8411b174dee903acf8f7d16a8f46da2a7265f1ab |
|
07-Mar-2017 |
Makoto Onuki <omakoto@google.com> |
Loosen SQL check Bug: 36004581 Test: adb shell am instrument -w com.android.providers.contacts.tests Change-Id: Ifbbb88aff802d9c7cbf107f752996a0506e2a31a
/packages/providers/ContactsProvider/src/com/android/providers/contacts/sqlite/DatabaseAnalyzer.java
|
79e61b15a11698197da4bb78cd1be469a38b9c35 |
|
28-Sep-2016 |
Makoto Onuki <omakoto@google.com> |
Report invalid SQL with non-crashing 'wtf' rather than crash - Also allow the use of "default_directory". Test: unit tests Bug 31801512 Change-Id: I9261c6e71fdd96449c98ef62084cfe0b21419f9a
/packages/providers/ContactsProvider/src/com/android/providers/contacts/sqlite/DatabaseAnalyzer.java
|
9d70f53e0d2eda1356af27b2a083c96257ff872e |
|
20-Sep-2016 |
Makoto Onuki <omakoto@google.com> |
SQL token checker to detect uses of hidden tables/columns - Detect invalid SQL code (e.g. contains a semi-colon) in not only WHERE for query() but in other places too. - Disallow use of the word "select" and table/view names in the supplied code to prevent subqueries. - This mechanism will be used to hide columns in the futire too. Test: adb shell am instrument -w com.android.providers.contacts.tests Bug 31559073 Change-Id: Ib4293b4caf7e341186ee8bd4cc2d7dad7155c48d
/packages/providers/ContactsProvider/src/com/android/providers/contacts/sqlite/DatabaseAnalyzer.java
|