From b1967ad723dd9f213099393aad13f1adec6cdc08 Mon Sep 17 00:00:00 2001
From: "evgen@moonbone.local" <>
Date: Mon, 23 Jan 2006 21:51:32 +0300
Subject: Fixed bug #16510: Updating field named like '*name' caused server
 crash.

When setup_fields() function finds field named '*' it expands it to the list
of all table fields. It does so by checking that the first char of
field_name is '*', but it doesn't checks that the '* is the only char.
Due to this, when updating table with a field named like '*name', such field
is wrongly treated as '*' and expanded. This leads to making list of fields
to update being longer than list of the new values. Later, the fill_record()
function crashes by dereferencing null when there is left fields to update,
but no more values.

Added check in the setup_fields() function which ensures that the field
expanding will be done only when '*' is the only char in the field name.
---
 mysql-test/t/update.test | 8 ++++++++
 1 file changed, 8 insertions(+)

(limited to 'mysql-test/t/update.test')

diff --git a/mysql-test/t/update.test b/mysql-test/t/update.test
index 6c7b450f763..fcd17dc75f0 100644
--- a/mysql-test/t/update.test
+++ b/mysql-test/t/update.test
@@ -174,3 +174,11 @@ insert into t1 values (0, '1');
 update t1 set b = b + 1 where a = 0;
 select * from t1;
 drop table t1;
+
+#
+# Bug #16510 Updating field named like '*name' caused server crash
+#
+create table t1(f1 int, `*f2` int);
+insert into t1 values (1,1);
+update t1 set `*f2`=1;
+drop table t1;
-- 
cgit v1.2.1


From 5d0e8d81ee13ef4474266b74a12f98d18894a7e1 Mon Sep 17 00:00:00 2001
From: "sergefp@mysql.com" <>
Date: Wed, 25 Jan 2006 23:25:23 +0300
Subject: BUG#15935: In mysql_update, don't use full index scan when we could
 have used quick select scan.

---
 mysql-test/t/update.test | 12 ++++++++++++
 1 file changed, 12 insertions(+)

(limited to 'mysql-test/t/update.test')

diff --git a/mysql-test/t/update.test b/mysql-test/t/update.test
index 95adb40962c..55015075db7 100644
--- a/mysql-test/t/update.test
+++ b/mysql-test/t/update.test
@@ -287,4 +287,16 @@ update t1 set f1=1 where f1=3;
 update t2,t1 set f1=3,f2=3 where f1=f2 and f1=1;
 --disable_info
 drop table t1,t2;
+
+
+# BUG#15935
+create table t1 (a int);
+insert into t1 values (0),(1),(2),(3),(4),(5),(6),(7),(8),(9);
+create table t2 (a int, filler1 char(200), filler2 char(200), key(a));
+insert into t2 select A.a + 10*B.a, 'filler','filler' from t1 A, t1 B;
+flush status;
+update t2 set a=3 where a=2;
+show status like 'handler_read%';
+drop table t1, t2;
+
 # End of 4.1 tests
-- 
cgit v1.2.1