Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Ignor of reference privilege [CORE5840] #6101

Closed
firebird-automations opened this issue Jun 5, 2018 · 6 comments
Closed

Ignor of reference privilege [CORE5840] #6101

firebird-automations opened this issue Jun 5, 2018 · 6 comments

Comments

@firebird-automations
Copy link
Collaborator

Submitted by: @romansimakov

The script should provide an error "no permission for REFERENCES access to TABLE T1" but passes OK.

create database sysdba;
create user user1 password 'pass';
create table t1 (id int not null primary key, name varchar(100));
grant create table to user1;

connect user1;
create table t2 (id int references t1(id));

Commits: ec94304 56d03a6

@firebird-automations
Copy link
Collaborator Author

Modified by: @romansimakov

assignee: Roman Simakov [ roman-simakov ]

@firebird-automations
Copy link
Collaborator Author

Commented by: @romansimakov

SCL_references must be checked for DDL operation of index creation and we need to ignore TDBB_trusted_ddl flag in this case. More general solution is to remove TDBB_trusted_dll flag since its purpose to allow system table modification due DDL operations. It requires removing SCL_checks... from VIO_{store,erase,motify}. It's quite possible but not so trivial as at fist look.

@firebird-automations
Copy link
Collaborator Author

Modified by: @romansimakov

status: Open [ 1 ] => Resolved [ 5 ]

resolution: Fixed [ 1 ]

Fix Version: 4.0 Beta 1 [ 10750 ]

Fix Version: 3.0.4 [ 10863 ]

@firebird-automations
Copy link
Collaborator Author

Modified by: @pavel-zotov

status: Resolved [ 5 ] => Resolved [ 5 ]

QA Status: No test => Done successfully

@firebird-automations
Copy link
Collaborator Author

Modified by: @pavel-zotov

status: Resolved [ 5 ] => Closed [ 6 ]

@firebird-automations
Copy link
Collaborator Author

Modified by: @dyemanov

security: Developers [ 10012 ] =>

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment