Many hyperlinks are disabled.
Use anonymous login
to enable hyperlinks.
History for src/auth.c
2024-10-28
| ||
17:27 | [54ab9c6c58] part of check-in [3a3f7bf430] Remove the never-used and never-documented and long-ago deprecated user-authentication feature option. [65884d4f81a4705b]. (check-in: [3a3f7bf430] user: drh branch: trunk, size: 8783) | |
2024-08-17
| ||
23:23 | [4c1ea890e0] part of check-in [9f5aeef3cb] Give unique names to fields in the SrcItem object, to facilitate analysis of how those fields are used using "grep". (check-in: [9f5aeef3cb] user: drh branch: srcitem-opt, size: 8978) | |
2023-06-07
| ||
08:40 | [19b7ccacae] part of check-in [26c1bb4bd9] Add a C-source spell-checking facility. make misspell (on Nix) (check-in: [26c1bb4bd9] user: larrybr branch: spell-check, size: 8977) | |
2021-08-02
| ||
18:03 | [f4fa91b6a9] part of check-in [8b781dcaf6] Refactor field names in the Column object, zCnName and zCnColl, to make them unique and thus easier to find amid all the other code. (check-in: [8b781dcaf6] user: drh branch: trunk, size: 8977) | |
2021-02-06
| ||
14:56 | [08954fdc4c] part of check-in [b469327e29] Remove an ALWAYS() and NEVER() in the authorizer that become reachable as of [078dbff04a95a001]. Test case for coverage in TH3. (check-in: [b469327e29] user: drh branch: trunk, size: 8973) | |
2021-02-05
| ||
17:34 | [807c65bbe6] part of check-in [078dbff04a] Remove unreachable code. Fix a shift UB problem introduced yesterday and discovered by OSSFuzz. (check-in: [078dbff04a] user: drh branch: trunk, size: 8988) | |
2021-01-01
| ||
16:43 | [8d1df0e2ef] part of check-in [d3196685d9] Streamline processing of the authenticator callback for the common case when there is no callback. (check-in: [d3196685d9] user: drh branch: trunk, size: 9019) | |
2020-07-29
| ||
16:18 | [6e35c77be6] part of check-in [a80ae2c98b] Dozens and dozens of typo fixes in comments. This change adds no value to the end product and is disruptive, so it is questionable whether or not it will ever land on trunk. (check-in: [a80ae2c98b] user: drh branch: typos, size: 9052) | |
2019-08-01
| ||
22:48 | [a3d5bfdba8] part of check-in [961e2f08c3] The sqlite3_set_authorizer() interface should only expire prepared statements when it is setting a new authorizer, not when clearing the authorizer. And statements that are running when sqlite3_set_authorizer() is invoked should be allowed to continue running to completion. (check-in: [961e2f08c3] user: drh branch: trunk, size: 9052) | |
2018-11-20
| ||
16:02 | [6ea0bfef8f] part of check-in [dfab7170ed] Consolidate the two sqlite3SchemaToIndex() routines. (check-in: [dfab7170ed] user: dan branch: reuse-schema1, size: 9056) | |
2018-10-06
| ||
13:46 | [0fac710388] part of check-in [ff10d2c7de] Add test cases and assert() statements to ensure that the authorizer is being called as expected from within ALTER TABLE. (check-in: [ff10d2c7de] user: dan branch: trunk, size: 9036) | |
2018-08-09
| ||
20:47 | [32a5bbe3b7] part of check-in [fa0fc01eb4] Experimental implementation of ALTER TABLE ... RENAME COLUMN. Still buggy. (check-in: [fa0fc01eb4] user: dan branch: alter-table-rename-column, size: 8942) | |
2018-07-24
| ||
22:02 | [8272da9ff7] part of check-in [2bd593332d] Do not abort running queries due to a CREATE INDEX statement. Allow them to run to completion before being reprepared. Fix for ticket [c694113e50321afdf9]. (check-in: [2bd593332d] user: drh branch: trunk, size: 8941) | |
2018-06-02
| ||
11:31 | [a38f3c63c9] part of check-in [d0c3beef7c] Ensure that sqlite3AuthRead() is only call for TK_COLUMN and TK_TRIGGER expression nodes. This fixes a harmless assert() identified by OSSFuzz. Move the assert() into a position where it is tested even if the authorizer is disabled. (check-in: [d0c3beef7c] user: drh branch: trunk, size: 8938) | |
2017-08-17
| ||
18:54 | [6277d63837] part of check-in [0367a4d586] Size optimization in the authorizer error message generation logic. (check-in: [0367a4d586] user: drh branch: trunk, size: 8938) | |
2017-05-11
| ||
13:43 | [79f96c6f33] part of check-in [3980ea0911] New requirements marks and documentation for the authorizer. (check-in: [3980ea0911] user: drh branch: trunk, size: 8961) | |
2016-08-18
| ||
14:33 | [930b376a9c] part of check-in [92a22f0134] Rename the Db.zName field to Db.zDbSName to make it more descriptive and to distinguish it from all of the other "zName" variables scattered throughout the code. (check-in: [92a22f0134] user: drh branch: zDbSName, size: 8506) | |
2016-07-28
| ||
18:38 | [5c8e0f37f7] part of check-in [805d01cdab] Disable the authorizer callback when reparsing the schema. This avoids undesirable authorization failures following an ALTER TABLE. (check-in: [805d01cdab] user: drh branch: trunk, size: 8490) | |
2014-10-24
| ||
00:35 | [b56c78ebe4] part of check-in [c297a84bc6] Add the SQLITE_ENABLE_API_ARMOR compile-time option. This is a work in progress and is not yet completely functional. (check-in: [c297a84bc6] user: drh branch: api-armor, size: 8450) | |
2014-09-11
| ||
13:44 | [d8abcde534] part of check-in [596e728b0e] Add support for the extra parameter on the sqlite3_set_authorizer() callback and support for failing an ATTACH with an authentication-required database using bad credentials. The extension is now feature complete, but much testing and bug-fixing remains. (check-in: [596e728b0e] user: drh branch: user-auth, size: 8351) | |
2009-11-10
| ||
01:30 | [523da7fb49] part of check-in [f6c045f649] Remove the obsolete "$Id:$" RCS identifier strings from the source code. (check-in: [f6c045f649] user: drh branch: trunk, size: 8146) | |
2009-10-03
| ||
07:04 | [a5471a6951] part of check-in [3c24df38e6] Handle an SQLITE_IGNORE returned when requesting authorization to read parent key columns by pretending the parent key columns contain NULL values. (check-in: [3c24df38e6] user: dan branch: trunk, size: 8209) | |
2009-10-02
| ||
14:23 | [50a4fd3ad4] part of check-in [9842f2d5f6] When inserting a row into a child table, invoke the authorization callback to request permission to read the parent key columns. (check-in: [9842f2d5f6] user: dan branch: trunk, size: 8298) | |
2009-09-08
| ||
01:14 | [d6a88bf8e8] part of check-in [52449a9569] Code simplifications, especially to the pseudo-table logic, and comment improvements. (check-in: [52449a9569] user: drh branch: trunk, size: 7382) | |
2009-08-31
| ||
08:22 | [4cfb8fae12] part of check-in [8a746fbfd5] Fix some authorization callback problems. (check-in: [8a746fbfd5] user: dan branch: trunk, size: 7374) | |
2009-07-02
| ||
18:40 |
[802a9439df]
part of check-in [45fd5419a7]
Fix to sqlite3AuthRead to accommodate "new" or "old" references that are used in a context where a column reference may also be used (i.e. "SELECT new. | |
2009-05-04
| ||
18:01 | [98db07c208] part of check-in [c7615b4458] Changes to auth.c to promote full coverage testing. (CVS 6600) (check-in: [c7615b4458] user: drh branch: trunk, size: 7575) | |
01:58 | [3aa04c55fb] part of check-in [694662f786] Work toward cleaning up the authorizer interface. Work is on-going. This is an incremental check-in. (CVS 6598) (check-in: [694662f786] user: drh branch: trunk, size: 7522) | |
2007-09-18
| ||
15:55 | [c8b2ab5c8b] part of check-in [b2d605a271] Remove unneeded pSchema field from the Expr structure. (CVS 4434) (check-in: [b2d605a271] user: drh branch: trunk, size: 7658) | |
2007-09-01
| ||
18:24 | [d41c34f315] part of check-in [02b751fb9d] Fix a bug in jrnlTruncate(). And other coverage improvements. (CVS 4367) (check-in: [02b751fb9d] user: danielk1977 branch: trunk, size: 7614) | |
2007-08-21
| ||
19:33 | [083c1205b4] part of check-in [9287276191] The sqlite3_value object now carries an sqlite3* pointer to use for recording malloc failures. This eliminates the need to pass sqlite3* pointers into many internal interfaces. Also added more mutexing. (CVS 4263) (check-in: [9287276191] user: drh branch: trunk, size: 7627) | |
2007-05-14
| ||
11:34 | [5ea90bc93d] part of check-in [5627ff74be] Remove terms with operator TK_AS from the expression tree. Ticket #2356. (CVS 3991) (check-in: [5627ff74be] user: drh branch: trunk, size: 7559) | |
2006-06-16
| ||
08:01 | [902f472266] part of check-in [9497c66e55] Add some tests (and fixes) for virtual tables and the authorization callback. Still more to come. (CVS 3260) (check-in: [9497c66e55] user: danielk1977 branch: trunk, size: 7597) | |
2006-01-13
| ||
13:55 | [9ae84d2d94] part of check-in [55b7dfaf4d] Make sure the authenticator does not try to authenticate columns in subqueries. Ticket #1607. (CVS 2939) (check-in: [55b7dfaf4d] user: drh branch: trunk, size: 7496) | |
2006-01-05
| ||
11:34 | [cdec356a5c] part of check-in [deeda0dc06] Add the shared schema/pager modifications. Very few tests so far. (CVS 2859) (check-in: [deeda0dc06] user: danielk1977 branch: trunk, size: 7374) | |
2005-07-29
| ||
15:36 | [31e2304bef] part of check-in [cc7ae73ed0] Fix authentication so that it works with AS aliases. Ticket #1338. (CVS 2570) (check-in: [cc7ae73ed0] user: drh branch: trunk, size: 7248) | |
2005-01-29
| ||
08:32 | [18c5a0befe] part of check-in [b1b50f3158] Modify sub-query handling. Tickets #1083 and #1084. (CVS 2286) (check-in: [b1b50f3158] user: danielk1977 branch: trunk, size: 7223) | |
2005-01-22
| ||
03:03 | [4b15c85335] part of check-in [df648d50c0] Add the experimental sqlite3_expired() API. (CVS 2263) (check-in: [df648d50c0] user: drh branch: trunk, size: 7191) | |
2004-09-30
| ||
13:43 | [3b81f2a42f] part of check-in [d0f1dc5898] Allow functions to be created when there are outstanding VMs. (Ticket #926) Fix problems with sqlite3_errcode(). Add tests for sqlite3_errcode(). (CVS 1989) (check-in: [d0f1dc5898] user: drh branch: trunk, size: 7152) | |
2004-09-09
| ||
13:55 | [65408baa7e] part of check-in [97d63b9290] Fix a segfault in the authorizer when it is given a SELECT statement with no FROM clause. Ticket #896. (CVS 1954) (check-in: [97d63b9290] user: drh branch: trunk, size: 7153) | |
13:54 | [8d678ab139] part of check-in [205d85d77e] Fix a segfault in the authorizer when it is given a SELECT statement with no FROM clause. Ticket #896. (CVS 1953) (check-in: [205d85d77e] user: drh branch: version_2, size: 7056) | |
2004-09-06
| ||
17:24 | [038d7c7c22] part of check-in [3ddf5a9d1c] Fix a naming conflict between sqlite versions 2 and 3. An open sqlite3 connection now *must* be called "sqlite3". You cannot call it "sqlite". This might break existing code. (CVS 1941) (check-in: [3ddf5a9d1c] user: drh branch: trunk, size: 7153) | |
2004-06-19
| ||
16:06 | [60db23b98b] part of check-in [01f74b420c] Omit the DB_Locked and DB_Cookie flags. Other minor cleanup. (CVS 1642) (check-in: [01f74b420c] user: drh branch: trunk, size: 7150) | |
2004-06-14
| ||
11:58 | [f73ae6f726] part of check-in [24adf9ed59] Do not authenticate statements when reading the schema. Backport of bug fix in (1588) to version 2. (CVS 1591) (check-in: [24adf9ed59] user: drh branch: version_2, size: 7056) | |
11:35 | [204e1e9c45] part of check-in [293fbf0aa5] Don't invoke authorisation callback during database initialisation. (CVS 1588) (check-in: [293fbf0aa5] user: danielk1977 branch: trunk, size: 7183) | |
2004-05-10
| ||
10:34 | [5c2f0bea47] part of check-in [ba2ba24263] Change the names of external symbols from sqlite_XXX to sqlite3_XXX. (CVS 1337) (check-in: [ba2ba24263] user: danielk1977 branch: trunk, size: 7058) | |
2004-05-08
| ||
08:23 | [a2a46e3ed7] part of check-in [8af6474c49] Change lots of internal symbols from sqliteXXX to sqlite3XXX so that the library links again. It doesn't work yet, due to changes in the btree layer calling convention. (CVS 1324) (check-in: [8af6474c49] user: danielk1977 branch: trunk, size: 7055) | |
2004-02-22
| ||
18:40 | [4fa3b05bd1] part of check-in [69aac043af] Use sqliteErrorMsg instead of sqliteSetString whereever practical. (CVS 1264) (check-in: [69aac043af] user: drh branch: trunk, size: 7035) | |
2003-12-06
| ||
21:43 | [c59ad0dab5] part of check-in [656c90387a] Always use "(char*)0" to terminate the argument list of sqliteSetString(). This is needed for 64-bit systems that use a 32-bit integer by default. (CVS 1126) (check-in: [656c90387a] user: drh branch: trunk, size: 7253) | |
2003-05-10
| ||
03:36 | [c8f50d4507] part of check-in [8b388b2f69] Changes to comments. In particular, a lengthy comment was added to encode.c that explains how the encoder algorithm works. (CVS 966) (check-in: [8b388b2f69] user: drh branch: trunk, size: 7225) | |
2003-05-02
| ||
14:32 | [53b8923f17] part of check-in [be7aed2011] VDBE cursors numbers for tables in a join do not have to be consecutive. This is one step on the road to fixing ticket #272. (CVS 947) (check-in: [be7aed2011] user: drh branch: trunk, size: 6659) | |
2003-04-25
| ||
17:52 | [3be3c74345] part of check-in [67746833fc] Report the correct authorization context in the authorization callback when coding an INSTEAD OF trigger on an update or delete. (CVS 936) (check-in: [67746833fc] user: drh branch: trunk, size: 6625) | |
2003-04-24
| ||
01:45 | [a4afd27964] part of check-in [206b17397b] Fix some issues with INSTEAD OF triggers. (CVS 930) (check-in: [206b17397b] user: drh branch: trunk, size: 5928) | |
2003-04-22
| ||
20:30 | [7b0a72a649] part of check-in [c675a55041] Update the authorizer API so that it reports the database that table and indices belong to and so that it reports when actions are taken in response to a trigger. (CVS 928) (check-in: [c675a55041] user: drh branch: trunk, size: 6112) | |
2003-04-16
| ||
20:24 | [2dd558dba4] part of check-in [f04bd43254] Fix the authorizer so that it correctly interprets attempts to read the OLD and NEW pseudo-tables of a trigger. (CVS 911) (check-in: [f04bd43254] user: drh branch: trunk, size: 5432) | |
2003-01-31
| ||
17:21 | [f37bfc9451] part of check-in [d93c1aeb54] The sqlite_exec() function now returns SQLITE_AUTH when authorization fails. Ticket #231. (CVS 857) (check-in: [d93c1aeb54] user: drh branch: trunk, size: 5008) | |
2003-01-13
| ||
23:27 | [9c2db0bc77] part of check-in [45de93f913] Revise the sqlite_set_authorizer API to provide more detailed information about the SQL statement being authorized. Only partially tested so far. (CVS 830) (check-in: [45de93f913] user: drh branch: trunk, size: 4918) | |
2003-01-12
| ||
19:33 | [de3c70e5ea] part of check-in [5707b3d56e] The initial round of tests for the sqlite_set_authorizer() API. More are needed before release. Ticket #215. (CVS 829) (check-in: [5707b3d56e] user: drh branch: trunk, size: 7327) | |
18:07 | Added: [1ba84533de] part of check-in [7601916419] Forgot to include the new "auth.c" source file in the previous checkin. (CVS 828) (check-in: [7601916419] user: drh branch: trunk, size: 7346) | |