• Kristofer Pettersson's avatar
    Bug#50373 --secure-file-priv="" · 794a4413
    Kristofer Pettersson authored
    The server variable opt_secure_file_priv wasn't
    normalized properly and caused the operations
    LOAD DATA INFILE .. INTO TABLE ..
    and
    SELECT load_file(..)
    to do different interpretations of the 
    --secure-file-priv option.
    
    The patch moves code to the server initialization
    routines so that the path always is normalized
    once and only once.
    
    It was also intended that setting the option
    to an empty string should be equal to 
    lifting all previously set restrictions. This
    is also fixed by this patch.
    
    
    sql/mysqld.cc:
      * If --secure_file_option is an empty string then the option variable
        should be unset.
      * opt_secure_file_option should be normalized once when the server starts.
    sql/sql_load.cc:
      * moved variable normalization code to fix_paths()
    794a4413
secure_file_priv-master.opt 22 Bytes