Loading...
Searching...
No Matches
#include "postgres_fe.h"#include <ctype.h>#include "common/file_perm.h"#include "common/logging.h"#include "dumputils.h"#include "fe_utils/string_utils.h"
Include dependency graph for dumputils.c:
Go to the source code of this file.
Macros | |
| #define | CONVERT_PRIV(code, keywd) |
Variables | |
| static const char | restrict_chars [] = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789" |
Macro Definition Documentation
◆ CONVERT_PRIV
Value:
Function Documentation
◆ AddAcl()
Definition at line 661 of file dumputils.c.
662{
668}
void appendPQExpBuffer(PQExpBuffer str, const char *fmt,...)
Definition pqexpbuffer.c:265
void appendPQExpBufferChar(PQExpBuffer str, char ch)
Definition pqexpbuffer.c:378
void appendPQExpBufferStr(PQExpBuffer str, const char *data)
Definition pqexpbuffer.c:367
References appendPQExpBuffer(), appendPQExpBufferChar(), appendPQExpBufferStr(), fb(), and subname.
◆ buildACLCommands()
| bool buildACLCommands | ( | const char * | name, |
| const char * | subname, | ||
| const char * | nspname, | ||
| const char * | type, | ||
| const char * | acls, | ||
| const char * | baseacls, | ||
| const char * | owner, | ||
| const char * | prefix, | ||
| int | remoteVersion, | ||
| PQExpBuffer | sql | ||
| ) |
Definition at line 104 of file dumputils.c.
108{
120 grantor,
121 privs,
122 privswgo;
124 secondsql;
125
126 /*
127 * If the acl was NULL (initial default state), we need do nothing. Note
128 * that this is distinguishable from all-privileges-revoked, which will
129 * look like an empty array ("{}").
130 */
132 return true; /* object has default permissions */
133
134 /* treat empty-string owner same as NULL */
135 if (owner && *owner == '\0')
136 owner = NULL;
137
138 /* Parse the acls array */
140 {
142 return false;
143 }
144
145 /* Parse the baseacls too */
147 {
150 return false;
151 }
152
153 /*
154 * Compare the actual ACL with the base ACL, extracting the privileges
155 * that need to be granted (i.e., are in the actual ACL but not the base
156 * ACL) and the ones that need to be revoked (the reverse). We use plain
157 * string comparisons to check for matches. In principle that could be
158 * fooled by extraneous issues such as whitespace, but since all these
159 * strings are the work of aclitemout(), it should be OK in practice.
160 * Besides, a false mismatch will just cause the output to be a little
161 * more verbose than it really needed to be.
162 */
165 {
166 bool found = false;
167
169 {
171 {
172 found = true;
173 break;
174 }
175 }
176 if (!found)
178 }
181 {
182 bool found = false;
183
185 {
187 {
188 found = true;
189 break;
190 }
191 }
192 if (!found)
194 }
195
196 /* Prepare working buffers */
198 grantor = createPQExpBuffer();
201
202 /*
203 * At the end, these two will be pasted together to form the result.
204 */
207
208 /*
209 * Build REVOKE statements for ACLs listed in revokeitems[].
210 */
212 {
216 {
218 break;
219 }
220
222 {
225 if (nspname && *nspname)
232 else
235 }
236 }
237
238 /*
239 * At this point we have issued REVOKE statements for all initial and
240 * default privileges that are no longer present on the object, so we are
241 * almost ready to GRANT the privileges listed in grantitems[].
242 *
243 * We still need some hacking though to cover the case where new default
244 * public privileges are added in new versions: the REVOKE ALL will revoke
245 * them, leading to behavior different from what the old version had,
246 * which is generally not what's wanted. So add back default privs if the
247 * source database is too old to have had that particular priv. (As of
248 * right now, no such cases exist in supported versions.)
249 */
250
251 /*
252 * Scan individual ACL items to be granted.
253 *
254 * The order in which privileges appear in the ACL string (the order they
255 * have been GRANT'd in, which the backend maintains) must be preserved to
256 * ensure that GRANTs WITH GRANT OPTION and subsequent GRANTs based on
257 * those are dumped in the correct order. However, some old server
258 * versions will show grants to PUBLIC before the owner's own grants; for
259 * consistency's sake, force the owner's grants to be output first.
260 */
262 {
265 {
266 /*
267 * If the grantor isn't the owner, we'll need to use SET SESSION
268 * AUTHORIZATION to become the grantor. Issue the SET/RESET only
269 * if there's something useful to do.
270 */
272 {
274
275 /* Set owner as grantor if that's not explicit in the ACL */
278
279 /* Make sure owner's own grants are output before others */
280 if (owner &&
284 else
286
291
293 {
296 if (nspname && *nspname)
303 else
305 }
307 {
310 if (nspname && *nspname)
317 else
320 }
321
325 }
326 }
327 else
328 {
329 /* parseAclItem failed, give up */
331 break;
332 }
333 }
334
336 destroyPQExpBuffer(grantor);
339
343
348
350}
static bool parseAclItem(const char *item, const char *type, const char *name, const char *subname, int remoteVersion, PQExpBuffer grantee, PQExpBuffer grantor, PQExpBuffer privs, PQExpBuffer privswgo)
Definition dumputils.c:423
void printfPQExpBuffer(PQExpBuffer str, const char *fmt,...)
Definition pqexpbuffer.c:235
bool parsePGArray(const char *atext, char ***itemarray, int *nitems)
Definition string_utils.c:813
Definition pqexpbuffer.h:45
References appendPQExpBuffer(), appendPQExpBufferStr(), createPQExpBuffer(), PQExpBufferData::data, destroyPQExpBuffer(), fb(), fmtId(), free, i, j, PQExpBufferData::len, name, parseAclItem(), parsePGArray(), pg_malloc_array, printfPQExpBuffer(), subname, and type.
Referenced by buildDefaultACLCommands(), dumpACL(), dumpRoleGUCPrivs(), and dumpTablespaces().
◆ buildDefaultACLCommands()
| bool buildDefaultACLCommands | ( | const char * | type, |
| const char * | nspname, | ||
| const char * | acls, | ||
| const char * | acldefault, | ||
| const char * | owner, | ||
| int | remoteVersion, | ||
| PQExpBuffer | sql | ||
| ) |
Definition at line 366 of file dumputils.c.
371{
372 PQExpBuffer prefix;
373
374 prefix = createPQExpBuffer();
375
376 /*
377 * We incorporate the target role directly into the command, rather than
378 * playing around with SET ROLE or anything like that. This is so that a
379 * permissions error leads to nothing happening, rather than changing
380 * default privileges for the wrong user.
381 */
383 fmtId(owner));
384 if (nspname)
386
387 /*
388 * There's no such thing as initprivs for a default ACL, so the base ACL
389 * is always just the object-type-specific default.
390 */
393 prefix->data, remoteVersion, sql))
394 {
395 destroyPQExpBuffer(prefix);
396 return false;
397 }
398
399 destroyPQExpBuffer(prefix);
400
401 return true;
402}
bool buildACLCommands(const char *name, const char *subname, const char *nspname, const char *type, const char *acls, const char *baseacls, const char *owner, const char *prefix, int remoteVersion, PQExpBuffer sql)
Definition dumputils.c:104
References acldefault(), appendPQExpBuffer(), buildACLCommands(), createPQExpBuffer(), PQExpBufferData::data, destroyPQExpBuffer(), fb(), fmtId(), and type.
Referenced by dumpDefaultACL().
◆ buildShSecLabelQuery()
| void buildShSecLabelQuery | ( | const char * | catalog_name, |
| Oid | objectId, | ||
| PQExpBuffer | sql | ||
| ) |
Definition at line 681 of file dumputils.c.
683{
684 appendPQExpBuffer(sql,
685 "SELECT provider, label FROM pg_catalog.pg_shseclabel "
686 "WHERE classoid = 'pg_catalog.%s'::pg_catalog.regclass "
688}
References appendPQExpBuffer(), and fb().
Referenced by buildShSecLabels(), and dumpDatabase().
◆ create_or_open_dir()
Definition at line 943 of file dumputils.c.
944{
945 int ret;
946
948 {
949 case -1:
950 /* opendir failed but not with ENOENT */
952 break;
953 case 0:
954 /* directory does not exist */
957 break;
958 case 1:
959 /* exists and is empty, fix perms */
962 dirname);
963 break;
964 default:
965 /* exists and is not empty */
967 }
968}
References fb(), mkdir, pg_check_dir(), pg_dir_create_mode, and pg_fatal.
Referenced by InitArchiveFmt_Directory(), and main().
◆ dequoteAclUserName()
|
static |
Definition at line 622 of file dumputils.c.
623{
625
627 {
628 /*
629 * If user name isn't quoted, then just add it to the output buffer
630 */
633 else
634 {
635 /* Otherwise, it's a quoted username */
636 input++;
637 /* Loop until we come across an unescaped quote */
639 {
642
643 /*
644 * Quoting convention is to escape " as "". Keep this code in
645 * sync with putid() in backend's acl.c.
646 */
648 input++;
650 }
651 input++;
652 }
653 }
655}
FILE * input
References appendPQExpBufferChar(), input, output, and resetPQExpBuffer().
Referenced by parseAclItem().
◆ emitShSecLabels()
| void emitShSecLabels | ( | PGconn * | conn, |
| PGresult * | res, | ||
| PQExpBuffer | buffer, | ||
| const char * | objtype, | ||
| const char * | objname | ||
| ) |
Definition at line 699 of file dumputils.c.
701{
703
705 {
708
709 /* must use fmtId result before calling it again */
710 appendPQExpBuffer(buffer,
711 "SECURITY LABEL FOR %s ON %s",
713 appendPQExpBuffer(buffer,
714 " %s IS ",
715 fmtId(objname));
718 }
719}
void appendStringLiteralConn(PQExpBuffer buf, const char *str, PGconn *conn)
Definition string_utils.c:446
Definition oauth-curl.c:101
References appendPQExpBuffer(), appendPQExpBufferStr(), appendStringLiteralConn(), conn, fmtId(), i, label, PQgetvalue, and PQntuples.
Referenced by buildShSecLabels(), and dumpDatabase().
◆ generate_restrict_key()
Definition at line 976 of file dumputils.c.
977{
980
983
985 {
987
989 }
991
992 return ret;
993}
References buf, fb(), i, idx(), palloc(), pg_strong_random(), and restrict_chars.
◆ makeAlterConfigCommand()
| void makeAlterConfigCommand | ( | PGconn * | conn, |
| const char * | configitem, | ||
| const char * | type, | ||
| const char * | name, | ||
| const char * | type2, | ||
| const char * | name2, | ||
| PQExpBuffer | buf | ||
| ) |
Definition at line 868 of file dumputils.c.
872{
874 char *pos;
875
876 /* Parse the configitem. If we can't find an "=", silently do nothing. */
880 {
882 return;
883 }
884 *pos++ = '\0';
885
886 /* Build the command, with suitable quoting for everything. */
891
892 /*
893 * Variables that are marked GUC_LIST_QUOTE were already fully quoted by
894 * flatten_set_variable_args() before they were put into the setconfig
895 * array. However, because the quoting rules used there aren't exactly
896 * like SQL's, we have to break the list value apart and then quote the
897 * elements as string literals. (The elements may be double-quoted as-is,
898 * but we can't just feed them to the SQL parser; it would do the wrong
899 * thing with elements that are zero-length or longer than NAMEDATALEN.)
900 * Also, we need a special case for empty lists.
901 *
902 * Variables that are not so marked should just be emitted as simple
903 * string literals. If the variable is not known to
904 * variable_is_guc_list_quote(), we'll do that; this makes it unsafe to
905 * use GUC_LIST_QUOTE for extension variables.
906 */
908 {
911
912 /* Parse string into list of identifiers */
913 /* this shouldn't fail really */
915 {
916 /* Special case: represent an empty list as NULL */
920 {
924 }
925 }
927 }
928 else
930
932
934}
bool variable_is_guc_list_quote(const char *name)
Definition dumputils.c:733
bool SplitGUCList(char *rawstring, char separator, char ***namelist)
Definition dumputils.c:768
References appendPQExpBuffer(), appendPQExpBufferStr(), appendStringLiteralConn(), buf, conn, fb(), fmtId(), name, pg_free(), pg_strdup(), SplitGUCList(), type, and variable_is_guc_list_quote().
Referenced by dumpDatabaseConfig(), and dumpUserConfig().
◆ parseAclItem()
|
static |
Definition at line 423 of file dumputils.c.
427{
433 char *pos;
434
436
437 /* user or group name is string up to = */
440 {
442 return false;
443 }
444
445 /* grantor should appear after / */
448 {
452 {
454 return false;
455 }
456 }
457 else
458 {
460 return false;
461 }
462
463 /* privilege codes */
464#define CONVERT_PRIV(code, keywd) \
465do { \
466 if ((pos = strchr(eqpos + 1, code))) \
467 { \
468 if (*(pos + 1) == '*' && privswgo != NULL) \
469 { \
470 AddAcl(privswgo, keywd, subname); \
471 all_without_go = false; \
472 } \
473 else \
474 { \
475 AddAcl(privs, keywd, subname); \
476 all_with_go = false; \
477 } \
478 } \
479 else \
480 all_with_go = all_without_go = false; \
481} while (0)
482
485
488 {
490
493 /* sequence only */
495 else
496 {
497 /* table only */
500 /* rest are not applicable to columns */
502 {
507 }
508 }
509
510 /* UPDATE */
512 }
526 {
529 }
531 {
535 }
548 {
551 }
554 {
557 }
558 else
559 abort();
560
561#undef CONVERT_PRIV
562
564 {
569 }
571 {
576 }
577
579
580 return true;
581}
static char * dequoteAclUserName(PQExpBuffer output, char *input)
Definition dumputils.c:622
#define CONVERT_PRIV(code, keywd)
References appendPQExpBuffer(), buf, CONVERT_PRIV, dequoteAclUserName(), fb(), pg_free(), pg_strdup(), printfPQExpBuffer(), resetPQExpBuffer(), subname, and type.
Referenced by buildACLCommands().
◆ quoteAclUserName()
| void quoteAclUserName | ( | PQExpBuffer | output, |
| const char * | input | ||
| ) |
Definition at line 588 of file dumputils.c.
589{
590 const char *src;
592
594 {
595 /* This test had better match what putid() does */
597 {
599 break;
600 }
601 }
605 {
606 /* A double quote character in a username is encoded as "" */
607 if (*src == '"')
610 }
613}
References appendPQExpBufferChar(), fb(), input, and output.
Referenced by getNamespaces().
◆ sanitize_line()
Definition at line 52 of file dumputils.c.
53{
54 char *result;
55 char *s;
56
59
61
62 for (s = result; *s != '\0'; s++)
63 {
64 if (*s == '\n' || *s == '\r')
65 *s = ' ';
66 }
67
68 return result;
69}
References fb(), pg_strdup(), and str.
Referenced by _printTocEntry(), dumpDatabases(), dumpTableData(), dumpUserConfig(), and PrintTOCSummary().
◆ SplitGUCList()
Definition at line 768 of file dumputils.c.
770{
772 bool done = false;
774
775 /*
776 * Since we disallow empty identifiers, this is a conservative
777 * overestimate of the number of pointers we could need. Allow one for
778 * list terminator.
779 */
783
786
788 return true; /* empty string represents empty list */
789
790 /* At the top of the loop, we are at start of a new identifier. */
791 do
792 {
795
797 {
798 /* Quoted name --- collapse quote-quote pairs */
800 for (;;)
801 {
804 return false; /* mismatched quotes */
806 break; /* found end of quoted name */
807 /* Collapse adjacent quotes into one quote, and look again */
810 }
811 /* endp now points at the terminating quote */
813 }
814 else
815 {
816 /* Unquoted name --- extends to separator or whitespace */
820 nextp++;
823 return false; /* empty unquoted name not allowed */
824 }
825
828
830 {
831 nextp++;
834 /* we expect another name, so done remains false */
835 }
837 done = true;
838 else
839 return false; /* invalid syntax */
840
841 /* Now safe to overwrite separator with a null */
843
844 /*
845 * Finished isolating current name --- add it to output array
846 */
848
849 /* Loop back if we didn't reach end of string */
850 } while (!done);
851
853 return true;
854}
Definition print.h:106
References fb(), and pg_malloc_array.
Referenced by makeAlterConfigCommand().
◆ valid_restrict_key()
Definition at line 1000 of file dumputils.c.
1001{
1005}
References fb(), restrict_chars, and restrict_key.
◆ variable_is_guc_list_quote()
Definition at line 733 of file dumputils.c.
734{
742 return true;
743 else
744 return false;
745}
References name, and pg_strcasecmp().
Referenced by dumpFunc(), and makeAlterConfigCommand().
Variable Documentation
◆ restrict_chars
|
static |
Definition at line 24 of file dumputils.c.
Referenced by generate_restrict_key(), and valid_restrict_key().
