17-1.4-1PGDG.rhel10.x86_64.rpm PGDG · 1.4 · 15.9KiB	PIGSTY 1.4 el10.x86_64.pg16 : pg_snakeoil_16 pg_snakeoil_16-1.4-1PIGSTY.el10.x86_64.rpm PIGSTY · 1.4 · 16.1KiB pg_snakeoil_16-1.4-1PGDG.rhel10.x86_64.rpm PGDG · 1.4 · 15.9KiB	PIGSTY 1.4 el10.x86_64.pg15 : pg_snakeoil_15 pg_snakeoil_15-1.4-1PIGSTY.el10.x86_64.rpm PIGSTY · 1.4 · 16.3KiB pg_snakeoil_15-1.4-1PGDG.rhel10.x86_64.rpm PGDG · 1.4 · 16.1KiB	PIGSTY 1.4 el10.x86_64.pg14 : pg_snakeoil_14 pg_snakeoil_14-1.4-1PIGSTY.el10.x86_64.rpm PIGSTY · 1.4 · 16.3KiB pg_snakeoil_14-1.4-1PGDG.rhel10.x86_64.rpm PGDG · 1.4 · 16.1KiB
el10.aarch64	PIGSTY 1.4 el10.aarch64.pg18 : pg_snakeoil_18 pg_snakeoil_18-1.4-1PIGSTY.el10.aarch64.rpm PIGSTY · 1.4 · 16.1KiB	PIGSTY 1.4 el10.aarch64.pg17 : pg_snakeoil_17 pg_snakeoil_17-1.4-1PIGSTY.el10.aarch64.rpm PIGSTY · 1.4 · 16.2KiB pg_snakeoil_17-1.4-1PGDG.rhel10.aarch64.rpm PGDG · 1.4 · 15.8KiB	PIGSTY 1.4 el10.aarch64.pg16 : pg_snakeoil_16 pg_snakeoil_16-1.4-1PIGSTY.el10.aarch64.rpm PIGSTY · 1.4 · 16.2KiB pg_snakeoil_16-1.4-1PGDG.rhel10.aarch64.rpm PGDG · 1.4 · 15.8KiB	PIGSTY 1.4 el10.aarch64.pg15 : pg_snakeoil_15 pg_snakeoil_15-1.4-1PIGSTY.el10.aarch64.rpm PIGSTY · 1.4 · 16.4KiB pg_snakeoil_15-1.4-1PGDG.rhel10.aarch64.rpm PGDG · 1.4 · 16.0KiB	PIGSTY 1.4 el10.aarch64.pg14 : pg_snakeoil_14 pg_snakeoil_14-1.4-1PIGSTY.el10.aarch64.rpm PIGSTY · 1.4 · 16.4KiB pg_snakeoil_14-1.4-1PGDG.rhel10.aarch64.rpm PGDG · 1.4 · 16.0KiB
d12.x86_64	PGDG 1.4 d12.x86_64.pg18 : postgresql-18-snakeoil postgresql-18-snakeoil_1.4-3.pgdg12+2_amd64.deb PGDG · 1.4 · 16.9KiB	PGDG 1.4 d12.x86_64.pg17 : postgresql-17-snakeoil postgresql-17-snakeoil_1.4-3.pgdg12+2_amd64.deb PGDG · 1.4 · 16.9KiB	PGDG 1.4 d12.x86_64.pg16 : postgresql-16-snakeoil postgresql-16-snakeoil_1.4-3.pgdg12+2_amd64.deb PGDG · 1.4 · 16.9KiB	PGDG 1.4 d12.x86_64.pg15 : postgresql-15-snakeoil postgresql-15-snakeoil_1.4-3.pgdg12+2_amd64.deb PGDG · 1.4 · 17.0KiB	PGDG 1.4 d12.x86_64.pg14 : postgresql-14-snakeoil postgresql-14-snakeoil_1.4-3.pgdg12+2_amd64.deb PGDG · 1.4 · 17.0KiB
d12.aarch64	PGDG 1.4 d12.aarch64.pg18 : postgresql-18-snakeoil postgresql-18-snakeoil_1.4-3.pgdg12+2_arm64.deb PGDG · 1.4 · 16.4KiB	PGDG 1.4 d12.aarch64.pg17 : postgresql-17-snakeoil postgresql-17-snakeoil_1.4-3.pgdg12+2_arm64.deb PGDG · 1.4 · 16.4KiB	PGDG 1.4 d12.aarch64.pg16 : postgresql-16-snakeoil postgresql-16-snakeoil_1.4-3.pgdg12+2_arm64.deb PGDG · 1.4 · 16.4KiB	PGDG 1.4 d12.aarch64.pg15 : postgresql-15-snakeoil postgresql-15-snakeoil_1.4-3.pgdg12+2_arm64.deb PGDG · 1.4 · 16.5KiB	PGDG 1.4 d12.aarch64.pg14 : postgresql-14-snakeoil postgresql-14-snakeoil_1.4-3.pgdg12+2_arm64.deb PGDG · 1.4 · 16.5KiB
d13.x86_64	PGDG 1.4 d13.x86_64.pg18 : postgresql-18-snakeoil postgresql-18-snakeoil_1.4-3.pgdg13+1_amd64.deb PGDG · 1.4 · 16.8KiB	PGDG 1.4 d13.x86_64.pg17 : postgresql-17-snakeoil postgresql-17-snakeoil_1.4-3.pgdg13+1_amd64.deb PGDG · 1.4 · 16.8KiB	PGDG 1.4 d13.x86_64.pg16 : postgresql-16-snakeoil postgresql-16-snakeoil_1.4-3.pgdg13+1_amd64.deb PGDG · 1.4 · 16.8KiB	PGDG 1.4 d13.x86_64.pg15 : postgresql-15-snakeoil postgresql-15-snakeoil_1.4-3.pgdg13+1_amd64.deb PGDG · 1.4 · 17.0KiB	PGDG 1.4 d13.x86_64.pg14 : postgresql-14-snakeoil postgresql-14-snakeoil_1.4-3.pgdg13+1_amd64.deb PGDG · 1.4 · 17.0KiB
d13.aarch64	PGDG 1.4 d13.aarch64.pg18 : postgresql-18-snakeoil postgresql-18-snakeoil_1.4-3.pgdg13+1_arm64.deb PGDG · 1.4 · 16.4KiB	PGDG 1.4 d13.aarch64.pg17 : postgresql-17-snakeoil postgresql-17-snakeoil_1.4-3.pgdg13+1_arm64.deb PGDG · 1.4 · 16.4KiB	PGDG 1.4 d13.aarch64.pg16 : postgresql-16-snakeoil postgresql-16-snakeoil_1.4-3.pgdg13+1_arm64.deb PGDG · 1.4 · 16.4KiB	PGDG 1.4 d13.aarch64.pg15 : postgresql-15-snakeoil postgresql-15-snakeoil_1.4-3.pgdg13+1_arm64.deb PGDG · 1.4 · 16.6KiB	PGDG 1.4 d13.aarch64.pg14 : postgresql-14-snakeoil postgresql-14-snakeoil_1.4-3.pgdg13+1_arm64.deb PGDG · 1.4 · 16.5KiB
u22.x86_64	PGDG 1.4 u22.x86_64.pg18 : postgresql-18-snakeoil postgresql-18-snakeoil_1.4-3.pgdg22.04+1_amd64.deb PGDG · 1.4 · 16.6KiB	PGDG 1.4 u22.x86_64.pg17 : postgresql-17-snakeoil postgresql-17-snakeoil_1.4-3.pgdg22.04+1_amd64.deb PGDG · 1.4 · 17.1KiB	PGDG 1.4 u22.x86_64.pg16 : postgresql-16-snakeoil postgresql-16-snakeoil_1.4-3.pgdg22.04+1_amd64.deb PGDG · 1.4 · 17.1KiB	PGDG 1.4 u22.x86_64.pg15 : postgresql-15-snakeoil postgresql-15-snakeoil_1.4-3.pgdg22.04+1_amd64.deb PGDG · 1.4 · 17.2KiB	PGDG 1.4 u22.x86_64.pg14 : postgresql-14-snakeoil postgresql-14-snakeoil_1.4-3.pgdg22.04+1_amd64.deb PGDG · 1.4 · 17.2KiB
u22.aarch64	PGDG 1.4 u22.aarch64.pg18 : postgresql-18-snakeoil postgresql-18-snakeoil_1.4-3.pgdg22.04+1_arm64.deb PGDG · 1.4 · 16.4KiB	PGDG 1.4 u22.aarch64.pg17 : postgresql-17-snakeoil postgresql-17-snakeoil_1.4-3.pgdg22.04+1_arm64.deb PGDG · 1.4 · 17.0KiB	PGDG 1.4 u22.aarch64.pg16 : postgresql-16-snakeoil postgresql-16-snakeoil_1.4-3.pgdg22.04+1_arm64.deb PGDG · 1.4 · 17.0KiB	PGDG 1.4 u22.aarch64.pg15 : postgresql-15-snakeoil postgresql-15-snakeoil_1.4-3.pgdg22.04+1_arm64.deb PGDG · 1.4 · 17.2KiB	PGDG 1.4 u22.aarch64.pg14 : postgresql-14-snakeoil postgresql-14-snakeoil_1.4-3.pgdg22.04+1_arm64.deb PGDG · 1.4 · 17.1KiB
u24.x86_64	PGDG 1.4 u24.x86_64.pg18 : postgresql-18-snakeoil postgresql-18-snakeoil_1.4-3.pgdg24.04+1_amd64.deb PGDG · 1.4 · 16.9KiB	PGDG 1.4 u24.x86_64.pg17 : postgresql-17-snakeoil postgresql-17-snakeoil_1.4-3.pgdg24.04+1_amd64.deb PGDG · 1.4 · 16.9KiB	PGDG 1.4 u24.x86_64.pg16 : postgresql-16-snakeoil postgresql-16-snakeoil_1.4-3.pgdg24.04+1_amd64.deb PGDG · 1.4 · 16.9KiB	PGDG 1.4 u24.x86_64.pg15 : postgresql-15-snakeoil postgresql-15-snakeoil_1.4-3.pgdg24.04+1_amd64.deb PGDG · 1.4 · 17.0KiB	PGDG 1.4 u24.x86_64.pg14 : postgresql-14-snakeoil postgresql-14-snakeoil_1.4-3.pgdg24.04+1_amd64.deb PGDG · 1.4 · 17.0KiB
u24.aarch64	PGDG 1.4 u24.aarch64.pg18 : postgresql-18-snakeoil postgresql-18-snakeoil_1.4-3.pgdg24.04+1_arm64.deb PGDG · 1.4 · 16.4KiB	PGDG 1.4 u24.aarch64.pg17 : postgresql-17-snakeoil postgresql-17-snakeoil_1.4-3.pgdg24.04+1_arm64.deb PGDG · 1.4 · 16.4KiB	PGDG 1.4 u24.aarch64.pg16 : postgresql-16-snakeoil postgresql-16-snakeoil_1.4-3.pgdg24.04+1_arm64.deb PGDG · 1.4 · 16.4KiB	PGDG 1.4 u24.aarch64.pg15 : postgresql-15-snakeoil postgresql-15-snakeoil_1.4-3.pgdg24.04+1_arm64.deb PGDG · 1.4 · 16.5KiB	PGDG 1.4 u24.aarch64.pg14 : postgresql-14-snakeoil postgresql-14-snakeoil_1.4-3.pgdg24.04+1_arm64.deb PGDG · 1.4 · 16.5KiB

Build

You can build the RPM packages for pg_snakeoil using pig build:

pig build pkg pg_snakeoil         # build RPM packages

Install

You can install pg_snakeoil directly. First, make sure the PGDG and PIGSTY repositories are added and enabled:

pig repo add pgsql -u          # Add repo and update cache

Install the extension using pig or apt/yum/dnf:

pig install pg_snakeoil;          # Install for current active PG version

pig ext install -y pg_snakeoil -v 18  # PG 18
pig ext install -y pg_snakeoil -v 17  # PG 17
pig ext install -y pg_snakeoil -v 16  # PG 16
pig ext install -y pg_snakeoil -v 15  # PG 15
pig ext install -y pg_snakeoil -v 14  # PG 14

dnf install -y pg_snakeoil_18       # PG 18
dnf install -y pg_snakeoil_17       # PG 17
dnf install -y pg_snakeoil_16       # PG 16
dnf install -y pg_snakeoil_15       # PG 15
dnf install -y pg_snakeoil_14       # PG 14

apt install -y postgresql-18-snakeoil   # PG 18
apt install -y postgresql-17-snakeoil   # PG 17
apt install -y postgresql-16-snakeoil   # PG 16
apt install -y postgresql-15-snakeoil   # PG 15
apt install -y postgresql-14-snakeoil   # PG 14

Preload:

shared_preload_libraries = 'pg_snakeoil';

Usage

pg_snakeoil: ClamAV antivirus scanning for PostgreSQL data

pg_snakeoil provides ClamAV virus scanning of data stored in PostgreSQL without interfering with normal database operations.

CREATE EXTENSION pg_snakeoil;

Functions

Function	Returns	Description
`so_is_infected(text)`	`bool`	Check if text data matches a virus signature
`so_is_infected(bytea)`	`bool`	Check if bytea data matches a virus signature
`so_virus_name(text)`	`text`	Return virus name if infected, empty string otherwise
`so_virus_name(bytea)`	`text`	Return virus name if infected, NULL otherwise
`so_update_signatures()`	`bool`	Reload virus signatures, true if changed

Ad-hoc Scanning

SELECT so_is_infected('Not a virus!');
-- f

SELECT so_is_infected('X5O!P%@AP[4\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*');
-- t

SELECT so_virus_name('X5O!P%@AP[4\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*');
-- Eicar-Test-Signature

On-Access Protection with Domains

CREATE DOMAIN safe_text AS text CHECK (NOT so_is_infected(value));
CREATE TABLE t1 (safe safe_text);

INSERT INTO t1 VALUES ('This text is safe!');
-- INSERT

INSERT INTO t1 VALUES('X5O!P%@AP...');
-- NOTICE: Virus found: Eicar-Test-Signature
-- ERROR: value for domain safe_text violates check constraint "safe_text_check"

On-Access Protection with Triggers

CREATE OR REPLACE FUNCTION check_virus() RETURNS trigger AS $$
BEGIN
    IF so_is_infected(NEW.content) THEN
        RAISE EXCEPTION 'Virus detected: %', so_virus_name(NEW.content);
    END IF;
    RETURN NEW;
END;
$$ LANGUAGE plpgsql;

CREATE TRIGGER virus_check BEFORE INSERT OR UPDATE ON uploads
    FOR EACH ROW EXECUTE FUNCTION check_virus();

Feedback

Was this page helpful?

Thanks for the feedback! Please let us know how we can improve.

Sorry to hear that. Please let us know how we can improve.

Last Modified 2026-03-12: add pg extension catalog (95749bf)