diff options
| author | danielk1977 <danielk1977@noemail.net> | 2009-06-17 11:49:52 +0000 |
|---|---|---|
| committer | danielk1977 <danielk1977@noemail.net> | 2009-06-17 11:49:52 +0000 |
| commit | 11a8a8660c55c877dfc8a970824a206866e5dc63 (patch) | |
| tree | a7147b7c7f7af6c499ed8f474c62b15833341231 /src | |
| parent | e576521d96c07b18d21c11eb94856be126f171e8 (diff) | |
| download | sqlite-11a8a8660c55c877dfc8a970824a206866e5dc63.tar.gz sqlite-11a8a8660c55c877dfc8a970824a206866e5dc63.zip | |
Fix a bug affecting secure-delete mode introduced by (6768). (CVS 6773)
FossilOrigin-Name: a433ca821c134caeac0fa16416eb95c647416b95
Diffstat (limited to 'src')
| -rw-r--r-- | src/btree.c | 20 |
1 files changed, 17 insertions, 3 deletions
diff --git a/src/btree.c b/src/btree.c index 68c28214d..128e0c5f3 100644 --- a/src/btree.c +++ b/src/btree.c @@ -9,7 +9,7 @@ ** May you share freely, never taking more than you give. ** ************************************************************************* -** $Id: btree.c,v 1.631 2009/06/17 11:13:28 danielk1977 Exp $ +** $Id: btree.c,v 1.632 2009/06/17 11:49:53 danielk1977 Exp $ ** ** This file implements a external (disk-based) database using BTrees. ** See the header comment on "btreeInt.h" for additional information. @@ -5423,6 +5423,10 @@ static int balance_nonroot( assert( pParent->nOverflow==0 || pParent->nOverflow==1 ); assert( pParent->nOverflow==0 || pParent->aOvfl[0].idx==iParentIdx ); + if( !aOvflSpace ){ + return SQLITE_NOMEM; + } + /* Find the sibling pages to balance. Also locate the cells in pParent ** that divide the siblings. An attempt is made to find NN siblings on ** either side of pPage. More siblings are taken from one side, however, @@ -5478,7 +5482,17 @@ static int balance_nonroot( ** This is safe because dropping a cell only overwrites the first ** four bytes of it, and this function does not need the first ** four bytes of the divider cell. So the pointer is safe to use - ** later on. */ + ** later on. + ** + ** Unless SQLite is compiled in secure-delete mode. In this case, + ** the dropCell() routine will overwrite the entire cell with zeroes. + ** In this case, temporarily copy the cell into the aOvflSpace[] + ** buffer. It will be copied out again as soon as the aSpace[] buffer + ** is allocated. */ +#ifdef SQLITE_SECURE_DELETE + memcpy(&aOvflSpace[apDiv[i]-pParent->aData], apDiv[i], szNew[i]); + apDiv[i] = &aOvflSpace[apDiv[i]-pParent->aData]; +#endif dropCell(pParent, i+nxDiv-pParent->nOverflow, szNew[i]); } } @@ -5497,7 +5511,7 @@ static int balance_nonroot( + pBt->pageSize /* aSpace1 */ + k*nOld; /* Page copies (apCopy) */ apCell = sqlite3ScratchMalloc( szScratch ); - if( apCell==0 || aOvflSpace==0 ){ + if( apCell==0 ){ rc = SQLITE_NOMEM; goto balance_cleanup; } |