mirror of
https://github.com/MariaDB/server.git
synced 2025-04-04 14:25:37 +02:00
56bc6901d6
Attempt to create a procedure with the DEFINER clause resulted in abnormal server termination in case the server run with the option --skip-grant-tables=1. The reason of abnormal termination is that on handling of the DEFINER clause, not initialized data members of acl_cache is accessed, that led to server crash. Behaviour of the server for considered use case must be the same as for embedded server. Than means, if a security subsytem wasn't initialized (server is started with the option --skip-grant-tables=1) return success from get_current_user() without further access to the acl_cache that obviously not initialized. Additionlly, AUTHID::is_role was modified to handle the case when a host part of the user name isn't provided. Treat this case as if the empty host name is provided.
177 lines
4 KiB
Text
177 lines
4 KiB
Text
# This tests not performed with embedded server
|
|
-- source include/not_embedded.inc
|
|
|
|
use test;
|
|
|
|
#
|
|
# BUG#16777: Can not create trigger nor view w/o definer if --skip-grant-tables
|
|
# specified
|
|
#
|
|
# Also, the following test cases have been moved here:
|
|
# - test that we can create VIEW if privileges check switched off has been
|
|
# moved here;
|
|
# - test that we can create and drop procedure without warnings (BUG#9993);
|
|
# - BUG#17595: "DROP FUNCTION IF EXISTS" crashes server;
|
|
# - BUG#13504: creation view with DEFINER clause if --skip-grant-tables
|
|
#
|
|
|
|
# Test case.
|
|
|
|
CREATE TABLE t1(c INT);
|
|
|
|
# - try to create with implicit definer (definer would be ''@'');
|
|
|
|
CREATE TRIGGER t1_bi BEFORE INSERT ON t1
|
|
FOR EACH ROW
|
|
SET @a = 1;
|
|
|
|
CREATE VIEW v1 AS SELECT * FROM t1;
|
|
|
|
CREATE PROCEDURE p1()
|
|
SELECT 1;
|
|
|
|
CREATE FUNCTION f1() RETURNS INT
|
|
RETURN 1;
|
|
|
|
# - try to create with explicit definer;
|
|
|
|
CREATE DEFINER=a@b TRIGGER ti_ai AFTER INSERT ON t1
|
|
FOR EACH ROW
|
|
SET @b = 1;
|
|
|
|
CREATE DEFINER=a@b VIEW v2 AS SELECT * FROM t1;
|
|
|
|
CREATE DEFINER=a@b PROCEDURE p2()
|
|
SELECT 2;
|
|
|
|
CREATE DEFINER=a@b FUNCTION f2() RETURNS INT
|
|
RETURN 2;
|
|
|
|
# - try to create with explicit definer with empty host;
|
|
|
|
CREATE DEFINER=a@'' TRIGGER ti_bu BEFORE UPDATE ON t1
|
|
FOR EACH ROW
|
|
SET @c = 1;
|
|
|
|
CREATE DEFINER=a@'' VIEW v3 AS SELECT * FROM t1;
|
|
|
|
CREATE DEFINER=a@'' PROCEDURE p3()
|
|
SELECT 3;
|
|
|
|
CREATE DEFINER=a@'' FUNCTION f3() RETURNS INT
|
|
RETURN 3;
|
|
|
|
# - check that empty host name is treated correctly;
|
|
|
|
SHOW CREATE VIEW v3;
|
|
|
|
SHOW CREATE PROCEDURE p3;
|
|
|
|
SHOW CREATE FUNCTION f3;
|
|
|
|
# Cleanup.
|
|
|
|
DROP TRIGGER t1_bi;
|
|
DROP TRIGGER ti_ai;
|
|
DROP TRIGGER ti_bu;
|
|
|
|
DROP VIEW v1;
|
|
DROP VIEW v2;
|
|
DROP VIEW v3;
|
|
|
|
DROP TABLE t1;
|
|
|
|
DROP PROCEDURE p1;
|
|
DROP PROCEDURE p2;
|
|
DROP PROCEDURE p3;
|
|
|
|
DROP FUNCTION f1;
|
|
DROP FUNCTION f2;
|
|
DROP FUNCTION f3;
|
|
|
|
--echo #
|
|
--echo # Bug #26807 "set global event_scheduler=1" and --skip-grant-tables crashes server
|
|
--echo #
|
|
set global event_scheduler=1;
|
|
set global event_scheduler=0;
|
|
|
|
--echo #
|
|
--echo # Bug#26285 Selecting information_schema crahes server
|
|
--echo #
|
|
select count(*) from information_schema.COLUMN_PRIVILEGES;
|
|
select count(*) from information_schema.SCHEMA_PRIVILEGES;
|
|
select count(*) from information_schema.TABLE_PRIVILEGES;
|
|
select count(*) from information_schema.USER_PRIVILEGES;
|
|
|
|
--echo #
|
|
--echo # End of 5.0 tests
|
|
--echo #
|
|
|
|
--echo #
|
|
--echo # Bug#29817 Queries with UDF fail with non-descriptive error
|
|
--echo # if mysql.proc is missing
|
|
--echo #
|
|
--error ER_SP_DOES_NOT_EXIST
|
|
select no_such_function(1);
|
|
|
|
--echo #
|
|
--echo # End of 5.1 tests
|
|
--echo #
|
|
|
|
--echo #
|
|
--echo # MDEV-8280 crash in 'show global status' with --skip-grant-tables
|
|
--echo #
|
|
show global status like 'Acl%';
|
|
|
|
--echo #
|
|
--echo # End of 10.1 tests
|
|
--echo #
|
|
|
|
--echo #
|
|
--echo # MDEV-22966 Server crashes or hangs with SET ROLE when started with skip-grant-tables
|
|
--echo #
|
|
|
|
--error ER_OPTION_PREVENTS_STATEMENT
|
|
set role x;
|
|
|
|
--echo #
|
|
--echo # End of 10.2 tests
|
|
--echo #
|
|
|
|
#
|
|
# MDEV-18297
|
|
# How to reset a forgotten root password
|
|
#
|
|
--error ER_OPTION_PREVENTS_STATEMENT
|
|
show create user root@localhost;
|
|
insert mysql.global_priv values ('foo', 'bar', '{}');
|
|
insert mysql.global_priv values ('baz', 'baz', '{"plugin":"baz"}');
|
|
--error ER_OPTION_PREVENTS_STATEMENT
|
|
set password for bar@foo = password("pass word");
|
|
flush privileges;
|
|
show create user root@localhost;
|
|
show create user bar@foo;
|
|
show create user baz@baz;
|
|
set password for bar@foo = password("pass word");
|
|
show create user bar@foo;
|
|
alter user baz@baz identified with mysql_native_password as password("baz");
|
|
show create user baz@baz;
|
|
drop user bar@foo;
|
|
drop user baz@baz;
|
|
# need to restart the server to restore the --skip-grant state
|
|
--source include/restart_mysqld.inc
|
|
|
|
--echo #
|
|
--echo # End of 10.3 tests
|
|
--echo #
|
|
|
|
--echo #
|
|
--echo # MDEV-34501: SIGSEGV in pfs_start_mutex_wait_v1, __strlen_avx2, or __strlen_evex from safe_mutex_lock on CREATE DEFINER when using skip-grant-tables
|
|
--echo #
|
|
CREATE DEFINER=a PROCEDURE p() SELECT 1;
|
|
CREATE DEFINER=a FUNCTION f() RETURNS INT RETURN 100;
|
|
|
|
DROP PROCEDURE p;
|
|
DROP FUNCTION f;
|
|
|
|
--echo # End of 10.5 tests
|