From 3858be3e599d174a8a9b3e68810578be551946ff Mon Sep 17 00:00:00 2001 From: drh Date: Thu, 9 Jan 2020 15:18:08 +0000 Subject: [PATCH] Minor formatting changes in the trusted-schema.md document. FossilOrigin-Name: 55553b5e5ece8282f6a56a6f5c71024eaaef3c86ec42203af3da708b0de3643b --- doc/trusted-schema.md | 16 ++++++++-------- manifest | 12 ++++++------ manifest.uuid | 2 +- 3 files changed, 15 insertions(+), 15 deletions(-) diff --git a/doc/trusted-schema.md b/doc/trusted-schema.md index 32abf9d4d0..c552825eb2 100644 --- a/doc/trusted-schema.md +++ b/doc/trusted-schema.md @@ -22,9 +22,9 @@ maliciously corrupted by an attacker. The basic idea is to tag every SQL function and virtual table with one of three risk levels: - 1. Innocuous - 2. Normal - 3. Direct-Only + 1. Innocuous + 2. Normal + 3. Direct-Only Innocuous functions/vtabs are safe and can be used at any time. Direct-only elements, in contrast, might have cause side-effects and @@ -50,11 +50,11 @@ Direct-only elements that have side-effects that go outside the database file in which it lives, or return information from outside of the database file. Examples of direct-only elements include: - 1. The fts3_tokenizer() function - 2. The writefile() function - 3. The readfile() function - 4. The zipvfs virtual table - 5. The csv virtual table + 1. The fts3\_tokenizer() function + 2. The writefile() function + 3. The readfile() function + 4. The zipvfs virtual table + 5. The csv virtual table We do not want an attacker to be able to add these kinds of things to the database schema and possibly trick a high-privilege application diff --git a/manifest b/manifest index fbcbb2b31d..0261867caf 100644 --- a/manifest +++ b/manifest @@ -1,5 +1,5 @@ -C Design\snotes\sfor\sthe\snew-security-options\sbranch. -D 2020-01-09T14:51:47.198 +C Minor\sformatting\schanges\sin\sthe\strusted-schema.md\sdocument. +D 2020-01-09T15:18:08.637 F .fossil-settings/empty-dirs dbb81e8fc0401ac46a1491ab34a7f2c7c0452f2f06b54ebb845d024ca8283ef1 F .fossil-settings/ignore-glob 35175cdfcf539b2318cb04a9901442804be81cd677d8b889fcc9149c21f239ea F LICENSE.md df5091916dbb40e6e9686186587125e1b2ff51f022cc334e886c19a0e9982724 @@ -40,7 +40,7 @@ F contrib/sqlitecon.tcl 210a913ad63f9f991070821e599d600bd913e0ad F doc/F2FS.txt c1d4a0ae9711cfe0e1d8b019d154f1c29e0d3abfe820787ba1e9ed7691160fcd F doc/lemon.html 24956ab2995e55fe171e55bdd04f22b553957dc8bb43501dbb9311e30187e0d3 F doc/pager-invariants.txt 27fed9a70ddad2088750c4a2b493b63853da2710 -F doc/trusted-schema.md f6f680325d98cd3d2e60fc1b189c89bd91e7cf243a7538ddaaa77a9a85ecfc27 +F doc/trusted-schema.md 85ce619aa1c7234931b7a9ee681ae1ebc781ade512a61ca03f0248f473c8dbaa F doc/vfs-shm.txt e101f27ea02a8387ce46a05be2b1a902a021d37a F ext/README.md fd5f78013b0a2bc6f0067afb19e6ad040e89a10179b4f6f03eee58fac5f169bd F ext/async/README.txt e12275968f6fde133a80e04387d0e839b0c51f91 @@ -1856,7 +1856,7 @@ F vsixtest/vsixtest.tcl 6a9a6ab600c25a91a7acc6293828957a386a8a93 F vsixtest/vsixtest.vcxproj.data 2ed517e100c66dc455b492e1a33350c1b20fbcdc F vsixtest/vsixtest.vcxproj.filters 37e51ffedcdb064aad6ff33b6148725226cd608e F vsixtest/vsixtest_TemporaryKey.pfx e5b1b036facdb453873e7084e1cae9102ccc67a0 -P d662129a601e05e8fca5717a890b5bc920b80a750d061f3c2494788d32b917a5 -R e15da1979fa75b113b42a835dcf65862 +P af7c1ed4f8a7293d0ecacca3cfbe9414e0de5ec40b418ce7831b8dc724feb747 +R b5a1b0709d80497117a6d5aa63bfc530 U drh -Z 56f64c5778330d36d74ed745f5b7a873 +Z 1bcdfac76412383a4c9029e5fef7a395 diff --git a/manifest.uuid b/manifest.uuid index 40f122c7f0..e4192f2c3c 100644 --- a/manifest.uuid +++ b/manifest.uuid @@ -1 +1 @@ -af7c1ed4f8a7293d0ecacca3cfbe9414e0de5ec40b418ce7831b8dc724feb747 \ No newline at end of file +55553b5e5ece8282f6a56a6f5c71024eaaef3c86ec42203af3da708b0de3643b \ No newline at end of file