Skip to content
Projects
Groups
Snippets
Help
Loading...
Help
Support
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in / Register
Toggle navigation
M
MariaDB
Project overview
Project overview
Details
Activity
Releases
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Issues
0
Issues
0
List
Boards
Labels
Milestones
Merge Requests
0
Merge Requests
0
CI / CD
CI / CD
Pipelines
Jobs
Schedules
Analytics
Analytics
CI / CD
Repository
Value Stream
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Create a new issue
Jobs
Commits
Issue Boards
Open sidebar
nexedi
MariaDB
Commits
911c4811
Commit
911c4811
authored
Jul 23, 2014
by
Sergei Golubchik
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
cleanup and updated test results
parent
bb66e66d
Changes
11
Hide whitespace changes
Inline
Side-by-side
Showing
11 changed files
with
69 additions
and
42 deletions
+69
-42
mysql-test/r/grant.result
mysql-test/r/grant.result
+3
-0
mysql-test/r/grant2.result
mysql-test/r/grant2.result
+1
-1
mysql-test/r/information_schema.result
mysql-test/r/information_schema.result
+1
-0
mysql-test/r/system_mysql_db.result
mysql-test/r/system_mysql_db.result
+1
-0
mysql-test/r/system_mysql_db_fix40123.result
mysql-test/r/system_mysql_db_fix40123.result
+1
-0
mysql-test/r/system_mysql_db_fix50030.result
mysql-test/r/system_mysql_db_fix50030.result
+1
-0
mysql-test/r/system_mysql_db_fix50117.result
mysql-test/r/system_mysql_db_fix50117.result
+1
-0
mysql-test/suite/funcs_1/r/is_columns_mysql.result
mysql-test/suite/funcs_1/r/is_columns_mysql.result
+2
-0
mysql-test/suite/funcs_1/r/is_columns_mysql_embedded.result
mysql-test/suite/funcs_1/r/is_columns_mysql_embedded.result
+2
-0
mysql-test/suite/funcs_1/r/is_user_privileges.result
mysql-test/suite/funcs_1/r/is_user_privileges.result
+33
-0
sql/sql_acl.cc
sql/sql_acl.cc
+23
-41
No files found.
mysql-test/r/grant.result
View file @
911c4811
...
@@ -57,6 +57,7 @@ plugin
...
@@ -57,6 +57,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
show grants for mysqltest_1@localhost;
show grants for mysqltest_1@localhost;
Grants for mysqltest_1@localhost
Grants for mysqltest_1@localhost
GRANT USAGE ON *.* TO 'mysqltest_1'@'localhost' REQUIRE CIPHER 'EDH-RSA-DES-CBC3-SHA'
GRANT USAGE ON *.* TO 'mysqltest_1'@'localhost' REQUIRE CIPHER 'EDH-RSA-DES-CBC3-SHA'
...
@@ -130,6 +131,7 @@ plugin
...
@@ -130,6 +131,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
show grants for mysqltest_1@localhost;
show grants for mysqltest_1@localhost;
Grants for mysqltest_1@localhost
Grants for mysqltest_1@localhost
GRANT USAGE ON *.* TO 'mysqltest_1'@'localhost' WITH MAX_QUERIES_PER_HOUR 10
GRANT USAGE ON *.* TO 'mysqltest_1'@'localhost' WITH MAX_QUERIES_PER_HOUR 10
...
@@ -179,6 +181,7 @@ plugin
...
@@ -179,6 +181,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
show grants for mysqltest_1@localhost;
show grants for mysqltest_1@localhost;
Grants for mysqltest_1@localhost
Grants for mysqltest_1@localhost
GRANT USAGE ON *.* TO 'mysqltest_1'@'localhost' WITH MAX_QUERIES_PER_HOUR 10 MAX_UPDATES_PER_HOUR 20 MAX_CONNECTIONS_PER_HOUR 30
GRANT USAGE ON *.* TO 'mysqltest_1'@'localhost' WITH MAX_QUERIES_PER_HOUR 10 MAX_UPDATES_PER_HOUR 20 MAX_CONNECTIONS_PER_HOUR 30
...
...
mysql-test/r/grant2.result
View file @
911c4811
...
@@ -335,7 +335,7 @@ delete from mysql.user where user like 'mysqltest\_1';
...
@@ -335,7 +335,7 @@ delete from mysql.user where user like 'mysqltest\_1';
flush privileges;
flush privileges;
drop database mysqltest_1;
drop database mysqltest_1;
set password = password("changed");
set password = password("changed");
ERROR 42000: You are using MariaDB as an anonymous user and anonymous users are not allowed to
change password
s
ERROR 42000: You are using MariaDB as an anonymous user and anonymous users are not allowed to
modify user setting
s
lock table mysql.user write;
lock table mysql.user write;
flush privileges;
flush privileges;
grant all on *.* to 'mysqltest_1'@'localhost';
grant all on *.* to 'mysqltest_1'@'localhost';
...
...
mysql-test/r/information_schema.result
View file @
911c4811
...
@@ -715,6 +715,7 @@ max_user_connections select,insert,update,references
...
@@ -715,6 +715,7 @@ max_user_connections select,insert,update,references
authentication_string select,insert,update,references
authentication_string select,insert,update,references
password_expired select,insert,update,references
password_expired select,insert,update,references
is_role select,insert,update,references
is_role select,insert,update,references
default_role select,insert,update,references
use test;
use test;
create function sub1(i int) returns int
create function sub1(i int) returns int
return i+1;
return i+1;
...
...
mysql-test/r/system_mysql_db.result
View file @
911c4811
...
@@ -130,6 +130,7 @@ user CREATE TABLE `user` (
...
@@ -130,6 +130,7 @@ user CREATE TABLE `user` (
`authentication_string` text COLLATE utf8_bin NOT NULL,
`authentication_string` text COLLATE utf8_bin NOT NULL,
`password_expired` enum('N','Y') CHARACTER SET utf8 NOT NULL DEFAULT 'N',
`password_expired` enum('N','Y') CHARACTER SET utf8 NOT NULL DEFAULT 'N',
`is_role` enum('N','Y') CHARACTER SET utf8 NOT NULL DEFAULT 'N',
`is_role` enum('N','Y') CHARACTER SET utf8 NOT NULL DEFAULT 'N',
`default_role` char(80) COLLATE utf8_bin NOT NULL DEFAULT '',
PRIMARY KEY (`Host`,`User`)
PRIMARY KEY (`Host`,`User`)
) ENGINE=MyISAM DEFAULT CHARSET=utf8 COLLATE=utf8_bin COMMENT='Users and global privileges'
) ENGINE=MyISAM DEFAULT CHARSET=utf8 COLLATE=utf8_bin COMMENT='Users and global privileges'
show create table func;
show create table func;
...
...
mysql-test/r/system_mysql_db_fix40123.result
View file @
911c4811
...
@@ -130,6 +130,7 @@ user CREATE TABLE `user` (
...
@@ -130,6 +130,7 @@ user CREATE TABLE `user` (
`authentication_string` text COLLATE utf8_bin NOT NULL,
`authentication_string` text COLLATE utf8_bin NOT NULL,
`password_expired` enum('N','Y') CHARACTER SET utf8 NOT NULL DEFAULT 'N',
`password_expired` enum('N','Y') CHARACTER SET utf8 NOT NULL DEFAULT 'N',
`is_role` enum('N','Y') CHARACTER SET utf8 NOT NULL DEFAULT 'N',
`is_role` enum('N','Y') CHARACTER SET utf8 NOT NULL DEFAULT 'N',
`default_role` char(80) COLLATE utf8_bin NOT NULL DEFAULT '',
PRIMARY KEY (`Host`,`User`)
PRIMARY KEY (`Host`,`User`)
) ENGINE=MyISAM DEFAULT CHARSET=utf8 COLLATE=utf8_bin COMMENT='Users and global privileges'
) ENGINE=MyISAM DEFAULT CHARSET=utf8 COLLATE=utf8_bin COMMENT='Users and global privileges'
show create table func;
show create table func;
...
...
mysql-test/r/system_mysql_db_fix50030.result
View file @
911c4811
...
@@ -130,6 +130,7 @@ user CREATE TABLE `user` (
...
@@ -130,6 +130,7 @@ user CREATE TABLE `user` (
`authentication_string` text COLLATE utf8_bin NOT NULL,
`authentication_string` text COLLATE utf8_bin NOT NULL,
`password_expired` enum('N','Y') CHARACTER SET utf8 NOT NULL DEFAULT 'N',
`password_expired` enum('N','Y') CHARACTER SET utf8 NOT NULL DEFAULT 'N',
`is_role` enum('N','Y') CHARACTER SET utf8 NOT NULL DEFAULT 'N',
`is_role` enum('N','Y') CHARACTER SET utf8 NOT NULL DEFAULT 'N',
`default_role` char(80) COLLATE utf8_bin NOT NULL DEFAULT '',
PRIMARY KEY (`Host`,`User`)
PRIMARY KEY (`Host`,`User`)
) ENGINE=MyISAM DEFAULT CHARSET=utf8 COLLATE=utf8_bin COMMENT='Users and global privileges'
) ENGINE=MyISAM DEFAULT CHARSET=utf8 COLLATE=utf8_bin COMMENT='Users and global privileges'
show create table func;
show create table func;
...
...
mysql-test/r/system_mysql_db_fix50117.result
View file @
911c4811
...
@@ -130,6 +130,7 @@ user CREATE TABLE `user` (
...
@@ -130,6 +130,7 @@ user CREATE TABLE `user` (
`authentication_string` text COLLATE utf8_bin NOT NULL,
`authentication_string` text COLLATE utf8_bin NOT NULL,
`password_expired` enum('N','Y') CHARACTER SET utf8 NOT NULL DEFAULT 'N',
`password_expired` enum('N','Y') CHARACTER SET utf8 NOT NULL DEFAULT 'N',
`is_role` enum('N','Y') CHARACTER SET utf8 NOT NULL DEFAULT 'N',
`is_role` enum('N','Y') CHARACTER SET utf8 NOT NULL DEFAULT 'N',
`default_role` char(80) COLLATE utf8_bin NOT NULL DEFAULT '',
PRIMARY KEY (`Host`,`User`)
PRIMARY KEY (`Host`,`User`)
) ENGINE=MyISAM DEFAULT CHARSET=utf8 COLLATE=utf8_bin COMMENT='Users and global privileges'
) ENGINE=MyISAM DEFAULT CHARSET=utf8 COLLATE=utf8_bin COMMENT='Users and global privileges'
show create table func;
show create table func;
...
...
mysql-test/suite/funcs_1/r/is_columns_mysql.result
View file @
911c4811
...
@@ -213,6 +213,7 @@ def mysql user Create_tablespace_priv 32 N NO enum 1 3 NULL NULL NULL utf8 utf8_
...
@@ -213,6 +213,7 @@ def mysql user Create_tablespace_priv 32 N NO enum 1 3 NULL NULL NULL utf8 utf8_
def mysql user Create_tmp_table_priv 20 N NO enum 1 3 NULL NULL NULL utf8 utf8_general_ci enum('N','Y') select,insert,update,references
def mysql user Create_tmp_table_priv 20 N NO enum 1 3 NULL NULL NULL utf8 utf8_general_ci enum('N','Y') select,insert,update,references
def mysql user Create_user_priv 29 N NO enum 1 3 NULL NULL NULL utf8 utf8_general_ci enum('N','Y') select,insert,update,references
def mysql user Create_user_priv 29 N NO enum 1 3 NULL NULL NULL utf8 utf8_general_ci enum('N','Y') select,insert,update,references
def mysql user Create_view_priv 25 N NO enum 1 3 NULL NULL NULL utf8 utf8_general_ci enum('N','Y') select,insert,update,references
def mysql user Create_view_priv 25 N NO enum 1 3 NULL NULL NULL utf8 utf8_general_ci enum('N','Y') select,insert,update,references
def mysql user default_role 45 NO char 80 240 NULL NULL NULL utf8 utf8_bin char(80) select,insert,update,references
def mysql user Delete_priv 7 N NO enum 1 3 NULL NULL NULL utf8 utf8_general_ci enum('N','Y') select,insert,update,references
def mysql user Delete_priv 7 N NO enum 1 3 NULL NULL NULL utf8 utf8_general_ci enum('N','Y') select,insert,update,references
def mysql user Drop_priv 9 N NO enum 1 3 NULL NULL NULL utf8 utf8_general_ci enum('N','Y') select,insert,update,references
def mysql user Drop_priv 9 N NO enum 1 3 NULL NULL NULL utf8 utf8_general_ci enum('N','Y') select,insert,update,references
def mysql user Event_priv 30 N NO enum 1 3 NULL NULL NULL utf8 utf8_general_ci enum('N','Y') select,insert,update,references
def mysql user Event_priv 30 N NO enum 1 3 NULL NULL NULL utf8 utf8_general_ci enum('N','Y') select,insert,update,references
...
@@ -566,3 +567,4 @@ NULL mysql user max_user_connections int NULL NULL NULL NULL int(11)
...
@@ -566,3 +567,4 @@ NULL mysql user max_user_connections int NULL NULL NULL NULL int(11)
1.0000 mysql user authentication_string text 65535 65535 utf8 utf8_bin text
1.0000 mysql user authentication_string text 65535 65535 utf8 utf8_bin text
3.0000 mysql user password_expired enum 1 3 utf8 utf8_general_ci enum('N','Y')
3.0000 mysql user password_expired enum 1 3 utf8 utf8_general_ci enum('N','Y')
3.0000 mysql user is_role enum 1 3 utf8 utf8_general_ci enum('N','Y')
3.0000 mysql user is_role enum 1 3 utf8 utf8_general_ci enum('N','Y')
3.0000 mysql user default_role char 80 240 utf8 utf8_bin char(80)
mysql-test/suite/funcs_1/r/is_columns_mysql_embedded.result
View file @
911c4811
...
@@ -213,6 +213,7 @@ def mysql user Create_tablespace_priv 32 N NO enum 1 3 NULL NULL NULL utf8 utf8_
...
@@ -213,6 +213,7 @@ def mysql user Create_tablespace_priv 32 N NO enum 1 3 NULL NULL NULL utf8 utf8_
def mysql user Create_tmp_table_priv 20 N NO enum 1 3 NULL NULL NULL utf8 utf8_general_ci enum('N','Y')
def mysql user Create_tmp_table_priv 20 N NO enum 1 3 NULL NULL NULL utf8 utf8_general_ci enum('N','Y')
def mysql user Create_user_priv 29 N NO enum 1 3 NULL NULL NULL utf8 utf8_general_ci enum('N','Y')
def mysql user Create_user_priv 29 N NO enum 1 3 NULL NULL NULL utf8 utf8_general_ci enum('N','Y')
def mysql user Create_view_priv 25 N NO enum 1 3 NULL NULL NULL utf8 utf8_general_ci enum('N','Y')
def mysql user Create_view_priv 25 N NO enum 1 3 NULL NULL NULL utf8 utf8_general_ci enum('N','Y')
def mysql user default_role 45 NO char 80 240 NULL NULL NULL utf8 utf8_bin char(80)
def mysql user Delete_priv 7 N NO enum 1 3 NULL NULL NULL utf8 utf8_general_ci enum('N','Y')
def mysql user Delete_priv 7 N NO enum 1 3 NULL NULL NULL utf8 utf8_general_ci enum('N','Y')
def mysql user Drop_priv 9 N NO enum 1 3 NULL NULL NULL utf8 utf8_general_ci enum('N','Y')
def mysql user Drop_priv 9 N NO enum 1 3 NULL NULL NULL utf8 utf8_general_ci enum('N','Y')
def mysql user Event_priv 30 N NO enum 1 3 NULL NULL NULL utf8 utf8_general_ci enum('N','Y')
def mysql user Event_priv 30 N NO enum 1 3 NULL NULL NULL utf8 utf8_general_ci enum('N','Y')
...
@@ -566,3 +567,4 @@ NULL mysql user max_user_connections int NULL NULL NULL NULL int(11)
...
@@ -566,3 +567,4 @@ NULL mysql user max_user_connections int NULL NULL NULL NULL int(11)
1.0000 mysql user authentication_string text 65535 65535 utf8 utf8_bin text
1.0000 mysql user authentication_string text 65535 65535 utf8 utf8_bin text
3.0000 mysql user password_expired enum 1 3 utf8 utf8_general_ci enum('N','Y')
3.0000 mysql user password_expired enum 1 3 utf8 utf8_general_ci enum('N','Y')
3.0000 mysql user is_role enum 1 3 utf8 utf8_general_ci enum('N','Y')
3.0000 mysql user is_role enum 1 3 utf8 utf8_general_ci enum('N','Y')
3.0000 mysql user default_role char 80 240 utf8 utf8_bin char(80)
mysql-test/suite/funcs_1/r/is_user_privileges.result
View file @
911c4811
...
@@ -131,6 +131,7 @@ plugin
...
@@ -131,6 +131,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
Host localhost
Host localhost
User testuser2
User testuser2
Password
Password
...
@@ -175,6 +176,7 @@ plugin
...
@@ -175,6 +176,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
Host localhost
Host localhost
User testuser3
User testuser3
Password
Password
...
@@ -219,6 +221,7 @@ plugin
...
@@ -219,6 +221,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
#
#
# Add GRANT OPTION db_datadict.* to testuser1;
# Add GRANT OPTION db_datadict.* to testuser1;
GRANT UPDATE ON db_datadict.* TO 'testuser1'@'localhost' WITH GRANT OPTION;
GRANT UPDATE ON db_datadict.* TO 'testuser1'@'localhost' WITH GRANT OPTION;
...
@@ -287,6 +290,7 @@ plugin
...
@@ -287,6 +290,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
Host localhost
Host localhost
User testuser2
User testuser2
Password
Password
...
@@ -331,6 +335,7 @@ plugin
...
@@ -331,6 +335,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
Host localhost
Host localhost
User testuser3
User testuser3
Password
Password
...
@@ -375,6 +380,7 @@ plugin
...
@@ -375,6 +380,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
# Establish connection testuser1 (user=testuser1)
# Establish connection testuser1 (user=testuser1)
SELECT * FROM information_schema.user_privileges
SELECT * FROM information_schema.user_privileges
WHERE grantee LIKE '''testuser%'''
WHERE grantee LIKE '''testuser%'''
...
@@ -429,6 +435,7 @@ plugin
...
@@ -429,6 +435,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
Host localhost
Host localhost
User testuser2
User testuser2
Password
Password
...
@@ -473,6 +480,7 @@ plugin
...
@@ -473,6 +480,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
Host localhost
Host localhost
User testuser3
User testuser3
Password
Password
...
@@ -517,6 +525,7 @@ plugin
...
@@ -517,6 +525,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
SHOW GRANTS;
SHOW GRANTS;
Grants for testuser1@localhost
Grants for testuser1@localhost
GRANT USAGE ON *.* TO 'testuser1'@'localhost'
GRANT USAGE ON *.* TO 'testuser1'@'localhost'
...
@@ -593,6 +602,7 @@ plugin
...
@@ -593,6 +602,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
Host localhost
Host localhost
User testuser2
User testuser2
Password
Password
...
@@ -637,6 +647,7 @@ plugin
...
@@ -637,6 +647,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
Host localhost
Host localhost
User testuser3
User testuser3
Password
Password
...
@@ -681,6 +692,7 @@ plugin
...
@@ -681,6 +692,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
GRANT SELECT ON *.* TO 'testuser1'@'localhost' WITH GRANT OPTION;
GRANT SELECT ON *.* TO 'testuser1'@'localhost' WITH GRANT OPTION;
#
#
# Here <SELECT YES> is shown correctly for testuser1;
# Here <SELECT YES> is shown correctly for testuser1;
...
@@ -749,6 +761,7 @@ plugin
...
@@ -749,6 +761,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
Host localhost
Host localhost
User testuser2
User testuser2
Password
Password
...
@@ -793,6 +806,7 @@ plugin
...
@@ -793,6 +806,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
Host localhost
Host localhost
User testuser3
User testuser3
Password
Password
...
@@ -837,6 +851,7 @@ plugin
...
@@ -837,6 +851,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
# Switch to connection testuser1
# Switch to connection testuser1
SELECT * FROM information_schema.user_privileges
SELECT * FROM information_schema.user_privileges
WHERE grantee LIKE '''testuser%'''
WHERE grantee LIKE '''testuser%'''
...
@@ -891,6 +906,7 @@ plugin
...
@@ -891,6 +906,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
Host localhost
Host localhost
User testuser2
User testuser2
Password
Password
...
@@ -935,6 +951,7 @@ plugin
...
@@ -935,6 +951,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
Host localhost
Host localhost
User testuser3
User testuser3
Password
Password
...
@@ -979,6 +996,7 @@ plugin
...
@@ -979,6 +996,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
SHOW GRANTS;
SHOW GRANTS;
Grants for testuser1@localhost
Grants for testuser1@localhost
GRANT SELECT ON *.* TO 'testuser1'@'localhost' WITH GRANT OPTION
GRANT SELECT ON *.* TO 'testuser1'@'localhost' WITH GRANT OPTION
...
@@ -1085,6 +1103,7 @@ plugin
...
@@ -1085,6 +1103,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
Host localhost
Host localhost
User testuser2
User testuser2
Password
Password
...
@@ -1129,6 +1148,7 @@ plugin
...
@@ -1129,6 +1148,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
Host localhost
Host localhost
User testuser3
User testuser3
Password
Password
...
@@ -1173,6 +1193,7 @@ plugin
...
@@ -1173,6 +1193,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
# Switch to connection testuser1
# Switch to connection testuser1
SELECT * FROM information_schema.user_privileges
SELECT * FROM information_schema.user_privileges
WHERE grantee LIKE '''testuser%'''
WHERE grantee LIKE '''testuser%'''
...
@@ -1274,6 +1295,7 @@ plugin
...
@@ -1274,6 +1295,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
Host localhost
Host localhost
User testuser2
User testuser2
Password
Password
...
@@ -1318,6 +1340,7 @@ plugin
...
@@ -1318,6 +1340,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
Host localhost
Host localhost
User testuser3
User testuser3
Password
Password
...
@@ -1362,6 +1385,7 @@ plugin
...
@@ -1362,6 +1385,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
# Switch to connection testuser1
# Switch to connection testuser1
SELECT * FROM information_schema.user_privileges
SELECT * FROM information_schema.user_privileges
WHERE grantee LIKE '''testuser%'''
WHERE grantee LIKE '''testuser%'''
...
@@ -1416,6 +1440,7 @@ plugin
...
@@ -1416,6 +1440,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
Host localhost
Host localhost
User testuser2
User testuser2
Password
Password
...
@@ -1460,6 +1485,7 @@ plugin
...
@@ -1460,6 +1485,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
Host localhost
Host localhost
User testuser3
User testuser3
Password
Password
...
@@ -1504,6 +1530,7 @@ plugin
...
@@ -1504,6 +1530,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
SHOW GRANTS;
SHOW GRANTS;
Grants for testuser1@localhost
Grants for testuser1@localhost
GRANT USAGE ON *.* TO 'testuser1'@'localhost'
GRANT USAGE ON *.* TO 'testuser1'@'localhost'
...
@@ -1565,6 +1592,7 @@ plugin
...
@@ -1565,6 +1592,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
Host localhost
Host localhost
User testuser2
User testuser2
Password
Password
...
@@ -1609,6 +1637,7 @@ plugin
...
@@ -1609,6 +1637,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
Host localhost
Host localhost
User testuser3
User testuser3
Password
Password
...
@@ -1653,6 +1682,7 @@ plugin
...
@@ -1653,6 +1682,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
SHOW GRANTS;
SHOW GRANTS;
Grants for testuser1@localhost
Grants for testuser1@localhost
GRANT USAGE ON *.* TO 'testuser1'@'localhost'
GRANT USAGE ON *.* TO 'testuser1'@'localhost'
...
@@ -1729,6 +1759,7 @@ plugin
...
@@ -1729,6 +1759,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
Host localhost
Host localhost
User testuser2
User testuser2
Password
Password
...
@@ -1773,6 +1804,7 @@ plugin
...
@@ -1773,6 +1804,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
Host localhost
Host localhost
User testuser3
User testuser3
Password
Password
...
@@ -1817,6 +1849,7 @@ plugin
...
@@ -1817,6 +1849,7 @@ plugin
authentication_string
authentication_string
password_expired N
password_expired N
is_role N
is_role N
default_role
# Switch to connection testuser1
# Switch to connection testuser1
SELECT * FROM information_schema.user_privileges
SELECT * FROM information_schema.user_privileges
WHERE grantee LIKE '''testuser%'''
WHERE grantee LIKE '''testuser%'''
...
...
sql/sql_acl.cc
View file @
911c4811
...
@@ -211,6 +211,9 @@ static char *safe_str(char *str)
...
@@ -211,6 +211,9 @@ static char *safe_str(char *str)
static
const
char
*
safe_str
(
const
char
*
str
)
static
const
char
*
safe_str
(
const
char
*
str
)
{
return
str
?
str
:
""
;
}
{
return
str
?
str
:
""
;
}
static
size_t
safe_strlen
(
const
char
*
str
)
{
return
str
?
strlen
(
str
)
:
0
;
}
/* Classes */
/* Classes */
struct
acl_host_and_ip
struct
acl_host_and_ip
...
@@ -640,9 +643,9 @@ bool ROLE_GRANT_PAIR::init(MEM_ROOT *mem, char *username,
...
@@ -640,9 +643,9 @@ bool ROLE_GRANT_PAIR::init(MEM_ROOT *mem, char *username,
if
(
!
this
)
if
(
!
this
)
return
true
;
return
true
;
size_t
uname_l
=
username
?
strlen
(
username
)
:
0
;
size_t
uname_l
=
safe_strlen
(
username
)
;
size_t
hname_l
=
hostname
?
strlen
(
hostname
)
:
0
;
size_t
hname_l
=
safe_strlen
(
hostname
)
;
size_t
rname_l
=
rolename
?
strlen
(
rolename
)
:
0
;
size_t
rname_l
=
safe_strlen
(
rolename
)
;
/*
/*
Create a buffer that holds all 3 NULL terminated strings in succession
Create a buffer that holds all 3 NULL terminated strings in succession
To save memory space, the same buffer is used as the hashkey
To save memory space, the same buffer is used as the hashkey
...
@@ -1195,7 +1198,7 @@ static bool acl_load(THD *thd, TABLE_LIST *tables)
...
@@ -1195,7 +1198,7 @@ static bool acl_load(THD *thd, TABLE_LIST *tables)
update_hostname
(
&
user
.
host
,
get_field
(
&
acl_memroot
,
table
->
field
[
0
]));
update_hostname
(
&
user
.
host
,
get_field
(
&
acl_memroot
,
table
->
field
[
0
]));
char
*
username
=
get_field
(
&
acl_memroot
,
table
->
field
[
1
]);
char
*
username
=
get_field
(
&
acl_memroot
,
table
->
field
[
1
]);
user
.
user
.
str
=
username
;
user
.
user
.
str
=
username
;
user
.
user
.
length
=
username
?
strlen
(
username
)
:
0
;
user
.
user
.
length
=
safe_strlen
(
username
)
;
/*
/*
If the user entry is a role, skip password and hostname checks
If the user entry is a role, skip password and hostname checks
...
@@ -1220,7 +1223,7 @@ static bool acl_load(THD *thd, TABLE_LIST *tables)
...
@@ -1220,7 +1223,7 @@ static bool acl_load(THD *thd, TABLE_LIST *tables)
}
}
char
*
password
=
get_field
(
&
acl_memroot
,
table
->
field
[
2
]);
char
*
password
=
get_field
(
&
acl_memroot
,
table
->
field
[
2
]);
uint
password_len
=
password
?
strlen
(
password
)
:
0
;
uint
password_len
=
safe_strlen
(
password
)
;
user
.
auth_string
.
str
=
safe_str
(
password
);
user
.
auth_string
.
str
=
safe_str
(
password
);
user
.
auth_string
.
length
=
password_len
;
user
.
auth_string
.
length
=
password_len
;
set_user_salt
(
&
user
,
password
,
password_len
);
set_user_salt
(
&
user
,
password
,
password_len
);
...
@@ -1268,8 +1271,7 @@ static bool acl_load(THD *thd, TABLE_LIST *tables)
...
@@ -1268,8 +1271,7 @@ static bool acl_load(THD *thd, TABLE_LIST *tables)
user
.
access
|=
TRIGGER_ACL
;
user
.
access
|=
TRIGGER_ACL
;
user
.
sort
=
get_sort
(
2
,
user
.
host
.
hostname
,
user
.
user
.
str
);
user
.
sort
=
get_sort
(
2
,
user
.
host
.
hostname
,
user
.
user
.
str
);
user
.
hostname_length
=
(
user
.
host
.
hostname
?
user
.
hostname_length
=
safe_strlen
(
user
.
host
.
hostname
);
(
uint
)
strlen
(
user
.
host
.
hostname
)
:
0
);
/* Starting from 4.0.2 we have more fields */
/* Starting from 4.0.2 we have more fields */
if
(
table
->
s
->
fields
>=
31
)
if
(
table
->
s
->
fields
>=
31
)
...
@@ -1352,11 +1354,11 @@ static bool acl_load(THD *thd, TABLE_LIST *tables)
...
@@ -1352,11 +1354,11 @@ static bool acl_load(THD *thd, TABLE_LIST *tables)
8
,
8
,
MYF
(
0
));
8
,
8
,
MYF
(
0
));
/* check default role, if any */
/* check default role, if any */
if
(
!
is_role
&&
table
->
s
->
fields
>
=
45
)
if
(
!
is_role
&&
table
->
s
->
fields
>
DEFAULT_ROLE_COLUMN_IDX
)
{
{
user
.
default_rolename
.
str
=
get_field
(
&
acl_memroot
,
table
->
field
[
44
]);
user
.
default_rolename
.
str
=
user
.
default_rolename
.
length
=
user
.
default_rolename
.
str
?
get_field
(
&
acl_memroot
,
table
->
field
[
DEFAULT_ROLE_COLUMN_IDX
]);
strlen
(
user
.
default_rolename
.
str
)
:
0
;
user
.
default_rolename
.
length
=
safe_strlen
(
user
.
default_rolename
.
str
)
;
}
}
if
(
is_role
)
if
(
is_role
)
...
@@ -2719,13 +2721,12 @@ int acl_check_set_default_role(THD *thd, const char *host, const char *user)
...
@@ -2719,13 +2721,12 @@ int acl_check_set_default_role(THD *thd, const char *host, const char *user)
int
acl_set_default_role
(
THD
*
thd
,
const
char
*
host
,
const
char
*
user
,
int
acl_set_default_role
(
THD
*
thd
,
const
char
*
host
,
const
char
*
user
,
const
char
*
rolename
)
const
char
*
rolename
)
{
{
TABLE_LIST
tables
;
TABLE_LIST
tables
[
TABLES_MAX
]
;
TABLE
*
table
;
TABLE
*
table
;
char
user_key
[
MAX_KEY_LENGTH
];
char
user_key
[
MAX_KEY_LENGTH
];
int
result
=
1
;
int
result
=
1
;
int
error
;
int
error
;
bool
clear_role
=
FALSE
;
bool
clear_role
=
FALSE
;
Rpl_filter
*
rpl_filter
;
enum_binlog_format
save_binlog_format
;
enum_binlog_format
save_binlog_format
;
...
@@ -2746,29 +2747,11 @@ int acl_set_default_role(THD *thd, const char *host, const char *user,
...
@@ -2746,29 +2747,11 @@ int acl_set_default_role(THD *thd, const char *host, const char *user,
if
(
!
strcasecmp
(
rolename
,
"NONE"
))
if
(
!
strcasecmp
(
rolename
,
"NONE"
))
clear_role
=
TRUE
;
clear_role
=
TRUE
;
tables
.
init_one_table
(
"mysql"
,
5
,
"user"
,
4
,
"user"
,
TL_WRITE
);
if
((
result
=
open_grant_tables
(
thd
,
tables
,
TL_WRITE
,
Table_user
)))
DBUG_RETURN
(
result
!=
1
);
#ifdef HAVE_REPLICATION
/*
GRANT and REVOKE are applied the slave in/exclusion rules as they are
some kind of updates to the mysql.% tables.
*/
if
(
thd
->
slave_thread
&&
(
rpl_filter
=
thd
->
system_thread_info
.
rpl_sql_info
->
rpl_filter
)
->
is_on
())
{
/*
The tables must be marked "updating" so that tables_ok() takes them into
account in tests. It's ok to leave 'updating' set after tables_ok.
*/
tables
.
updating
=
1
;
/* Thanks to bzero, tables.next==0 */
if
(
!
(
thd
->
spcont
||
rpl_filter
->
tables_ok
(
0
,
&
tables
)))
DBUG_RETURN
(
0
);
}
#endif
if
(
!
(
table
=
open_ltable
(
thd
,
&
tables
,
TL_WRITE
,
MYSQL_LOCK_IGNORE_TIMEOUT
)))
table
=
tables
[
USER_TABLE
].
table
;
DBUG_RETURN
(
1
)
;
result
=
1
;
/*
/*
This statement will be replicated as a statement, even when using
This statement will be replicated as a statement, even when using
...
@@ -2802,7 +2785,7 @@ int acl_set_default_role(THD *thd, const char *host, const char *user,
...
@@ -2802,7 +2785,7 @@ int acl_set_default_role(THD *thd, const char *host, const char *user,
/* update the mysql.user table with the new default role */
/* update the mysql.user table with the new default role */
table
->
use_all_columns
();
table
->
use_all_columns
();
if
(
table
->
s
->
fields
<
45
)
if
(
table
->
s
->
fields
<
=
DEFAULT_ROLE_COLUMN_IDX
)
{
{
my_error
(
ER_COL_COUNT_DOESNT_MATCH_PLEASE_UPDATE
,
MYF
(
0
),
my_error
(
ER_COL_COUNT_DOESNT_MATCH_PLEASE_UPDATE
,
MYF
(
0
),
table
->
alias
.
c_ptr
(),
DEFAULT_ROLE_COLUMN_IDX
+
1
,
table
->
s
->
fields
,
table
->
alias
.
c_ptr
(),
DEFAULT_ROLE_COLUMN_IDX
+
1
,
table
->
s
->
fields
,
...
@@ -2959,7 +2942,7 @@ static ACL_ROLE *find_acl_role(const char *role)
...
@@ -2959,7 +2942,7 @@ static ACL_ROLE *find_acl_role(const char *role)
mysql_mutex_assert_owner
(
&
acl_cache
->
lock
);
mysql_mutex_assert_owner
(
&
acl_cache
->
lock
);
ACL_ROLE
*
r
=
(
ACL_ROLE
*
)
my_hash_search
(
&
acl_roles
,
(
uchar
*
)
role
,
ACL_ROLE
*
r
=
(
ACL_ROLE
*
)
my_hash_search
(
&
acl_roles
,
(
uchar
*
)
role
,
role
?
strlen
(
role
)
:
0
);
safe_strlen
(
role
)
);
DBUG_RETURN
(
r
);
DBUG_RETURN
(
r
);
}
}
...
@@ -4037,8 +4020,7 @@ GRANT_TABLE::GRANT_TABLE(TABLE *form, TABLE *col_privs)
...
@@ -4037,8 +4020,7 @@ GRANT_TABLE::GRANT_TABLE(TABLE *form, TABLE *col_privs)
uint
key_prefix_len
;
uint
key_prefix_len
;
KEY_PART_INFO
*
key_part
=
col_privs
->
key_info
->
key_part
;
KEY_PART_INFO
*
key_part
=
col_privs
->
key_info
->
key_part
;
col_privs
->
field
[
0
]
->
store
(
host
.
hostname
,
col_privs
->
field
[
0
]
->
store
(
host
.
hostname
,
host
.
hostname
?
(
uint
)
strlen
(
host
.
hostname
)
:
(
uint
)
safe_strlen
(
host
.
hostname
),
0
,
system_charset_info
);
system_charset_info
);
col_privs
->
field
[
1
]
->
store
(
db
,(
uint
)
strlen
(
db
),
system_charset_info
);
col_privs
->
field
[
1
]
->
store
(
db
,(
uint
)
strlen
(
db
),
system_charset_info
);
col_privs
->
field
[
2
]
->
store
(
user
,(
uint
)
strlen
(
user
),
system_charset_info
);
col_privs
->
field
[
2
]
->
store
(
user
,(
uint
)
strlen
(
user
),
system_charset_info
);
...
@@ -11528,7 +11510,7 @@ static ulong parse_client_handshake_packet(MPVIO_EXT *mpvio,
...
@@ -11528,7 +11510,7 @@ static ulong parse_client_handshake_packet(MPVIO_EXT *mpvio,
return
packet_error
;
return
packet_error
;
/* strlen() can't be easily deleted without changing protocol */
/* strlen() can't be easily deleted without changing protocol */
db_len
=
db
?
strlen
(
db
)
:
0
;
db_len
=
safe_strlen
(
db
)
;
char
*
next_field
;
char
*
next_field
;
char
*
client_plugin
=
next_field
=
passwd
+
passwd_len
+
(
db
?
db_len
+
1
:
0
);
char
*
client_plugin
=
next_field
=
passwd
+
passwd_len
+
(
db
?
db_len
+
1
:
0
);
...
@@ -12267,7 +12249,7 @@ bool acl_authenticate(THD *thd, uint com_change_user_pkt_len)
...
@@ -12267,7 +12249,7 @@ bool acl_authenticate(THD *thd, uint com_change_user_pkt_len)
/*
/*
In case the user has a default role set, attempt to set that role
In case the user has a default role set, attempt to set that role
*/
*/
if
(
acl_user
->
default_rolename
.
length
)
{
if
(
initialized
&&
acl_user
->
default_rolename
.
length
)
{
ulonglong
access
=
0
;
ulonglong
access
=
0
;
int
result
;
int
result
;
result
=
acl_check_setrole
(
thd
,
acl_user
->
default_rolename
.
str
,
&
access
);
result
=
acl_check_setrole
(
thd
,
acl_user
->
default_rolename
.
str
,
&
access
);
...
...
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment