SQLite: Check-in [65a2e13173]

Many hyperlinks are disabled.
Use anonymous login to enable hyperlinks.

Overview

Comment:	If an SQLITE_DELETE authorization callback returns SQLITE_IGNORE, proceed with the delete operation but disable the truncate optimization. (CVS 5845)
Downloads:	Tarball \| ZIP archive
Timelines:	family \| ancestors \| descendants \| both \| trunk
Files:	files \| file ages \| folders
SHA1:	65a2e131732399f0f14f982eb0689482fdb87b6c
User & Date:	danielk1977 2008-10-27 15:34:33.000

Context

2008-10-28

17:52

Avoid exposing internal interfaces sqlite_attach() and sqlite_detach() as SQL scalar functions. Ticket #3466. (CVS 5846) (check-in: 679c0b35aa user: danielk1977 tags: trunk)

2008-10-27

15:34

If an SQLITE_DELETE authorization callback returns SQLITE_IGNORE, proceed with the delete operation but disable the truncate optimization. (CVS 5845) (check-in: 65a2e13173 user: danielk1977 tags: trunk)

13:59

Make sqlite3_count_changes() and total_changes() work with "DELETE FROM ". (CVS 5844)

(check-in: e68e4282ad user: danielk1977 tags: trunk)

Changes

Changes to src/delete.c.

Changes to test/auth.test.

Added test/auth3.test.

︙			︙
8 9 10 11 12 13 14 15 16 17 18 19 20 21 22	May you find forgiveness for yourself and forgive others. May you share freely, never taking more than you give. ********************************************************************* This file contains C code routines that are called by the parser in order to generate code for DELETE FROM statements. ** $Id: delete.c,v 1.184 2008/10/27 1~~3:59~~:34 danielk1977 Exp $ / #include "sqliteInt.h" / Look up every table that is named in pSrc. If any table is not found, add an error message to pParse->zErrMsg and return NULL. If all tables ** are found, return a pointer to the last table.	\|	8 9 10 11 12 13 14 15 16 17 18 19 20 21 22	May you find forgiveness for yourself and forgive others. May you share freely, never taking more than you give. ********************************************************************* This file contains C code routines that are called by the parser in order to generate code for DELETE FROM statements. ** $Id: delete.c,v 1.185 2008/10/27 15:34:33 danielk1977 Exp $ / #include "sqliteInt.h" / Look up every table that is named in pSrc. If any table is not found, add an error message to pParse->zErrMsg and return NULL. If all tables ** are found, return a pointer to the last table.
︙			︙
230 231 232 233 234 235 236 237 238 239 240 241 242 243	int iCur; /* VDBE Cursor number for pTab / sqlite3 db; /* Main database structure / AuthContext sContext; / Authorization context / int oldIdx = -1; / Cursor for the OLD table of AFTER triggers / NameContext sNC; / Name context to resolve expressions in / int iDb; / Database number / int memCnt = -1; / Memory cell used for change counting / #ifndef SQLITE_OMIT_TRIGGER int isView; / True if attempting to delete from a view / int triggers_exist = 0; / True if any triggers exist / #endif int iBeginAfterTrigger; / Address of after trigger program / int iEndAfterTrigger; / Exit of after trigger program */	>	230 231 232 233 234 235 236 237 238 239 240 241 242 243 244	int iCur; /* VDBE Cursor number for pTab / sqlite3 db; /* Main database structure / AuthContext sContext; / Authorization context / int oldIdx = -1; / Cursor for the OLD table of AFTER triggers / NameContext sNC; / Name context to resolve expressions in / int iDb; / Database number / int memCnt = -1; / Memory cell used for change counting / int rcauth; / Value returned by authorization callback / #ifndef SQLITE_OMIT_TRIGGER int isView; / True if attempting to delete from a view / int triggers_exist = 0; / True if any triggers exist / #endif int iBeginAfterTrigger; / Address of after trigger program / int iEndAfterTrigger; / Exit of after trigger program */
︙			︙
277 278 279 280 281 282 283 ~~284~~ 285 286 287 288 289 290 291	if( sqlite3IsReadOnly(pParse, pTab, triggers_exist) ){ goto delete_from_cleanup; } iDb = sqlite3SchemaToIndex(db, pTab->pSchema); assert( iDb<db->nDb ); zDb = db->aDb[iDb].zName; ~~~~if(~~ sqlite3AuthCheck(pParse, SQLITE_DELETE, pTab->zName, 0, zDb) ){~~ goto delete_from_cleanup; } assert(!isView \|\| triggers_exist); /* If pTab is really a view, make sure it has been initialized. */ if( sqlite3ViewGetColumnNames(pParse, pTab) ){	\| > >	278 279 280 281 282 283 284 285 286 287 288 289 290 291 292 293 294	if( sqlite3IsReadOnly(pParse, pTab, triggers_exist) ){ goto delete_from_cleanup; } iDb = sqlite3SchemaToIndex(db, pTab->pSchema); assert( iDb<db->nDb ); zDb = db->aDb[iDb].zName; rcauth = sqlite3AuthCheck(pParse, SQLITE_DELETE, pTab->zName, 0, zDb); assert( rcauth==SQLITE_OK \|\| rcauth==SQLITE_DENY \|\| rcauth==SQLITE_IGNORE ); if( rcauth==SQLITE_DENY ){ goto delete_from_cleanup; } assert(!isView \|\| triggers_exist); /* If pTab is really a view, make sure it has been initialized. */ if( sqlite3ViewGetColumnNames(pParse, pTab) ){
︙			︙
366 367 368 369 370 371 372 ~~373~~ 374 375 376 377 378 379 380	} #ifndef SQLITE_OMIT_TRUNCATE_OPTIMIZATION /* Special case: A DELETE without a WHERE clause deletes everything. It is easier just to erase the whole table. Note, however, that this means that the row change count will be incorrect. */ ~~if( pWhere==0 && !triggers_exist && !IsVirtual(pTab) ){~~ assert( !isView ); sqlite3VdbeAddOp3(v, OP_Clear, pTab->tnum, iDb, memCnt); if( !pParse->nested ){ sqlite3VdbeChangeP4(v, -1, pTab->zName, P4_STATIC); } for(pIdx=pTab->pIndex; pIdx; pIdx=pIdx->pNext){ assert( pIdx->pSchema==pTab->pSchema );	\|	369 370 371 372 373 374 375 376 377 378 379 380 381 382 383	} #ifndef SQLITE_OMIT_TRUNCATE_OPTIMIZATION /* Special case: A DELETE without a WHERE clause deletes everything. It is easier just to erase the whole table. Note, however, that this means that the row change count will be incorrect. */ if( rcauth==SQLITE_OK && pWhere==0 && !triggers_exist && !IsVirtual(pTab) ){ assert( !isView ); sqlite3VdbeAddOp3(v, OP_Clear, pTab->tnum, iDb, memCnt); if( !pParse->nested ){ sqlite3VdbeChangeP4(v, -1, pTab->zName, P4_STATIC); } for(pIdx=pTab->pIndex; pIdx; pIdx=pIdx->pNext){ assert( pIdx->pSchema==pTab->pSchema );
︙			︙

︙			︙
8 9 10 11 12 13 14 15 16 17 18 19 20 21 22	# May you share freely, never taking more than you give. # #*********************************************************************** # This file implements regression tests for SQLite library. The # focus of this script is testing the sqlite3_set_authorizer() API # and related functionality. # ~~# $Id: auth.test,v 1.43 2008/~~07/02~~ 13~~:13:52~~ danielk1977 Exp $~~ # set testdir [file dirname $argv0] source $testdir/tester.tcl # disable this test if the SQLITE_OMIT_AUTHORIZATION macro is # defined during compilation.	\|	8 9 10 11 12 13 14 15 16 17 18 19 20 21 22	# May you share freely, never taking more than you give. # #*********************************************************************** # This file implements regression tests for SQLite library. The # focus of this script is testing the sqlite3_set_authorizer() API # and related functionality. # # $Id: auth.test,v 1.44 2008/10/27 15:34:33 danielk1977 Exp $ # set testdir [file dirname $argv0] source $testdir/tester.tcl # disable this test if the SQLITE_OMIT_AUTHORIZATION macro is # defined during compilation.
︙			︙
414 415 416 417 418 419 420 ~~421~~ 422 423 424 425 426 427 428	} return SQLITE_OK } catchsql {DELETE FROM t2 WHERE a=11} } {0 {}} do_test auth-1.50 { execsql {SELECT * FROM t2} ~~} {~~11 2 33~~}~~ do_test auth-1.51 { proc auth {code arg1 arg2 arg3 arg4} { if {$code=="SQLITE_SELECT"} { return SQLITE_DENY } return SQLITE_OK	\| > > >	414 415 416 417 418 419 420 421 422 423 424 425 426 427 428 429 430 431	} return SQLITE_OK } catchsql {DELETE FROM t2 WHERE a=11} } {0 {}} do_test auth-1.50 { execsql {SELECT * FROM t2} } {} do_test auth-1.50.2 { execsql {INSERT INTO t2 VALUES(11, 2, 33)} } {} do_test auth-1.51 { proc auth {code arg1 arg2 arg3 arg4} { if {$code=="SQLITE_SELECT"} { return SQLITE_DENY } return SQLITE_OK
︙			︙