Miscellaneous DDL and security bug fixes Fixed a testware issue with fullstack2/TEST062 that occurred during release testing
Bug 1415196 - Alter volatile table add column cores at CmpSeabaseDDL::alterSeabaseTableAddColumn()
Added a check to not allow add or drop column for volatile tables: - sqlcomp/CmpSeabaseDDLtable.cpp
Bug 1415232 - A failed create view causes a volatile table to disappear
The code to bind a view does not correctly reset the volatile schema in use session parameter in case of an error. Subsequent calls do not check for volatile objects.
Bug 1371265 - should not allow grants to DB__ROOT or current user
Added a check at grant to prevent this
Bug 1392491 - Unavailability of privmgr metadata error is incomplete
If not all the privmgr metadata is available, then a new Compile context flag called IS_AUTHORIZATION_READY is set. This flag is adjusted when a new compiler context is started, and when authorization is enabled and disabled.
When isAuthorizationEnabled is called and authorization is incomplete, error 1234 is now returned by default.
After coding changes were added, a request to not check all privmgr metadata table at context startup was requseted - a performance concern. Fix was changed to check all tables for debug builds but check only one table for release builds. If the performance problem is fixed, then we can go back and check for all privmgr tables.
Bug 1402009 - DB__ROOT is unable to grant privilege on object in private schema
When DB__ROOT executes a grant or revoke on objects it does not own, need to change the grantor from DB__ROOT to the object owner. This matches the same behavior for other DDL operations such as CREATE.
As part of this fix, the GRANTED BY clause is now allowed for GRANT statements but it won't be complete until LP bug 1414225 is done.
Bug 1414125 - User without priv can view data in metadata tables
Fixes were in place for all metadata tables except the privmgr metadata tables. The priv information was always being set to none in setupPrivInfo (NATable) and revoking a privilege was not correctly removing privilege information from object_privileges.