System.Data.SQLite: Check-in [12c508890c]

Many hyperlinks are disabled.
Use anonymous login to enable hyperlinks.

Overview

Comment:	Add experimental support for interfacing with the authorizer callback mechanism in the SQLite core library.
Downloads:	Tarball \| ZIP archive
Timelines:	family \| ancestors \| descendants \| both \| trunk
Files:	files \| file ages \| folders
SHA1:	12c508890cd3486713263e359466636d3b5db892
User & Date:	mistachkin 2013-09-18 02:10:34.189

Context

2013-09-18
02:31		Simplify and cleanup authorizer tests. Update version history docs. check-in: 441ccabcc6 user: mistachkin tags: trunk
02:10		Add experimental support for interfacing with the authorizer callback mechanism in the SQLite core library. check-in: 12c508890c user: mistachkin tags: trunk
2013-09-17
08:00		Add some simple tests of the new properties. check-in: 06c39db73a user: mistachkin tags: trunk

Changes

Changes to Setup/verify.lst.

Changes to System.Data.SQLite/SQLite3.cs.

Changes to System.Data.SQLite/SQLiteBase.cs.

Changes to System.Data.SQLite/SQLiteConnection.cs.

Changes to System.Data.SQLite/SQLiteConvert.cs.

Changes to System.Data.SQLite/UnsafeNativeMethods.cs.

Added Tests/authorizer.eagle.

Changes to Tests/common.eagle.

︙
474 475 476 477 478 479 480 481 482 483 484 485 486 487 488 489 490 491 492	474 475 476 477 478 479 480 481 482 483 484 485 486 487 488 489 490 491 492 493 494	+ +	/// </summary> private bool _parseViaFramework; internal bool _binaryGuid; internal long _version; private event SQLiteAuthorizerEventHandler _authorizerHandler; private event SQLiteUpdateEventHandler _updateHandler; private event SQLiteCommitHandler _commitHandler; private event SQLiteTraceEventHandler _traceHandler; private event EventHandler _rollbackHandler; private SQLiteAuthorizerCallback _authorizerCallback; private SQLiteUpdateCallback _updateCallback; private SQLiteCommitCallback _commitCallback; private SQLiteTraceCallback _traceCallback; private SQLiteRollbackCallback _rollbackCallback; #endregion ///////////////////////////////////////////////////////////////////////////////////////////////
︙
2220 2221 2222 2223 2224 2225 2226 2227 2228 2229 2230 2231 2232 2233	2222 2223 2224 2225 2226 2227 2228 2229 2230 2231 2232 2233 2234 2235 2236 2237 2238	+ + +	{ cmd.CommandText = String.Format(CultureInfo.InvariantCulture, "PRAGMA foreign_keys={0}", boolValue ? "ON" : "OFF"); cmd.ExecuteNonQuery(); } } } if (_authorizerHandler != null) _sql.SetAuthorizerHook(_authorizerCallback); if (_commitHandler != null) _sql.SetCommitHook(_commitCallback); if (_updateHandler != null) _sql.SetUpdateHook(_updateCallback); if (_rollbackHandler != null)
︙
3933 3934 3935 3936 3937 3938 3939 3940 3941 3942 3943 3944 3945 3946	3938 3939 3940 3941 3942 3943 3944 3945 3946 3947 3948 3949 3950 3951 3952 3953 3954 3955 3956 3957 3958 3959 3960 3961 3962 3963 3964 3965 3966 3967 3968 3969 3970 3971 3972 3973 3974 3975 3976 3977 3978 3979 3980 3981 3982 3983 3984 3985	+ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +	} tbl.EndLoadData(); tbl.AcceptChanges(); return tbl; } /// <summary> /// This event is raised whenever SQLite encounters an action covered by the /// authorizer during query preparation. Changing the value of the /// <see cref="AuthorizerEventArgs.ReturnCode" /> property will determine if /// the specific action will be allowed, ignored, or denied. For the entire /// duration of the event, the associated connection and statement objects /// must not be modified, either directly or indirectly, by the called code. /// </summary> public event SQLiteAuthorizerEventHandler Authorize { add { CheckDisposed(); if (_authorizerHandler == null) { _authorizerCallback = new SQLiteAuthorizerCallback(AuthorizerCallback); if (_sql != null) _sql.SetAuthorizerHook(_authorizerCallback); } _authorizerHandler += value; } remove { CheckDisposed(); _authorizerHandler -= value; if (_authorizerHandler == null) { if (_sql != null) _sql.SetAuthorizerHook(null); _authorizerCallback = null; } } } /// <summary> /// This event is raised whenever SQLite makes an update/delete/insert into the database on /// this connection. It only applies to the given connection. /// </summary> public event SQLiteUpdateEventHandler Update {
︙
3963 3964 3965 3966 3967 3968 3969 3970 3971 3972 3973 3974 3975 3976	4002 4003 4004 4005 4006 4007 4008 4009 4010 4011 4012 4013 4014 4015 4016 4017 4018 4019 4020 4021 4022 4023 4024 4025 4026 4027 4028 4029 4030 4031 4032 4033 4034	+ + + + + + + + + + + + + + + + + + +	if (_updateHandler == null) { if (_sql != null) _sql.SetUpdateHook(null); _updateCallback = null; } } } private SQLiteAuthorizerReturnCode AuthorizerCallback( IntPtr pUserData, SQLiteAuthorizerActionCode actionCode, IntPtr pArgument1, IntPtr pArgument2, IntPtr pDatabase, IntPtr pAuthContext) { AuthorizerEventArgs eventArgs = new AuthorizerEventArgs(pUserData, actionCode, SQLiteBase.UTF8ToString(pArgument1, -1), SQLiteBase.UTF8ToString(pArgument2, -1), SQLiteBase.UTF8ToString(pDatabase, -1), SQLiteBase.UTF8ToString(pAuthContext, -1), SQLiteAuthorizerReturnCode.Ok); if (_authorizerHandler != null) _authorizerHandler(this, eventArgs); return eventArgs.ReturnCode; } private void UpdateCallback(IntPtr puser, int type, IntPtr database, IntPtr table, Int64 rowid) { _updateHandler(this, new UpdateEventArgs( SQLiteBase.UTF8ToString(database, -1), SQLiteBase.UTF8ToString(table, -1), (UpdateEventType)type,
︙
4104 4105 4106 4107 4108 4109 4110 4111 4112 4113 4114 4115 4116 4117 4118 4119 4120 4121 4122 4123 4124 4125 4126 4127 4128 4129 4130 4131 4132 4133 4134 4135	4162 4163 4164 4165 4166 4167 4168 4169 4170 4171 4172 4173 4174 4175 4176 4177 4178 4179 4180 4181 4182 4183 4184 4185 4186 4187 4188 4189 4190 4191 4192 4193 4194 4195 4196 4197 4198 4199 4200 4201 4202 4203 4204 4205 4206 4207 4208 4209 4210 4211 4212 4213 4214	+ + + + + + + + + + + + + + + + + + + + +	/// Use the default operating system's file flushing, SQLite does not explicitly flush the file buffers after writing /// </summary> Off = 2, } #if !PLATFORM_COMPACTFRAMEWORK [UnmanagedFunctionPointer(CallingConvention.Cdecl)] #endif internal delegate SQLiteAuthorizerReturnCode SQLiteAuthorizerCallback( IntPtr pUserData, SQLiteAuthorizerActionCode actionCode, IntPtr pArgument1, IntPtr pArgument2, IntPtr pDatabase, IntPtr pAuthContext ); #if !PLATFORM_COMPACTFRAMEWORK [UnmanagedFunctionPointer(CallingConvention.Cdecl)] #endif internal delegate void SQLiteUpdateCallback(IntPtr puser, int type, IntPtr database, IntPtr table, Int64 rowid); #if !PLATFORM_COMPACTFRAMEWORK [UnmanagedFunctionPointer(CallingConvention.Cdecl)] #endif internal delegate int SQLiteCommitCallback(IntPtr puser); #if !PLATFORM_COMPACTFRAMEWORK [UnmanagedFunctionPointer(CallingConvention.Cdecl)] #endif internal delegate void SQLiteTraceCallback(IntPtr puser, IntPtr statement); #if !PLATFORM_COMPACTFRAMEWORK [UnmanagedFunctionPointer(CallingConvention.Cdecl)] #endif internal delegate void SQLiteRollbackCallback(IntPtr puser); /// <summary> /// Raised when authorization is required to perform an action contained /// within a SQL query. /// </summary> /// <param name="sender">The connection performing the action.</param> /// <param name="e">A <see cref="AuthorizerEventArgs" /> that contains the /// event data.</param> public delegate void SQLiteAuthorizerEventHandler(object sender, AuthorizerEventArgs e); /// <summary> /// Raised when a transaction is about to be committed. To roll back a transaction, set the /// rollbackTrans boolean value to true. /// </summary> /// <param name="sender">The connection committing the transaction</param> /// <param name="e">Event arguments on the transaction</param> public delegate void SQLiteCommitHandler(object sender, CommitEventArgs e);
︙
4190 4191 4192 4193 4194 4195 4196 4197 4198 4199 4200 4201 4202 4203	4269 4270 4271 4272 4273 4274 4275 4276 4277 4278 4279 4280 4281 4282 4283 4284 4285 4286 4287 4288 4289 4290 4291 4292 4293 4294 4295 4296 4297 4298 4299 4300 4301 4302 4303 4304 4305 4306 4307 4308 4309 4310 4311 4312 4313 4314 4315 4316 4317 4318 4319 4320 4321 4322 4323 4324 4325 4326 4327 4328 4329 4330 4331 4332 4333 4334 4335 4336 4337 4338 4339 4340 4341 4342 4343 4344 4345 4346 4347 4348 4349 4350 4351 4352 4353 4354 4355 4356 4357 4358 4359 4360 4361 4362 4363 4364 4365 4366 4367 4368 4369 4370 4371 4372 4373 4374 4375 4376 4377 4378 4379 4380 4381 4382 4383 4384 4385 4386 4387 4388 4389 4390 4391 4392 4393 4394 4395 4396 4397 4398 4399	+ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +	string destinationName, int pages, int remainingPages, int totalPages, bool retry ); #endregion /////////////////////////////////////////////////////////////////////////////////////////////// /// <summary> /// The data associated with a call into the authorizer. /// </summary> public class AuthorizerEventArgs : EventArgs { /// <summary> /// The user-defined native data associated with this event. Currently, /// this will always contain the value of <see cref="IntPtr.Zero" />. /// </summary> public readonly IntPtr UserData; /// <summary> /// The action code responsible for the current call into the authorizer. /// </summary> public readonly SQLiteAuthorizerActionCode ActionCode; /// <summary> /// The first string argument for the current call into the authorizer. /// The exact value will vary based on the action code, see the /// <see cref="SQLiteAuthorizerActionCode" /> enumeration for possible /// values. /// </summary> public readonly string Argument1; /// <summary> /// The second string argument for the current call into the authorizer. /// The exact value will vary based on the action code, see the /// <see cref="SQLiteAuthorizerActionCode" /> enumeration for possible /// values. /// </summary> public readonly string Argument2; /// <summary> /// The database name for the current call into the authorizer, if /// applicable. /// </summary> public readonly string Database; /// <summary> /// The name of the inner-most trigger or view that is responsible for /// the access attempt or a null value if this access attempt is directly /// from top-level SQL code. /// </summary> public readonly string Context; /// <summary> /// The return code for the current call into the authorizer. /// </summary> public SQLiteAuthorizerReturnCode ReturnCode; /////////////////////////////////////////////////////////////////////////////////////////// /// <summary> /// Constructs an instance of this class with default property values. /// </summary> private AuthorizerEventArgs() { this.UserData = IntPtr.Zero; this.ActionCode = SQLiteAuthorizerActionCode.None; this.Argument1 = null; this.Argument2 = null; this.Database = null; this.Context = null; this.ReturnCode = SQLiteAuthorizerReturnCode.Ok; } /////////////////////////////////////////////////////////////////////////////////////////// /// <summary> /// Constructs an instance of this class with specific property values. /// </summary> /// <param name="pUserData"> /// The user-defined native data associated with this event. /// </param> /// <param name="actionCode"> /// The authorizer action code. /// </param> /// <param name="argument1"> /// The first authorizer argument. /// </param> /// <param name="argument2"> /// The second authorizer argument. /// </param> /// <param name="database"> /// The database name, if applicable. /// </param> /// <param name="context"> /// The name of the inner-most trigger or view that is responsible for /// the access attempt or a null value if this access attempt is directly /// from top-level SQL code. /// </param> /// <param name="returnCode"> /// The authorizer return code. /// </param> internal AuthorizerEventArgs( IntPtr pUserData, SQLiteAuthorizerActionCode actionCode, string argument1, string argument2, string database, string context, SQLiteAuthorizerReturnCode returnCode ) : this() { this.UserData = pUserData; this.ActionCode = actionCode; this.Argument1 = argument1; this.Argument2 = argument2; this.Database = database; this.Context = context; this.ReturnCode = returnCode; } } /////////////////////////////////////////////////////////////////////////////////////////////// /// <summary> /// Whenever an update event is triggered on a connection, this enum will indicate /// exactly what type of operation is being performed. /// </summary>
︙
































































































































































1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160	+ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +	############################################################################### # # authorizer.eagle -- # # Written by Joe Mistachkin. # Released to the public domain, use at your own risk! # ############################################################################### package require Eagle package require Eagle.Library package require Eagle.Test runTestPrologue ############################################################################### package require System.Data.SQLite.Test runSQLiteTestPrologue ############################################################################### runTest {test authorizer-1.1 {SQLiteConnection Authorize event} -setup { proc onAuthorize { sender e } { # # NOTE: Filter out the "noise" by allowing all standard # events on the "sqlite_" tables. # set noiseActionCodes [list \ CreateTable CreateIndex Read Insert Update Delete] if {[$e ActionCode] in $noiseActionCodes && \ [string match "sqlite_" [$e Argument1]]} then { return } lappend ::data [list \ [$e UserData] [$e ActionCode] [$e Argument1] \ [$e Argument2] [$e Database] [$e Context]] if {[$e ActionCode] eq "CreateTable" && \ [$e Argument1] eq "tDeny"} then { $e ReturnCode Deny } } setupDb [set fileName authorizer-1.1.db] } -body { set connection [getDbConnection] set callback onAuthorize object invoke $connection add_Authorize $callback set results [list] set sql [list \ CreateTable {CREATE TABLE t1(x);} \ CreateIndex {CREATE INDEX i1 ON t1(x);} \ CreateTrigger {CREATE TRIGGER tr1 BEFORE INSERT ON t1 BEGIN SELECT RAISE(IGNORE); END;} \ CreateView {CREATE VIEW v1 AS SELECT * FROM t1;} \ CreateTempTable {CREATE TEMPORARY TABLE t2(x);} \ CreateTempIndex {CREATE INDEX i2 ON t2(x);} \ CreateTempTrigger {CREATE TEMPORARY TRIGGER tr2 BEFORE INSERT ON t2 BEGIN SELECT RAISE(IGNORE); END;} \ CreateTempView {CREATE TEMPORARY VIEW v2 AS SELECT * FROM t2;} \ Pragma {PRAGMA journal_mode=WAL;} \ Function {SELECT julianday('now');} \ Read {SELECT x FROM t1;} \ Select {SELECT * FROM t1;} \ Insert {INSERT INTO t1(x) VALUES(1);} \ Update {UPDATE t1 SET x = x - 1;} \ Delete {DELETE FROM t1;} \ AlterTable {ALTER TABLE t1 ADD COLUMN y;} \ Reindex {REINDEX t1;} \ Analyze {ANALYZE t1;} \ DropTempView {DROP VIEW v2;} \ DropTempTrigger {DROP TRIGGER tr2;} \ DropTempIndex {DROP INDEX i2;} \ DropTempTable {DROP TABLE t2;} \ DropView {DROP VIEW v1;} \ DropTrigger {DROP TRIGGER tr1;} \ DropIndex {DROP INDEX i1;} \ DropTable {DROP TABLE t1;} \ Transaction {BEGIN; SELECT 0; COMMIT;} \ Savepoint {SAVEPOINT s1; RELEASE SAVEPOINT s1;} \ Attach {ATTACH DATABASE ':memory:' AS d1;} \ Detach {DETACH DATABASE d1;} \ CreateVtable {CREATE VIRTUAL TABLE t3 USING fts4(x TEXT);} \ DropVtable {DROP TABLE t3;} \ CreateTable {CREATE TABLE tDeny(x);}] foreach {name value} $sql { set data [list]; set code [catch {sql execute $db $value} result] set result [lindex [split [string map [list \r\n \n] $result] \n] 0] lappend results [list $name $data $code $result] } lappend results [isTableInDb tDeny] set results } -cleanup { catch {object invoke $connection remove_Authorize $callback} catch {object removecallback $callback} cleanupDb $fileName freeDbConnection unset -nocomplain data result code value name sql results callback \ connection db fileName rename onAuthorize "" } -constraints \ {eagle monoBug28 command.sql compile.DATA SQLite System.Data.SQLite} -result \ {{CreateTable {{0 CreateTable t1 {} main {}}} 0 0} {CreateIndex {{0 CreateIndex\ i1 t1 main {}} {0 Reindex i1 {} main {}}} 0 0} {CreateTrigger {{0 CreateTrigger\ tr1 t1 main {}}} 0 0} {CreateView {{0 CreateView v1 {} main {}}} 0 0}\ {CreateTempTable {{0 CreateTempTable t2 {} temp {}}} 0 0} {CreateTempIndex {{0\ CreateTempIndex i2 t2 temp {}} {0 Reindex i2 {} temp {}}} 0 0}\ {CreateTempTrigger {{0 CreateTempTrigger tr2 t2 temp {}}} 0 0} {CreateTempView\ {{0 CreateTempView v2 {} temp {}}} 0 0} {Pragma {{0 Pragma journal_mode WAL {}\ {}}} 0 0} {Function {{0 Select {} {} {} {}} {0 Function {} julianday {} {}}} 0\ 0} {Read {{0 Select {} {} {} {}} {0 Read t1 x main {}}} 0 0} {Select {{0 Select\ {} {} {} {}} {0 Read t1 x main {}}} 0 0} {Insert {{0 Insert t1 {} main {}} {0\ Select {} {} {} tr1}} 0 0} {Update {{0 Read t1 x main {}} {0 Update t1 x main\ {}}} 0 0} {Delete {{0 Delete t1 {} main {}}} 0 0} {AlterTable {{0 AlterTable\ main t1 {} {}} {0 Function {} substr {} {}} {0 Function {} substr {} {}}} 0 0}\ {Reindex {{0 Reindex i1 {} main {}}} 0 0} {Analyze {{0 Analyze t1 {} main {}}\ {0 Select {} {} {} {}} {0 Select {} {} {} {}} {0 Function {} count {} {}} {0\ Select {} {} {} {}}} 0 0} {DropTempView {{0 DropTempView v2 {} temp {}} {0\ Delete v2 {} temp {}}} 0 0} {DropTempTrigger {{0 DropTempTrigger tr2 t2 temp\ {}}} 0 0} {DropTempIndex {{0 DropTempIndex i2 t2 temp {}}} 0 0} {DropTempTable\ {{0 DropTempTable t2 {} temp {}} {0 Delete t2 {} temp {}}} 0 0} {DropView {{0\ DropView v1 {} main {}} {0 Delete v1 {} main {}}} 0 0} {DropTrigger {{0\ DropTrigger tr1 t1 main {}}} 0 0} {DropIndex {{0 DropIndex i1 t1 main {}}} 0 0}\ {DropTable {{0 DropTable t1 {} main {}} {0 Delete t1 {} main {}}} 0 0}\ {Transaction {{0 Transaction BEGIN {} {} {}} {0 Select {} {} {} {}} {0\ Transaction COMMIT {} {} {}}} 0 0} {Savepoint {{0 Savepoint BEGIN s1 {} {}} {0\ Savepoint RELEASE s1 {} {}}} 0 0} {Attach {{0 Attach :memory: {} {} {}}} 0 0}\ {Detach {{0 Detach d1 {} {} {}}} 0 0} {CreateVtable {{0 CreateVtable t3 fts4\ main {}} {0 CreateTable t3_content {} main {}} {0 CreateTable t3_segments {}\ main {}} {0 CreateTable t3_segdir {} main {}} {0 CreateTable t3_docsize {} main\ {}} {0 CreateTable t3_stat {} main {}} {0 Pragma page_size {} main {}}} 0 0}\ {DropVtable {{0 DropVtable t3 fts4 main {}} {0 Delete t3 {} main {}} {0\ DropTable t3_content {} main {}} {0 Delete t3_content {} main {}} {0 DropTable\ t3_segments {} main {}} {0 Delete t3_segments {} main {}} {0 DropTable\ t3_segdir {} main {}} {0 Delete t3_segdir {} main {}} {0 DropTable t3_docsize\ {} main {}} {0 Delete t3_docsize {} main {}} {0 DropTable t3_stat {} main {}}\ {0 Delete t3_stat {} main {}}} 0 0} {CreateTable {{0 CreateTable tDeny {} main\ {}}} 1 {System.Data.SQLite.SQLiteException (0x80004005): authorization denied}}\ False}} ############################################################################### runSQLiteTestEpilogue runTestEpilogue