diff options
| author | 2023-06-09 16:07:45 +0100 | |
|---|---|---|
| committer | 2023-06-20 14:43:17 +0100 | |
| commit | 9db459b49b1fa19a795b3d8a4250e15d6da1f4e5 (patch) | |
| tree | ebb4ab3ff149eae40f85a49785f664a691728095 /api/api_test.go | |
| parent | 1c450b404d19edca3794a62bcc7d50a6f6081502 (diff) | |
Add API support for sqlite3_set_authorizer().
Authorizers can be consulted during compilation of a SQL statement
to determine if each action requested by the SQL statement is allowed.
This can be useful to dynamically block interaction with private,
internal, or otherwise sensitive columns or tables inside a database,
such as when compiling an untrusted SQL statement.
This change adds the ability for developers to provide a custom
authorizer on a per-statement basis. Since statements using a custom
authorizer are typically untrusted SQL, they're likely to have low
cache hit ratios, so we don't attempt to cache compiled statements.
Upstream SQLite is likely to continue adding new actions over
time, so our API design is a simple mirror of the underlying
callback. Mapping of this underlying callback into higher-level
concepts is left to a Jetpack library.
Bug: 231636192
Test: atest CtsDatabaseTestCases
Change-Id: I06fa30e30c58961c9b05628e576a6f5f80fdf550
Diffstat (limited to 'api/api_test.go')
0 files changed, 0 insertions, 0 deletions