database/mariadb
database/mariadb
1
0
Fork 0
mirror of https://github.com/MariaDB/server.git synced 2025-05-10 02:01:19 +03:00
Code
72,213 Commits 2,973 Branches 353 Tags
Commit Graph

52 Commits

Author SHA1 Message Date
Georgi Kodinov
d33bed3c23 Bug #12375190: UPDATEXML CRASHES ON SIMPLE INPUTS 
The XPATH implementation was not handling correctly the XPATH 
production #19 
(http://www.w3.org/TR/1999/REC-xpath-19991116/#node-sets),
namely

PathExpr ::= | FilterExpr '/' RelativeLocationPath
                    | FilterExpr '//' RelativeLocationPath

It was lacking context for the RelativeLocationPath and it was just 
ignoring the second slash instead of treating it as a different axis 
specifier.
Fixed the above two problems and added a test case.
 2011-05-03 10:48:24 +03:00
Alexander Barkov
e7ff0df0ea Merging from mysql-5.1 2011-03-01 17:42:37 +03:00
Alexander Barkov
bb7f40a185 Bug#11766725 (Bug#59901) EXTRACTVALUE STILL BROKEN AFTER FIX FOR BUG #44332 
Problem: a byte behind the end of input string was read
in case of a broken XML not having a quote or doublequote
character closing a string value.

Fix: changing condition not to read behind the end of input string

  @ mysql-test/r/xml.result
  @ mysql-test/t/xml.test
  Adding tests

  @ strings/xml.c
  When checking if the closing quote/doublequote was found,
  using p->cur[0] us unsafe, as p->cur can point to the byte after the value.
  Comparing p->cur to p->beg instead.
 2011-03-01 15:30:18 +03:00
Alexander Barkov
cf0e22fe75 Bug#44332 my_xml_scan reads behind the end of buffer 
Problem: the scanner function tested for strings "<![CDATA[" and
"-->" without checking input string boundaries, which led to valgrind's
"Conditional jump or move depends on uninitialised value(s)" error.

Fix: Adding boundary checking.

  @ mysql-test/r/xml.result
  @ mysql-test/t/xml.test
  Adding test

  @ strings/xml.c
  Adding a helper function my_xml_parser_prefix_cmp(),
  with input string boundary check.
 2011-01-18 09:38:41 +03:00
Alexander Barkov
8a576b8360 Merging from 5.1. 2011-01-18 09:50:03 +03:00
Ramil Kalimullin
cc5263b223 Manual merge from mysql-5.5-bugteam. 2010-11-22 14:47:28 +03:00
Ramil Kalimullin
0628752fe9 Manual-merge from mysql-5.1-bugteam. 2010-11-22 12:21:10 +03:00
Alexander Barkov
677639f46a Bug#58175 xml functions read initialized bytes when conversions happen 
Problem:

 nr_of_decimals could read behind the end of the buffer
 in case of a non-null-terminated string, which caused
 valgring warnings.

Fix:

  fixing nr_of_decimals not to read behind the "end" pointer.

modified:

  @ mysql-test/r/xml.result
  @ mysql-test/t/xml.test
  @ sql/item.cc
 2010-11-19 18:24:29 +03:00
Alexander Barkov
d720c49188 Bug#57279 updatexml dies with: Assertion failed: str_arg[length] == 0 
Problem: crash in Item_float constructor on DBUG_ASSERT due
to not null-terminated string parameter.

Fix: making Item_float::Item_float non-null-termintated parameter safe:
- Using temporary buffer when generating error

modified:
  @ mysql-test/r/xml.result
  @ mysql-test/t/xml.test
  @ sql/item.cc
 2010-11-18 16:11:18 +03:00
Alexander Barkov
771137b50e Bug#57257 Replace(ExtractValue(...)) causes MySQL crash 
Bug#57820 extractvalue crashes

Problem: ExtractValue and Replace crashed in some cases
due to invalid handling of empty and NULL arguments.

Per file comments:

  @mysql-test/r/ctype_ujis.result
  @mysql-test/r/xml.result
  @mysql-test/t/ctype_ujis.test
  @mysql-test/t/xml.test
  Adding tests

  @sql/item_strfunc.cc
  Make sure Item_func_replace::val_str safely handles empty strings.

  @sql/item_xmlfunc.cc
  set null_value if nodeset_func returned NULL,
  which is possible when the second argument is an
  unset user variable.
 2010-11-11 13:25:23 +03:00
Sergey Glukhov
c08ceffded Bug#43183 ExctractValue() brings result list in missorder 
The problem is that XML functions(items) do not reset null_value
before their execution and further item excution may use
null_value value of the previous result.
The fix is to reset null_value.
 2009-04-01 13:40:33 +05:00
Sergey Glukhov
9ab3654530 Bug#42495 updatexml: Assertion failed: xpath->context, file .\item_xmlfunc.cc, line 2507 
Problem:
   RelativeLocationPath can appear only after a node-set expression
   in the third and the fourth branches of this rule:
     PathExpr :: =  LocationPath
                    | FilterExpr
                    | FilterExpr '/' RelativeLocationPath
                    | FilterExpr '//' RelativeLocationPath
   XPatch code didn't check the type of FilterExpr and crashed.
Fix:
   If FilterExpr is a scalar expression
   (variable reference, literal, number, scalar function call)
   return error.
 2009-02-04 15:40:12 +04:00
Alexander Barkov
f5a850109a Bug#38227 EXTRACTVALUE doesn't work with DTD declarations 
Problem:
 XML syntax parser allowed to use quoted strings as attribute names,
 and tried to put them into parser state stack instead of identifiers.
 After that parser failed, if quoted string contained some slash characters.
Fix:
 - Disallowing quoted strings in regular tags.
 - Allowing quoted string in DOCTYPE declararion, but
 don't push it into parse state stack (just skip it).
 2008-12-10 13:05:57 +04:00
ramil/ram@mysql.com/ramil.myoffice.izhnet.ru
b8f65ccf6f Fix for bug #32557: order by updatexml causes assertion in filesort 
Problem: even if an Item_xml_str_func successor returns NULL, it doesn't have 
a corresponding property (maybe_null) set, that leads to a failed assertion.

Fix: set nullability property of Item_xml_str_func.
 2007-11-21 16:00:09 +04:00
gshchepa/uchum@gleb.loc
6fbac59c5c Many files: 
Error message numbers.
 2007-10-27 01:40:48 +05:00
ramil/ram@mysql.com/ramil.myoffice.izhnet.ru
29dca6ef33 Fix for bug #31438: updatexml still crashes 
Problem: check missed if the second updatexml() argument is valid.

Fix: check it.
 2007-10-08 16:52:15 +05:00
gshchepa@devsrv-b.mysql.com
ca15f7b190 Many files: 
Merge with 5.0-opt.
 2007-09-14 17:21:50 +02:00
gshchepa/uchum@gleb.loc
92eb485fe2 Many files: 
Post-merge fix.
 2007-08-03 13:07:37 +05:00
tsmith@maint1.mysql.com
2639886711 Bug #29245: Bad Merge Caused Error Codes Conflict between 5.0/5.1 
Fix some error messages so that all error codes are equivalent in 5.0 and 5.1
 2007-06-26 13:15:43 +02:00
bar@mysql.com/bar.myoffice.izhnet.ru
240a927c54 Bug#28558 UpdateXML called with garbage crashes server 
Problem: Memory overrun happened in attempts to generate
error messages (e.g. in case of incorrect XPath syntax).
Reason: set_if_bigger() was used instead of set_if_smaller().
Change: replacing wrong set_if_bigger() to set_if_smaller(),
and making minor additional code clean-ups.
 2007-05-23 12:34:47 +05:00
bar@bar.myoffice.izhnet.ru
c600629c22 Merge abarkov@bk-internal.mysql.com:/home/bk/mysql-5.1-rpl 
into  mysql.com:/home/bar/mysql-5.1.b26518
 2007-05-08 13:36:05 +05:00
bar@mysql.com/bar.myoffice.izhnet.ru
8bc4ded6aa Bug#26518 XPath and variables problem 
Problem: XPath variables didn't work.
Fix: adding variables support,
both user-defined and sp local variables are now supported by XPath.
 2007-05-08 13:32:29 +05:00
bar@mysql.com
ea6bb0286b Bug#27898 UPDATEXML Crashes the Server! 
Problem: when replacing the root element, UpdateXML
erroneously tried to mix old XML content with the
replacement string, which led to crash.
Fix: don't use the old XML content in these cases,
just return the replacement string.
 2007-05-02 13:18:07 +05:00
bar@bar.myoffice.izhnet.ru
95f3f3f4f3 Merge abarkov@bk-internal.mysql.com:/home/bk/mysql-5.1-rpl 
into  mysql.com:/home/bar/mysql-5.1.b24747
 2007-01-22 13:28:58 +04:00
bar@mysql.com
01be66ad54 Bug#24747 XPath error with the node name "Text" 2006-12-27 18:14:28 +04:00
patg@govinda.patg.net
98062f567d WL# 3031 
Post-commit issues fixed
* Test results for other tests fixed due to added error #s
* Memory allocation/free issues found with running with valgrind
* Fix to mysql-test-run shell script to run federated_server test (installs
mysql.servers table properly)
 2006-12-08 22:19:51 -05:00
bar@mysql.com/bar.intranet.mysql.r18.ru
8a617440ad Bug#22823 gt and lt operators appear to be reversed in ExtractValue() command 
Problem: "greater than" and "less than" XPath operators appeared to have been implemented in reverse.
Fix: swap arguments to eq_func() and eq_func_reverse() to provide correct operation result.
 2006-10-23 14:17:57 +05:00
bar@mysql.com/bar.intranet.mysql.r18.ru
9878c8dcc0 Bug#20854 XML functions: wrong result in ExtractValue 2006-09-14 11:47:19 +05:00
bar@mysql.com/bar.intranet.mysql.r18.ru
bc0c69ce7e Bug#20795: extractvalue() won't accept names containing a dot (.) 
Dot character was not considered as a valid identifier body character.
 2006-07-25 18:46:43 +05:00
bar@mysql.com
013fb25ff4 Additional fix for 18201 XML: ExtractValue works even if the xml fragment is not well-formed xml 
Changing error number
 2006-06-19 14:17:04 +05:00
bar@bar.intranet.mysql.r18.ru
f3bda9b73f Merge mysql.com:/usr/home/bar/mysql-5.1-new.b18201 
into  mysql.com:/usr/home/bar/mysql-5.1-kt
 2006-06-19 11:18:05 +05:00
bar@mysql.com
467052aa5b Merge mysql.com:/usr/home/bar/mysql-5.1-new 
into  mysql.com:/usr/home/bar/mysql-5.1-new.b18170
 2006-05-03 09:08:12 +05:00
bar@mysql.com
bd3f46ed35 Merge mysql.com:/usr/home/bar/mysql-5.1-new 
into  mysql.com:/usr/home/bar/mysql-5.1-new.b18201
 2006-05-02 14:10:18 +05:00
bar@mysql.com
8fb685c254 Bug#18201: XML: ExtractValue works even if the xml 
fragment is not well-formed xml

Problem:
- ExtractValue silently returned NULL if a wrong XML value is passed.
- In some cases "unexpected END-OF-INPUT" error was not detected, and
  a non-NULL result could be returned for a bad XML value.

Fix:
- Adding warning messages, to make user aware why NULL was returned.
- Missing "unexpected END-OF-INPUT" error is reported now.
 2006-04-17 14:40:25 +05:00
bar@mysql.com
faee72a936 Bug#18170: XML: ExtractValue(): XPath expression can't use QNames (colon in names) 
Problem source:
Qualified names (aka QName) didn't work as tag names and attribute names,
because the parser lacked a real rule to scan QName, so it understood
only non-qualified names without prefixes.

Solution:
New rule was added to check both "ident" and "ident:ident" sequences.
 2006-04-17 11:49:20 +05:00
bar@mysql.com
ed6899c64f Merge mysql.com:/usr/home/bar/mysql-5.1-new 
into  mysql.com:/usr/home/bar/mysql-5.1-new.b16319
 2006-04-14 13:34:18 +05:00
bar@mysql.com
5c0e1d5e4d Merge mysql.com:/usr/home/bar/mysql-5.1-new 
into  mysql.com:/usr/home/bar/mysql-5.1-new.b18285
 2006-04-11 17:12:29 +05:00
bar@mysql.com
df2d425afd Bug#16233: XML: ExtractValue() fails with special characters 
ExtractValue didn't understand tag and attribute names
consisting of "tricky" national letters (e.g. latin accenter letters).
It happened because XPath lex parser recognized only basic
latin letter a..z ad a part of an identifier.

Fixed to recognize all letters by means of new "full ctype" which
was added recently.
 2006-04-11 13:25:02 +05:00
bar@mysql.com
334af05334 Bug#16319: XML: extractvalue() returns syntax errors for some functions 2006-04-07 14:07:56 +05:00
bar@mysql.com
9bf1fb4c19 Bug#18285: ExtractValue not returning character data within <![CDATA[]]> as expected 2006-04-07 11:04:33 +05:00
bar@mysql.com
2e7cf881ac Bug #18172 XML: Extractvalue() accepts mallformed 
XPath without a XPath syntax error
item_xmlfunc.cc:
  Error message didn't happen because after
  a failing attempt to parse RelativeLocationPath,
  my_xpath_parse_AbsoluteLocationPath() returned success.
  Changeing logic a bit:
  - Try to parse EOF first, return success if true.
  - Then try to parse RelativeLocationPath(), return success if true.
  - Otherwise return failure.
xml.result:
  Adding test case.
  Also, this change made it possible to generate 
  an error message earlier in the case of another
  bad XPATH syntax.
xml.test:
  Adding test case.
 2006-03-20 14:57:34 +04:00
bar@mysql.com
e983bc7486 xml.result, xml.test: 
Adding test.
item_xmlfunc.cc:
  Bug #18171 XML: ExtractValue: the XPath position() function crashes the server!
  Disallowing use of position() and last() without context.
 2006-03-15 11:57:37 +04:00
bar@mysql.com
8c2fb88a8f Merge abarkov@bk-internal.mysql.com:/home/bk/mysql-5.1-new/ 
into  mysql.com:/usr/home/bar/mysql-5.1-new.b16318
 2006-03-09 11:53:56 +04:00
bar@mysql.com
f516d1f9f2 Bug#16318: XML: extractvalue() incorrectly returns last() = 1 
xml.result, xml.test:
  Adding test case.
item_xmlfunc.cc:
  - adding "size" member into MY_XPATH_FLT struct,
  to pass parent's context size when iterating
  in a predicate. Previously, temporaty context
  size was calculated instead, which is always 1.
  As a result, things like last() and count() 
  didn't work fine.
  - adding iteration into Item_func_xpath_elementbyindex:
  similar to Item_func_xpath_predicate.
  This is to make things like last() and count()
  work inside square brackets.
 2006-03-03 18:36:14 +04:00
bar@mysql.com
5e2ab5f4a0 Bug#16316: XML: extractvalue() is case-sensitive with contains() 
xml.result, xml.test:
  Adding test case.
item_xmlfunc.cc:
  Fixed that Item_nodeset_func derived classes
  didn't take into account charset of the XML value
  and always worked using "binary" charset.
 2006-03-02 14:05:38 +04:00
bar@mysql.com
9e47ae44a0 Merge abarkov@bk-internal.mysql.com:/home/bk/mysql-5.1-new 
into  mysql.com:/usr/home/bar/mysql-5.1-new.16315
 2006-03-02 10:42:08 +04:00
bar@mysql.com
47b4f00720 Bug#16315 XML: extractvalue() handles self badly 
xml.result, xml.test:
  Adding test case.
item_xmlfunc.cc:
  Adding a special function to handle "self" axis.
  Previously "child" and "self" were handled the same.
 2006-03-01 13:16:12 +04:00
gluh@eagle.intranet.mysql.r18.ru
701110c943 Bug#16320 XML: extractvalue() won't accept names containing underscores 
added '_' to allowed tag body symbols
 2006-03-01 10:36:22 +04:00
bar@mysql.com
bcc72ad04f Bug#16313 XML: extractvalue() ignores '!' in names 
xml.result, xml.test:
  Adding test case.
item_xmlfunc.cc:
  Fixed that the "!" character written at the end was ignored.

  Now if we try to scan "!=", and if "!" is not
  followed by "=", we rollback lex scanner back 
  to "!" token, so the parser will start to check
  the next rule from the "!" character again.

  Previously parser started from the next character,
  which was EOF in the example in xml.test,
  which led to query being successfully parsed,
  instead of producing a syntax error.
 2006-02-28 13:59:16 +04:00
bar@mysql.com
1f30b1525a xml.test: 
xml.result:
  Adding test for Bug #16312 XML: extractvalue() crash if angle brackets,
  A fix for #16234 fixed this bug automatically.
 2006-02-27 11:21:20 +04:00