Loading...
Searching...
No Matches
#include "postgres_fe.h"#include <ctype.h>#include "common/file_perm.h"#include "common/logging.h"#include "dumputils.h"#include "fe_utils/string_utils.h"
Include dependency graph for dumputils.c:
Go to the source code of this file.
Macros | |
| #define | CONVERT_PRIV(code, keywd) |
Variables | |
| static const char | restrict_chars [] = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789" |
Macro Definition Documentation
◆ CONVERT_PRIV
Value:
Function Documentation
◆ AddAcl()
Definition at line 658 of file dumputils.c.
659{
665}
void appendPQExpBuffer(PQExpBuffer str, const char *fmt,...)
Definition pqexpbuffer.c:265
void appendPQExpBufferChar(PQExpBuffer str, char ch)
Definition pqexpbuffer.c:378
void appendPQExpBufferStr(PQExpBuffer str, const char *data)
Definition pqexpbuffer.c:367
References appendPQExpBuffer(), appendPQExpBufferChar(), appendPQExpBufferStr(), fb(), and subname.
◆ buildACLCommands()
| bool buildACLCommands | ( | const char * | name, |
| const char * | subname, | ||
| const char * | nspname, | ||
| const char * | type, | ||
| const char * | acls, | ||
| const char * | baseacls, | ||
| const char * | owner, | ||
| const char * | prefix, | ||
| int | remoteVersion, | ||
| PQExpBuffer | sql | ||
| ) |
Definition at line 104 of file dumputils.c.
108{
120 grantor,
121 privs,
122 privswgo;
124 secondsql;
125
126 /*
127 * If the acl was NULL (initial default state), we need do nothing. Note
128 * that this is distinguishable from all-privileges-revoked, which will
129 * look like an empty array ("{}").
130 */
132 return true; /* object has default permissions */
133
134 /* treat empty-string owner same as NULL */
135 if (owner && *owner == '\0')
136 owner = NULL;
137
138 /* Parse the acls array */
140 {
142 return false;
143 }
144
145 /* Parse the baseacls too */
147 {
150 return false;
151 }
152
153 /*
154 * Compare the actual ACL with the base ACL, extracting the privileges
155 * that need to be granted (i.e., are in the actual ACL but not the base
156 * ACL) and the ones that need to be revoked (the reverse). We use plain
157 * string comparisons to check for matches. In principle that could be
158 * fooled by extraneous issues such as whitespace, but since all these
159 * strings are the work of aclitemout(), it should be OK in practice.
160 * Besides, a false mismatch will just cause the output to be a little
161 * more verbose than it really needed to be.
162 */
165 {
166 bool found = false;
167
169 {
171 {
172 found = true;
173 break;
174 }
175 }
176 if (!found)
178 }
181 {
182 bool found = false;
183
185 {
187 {
188 found = true;
189 break;
190 }
191 }
192 if (!found)
194 }
195
196 /* Prepare working buffers */
198 grantor = createPQExpBuffer();
201
202 /*
203 * At the end, these two will be pasted together to form the result.
204 */
207
208 /*
209 * Build REVOKE statements for ACLs listed in revokeitems[].
210 */
212 {
216 {
218 break;
219 }
220
222 {
225 if (nspname && *nspname)
232 else
235 }
236 }
237
238 /*
239 * At this point we have issued REVOKE statements for all initial and
240 * default privileges that are no longer present on the object, so we are
241 * almost ready to GRANT the privileges listed in grantitems[].
242 *
243 * We still need some hacking though to cover the case where new default
244 * public privileges are added in new versions: the REVOKE ALL will revoke
245 * them, leading to behavior different from what the old version had,
246 * which is generally not what's wanted. So add back default privs if the
247 * source database is too old to have had that particular priv. (As of
248 * right now, no such cases exist in supported versions.)
249 */
250
251 /*
252 * Scan individual ACL items to be granted.
253 *
254 * The order in which privileges appear in the ACL string (the order they
255 * have been GRANT'd in, which the backend maintains) must be preserved to
256 * ensure that GRANTs WITH GRANT OPTION and subsequent GRANTs based on
257 * those are dumped in the correct order. However, some old server
258 * versions will show grants to PUBLIC before the owner's own grants; for
259 * consistency's sake, force the owner's grants to be output first.
260 */
262 {
265 {
266 /*
267 * If the grantor isn't the owner, we'll need to use SET SESSION
268 * AUTHORIZATION to become the grantor. Issue the SET/RESET only
269 * if there's something useful to do.
270 */
272 {
274
275 /* Set owner as grantor if that's not explicit in the ACL */
278
279 /* Make sure owner's own grants are output before others */
280 if (owner &&
284 else
286
291
293 {
296 if (nspname && *nspname)
303 else
305 }
307 {
310 if (nspname && *nspname)
317 else
320 }
321
325 }
326 }
327 else
328 {
329 /* parseAclItem failed, give up */
331 break;
332 }
333 }
334
336 destroyPQExpBuffer(grantor);
339
343
348
350}
static bool parseAclItem(const char *item, const char *type, const char *name, const char *subname, int remoteVersion, PQExpBuffer grantee, PQExpBuffer grantor, PQExpBuffer privs, PQExpBuffer privswgo)
Definition dumputils.c:423
void printfPQExpBuffer(PQExpBuffer str, const char *fmt,...)
Definition pqexpbuffer.c:235
bool parsePGArray(const char *atext, char ***itemarray, int *nitems)
Definition string_utils.c:819
Definition pqexpbuffer.h:45
References appendPQExpBuffer(), appendPQExpBufferStr(), createPQExpBuffer(), PQExpBufferData::data, destroyPQExpBuffer(), fb(), fmtId(), free, i, j, PQExpBufferData::len, name, parseAclItem(), parsePGArray(), pg_malloc(), printfPQExpBuffer(), subname, and type.
Referenced by buildDefaultACLCommands(), dumpACL(), dumpRoleGUCPrivs(), and dumpTablespaces().
◆ buildDefaultACLCommands()
| bool buildDefaultACLCommands | ( | const char * | type, |
| const char * | nspname, | ||
| const char * | acls, | ||
| const char * | acldefault, | ||
| const char * | owner, | ||
| int | remoteVersion, | ||
| PQExpBuffer | sql | ||
| ) |
Definition at line 366 of file dumputils.c.
371{
372 PQExpBuffer prefix;
373
374 prefix = createPQExpBuffer();
375
376 /*
377 * We incorporate the target role directly into the command, rather than
378 * playing around with SET ROLE or anything like that. This is so that a
379 * permissions error leads to nothing happening, rather than changing
380 * default privileges for the wrong user.
381 */
383 fmtId(owner));
384 if (nspname)
386
387 /*
388 * There's no such thing as initprivs for a default ACL, so the base ACL
389 * is always just the object-type-specific default.
390 */
393 prefix->data, remoteVersion, sql))
394 {
395 destroyPQExpBuffer(prefix);
396 return false;
397 }
398
399 destroyPQExpBuffer(prefix);
400
401 return true;
402}
bool buildACLCommands(const char *name, const char *subname, const char *nspname, const char *type, const char *acls, const char *baseacls, const char *owner, const char *prefix, int remoteVersion, PQExpBuffer sql)
Definition dumputils.c:104
References acldefault(), appendPQExpBuffer(), buildACLCommands(), createPQExpBuffer(), PQExpBufferData::data, destroyPQExpBuffer(), fb(), fmtId(), and type.
Referenced by dumpDefaultACL().
◆ buildShSecLabelQuery()
| void buildShSecLabelQuery | ( | const char * | catalog_name, |
| Oid | objectId, | ||
| PQExpBuffer | sql | ||
| ) |
Definition at line 678 of file dumputils.c.
680{
681 appendPQExpBuffer(sql,
682 "SELECT provider, label FROM pg_catalog.pg_shseclabel "
683 "WHERE classoid = 'pg_catalog.%s'::pg_catalog.regclass "
685}
References appendPQExpBuffer(), and fb().
Referenced by buildShSecLabels(), and dumpDatabase().
◆ create_or_open_dir()
Definition at line 940 of file dumputils.c.
941{
942 int ret;
943
945 {
946 case -1:
947 /* opendir failed but not with ENOENT */
949 break;
950 case 0:
951 /* directory does not exist */
954 break;
955 case 1:
956 /* exists and is empty, fix perms */
959 dirname);
960 break;
961 default:
962 /* exists and is not empty */
964 }
965}
References fb(), mkdir, pg_check_dir(), pg_dir_create_mode, and pg_fatal.
Referenced by InitArchiveFmt_Directory().
◆ dequoteAclUserName()
|
static |
Definition at line 619 of file dumputils.c.
620{
622
624 {
625 /*
626 * If user name isn't quoted, then just add it to the output buffer
627 */
630 else
631 {
632 /* Otherwise, it's a quoted username */
633 input++;
634 /* Loop until we come across an unescaped quote */
636 {
639
640 /*
641 * Quoting convention is to escape " as "". Keep this code in
642 * sync with putid() in backend's acl.c.
643 */
645 input++;
647 }
648 input++;
649 }
650 }
652}
FILE * input
References appendPQExpBufferChar(), input, output, and resetPQExpBuffer().
Referenced by parseAclItem().
◆ emitShSecLabels()
| void emitShSecLabels | ( | PGconn * | conn, |
| PGresult * | res, | ||
| PQExpBuffer | buffer, | ||
| const char * | objtype, | ||
| const char * | objname | ||
| ) |
Definition at line 696 of file dumputils.c.
698{
700
702 {
705
706 /* must use fmtId result before calling it again */
707 appendPQExpBuffer(buffer,
708 "SECURITY LABEL FOR %s ON %s",
710 appendPQExpBuffer(buffer,
711 " %s IS ",
712 fmtId(objname));
715 }
716}
void appendStringLiteralConn(PQExpBuffer buf, const char *str, PGconn *conn)
Definition string_utils.c:446
Definition oauth-curl.c:115
References appendPQExpBuffer(), appendPQExpBufferStr(), appendStringLiteralConn(), conn, fmtId(), i, label, PQgetvalue, and PQntuples.
Referenced by buildShSecLabels(), and dumpDatabase().
◆ generate_restrict_key()
Definition at line 973 of file dumputils.c.
974{
977
980
982 {
984
986 }
988
989 return ret;
990}
References buf, fb(), i, idx(), palloc(), pg_strong_random(), and restrict_chars.
◆ makeAlterConfigCommand()
| void makeAlterConfigCommand | ( | PGconn * | conn, |
| const char * | configitem, | ||
| const char * | type, | ||
| const char * | name, | ||
| const char * | type2, | ||
| const char * | name2, | ||
| PQExpBuffer | buf | ||
| ) |
Definition at line 865 of file dumputils.c.
869{
871 char *pos;
872
873 /* Parse the configitem. If we can't find an "=", silently do nothing. */
877 {
879 return;
880 }
881 *pos++ = '\0';
882
883 /* Build the command, with suitable quoting for everything. */
888
889 /*
890 * Variables that are marked GUC_LIST_QUOTE were already fully quoted by
891 * flatten_set_variable_args() before they were put into the setconfig
892 * array. However, because the quoting rules used there aren't exactly
893 * like SQL's, we have to break the list value apart and then quote the
894 * elements as string literals. (The elements may be double-quoted as-is,
895 * but we can't just feed them to the SQL parser; it would do the wrong
896 * thing with elements that are zero-length or longer than NAMEDATALEN.)
897 * Also, we need a special case for empty lists.
898 *
899 * Variables that are not so marked should just be emitted as simple
900 * string literals. If the variable is not known to
901 * variable_is_guc_list_quote(), we'll do that; this makes it unsafe to
902 * use GUC_LIST_QUOTE for extension variables.
903 */
905 {
908
909 /* Parse string into list of identifiers */
910 /* this shouldn't fail really */
912 {
913 /* Special case: represent an empty list as NULL */
917 {
921 }
922 }
924 }
925 else
927
929
931}
bool variable_is_guc_list_quote(const char *name)
Definition dumputils.c:730
bool SplitGUCList(char *rawstring, char separator, char ***namelist)
Definition dumputils.c:765
References appendPQExpBuffer(), appendPQExpBufferStr(), appendStringLiteralConn(), buf, conn, fb(), fmtId(), name, pg_free(), pg_strdup(), SplitGUCList(), type, and variable_is_guc_list_quote().
Referenced by dumpDatabaseConfig(), and dumpUserConfig().
◆ parseAclItem()
|
static |
Definition at line 423 of file dumputils.c.
427{
433 char *pos;
434
436
437 /* user or group name is string up to = */
440 {
442 return false;
443 }
444
445 /* grantor should appear after / */
448 {
452 {
454 return false;
455 }
456 }
457 else
458 {
460 return false;
461 }
462
463 /* privilege codes */
464#define CONVERT_PRIV(code, keywd) \
465do { \
466 if ((pos = strchr(eqpos + 1, code))) \
467 { \
468 if (*(pos + 1) == '*' && privswgo != NULL) \
469 { \
470 AddAcl(privswgo, keywd, subname); \
471 all_without_go = false; \
472 } \
473 else \
474 { \
475 AddAcl(privs, keywd, subname); \
476 all_with_go = false; \
477 } \
478 } \
479 else \
480 all_with_go = all_without_go = false; \
481} while (0)
482
485
488 {
490
493 /* sequence only */
495 else
496 {
497 /* table only */
500 /* rest are not applicable to columns */
502 {
507 }
508 }
509
510 /* UPDATE */
512 }
523 {
526 }
528 {
532 }
545 {
548 }
551 {
554 }
555 else
556 abort();
557
558#undef CONVERT_PRIV
559
561 {
566 }
568 {
573 }
574
576
577 return true;
578}
static char * dequoteAclUserName(PQExpBuffer output, char *input)
Definition dumputils.c:619
#define CONVERT_PRIV(code, keywd)
References appendPQExpBuffer(), buf, CONVERT_PRIV, dequoteAclUserName(), fb(), pg_free(), pg_strdup(), printfPQExpBuffer(), resetPQExpBuffer(), subname, and type.
Referenced by buildACLCommands().
◆ quoteAclUserName()
| void quoteAclUserName | ( | PQExpBuffer | output, |
| const char * | input | ||
| ) |
Definition at line 585 of file dumputils.c.
586{
587 const char *src;
589
591 {
592 /* This test had better match what putid() does */
594 {
596 break;
597 }
598 }
602 {
603 /* A double quote character in a username is encoded as "" */
604 if (*src == '"')
607 }
610}
References appendPQExpBufferChar(), fb(), input, and output.
Referenced by getNamespaces().
◆ sanitize_line()
Definition at line 52 of file dumputils.c.
53{
54 char *result;
55 char *s;
56
59
61
62 for (s = result; *s != '\0'; s++)
63 {
64 if (*s == '\n' || *s == '\r')
65 *s = ' ';
66 }
67
68 return result;
69}
References fb(), pg_strdup(), and str.
Referenced by _printTocEntry(), dumpDatabases(), dumpTableData(), dumpUserConfig(), and PrintTOCSummary().
◆ SplitGUCList()
Definition at line 765 of file dumputils.c.
767{
769 bool done = false;
771
772 /*
773 * Since we disallow empty identifiers, this is a conservative
774 * overestimate of the number of pointers we could need. Allow one for
775 * list terminator.
776 */
780
783
785 return true; /* empty string represents empty list */
786
787 /* At the top of the loop, we are at start of a new identifier. */
788 do
789 {
792
794 {
795 /* Quoted name --- collapse quote-quote pairs */
797 for (;;)
798 {
801 return false; /* mismatched quotes */
803 break; /* found end of quoted name */
804 /* Collapse adjacent quotes into one quote, and look again */
807 }
808 /* endp now points at the terminating quote */
810 }
811 else
812 {
813 /* Unquoted name --- extends to separator or whitespace */
817 nextp++;
820 return false; /* empty unquoted name not allowed */
821 }
822
825
827 {
828 nextp++;
831 /* we expect another name, so done remains false */
832 }
834 done = true;
835 else
836 return false; /* invalid syntax */
837
838 /* Now safe to overwrite separator with a null */
840
841 /*
842 * Finished isolating current name --- add it to output array
843 */
845
846 /* Loop back if we didn't reach end of string */
847 } while (!done);
848
850 return true;
851}
Definition print.h:106
References fb(), and pg_malloc().
Referenced by makeAlterConfigCommand().
◆ valid_restrict_key()
Definition at line 997 of file dumputils.c.
998{
1002}
References fb(), restrict_chars, and restrict_key.
◆ variable_is_guc_list_quote()
Definition at line 730 of file dumputils.c.
731{
739 return true;
740 else
741 return false;
742}
References name, and pg_strcasecmp().
Referenced by dumpFunc(), and makeAlterConfigCommand().
Variable Documentation
◆ restrict_chars
|
static |
Definition at line 24 of file dumputils.c.
Referenced by generate_restrict_key(), and valid_restrict_key().
