#include "postgres_fe.h"#include <ctype.h>#include "dumputils.h"#include "fe_utils/string_utils.h"
Include dependency graph for dumputils.c:
Go to the source code of this file.
Macros | |
| #define | CONVERT_PRIV(code, keywd) |
Functions | |
| static bool | parseAclItem (const char *item, const char *type, const char *name, const char *subname, int remoteVersion, PQExpBuffer grantee, PQExpBuffer grantor, PQExpBuffer privs, PQExpBuffer privswgo) |
| static char * | dequoteAclUserName (PQExpBuffer output, char *input) |
| static void | AddAcl (PQExpBuffer aclbuf, const char *keyword, const char *subname) |
| bool | buildACLCommands (const char *name, const char *subname, const char *nspname, const char *type, const char *acls, const char *baseacls, const char *owner, const char *prefix, int remoteVersion, PQExpBuffer sql) |
| bool | buildDefaultACLCommands (const char *type, const char *nspname, const char *acls, const char *acldefault, const char *owner, int remoteVersion, PQExpBuffer sql) |
| void | quoteAclUserName (PQExpBuffer output, const char *input) |
| void | buildShSecLabelQuery (const char *catalog_name, Oid objectId, PQExpBuffer sql) |
| void | emitShSecLabels (PGconn *conn, PGresult *res, PQExpBuffer buffer, const char *objtype, const char *objname) |
| bool | variable_is_guc_list_quote (const char *name) |
| bool | SplitGUCList (char *rawstring, char separator, char ***namelist) |
| void | makeAlterConfigCommand (PGconn *conn, const char *configitem, const char *type, const char *name, const char *type2, const char *name2, PQExpBuffer buf) |
Macro Definition Documentation
◆ CONVERT_PRIV
| #define CONVERT_PRIV | ( | code, | |
| keywd | |||
| ) |
Value:
Function Documentation
◆ AddAcl()
|
static |
Definition at line 617 of file dumputils.c.
618{
621 appendPQExpBufferStr(aclbuf, keyword);
624}
void appendPQExpBuffer(PQExpBuffer str, const char *fmt,...)
Definition: pqexpbuffer.c:265
void appendPQExpBufferChar(PQExpBuffer str, char ch)
Definition: pqexpbuffer.c:378
void appendPQExpBufferStr(PQExpBuffer str, const char *data)
Definition: pqexpbuffer.c:367
References appendPQExpBuffer(), appendPQExpBufferChar(), appendPQExpBufferStr(), PQExpBufferData::len, and subname.
◆ buildACLCommands()
| bool buildACLCommands | ( | const char * | name, |
| const char * | subname, | ||
| const char * | nspname, | ||
| const char * | type, | ||
| const char * | acls, | ||
| const char * | baseacls, | ||
| const char * | owner, | ||
| const char * | prefix, | ||
| int | remoteVersion, | ||
| PQExpBuffer | sql | ||
| ) |
Definition at line 64 of file dumputils.c.
68{
69 bool ok = true;
70 char **aclitems = NULL;
71 char **baseitems = NULL;
72 char **grantitems = NULL;
73 char **revokeitems = NULL;
74 int naclitems = 0;
75 int nbaseitems = 0;
76 int ngrantitems = 0;
77 int nrevokeitems = 0;
79 PQExpBuffer grantee,
80 grantor,
81 privs,
82 privswgo;
83 PQExpBuffer firstsql,
84 secondsql;
85
86 /*
87 * If the acl was NULL (initial default state), we need do nothing. Note
88 * that this is distinguishable from all-privileges-revoked, which will
89 * look like an empty array ("{}").
90 */
91 if (acls == NULL || *acls == '\0')
92 return true; /* object has default permissions */
93
94 /* treat empty-string owner same as NULL */
95 if (owner && *owner == '\0')
96 owner = NULL;
97
98 /* Parse the acls array */
100 {
101 free(aclitems);
102 return false;
103 }
104
105 /* Parse the baseacls too */
107 {
108 free(aclitems);
109 free(baseitems);
110 return false;
111 }
112
113 /*
114 * Compare the actual ACL with the base ACL, extracting the privileges
115 * that need to be granted (i.e., are in the actual ACL but not the base
116 * ACL) and the ones that need to be revoked (the reverse). We use plain
117 * string comparisons to check for matches. In principle that could be
118 * fooled by extraneous issues such as whitespace, but since all these
119 * strings are the work of aclitemout(), it should be OK in practice.
120 * Besides, a false mismatch will just cause the output to be a little
121 * more verbose than it really needed to be.
122 */
125 {
126 bool found = false;
127
129 {
131 {
132 found = true;
133 break;
134 }
135 }
136 if (!found)
137 grantitems[ngrantitems++] = aclitems[i];
138 }
141 {
142 bool found = false;
143
145 {
147 {
148 found = true;
149 break;
150 }
151 }
152 if (!found)
153 revokeitems[nrevokeitems++] = baseitems[i];
154 }
155
156 /* Prepare working buffers */
157 grantee = createPQExpBuffer();
158 grantor = createPQExpBuffer();
159 privs = createPQExpBuffer();
160 privswgo = createPQExpBuffer();
161
162 /*
163 * At the end, these two will be pasted together to form the result.
164 */
165 firstsql = createPQExpBuffer();
166 secondsql = createPQExpBuffer();
167
168 /*
169 * Build REVOKE statements for ACLs listed in revokeitems[].
170 */
172 {
175 grantee, grantor, privs, NULL))
176 {
177 ok = false;
178 break;
179 }
180
182 {
185 if (nspname && *nspname)
192 else
195 }
196 }
197
198 /*
199 * At this point we have issued REVOKE statements for all initial and
200 * default privileges that are no longer present on the object, so we are
201 * almost ready to GRANT the privileges listed in grantitems[].
202 *
203 * We still need some hacking though to cover the case where new default
204 * public privileges are added in new versions: the REVOKE ALL will revoke
205 * them, leading to behavior different from what the old version had,
206 * which is generally not what's wanted. So add back default privs if the
207 * source database is too old to have had that particular priv. (As of
208 * right now, no such cases exist in supported versions.)
209 */
210
211 /*
212 * Scan individual ACL items to be granted.
213 *
214 * The order in which privileges appear in the ACL string (the order they
215 * have been GRANT'd in, which the backend maintains) must be preserved to
216 * ensure that GRANTs WITH GRANT OPTION and subsequent GRANTs based on
217 * those are dumped in the correct order. However, some old server
218 * versions will show grants to PUBLIC before the owner's own grants; for
219 * consistency's sake, force the owner's grants to be output first.
220 */
222 {
224 grantee, grantor, privs, privswgo))
225 {
226 /*
227 * If the grantor isn't the owner, we'll need to use SET SESSION
228 * AUTHORIZATION to become the grantor. Issue the SET/RESET only
229 * if there's something useful to do.
230 */
232 {
233 PQExpBuffer thissql;
234
235 /* Set owner as grantor if that's not explicit in the ACL */
238
239 /* Make sure owner's own grants are output before others */
240 if (owner &&
241 strcmp(grantee->data, owner) == 0 &&
242 strcmp(grantor->data, owner) == 0)
243 thissql = firstsql;
244 else
245 thissql = secondsql;
246
248 && (!owner || strcmp(owner, grantor->data) != 0))
251
253 {
256 if (nspname && *nspname)
263 else
265 }
267 {
270 if (nspname && *nspname)
277 else
280 }
281
283 && (!owner || strcmp(owner, grantor->data) != 0))
285 }
286 }
287 else
288 {
289 /* parseAclItem failed, give up */
290 ok = false;
291 break;
292 }
293 }
294
295 destroyPQExpBuffer(grantee);
296 destroyPQExpBuffer(grantor);
297 destroyPQExpBuffer(privs);
298 destroyPQExpBuffer(privswgo);
299
301 destroyPQExpBuffer(firstsql);
302 destroyPQExpBuffer(secondsql);
303
304 free(aclitems);
305 free(baseitems);
306 free(grantitems);
307 free(revokeitems);
308
309 return ok;
310}
static bool parseAclItem(const char *item, const char *type, const char *name, const char *subname, int remoteVersion, PQExpBuffer grantee, PQExpBuffer grantor, PQExpBuffer privs, PQExpBuffer privswgo)
Definition: dumputils.c:383
void printfPQExpBuffer(PQExpBuffer str, const char *fmt,...)
Definition: pqexpbuffer.c:235
bool parsePGArray(const char *atext, char ***itemarray, int *nitems)
Definition: string_utils.c:819
Definition: pqexpbuffer.h:45
References appendPQExpBuffer(), appendPQExpBufferStr(), createPQExpBuffer(), PQExpBufferData::data, destroyPQExpBuffer(), fmtId(), free, i, j, PQExpBufferData::len, name, parseAclItem(), parsePGArray(), pg_malloc(), printfPQExpBuffer(), subname, and type.
Referenced by buildDefaultACLCommands(), dumpACL(), dumpRoleGUCPrivs(), and dumpTablespaces().
◆ buildDefaultACLCommands()
| bool buildDefaultACLCommands | ( | const char * | type, |
| const char * | nspname, | ||
| const char * | acls, | ||
| const char * | acldefault, | ||
| const char * | owner, | ||
| int | remoteVersion, | ||
| PQExpBuffer | sql | ||
| ) |
Definition at line 326 of file dumputils.c.
331{
332 PQExpBuffer prefix;
333
334 prefix = createPQExpBuffer();
335
336 /*
337 * We incorporate the target role directly into the command, rather than
338 * playing around with SET ROLE or anything like that. This is so that a
339 * permissions error leads to nothing happening, rather than changing
340 * default privileges for the wrong user.
341 */
343 fmtId(owner));
344 if (nspname)
346
347 /*
348 * There's no such thing as initprivs for a default ACL, so the base ACL
349 * is always just the object-type-specific default.
350 */
352 acls, acldefault, owner,
353 prefix->data, remoteVersion, sql))
354 {
355 destroyPQExpBuffer(prefix);
356 return false;
357 }
358
359 destroyPQExpBuffer(prefix);
360
361 return true;
362}
bool buildACLCommands(const char *name, const char *subname, const char *nspname, const char *type, const char *acls, const char *baseacls, const char *owner, const char *prefix, int remoteVersion, PQExpBuffer sql)
Definition: dumputils.c:64
References acldefault(), appendPQExpBuffer(), buildACLCommands(), createPQExpBuffer(), PQExpBufferData::data, destroyPQExpBuffer(), fmtId(), and type.
Referenced by dumpDefaultACL().
◆ buildShSecLabelQuery()
| void buildShSecLabelQuery | ( | const char * | catalog_name, |
| Oid | objectId, | ||
| PQExpBuffer | sql | ||
| ) |
Definition at line 637 of file dumputils.c.
639{
640 appendPQExpBuffer(sql,
641 "SELECT provider, label FROM pg_catalog.pg_shseclabel "
642 "WHERE classoid = 'pg_catalog.%s'::pg_catalog.regclass "
643 "AND objoid = '%u'", catalog_name, objectId);
644}
References appendPQExpBuffer().
Referenced by buildShSecLabels(), and dumpDatabase().
◆ dequoteAclUserName()
|
static |
Definition at line 578 of file dumputils.c.
579{
581
583 {
584 /*
585 * If user name isn't quoted, then just add it to the output buffer
586 */
589 else
590 {
591 /* Otherwise, it's a quoted username */
592 input++;
593 /* Loop until we come across an unescaped quote */
595 {
598
599 /*
600 * Quoting convention is to escape " as "". Keep this code in
601 * sync with putid() in backend's acl.c.
602 */
604 input++;
606 }
607 input++;
608 }
609 }
611}
FILE * input
References appendPQExpBufferChar(), input, output, and resetPQExpBuffer().
Referenced by parseAclItem().
◆ emitShSecLabels()
| void emitShSecLabels | ( | PGconn * | conn, |
| PGresult * | res, | ||
| PQExpBuffer | buffer, | ||
| const char * | objtype, | ||
| const char * | objname | ||
| ) |
Definition at line 655 of file dumputils.c.
657{
659
661 {
664
665 /* must use fmtId result before calling it again */
666 appendPQExpBuffer(buffer,
667 "SECURITY LABEL FOR %s ON %s",
669 appendPQExpBuffer(buffer,
670 " %s IS ",
671 fmtId(objname));
674 }
675}
char * PQgetvalue(const PGresult *res, int tup_num, int field_num)
Definition: fe-exec.c:3876
void appendStringLiteralConn(PQExpBuffer buf, const char *str, PGconn *conn)
Definition: string_utils.c:446
Definition: fe-auth-oauth-curl.c:65
References appendPQExpBuffer(), appendPQExpBufferStr(), appendStringLiteralConn(), conn, fmtId(), i, label, PQgetvalue(), and PQntuples().
Referenced by buildShSecLabels(), and dumpDatabase().
◆ makeAlterConfigCommand()
| void makeAlterConfigCommand | ( | PGconn * | conn, |
| const char * | configitem, | ||
| const char * | type, | ||
| const char * | name, | ||
| const char * | type2, | ||
| const char * | name2, | ||
| PQExpBuffer | buf | ||
| ) |
Definition at line 823 of file dumputils.c.
827{
828 char *mine;
829 char *pos;
830
831 /* Parse the configitem. If we can't find an "=", silently do nothing. */
832 mine = pg_strdup(configitem);
833 pos = strchr(mine, '=');
834 if (pos == NULL)
835 {
836 pg_free(mine);
837 return;
838 }
839 *pos++ = '\0';
840
841 /* Build the command, with suitable quoting for everything. */
843 if (type2 != NULL && name2 != NULL)
846
847 /*
848 * Variables that are marked GUC_LIST_QUOTE were already fully quoted by
849 * flatten_set_variable_args() before they were put into the setconfig
850 * array. However, because the quoting rules used there aren't exactly
851 * like SQL's, we have to break the list value apart and then quote the
852 * elements as string literals. (The elements may be double-quoted as-is,
853 * but we can't just feed them to the SQL parser; it would do the wrong
854 * thing with elements that are zero-length or longer than NAMEDATALEN.)
855 *
856 * Variables that are not so marked should just be emitted as simple
857 * string literals. If the variable is not known to
858 * variable_is_guc_list_quote(), we'll do that; this makes it unsafe to
859 * use GUC_LIST_QUOTE for extension variables.
860 */
862 {
863 char **namelist;
864 char **nameptr;
865
866 /* Parse string into list of identifiers */
867 /* this shouldn't fail really */
869 {
870 for (nameptr = namelist; *nameptr; nameptr++)
871 {
872 if (nameptr != namelist)
875 }
876 }
877 pg_free(namelist);
878 }
879 else
881
883
884 pg_free(mine);
885}
bool variable_is_guc_list_quote(const char *name)
Definition: dumputils.c:689
bool SplitGUCList(char *rawstring, char separator, char ***namelist)
Definition: dumputils.c:723
References appendPQExpBuffer(), appendPQExpBufferStr(), appendStringLiteralConn(), buf, conn, fmtId(), name, pg_free(), pg_strdup(), SplitGUCList(), type, and variable_is_guc_list_quote().
Referenced by dumpDatabaseConfig(), and dumpUserConfig().
◆ parseAclItem()
|
static |
Definition at line 383 of file dumputils.c.
387{
389 bool all_with_go = true;
390 bool all_without_go = true;
391 char *eqpos;
392 char *slpos;
393 char *pos;
394
396
397 /* user or group name is string up to = */
399 if (*eqpos != '=')
400 {
402 return false;
403 }
404
405 /* grantor should appear after / */
406 slpos = strchr(eqpos + 1, '/');
407 if (slpos)
408 {
409 *slpos++ = '\0';
410 slpos = dequoteAclUserName(grantor, slpos);
411 if (*slpos != '\0')
412 {
414 return false;
415 }
416 }
417 else
418 {
420 return false;
421 }
422
423 /* privilege codes */
424#define CONVERT_PRIV(code, keywd) \
425do { \
426 if ((pos = strchr(eqpos + 1, code))) \
427 { \
428 if (*(pos + 1) == '*' && privswgo != NULL) \
429 { \
430 AddAcl(privswgo, keywd, subname); \
431 all_without_go = false; \
432 } \
433 else \
434 { \
435 AddAcl(privs, keywd, subname); \
436 all_with_go = false; \
437 } \
438 } \
439 else \
440 all_with_go = all_without_go = false; \
441} while (0)
442
443 resetPQExpBuffer(privs);
444 resetPQExpBuffer(privswgo);
445
448 {
450
453 /* sequence only */
455 else
456 {
457 /* table only */
460 /* rest are not applicable to columns */
462 {
467 }
468 }
469
470 /* UPDATE */
472 }
483 {
486 }
488 {
492 }
505 {
508 }
510 {
513 }
514 else
515 abort();
516
517#undef CONVERT_PRIV
518
519 if (all_with_go)
520 {
521 resetPQExpBuffer(privs);
525 }
526 else if (all_without_go)
527 {
528 resetPQExpBuffer(privswgo);
532 }
533
535
536 return true;
537}
static char * dequoteAclUserName(PQExpBuffer output, char *input)
Definition: dumputils.c:578
#define CONVERT_PRIV(code, keywd)
References appendPQExpBuffer(), buf, CONVERT_PRIV, dequoteAclUserName(), pg_free(), pg_strdup(), printfPQExpBuffer(), resetPQExpBuffer(), subname, and type.
Referenced by buildACLCommands().
◆ quoteAclUserName()
| void quoteAclUserName | ( | PQExpBuffer | output, |
| const char * | input | ||
| ) |
Definition at line 544 of file dumputils.c.
545{
546 const char *src;
547 bool safe = true;
548
550 {
551 /* This test had better match what putid() does */
552 if (!isalnum((unsigned char) *src) && *src != '_')
553 {
554 safe = false;
555 break;
556 }
557 }
558 if (!safe)
561 {
562 /* A double quote character in a username is encoded as "" */
563 if (*src == '"')
566 }
567 if (!safe)
569}
References appendPQExpBufferChar(), input, and output.
Referenced by getNamespaces().
◆ SplitGUCList()
| bool SplitGUCList | ( | char * | rawstring, |
| char | separator, | ||
| char *** | namelist | ||
| ) |
Definition at line 723 of file dumputils.c.
725{
726 char *nextp = rawstring;
727 bool done = false;
728 char **nextptr;
729
730 /*
731 * Since we disallow empty identifiers, this is a conservative
732 * overestimate of the number of pointers we could need. Allow one for
733 * list terminator.
734 */
735 *namelist = nextptr = (char **)
737 *nextptr = NULL;
738
739 while (isspace((unsigned char) *nextp))
740 nextp++; /* skip leading whitespace */
741
742 if (*nextp == '\0')
743 return true; /* allow empty string */
744
745 /* At the top of the loop, we are at start of a new identifier. */
746 do
747 {
748 char *curname;
749 char *endp;
750
751 if (*nextp == '"')
752 {
753 /* Quoted name --- collapse quote-quote pairs */
754 curname = nextp + 1;
755 for (;;)
756 {
757 endp = strchr(nextp + 1, '"');
758 if (endp == NULL)
759 return false; /* mismatched quotes */
760 if (endp[1] != '"')
761 break; /* found end of quoted name */
762 /* Collapse adjacent quotes into one quote, and look again */
763 memmove(endp, endp + 1, strlen(endp));
764 nextp = endp;
765 }
766 /* endp now points at the terminating quote */
767 nextp = endp + 1;
768 }
769 else
770 {
771 /* Unquoted name --- extends to separator or whitespace */
772 curname = nextp;
774 !isspace((unsigned char) *nextp))
775 nextp++;
776 endp = nextp;
777 if (curname == nextp)
778 return false; /* empty unquoted name not allowed */
779 }
780
781 while (isspace((unsigned char) *nextp))
782 nextp++; /* skip trailing whitespace */
783
785 {
786 nextp++;
787 while (isspace((unsigned char) *nextp))
788 nextp++; /* skip leading whitespace for next */
789 /* we expect another name, so done remains false */
790 }
791 else if (*nextp == '\0')
792 done = true;
793 else
794 return false; /* invalid syntax */
795
796 /* Now safe to overwrite separator with a null */
797 *endp = '\0';
798
799 /*
800 * Finished isolating current name --- add it to output array
801 */
802 *nextptr++ = curname;
803
804 /* Loop back if we didn't reach end of string */
805 } while (!done);
806
807 *nextptr = NULL;
808 return true;
809}
Definition: print.h:106
References pg_malloc().
Referenced by makeAlterConfigCommand().
◆ variable_is_guc_list_quote()
| bool variable_is_guc_list_quote | ( | const char * | name | ) |
Definition at line 689 of file dumputils.c.
690{
697 return true;
698 else
699 return false;
700}
References name, and pg_strcasecmp().
Referenced by dumpFunc(), and makeAlterConfigCommand().
