mirror/mariadb
1
0
Fork 0
mirror of https://github.com/MariaDB/server.git synced 2025-01-27 01:04:19 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions
mariadb/mysys
History
Ravinder Thakur 9258223200 bug#11761752: DO NOT ALLOW USE OF ALTERNATE DATA STREAMS ON NTFS FILESYSTEM. 
File names with colon are being disallowed because of the Alternate Data 
Stream (ADS) feature of NTFS that could be misused. ADS allows data to be 
written to alternate streams of a normal file. The data in alternate 
streams cannot be seen by normal tools on Windows (explorer, cmd.exe). As 
a result someone can use this feature to hide large amount of data in 
alternate streams and admins will have no easy way of figuring out the 
files that are using that disk space. The fix also disallows ADS in the 
scenarios where file name is passed as some dynamic variable.

An important thing about the fix is that it DOES NOT disallow ADS file 
names if they are not dynamic (i.e. if the file is created by using some 
option that needs local access to the MySQL server, for example error log
file). The reasoning is that if some MySQL option related to files 
requires access to the local machine (it is not dynamic), then user can very 
well create data in ADS by some other means. This fixes only those scenarios 
which can allow users to create data in ADS over the wire.

File names with colon are being disallowed only on Windows. UNIX 
(Linux in particular) supports NTFS, but it will not be a common 
scenario for someone to configure a NTFS file system to store MySQL 
data on Linux.

Changes in file bug11761752-master.opt are needed due to 
bug number 15937938.
2012-12-13 20:33:44 +05:30
..
.cvsignore
array.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
base64.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
ChangeLog
charset-def.c Updated/added copyright headers 2012-02-15 17:21:38 +01:00
charset.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
checksum.c Bug#29125 Windows Server X64: so many compiler warnings 2009-02-13 11:41:47 -05:00
CMakeLists.txt Updated/added copyright headers 2011-07-03 17:47:37 +02:00
default.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
default_modify.c Bug#29125 Windows Server X64: so many compiler warnings 2009-02-13 11:41:47 -05:00
errors.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
hash.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
list.c WL#3817: Simplify string / memory area types and make things more consistent (first part) 2007-05-10 12:59:39 +03:00
make-ccc
make-conf.c
Makefile.am Updated/added copyright headers 2011-07-03 17:47:37 +02:00
md5.c Bug #42434: license of mysys MD5 implementation is not GPL-compatible 2009-03-09 20:57:03 +02:00
mf_arr_appstr.c Bug #20748: Configuration files should not be read more than once 2007-11-07 15:23:50 -07:00
mf_brkhant.c
mf_cache.c WL#3817: Simplify string / memory area types and make things more consistent (first part) 2007-05-10 12:59:39 +03:00
mf_dirname.c WL#3817: Simplify string / memory area types and make things more consistent (first part) 2007-05-10 12:59:39 +03:00
mf_fn_ext.c WL#3817: Simplify string / memory area types and make things more consistent (first part) 2007-05-10 12:59:39 +03:00
mf_format.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
mf_getdate.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
mf_iocache.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
mf_iocache2.c BUG#11762670:MY_B_WRITE RETURN VALUE IGNORED 2012-07-10 14:23:17 +05:30
mf_keycache.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
mf_keycaches.c WL#3817: Simplify string / memory area types and make things more consistent (first part) 2007-05-10 12:59:39 +03:00
mf_loadpath.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
mf_pack.c Updated/added copyright headers 2011-06-30 17:31:31 +02:00
mf_path.c Slow query log to file now displays queries with microsecond precission 2007-07-30 11:33:50 +03:00
mf_qsort.c Fix for bug #31207: Test "join_nested" shows different strategy on IA64 2007-10-17 20:08:58 +04:00
mf_qsort2.c
mf_radix.c WL#3817: Simplify string / memory area types and make things more consistent (first part) 2007-05-10 12:59:39 +03:00
mf_same.c WL#3817: Simplify string / memory area types and make things more consistent (first part) 2007-05-10 12:59:39 +03:00
mf_sort.c Merge polly.(none):/home/kaa/src/maint/mysql-5.0-maint 2007-10-18 14:32:43 +04:00
mf_soundex.c WL#3817: Simplify string / memory area types and make things more consistent (first part) 2007-05-10 12:59:39 +03:00
mf_tempdir.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
mf_tempfile.c Moved a lot of old bug fixes and safe cleanups from Maria 5.1 tree to 5.1 2007-10-11 18:07:40 +03:00
mf_unixpath.c WL#3817: Simplify string / memory area types and make things more consistent (first part) 2007-05-10 12:59:39 +03:00
mf_util.c
mf_wcomp.c
mf_wfile.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
mulalloc.c WL#3817: Simplify string / memory area types and make things more consistent (first part) 2007-05-10 12:59:39 +03:00
my_access.c bug#11761752: DO NOT ALLOW USE OF ALTERNATE DATA STREAMS ON NTFS FILESYSTEM. 2012-12-13 20:33:44 +05:30
my_aes.c
my_alarm.c
my_alloc.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
my_append.c Bug#29125 Windows Server X64: so many compiler warnings 2009-02-13 11:41:47 -05:00
my_bit.c Moved a lot of old bug fixes and safe cleanups from Maria 5.1 tree to 5.1 2007-10-11 18:07:40 +03:00
my_bitmap.c Updated/added copyright headers 2011-07-03 17:47:37 +02:00
my_chsize.c WL#3817: Simplify string / memory area types and make things more consistent (first part) 2007-05-10 12:59:39 +03:00
my_clock.c
my_compare.c Updated/added copyright headers 2012-02-15 17:13:47 +01:00
my_compress.c Bug#29125 Windows Server X64: so many compiler warnings 2009-02-13 11:41:47 -05:00
my_conio.c Bug#29125 Windows Server X64: so many compiler warnings 2009-02-13 11:41:47 -05:00
my_copy.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
my_crc32.c
my_create.c Merge a88-113-38-195.elisa-laajakaista.fi:/home/my/bk/mysql-5.1-main 2008-03-13 23:35:52 +02:00
my_delete.c Merge a88-113-38-195.elisa-laajakaista.fi:/home/my/bk/mysql-5.1-main 2007-12-07 22:27:48 +02:00
my_div.c WL#3817: Simplify string / memory area types and make things more consistent (first part) 2007-05-10 12:59:39 +03:00
my_dup.c Fixed compiler warnings. 2007-03-22 20:32:07 +02:00
my_error.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
my_file.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
my_fopen.c bug#11761752: DO NOT ALLOW USE OF ALTERNATE DATA STREAMS ON NTFS FILESYSTEM. 2012-12-13 20:33:44 +05:30
my_fstream.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
my_gethwaddr.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
my_getncpus.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
my_getopt.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
my_getpagesize.c
my_getsystime.c Updating header copyright/README in source for 2011 2011-01-25 15:42:40 +01:00
my_getwd.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
my_handler_errors.h Bug#13635833: MULTIPLE CRASHES IN FOREIGN KEY CODE WITH CONCURRENT DDL/DML 2012-03-01 11:05:51 +05:30
my_init.c Updated/added copyright headers 2012-02-15 17:13:47 +01:00
my_largepage.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
my_lib.c - Added/updated copyright headers 2010-12-28 19:57:23 +01:00
my_libwrap.c
my_lock.c
my_lockmem.c WL#3817: Simplify string / memory area types and make things more consistent (first part) 2007-05-10 12:59:39 +03:00
my_malloc.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
my_memmem.c WL#3817: Simplify string / memory area types and make things more consistent (first part) 2007-05-10 12:59:39 +03:00
my_messnc.c
my_mkdir.c
my_mmap.c
my_net.c Updated/added copyright headers 2011-07-03 17:47:37 +02:00
my_netware.c
my_new.cc Updated/added copyright headers 2011-06-30 17:37:13 +02:00
my_once.c WL#3817: Simplify string / memory area types and make things more consistent (first part) 2007-05-10 12:59:39 +03:00
my_open.c bug#11761752: DO NOT ALLOW USE OF ALTERNATE DATA STREAMS ON NTFS FILESYSTEM. 2012-12-13 20:33:44 +05:30
my_pread.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
my_pthread.c my_pthread.c: 2007-07-30 20:40:49 +02:00
my_quick.c Bug#29125 Windows Server X64: so many compiler warnings 2009-02-13 11:41:47 -05:00
my_read.c Bug#29125 Windows Server X64: so many compiler warnings 2009-02-13 11:41:47 -05:00
my_realloc.c Moved a lot of old bug fixes and safe cleanups from Maria 5.1 tree to 5.1 2007-10-11 18:07:40 +03:00
my_redel.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
my_rename.c Moved a lot of old bug fixes and safe cleanups from Maria 5.1 tree to 5.1 2007-10-11 18:07:40 +03:00
my_seek.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
my_sleep.c
my_static.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
my_static.h Bug#35616: memory overrun on 64-bit linux on setting large values for keybuffer-size 2008-08-19 15:56:41 +02:00
my_symlink.c Updated/added copyright headers 2012-02-15 17:21:38 +01:00
my_symlink2.c Merge mysql.com:/home/svoj/devel/mysql/BUG32111/mysql-5.0-engines 2007-11-12 15:26:37 +04:00
my_sync.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
my_thr_init.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
my_vle.c WL#3817: Simplify string / memory area types and make things more consistent (first part) 2007-05-10 12:59:39 +03:00
my_wincond.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
my_windac.c WL#3817: Simplify string / memory area types and make things more consistent (first part) 2007-05-10 12:59:39 +03:00
my_winthread.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
my_write.c Bug#11762667: MYSQLBINLOG IGNORES ERRORS WHILE WRITING OUTPUT 2012-05-29 12:11:30 +05:30
mysys_priv.h Slow query log to file now displays queries with microsecond precission 2007-07-30 11:33:50 +03:00
ptr_cmp.c WL#3817: Simplify string / memory area types and make things more consistent (first part) 2007-05-10 12:59:39 +03:00
queues.c Fix for server bug experienced in Maria (wrong "Truncated incorrect <var_name> 2008-02-18 23:29:39 +01:00
rijndael.c
safemalloc.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
sha1.c Bug #56427 : Replace copyright notice removed from SHA1 code 2010-10-05 17:03:04 +03:00
stacktrace.c Bug#11761576 54082: HANDLE_SEGFAULT MAKES USE OF UNSAFE FUNCTIONS 2012-03-06 13:30:30 +01:00
string.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
test_charset.c Fix doxygen warnings. 2007-08-15 17:43:08 +04:00
test_dir.c
test_fn.c
test_xml.c
testhash.c WL#3817: Simplify string / memory area types and make things more consistent (first part) 2007-05-10 12:59:39 +03:00
thr_alarm.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
thr_lock.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
thr_mutex.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00
thr_rwlock.c
tree.c WL#3817: Simplify string / memory area types and make things more consistent (first part) 2007-05-10 12:59:39 +03:00
trie.c WL#3817: Simplify string / memory area types and make things more consistent (first part) 2007-05-10 12:59:39 +03:00
typelib.c Updated/added copyright headers 2011-06-30 17:37:13 +02:00