database/sqlite
1
0
Fork 0
mirror of https://github.com/sqlite/sqlite.git synced 2025-10-30 07:05:46 +03:00
Code Activity
23,156 Commits 1,606 Branches 184 Tags
fb8ca7de0cf8d6acf8899922cfd63b25e72594e8
Commit Graph

52 Commits

Author SHA1 Message Date
drh
cf9d36d1b3 Refactor field names in the Column object, zCnName and zCnColl, to make them 
unique and thus easier to find amid all the other code.

FossilOrigin-Name: 8b781dcaf68e0cf12a844708c82eee00193e340195cbca915d077e4846983bf3
 2021-08-02 18:03:43 +00:00
drh
5f323787bd Remove an ALWAYS() and NEVER() in the authorizer that become reachable 
as of [078dbff04a95a001].  Test case for coverage in TH3.

FossilOrigin-Name: b469327e2949352325d3db815bd4782f9734239c378f08afd2f00ffa54bef924
 2021-02-06 14:56:30 +00:00
drh
29f6a365cc Remove unreachable code. Fix a shift UB problem introduced yesterday 
and discovered by OSSFuzz.

FossilOrigin-Name: 078dbff04a95a001bbd8690ab08038fbb5506899df8290991b53fd1122a4c30c
 2021-02-05 17:34:47 +00:00
drh
69e856ae66 Streamline processing of the authenticator callback for the common case 
when there is no callback.

FossilOrigin-Name: d3196685d958bf22b5c362e96bbf8e1df58cc09cc3abc4bfa94bb33bc28c61aa
 2021-01-01 16:43:26 +00:00
drh
d744ee0b50 The sqlite3_set_authorizer() interface should only expire prepared statements 
when it is setting a new authorizer, not when clearing the authorizer.  And
statements that are running when sqlite3_set_authorizer() is invoked should be
allowed to continue running to completion.

FossilOrigin-Name: 961e2f08c35238bcb1d32430d16451a96807b2c4bbb194ee621128dd09cd3981
 2019-08-01 22:48:45 +00:00
dan
07052d5535 Add test cases and assert() statements to ensure that the authorizer is being 
called as expected from within ALTER TABLE.

FossilOrigin-Name: ff10d2c7de430c88167b1e6e4f5307eee5d69e22c8d24b2ef4fcb3aea25a92e1
 2018-10-06 13:46:22 +00:00
dan
cf8f289542 Experimental implementation of ALTER TABLE ... RENAME COLUMN. Still buggy. 
FossilOrigin-Name: fa0fc01eb48a864f0a3d43f9b805d5ed2e530846ee0c34fcbc2eabd9e5696277
 2018-08-09 20:47:01 +00:00
drh
ba968dbfe7 Do not abort running queries due to a CREATE INDEX statement. Allow them 
to run to completion before being reprepared.  Fix for ticket
[c694113e50321afdf9].

FossilOrigin-Name: 2bd593332da0aade467e7a4ee89e966aa6302f37540a2c5e23671f98a6cb599c
 2018-07-24 22:02:12 +00:00
drh
4344dbd3ab Ensure that sqlite3AuthRead() is only call for TK_COLUMN and TK_TRIGGER 
expression nodes.  This fixes a harmless assert() identified by OSSFuzz.
Move the assert() into a position where it is tested even if the authorizer
is disabled.

FossilOrigin-Name: d0c3beef7cdc680c0768ddd18f766a4ca7be822c1eb1776b2f73b7433d9962dc
 2018-06-02 11:31:15 +00:00
drh
6f7fbcf0bb Size optimization in the authorizer error message generation logic. 
FossilOrigin-Name: 0367a4d58682a64d7ed4c5a4b4377899e22432851587c649d419efb6d7bac250
 2017-08-17 18:54:27 +00:00
drh
9418921c59 New requirements marks and documentation for the authorizer. 
FossilOrigin-Name: 3980ea0911b3ad3f86d7a7bdc6503f233315c274f473e18831e13eda2c238eeb
 2017-05-11 13:43:57 +00:00
drh
69c338263a Rename the Db.zName field to Db.zDbSName to make it more descriptive and to 
distinguish it from all of the other "zName" variables scattered throughout
the code.

FossilOrigin-Name: 92a22f01343a898455fd61c3b8e7d7c954f5b569
 2016-08-18 14:33:11 +00:00
drh
a8914faaaa Disable the authorizer callback when reparsing the schema. This avoids 
undesirable authorization failures following an ALTER TABLE.

FossilOrigin-Name: 805d01cdabb48a69eb986a7f084e53eb25d76b7f
 2016-07-28 18:38:13 +00:00
drh
9ca95730e3 Add the SQLITE_ENABLE_API_ARMOR compile-time option. This is a work in 
progress and is not yet completely functional.

FossilOrigin-Name: c297a84bc678f81ffc0aa9139ab73f0ca87c1971
 2014-10-24 00:35:58 +00:00
drh
32c6a48b5e Add support for the extra parameter on the sqlite3_set_authorizer() callback 
and support for failing an ATTACH with an authentication-required database
using bad credentials.  The extension is now feature complete, but much
testing and bug-fixing remains.

FossilOrigin-Name: 596e728b0eb19a34c888e33d4d37978ca2bf1e00
 2014-09-11 13:44:52 +00:00
drh
c81c11f62c Remove the obsolete "$Id:$" RCS identifier strings from the source code. 
FossilOrigin-Name: f6c045f649036958078cb15cd9d5453680c82b0c
 2009-11-10 01:30:52 +00:00
dan
02470b20f3 Handle an SQLITE_IGNORE returned when requesting authorization to read parent key columns by pretending the parent key columns contain NULL values. 
FossilOrigin-Name: 3c24df38e6ae5dfe999bbf3133b65df0074c6a50
 2009-10-03 07:04:11 +00:00
dan
47a06346ff When inserting a row into a child table, invoke the authorization callback to request permission to read the parent key columns. 
FossilOrigin-Name: 9842f2d5f606eb8f641ecae9fbc5368b8d7e4286
 2009-10-02 14:23:41 +00:00
drh
3e9ca09453 Code simplifications, especially to the pseudo-table logic, and comment 
improvements.

FossilOrigin-Name: 52449a9569b7142095cc88ee208b31cc59a3cab4
 2009-09-08 01:14:48 +00:00
dan
2bd935168e Fix some authorization callback problems. 
FossilOrigin-Name: 8a746fbfd51f70f56e25ade59df49d2dc03c131c
 2009-08-31 08:22:46 +00:00
danielk1977
34acdc9573 Fix to sqlite3AuthRead to accommodate "new" or "old" references that are used in a context where a column reference may also be used (i.e. "SELECT new.<col> FROM <tble>"). Ticket #3944. (CVS 6838) 
FossilOrigin-Name: 45fd5419a7cde29eb6ab5d98141bd642af0d78fb
 2009-07-02 18:40:34 +00:00
drh
eba661f88f Changes to auth.c to promote full coverage testing. (CVS 6600) 
FossilOrigin-Name: c7615b44583c4b3afa45b57c6047478c18c234e9
 2009-05-04 18:01:39 +00:00
drh
ce9b0157f0 Work toward cleaning up the authorizer interface. Work is on-going. This 
is an incremental check-in. (CVS 6598)

FossilOrigin-Name: 694662f7860179403e0cc55b45ae8afa45aa7dfb
 2009-05-04 01:58:31 +00:00
drh
728b577934 Remove unneeded pSchema field from the Expr structure. (CVS 4434) 
FossilOrigin-Name: b2d605a2714245febb316a24edc7a076e21a3849
 2007-09-18 15:55:07 +00:00
danielk1977
880c15beb9 Fix a bug in jrnlTruncate(). And other coverage improvements. (CVS 4367) 
FossilOrigin-Name: 02b751fb9dbc683b1b77a2ed3cdeb4190f7339e0
 2007-09-01 18:24:55 +00:00
drh
b21c8cd4f6 The sqlite3_value object now carries an sqlite3* pointer to use for 
recording malloc failures.  This eliminates the need to pass sqlite3*
pointers into many internal interfaces.  Also added more mutexing. (CVS 4263)

FossilOrigin-Name: 9287276191a582c1cf7cf6b71d8399727d8e534d
 2007-08-21 19:33:56 +00:00
drh
4f07e5fbdf Remove terms with operator TK_AS from the expression tree. Ticket #2356. (CVS 3991) 
FossilOrigin-Name: 5627ff74be9242418434a06fe5c104d1f9128cab
 2007-05-14 11:34:46 +00:00
danielk1977
f1a381e7fc Add some tests (and fixes) for virtual tables and the authorization callback. Still more to come. (CVS 3260) 
FossilOrigin-Name: 9497c66e5533ec143d0efda4a419e4bdf922ae8c
 2006-06-16 08:01:02 +00:00
drh
a3e4d96f5d Make sure the authenticator does not try to authenticate columns in 
subqueries.   Ticket #1607. (CVS 2939)

FossilOrigin-Name: 55b7dfaf4d3a6d01fffdaf1707e88bcd215d7333
 2006-01-13 13:55:44 +00:00
danielk1977
da18423620 Add the shared schema/pager modifications. Very few tests so far. (CVS 2859) 
FossilOrigin-Name: deeda0dc06c1595aedd8d06a0c4e88a8abf78cf7
 2006-01-05 11:34:32 +00:00
drh
2ce99ecf8b Fix authentication so that it works with AS aliases. Ticket #1338. (CVS 2570) 
FossilOrigin-Name: cc7ae73ed01f0b89e31dd8de48b913bbd83887b8
 2005-07-29 15:36:14 +00:00
danielk1977
b3bce66232 Modify sub-query handling. Tickets #1083 and #1084. (CVS 2286) 
FossilOrigin-Name: b1b50f315873a8614920d1e3af4a07fb29a7ff6a
 2005-01-29 08:32:43 +00:00
drh
d89bd007ba Add the experimental sqlite3_expired() API. (CVS 2263) 
FossilOrigin-Name: df648d50c0696cf7ada2fe5973d285b494891964
 2005-01-22 03:03:54 +00:00
drh
c60d04464f Allow functions to be created when there are outstanding VMs. 
(Ticket #926)  Fix problems with sqlite3_errcode().  Add tests for
sqlite3_errcode(). (CVS 1989)

FossilOrigin-Name: d0f1dc5898382258b283308c2cce55a8bc378ee4
 2004-09-30 13:43:13 +00:00
drh
5689123ca6 Fix a segfault in the authorizer when it is given a SELECT statement with 
no FROM clause.  Ticket #896. (CVS 1954)

FossilOrigin-Name: 97d63b9290ef88b3cd8012c71fdd5b3c74eebc8f
 2004-09-09 13:55:50 +00:00
drh
9bb575fd72 Fix a naming conflict between sqlite versions 2 and 3. An open sqlite3 
connection now *must* be called "sqlite3".  You cannot call it "sqlite".
This might break existing code. (CVS 1941)

FossilOrigin-Name: 3ddf5a9d1c480a2e3aa32685879063b11afddbe1
 2004-09-06 17:24:11 +00:00
drh
124b27e654 Omit the DB_Locked and DB_Cookie flags. Other minor cleanup. (CVS 1642) 
FossilOrigin-Name: 01f74b420c3f24918c066172e09cebbb22568faf
 2004-06-19 16:06:10 +00:00
danielk1977
66b978a415 Don't invoke authorisation callback during database initialisation. (CVS 1588) 
FossilOrigin-Name: 293fbf0aa5c221bc341d0d9afc73d459f427f940
 2004-06-14 11:35:17 +00:00
danielk1977
24b03fd055 Change the names of external symbols from sqlite_XXX to sqlite3_XXX. (CVS 1337) 
FossilOrigin-Name: ba2ba24263a9e4d1b65b441295504a5da6380f33
 2004-05-10 10:34:34 +00:00
danielk1977
4adee20fcb Change lots of internal symbols from sqliteXXX to sqlite3XXX so that the 
library links again. It doesn't work yet, due to changes in the btree layer
calling convention. (CVS 1324)

FossilOrigin-Name: 8af6474c49263ae26216dff9465b33f76b500cf4
 2004-05-08 08:23:19 +00:00
drh
f7a9e1ac87 Use sqliteErrorMsg instead of sqliteSetString whereever practical. (CVS 1264) 
FossilOrigin-Name: 69aac043af7f93e7b3f036622c0ac9261cae1839
 2004-02-22 18:40:56 +00:00
drh
41743984bf Always use "(char*)0" to terminate the argument list of sqliteSetString(). 
This is needed for 64-bit systems that use a 32-bit integer by default. (CVS 1126)

FossilOrigin-Name: 656c90387a4a714b4f31040ece9b0e15e30934af
 2003-12-06 21:43:55 +00:00
drh
5fe2d8c913 Changes to comments. In particular, a lengthy comment was added to encode.c 
that explains how the encoder algorithm works. (CVS 966)

FossilOrigin-Name: 8b388b2f690dbfd50eefc0fdede1c7785f78afa1
 2003-05-10 03:36:53 +00:00
drh
6a3ea0e6ef VDBE cursors numbers for tables in a join do not have to be consecutive. 
This is one step on the road to fixing ticket #272. (CVS 947)

FossilOrigin-Name: be7aed2011b4af868b6a0c370c3d41354ae0cdf4
 2003-05-02 14:32:12 +00:00
drh
85e2096fb6 Report the correct authorization context in the authorization callback 
when coding an INSTEAD OF trigger on an update or delete. (CVS 936)

FossilOrigin-Name: 67746833fc8de3afff80db413bd63a362bb28218
 2003-04-25 17:52:11 +00:00
drh
5cf590c128 Fix some issues with INSTEAD OF triggers. (CVS 930) 
FossilOrigin-Name: 206b17397b1d2b55179c935927ff1d8215728c32
 2003-04-24 01:45:04 +00:00
drh
e22a334b78 Update the authorizer API so that it reports the database that table and 
indices belong to and so that it reports when actions are taken in response
to a trigger. (CVS 928)

FossilOrigin-Name: c675a5504138f34cae6def782b5d3add2c67d2bc
 2003-04-22 20:30:37 +00:00
drh
027850b676 Fix the authorizer so that it correctly interprets attempts to read the 
OLD and NEW pseudo-tables of a trigger. (CVS 911)

FossilOrigin-Name: f04bd43254b3ba3fccc842214115d4c298e28138
 2003-04-16 20:24:52 +00:00
drh
dcd997ea2e The sqlite_exec() function now returns SQLITE_AUTH when authorization fails. 
Ticket #231. (CVS 857)

FossilOrigin-Name: d93c1aeb544a5b1056424945eb43854213b30e50
 2003-01-31 17:21:49 +00:00
drh
e5f9c6442f Revise the sqlite_set_authorizer API to provide more detailed information 
about the SQL statement being authorized.  Only partially tested so far. (CVS 830)

FossilOrigin-Name: 45de93f913a18026a45de6254963dbcd1b0f1a19
 2003-01-13 23:27:31 +00:00