PostgreSQL Source Code git master
All Data Structures Namespaces Files Functions Variables Typedefs Enumerations Enumerator Macros Pages
fe-connect.c
Go to the documentation of this file.
1/*-------------------------------------------------------------------------
2 *
3 * fe-connect.c
4 * functions related to setting up a connection to the backend
5 *
6 * Portions Copyright (c) 1996-2025, PostgreSQL Global Development Group
7 * Portions Copyright (c) 1994, Regents of the University of California
8 *
9 *
10 * IDENTIFICATION
11 * src/interfaces/libpq/fe-connect.c
12 *
13 *-------------------------------------------------------------------------
14 */
15
16#include "postgres_fe.h"
17
18#include <sys/stat.h>
19#include <fcntl.h>
20#include <ctype.h>
21#include <netdb.h>
22#include <time.h>
23#include <unistd.h>
24
25#include "common/base64.h"
26#include "common/ip.h"
27#include "common/link-canary.h"
28#include "common/scram-common.h"
29#include "common/string.h"
30#include "fe-auth.h"
31#include "fe-auth-oauth.h"
32#include "libpq-fe.h"
33#include "libpq-int.h"
34#include "mb/pg_wchar.h"
35#include "pg_config_paths.h"
36#include "port/pg_bswap.h"
37
38#ifdef WIN32
39#include "win32.h"
40#ifdef _WIN32_IE
41#undef _WIN32_IE
42#endif
43#define _WIN32_IE 0x0500
44#ifdef near
45#undef near
46#endif
47#define near
48#include <shlobj.h>
49#include <mstcpip.h>
50#else
51#include <sys/socket.h>
52#include <netdb.h>
53#include <netinet/in.h>
54#include <netinet/tcp.h>
55#include <pwd.h>
56#endif
57
58#ifdef WIN32
59#include "pthread-win32.h"
60#else
61#include <pthread.h>
62#endif
63
64#ifdef USE_LDAP
65#ifdef WIN32
66#include <winldap.h>
67#else
68/* OpenLDAP deprecates RFC 1823, but we want standard conformance */
69#define LDAP_DEPRECATED 1
70#include <ldap.h>
71typedef struct timeval LDAP_TIMEVAL;
72#endif
73static int ldapServiceLookup(const char *purl, PQconninfoOption *options,
74 PQExpBuffer errorMessage);
75#endif
76
77#ifndef WIN32
78#define PGPASSFILE ".pgpass"
79#else
80#define PGPASSFILE "pgpass.conf"
81#endif
82
83/*
84 * Pre-9.0 servers will return this SQLSTATE if asked to set
85 * application_name in a startup packet. We hard-wire the value rather
86 * than looking into errcodes.h since it reflects historical behavior
87 * rather than that of the current code.
88 */
89#define ERRCODE_APPNAME_UNKNOWN "42704"
90
91/* This is part of the protocol so just define it */
92#define ERRCODE_INVALID_PASSWORD "28P01"
93/* This too */
94#define ERRCODE_CANNOT_CONNECT_NOW "57P03"
95
96/*
97 * Cope with the various platform-specific ways to spell TCP keepalive socket
98 * options. This doesn't cover Windows, which as usual does its own thing.
99 */
100#if defined(TCP_KEEPIDLE)
101/* TCP_KEEPIDLE is the name of this option on Linux and *BSD */
102#define PG_TCP_KEEPALIVE_IDLE TCP_KEEPIDLE
103#define PG_TCP_KEEPALIVE_IDLE_STR "TCP_KEEPIDLE"
104#elif defined(TCP_KEEPALIVE_THRESHOLD)
105/* TCP_KEEPALIVE_THRESHOLD is the name of this option on Solaris >= 11 */
106#define PG_TCP_KEEPALIVE_IDLE TCP_KEEPALIVE_THRESHOLD
107#define PG_TCP_KEEPALIVE_IDLE_STR "TCP_KEEPALIVE_THRESHOLD"
108#elif defined(TCP_KEEPALIVE) && defined(__darwin__)
109/* TCP_KEEPALIVE is the name of this option on macOS */
110/* Caution: Solaris has this symbol but it means something different */
111#define PG_TCP_KEEPALIVE_IDLE TCP_KEEPALIVE
112#define PG_TCP_KEEPALIVE_IDLE_STR "TCP_KEEPALIVE"
113#endif
114
115/*
116 * fall back options if they are not specified by arguments or defined
117 * by environment variables
118 */
119#define DefaultHost "localhost"
120#define DefaultOption ""
121#ifdef USE_SSL
122#define DefaultChannelBinding "prefer"
123#else
124#define DefaultChannelBinding "disable"
125#endif
126#define DefaultTargetSessionAttrs "any"
127#define DefaultLoadBalanceHosts "disable"
128#ifdef USE_SSL
129#define DefaultSSLMode "prefer"
130#define DefaultSSLCertMode "allow"
131#else
132#define DefaultSSLMode "disable"
133#define DefaultSSLCertMode "disable"
134#endif
135#define DefaultSSLNegotiation "postgres"
136#ifdef ENABLE_GSS
137#include "fe-gssapi-common.h"
138#define DefaultGSSMode "prefer"
139#else
140#define DefaultGSSMode "disable"
141#endif
142
143/* ----------
144 * Definition of the conninfo parameters and their fallback resources.
145 *
146 * If Environment-Var and Compiled-in are specified as NULL, no
147 * fallback is available. If after all no value can be determined
148 * for an option, an error is returned.
149 *
150 * The value for the username is treated specially in conninfo_add_defaults.
151 * If the value is not obtained any other way, the username is determined
152 * by pg_fe_getauthname().
153 *
154 * The Label and Disp-Char entries are provided for applications that
155 * want to use PQconndefaults() to create a generic database connection
156 * dialog. Disp-Char is defined as follows:
157 * "" Normal input field
158 * "*" Password field - hide value
159 * "D" Debug option - don't show by default
160 *
161 * PQconninfoOptions[] is a constant static array that we use to initialize
162 * a dynamically allocated working copy. All the "val" fields in
163 * PQconninfoOptions[] *must* be NULL. In a working copy, non-null "val"
164 * fields point to malloc'd strings that should be freed when the working
165 * array is freed (see PQconninfoFree).
166 *
167 * The first part of each struct is identical to the one in libpq-fe.h,
168 * which is required since we memcpy() data between the two!
169 * ----------
170 */
171typedef struct _internalPQconninfoOption
172{
173 char *keyword; /* The keyword of the option */
174 char *envvar; /* Fallback environment variable name */
175 char *compiled; /* Fallback compiled in default value */
176 char *val; /* Option's current value, or NULL */
177 char *label; /* Label for field in connect dialog */
178 char *dispchar; /* Indicates how to display this field in a
179 * connect dialog. Values are: "" Display
180 * entered value as is "*" Password field -
181 * hide value "D" Debug option - don't show
182 * by default */
183 int dispsize; /* Field size in characters for dialog */
184 /* ---
185 * Anything above this comment must be synchronized with
186 * PQconninfoOption in libpq-fe.h, since we memcpy() data
187 * between them!
188 * ---
189 */
190 off_t connofs; /* Offset into PGconn struct, -1 if not there */
191} internalPQconninfoOption;
192
193static const internalPQconninfoOption PQconninfoOptions[] = {
194 {"service", "PGSERVICE", NULL, NULL,
195 "Database-Service", "", 20,
196 offsetof(struct pg_conn, pgservice)},
197
198 {"user", "PGUSER", NULL, NULL,
199 "Database-User", "", 20,
200 offsetof(struct pg_conn, pguser)},
201
202 {"password", "PGPASSWORD", NULL, NULL,
203 "Database-Password", "*", 20,
204 offsetof(struct pg_conn, pgpass)},
205
206 {"passfile", "PGPASSFILE", NULL, NULL,
207 "Database-Password-File", "", 64,
208 offsetof(struct pg_conn, pgpassfile)},
209
210 {"channel_binding", "PGCHANNELBINDING", DefaultChannelBinding, NULL,
211 "Channel-Binding", "", 8, /* sizeof("require") == 8 */
212 offsetof(struct pg_conn, channel_binding)},
213
214 {"connect_timeout", "PGCONNECT_TIMEOUT", NULL, NULL,
215 "Connect-timeout", "", 10, /* strlen(INT32_MAX) == 10 */
216 offsetof(struct pg_conn, connect_timeout)},
217
218 {"dbname", "PGDATABASE", NULL, NULL,
219 "Database-Name", "", 20,
220 offsetof(struct pg_conn, dbName)},
221
222 {"host", "PGHOST", NULL, NULL,
223 "Database-Host", "", 40,
224 offsetof(struct pg_conn, pghost)},
225
226 {"hostaddr", "PGHOSTADDR", NULL, NULL,
227 "Database-Host-IP-Address", "", 45,
228 offsetof(struct pg_conn, pghostaddr)},
229
230 {"port", "PGPORT", DEF_PGPORT_STR, NULL,
231 "Database-Port", "", 6,
232 offsetof(struct pg_conn, pgport)},
233
234 {"client_encoding", "PGCLIENTENCODING", NULL, NULL,
235 "Client-Encoding", "", 10,
236 offsetof(struct pg_conn, client_encoding_initial)},
237
238 {"options", "PGOPTIONS", DefaultOption, NULL,
239 "Backend-Options", "", 40,
240 offsetof(struct pg_conn, pgoptions)},
241
242 {"application_name", "PGAPPNAME", NULL, NULL,
243 "Application-Name", "", 64,
244 offsetof(struct pg_conn, appname)},
245
246 {"fallback_application_name", NULL, NULL, NULL,
247 "Fallback-Application-Name", "", 64,
248 offsetof(struct pg_conn, fbappname)},
249
250 {"keepalives", NULL, NULL, NULL,
251 "TCP-Keepalives", "", 1, /* should be just '0' or '1' */
252 offsetof(struct pg_conn, keepalives)},
253
254 {"keepalives_idle", NULL, NULL, NULL,
255 "TCP-Keepalives-Idle", "", 10, /* strlen(INT32_MAX) == 10 */
256 offsetof(struct pg_conn, keepalives_idle)},
257
258 {"keepalives_interval", NULL, NULL, NULL,
259 "TCP-Keepalives-Interval", "", 10, /* strlen(INT32_MAX) == 10 */
260 offsetof(struct pg_conn, keepalives_interval)},
261
262 {"keepalives_count", NULL, NULL, NULL,
263 "TCP-Keepalives-Count", "", 10, /* strlen(INT32_MAX) == 10 */
264 offsetof(struct pg_conn, keepalives_count)},
265
266 {"tcp_user_timeout", NULL, NULL, NULL,
267 "TCP-User-Timeout", "", 10, /* strlen(INT32_MAX) == 10 */
268 offsetof(struct pg_conn, pgtcp_user_timeout)},
269
270 /*
271 * ssl options are allowed even without client SSL support because the
272 * client can still handle SSL modes "disable" and "allow". Other
273 * parameters have no effect on non-SSL connections, so there is no reason
274 * to exclude them since none of them are mandatory.
275 */
276 {"sslmode", "PGSSLMODE", DefaultSSLMode, NULL,
277 "SSL-Mode", "", 12, /* sizeof("verify-full") == 12 */
278 offsetof(struct pg_conn, sslmode)},
279
280 {"sslnegotiation", "PGSSLNEGOTIATION", DefaultSSLNegotiation, NULL,
281 "SSL-Negotiation", "", 9, /* sizeof("postgres") == 9 */
282 offsetof(struct pg_conn, sslnegotiation)},
283
284 {"sslcompression", "PGSSLCOMPRESSION", "0", NULL,
285 "SSL-Compression", "", 1,
286 offsetof(struct pg_conn, sslcompression)},
287
288 {"sslcert", "PGSSLCERT", NULL, NULL,
289 "SSL-Client-Cert", "", 64,
290 offsetof(struct pg_conn, sslcert)},
291
292 {"sslkey", "PGSSLKEY", NULL, NULL,
293 "SSL-Client-Key", "", 64,
294 offsetof(struct pg_conn, sslkey)},
295
296 {"sslcertmode", "PGSSLCERTMODE", NULL, NULL,
297 "SSL-Client-Cert-Mode", "", 8, /* sizeof("disable") == 8 */
298 offsetof(struct pg_conn, sslcertmode)},
299
300 {"sslpassword", NULL, NULL, NULL,
301 "SSL-Client-Key-Password", "*", 20,
302 offsetof(struct pg_conn, sslpassword)},
303
304 {"sslrootcert", "PGSSLROOTCERT", NULL, NULL,
305 "SSL-Root-Certificate", "", 64,
306 offsetof(struct pg_conn, sslrootcert)},
307
308 {"sslcrl", "PGSSLCRL", NULL, NULL,
309 "SSL-Revocation-List", "", 64,
310 offsetof(struct pg_conn, sslcrl)},
311
312 {"sslcrldir", "PGSSLCRLDIR", NULL, NULL,
313 "SSL-Revocation-List-Dir", "", 64,
314 offsetof(struct pg_conn, sslcrldir)},
315
316 {"sslsni", "PGSSLSNI", "1", NULL,
317 "SSL-SNI", "", 1,
318 offsetof(struct pg_conn, sslsni)},
319
320 {"requirepeer", "PGREQUIREPEER", NULL, NULL,
321 "Require-Peer", "", 10,
322 offsetof(struct pg_conn, requirepeer)},
323
324 {"require_auth", "PGREQUIREAUTH", NULL, NULL,
325 "Require-Auth", "", 14, /* sizeof("scram-sha-256") == 14 */
326 offsetof(struct pg_conn, require_auth)},
327
328 {"min_protocol_version", "PGMINPROTOCOLVERSION",
329 NULL, NULL,
330 "Min-Protocol-Version", "", 6, /* sizeof("latest") = 6 */
331 offsetof(struct pg_conn, min_protocol_version)},
332
333 {"max_protocol_version", "PGMAXPROTOCOLVERSION",
334 NULL, NULL,
335 "Max-Protocol-Version", "", 6, /* sizeof("latest") = 6 */
336 offsetof(struct pg_conn, max_protocol_version)},
337
338 {"ssl_min_protocol_version", "PGSSLMINPROTOCOLVERSION", "TLSv1.2", NULL,
339 "SSL-Minimum-Protocol-Version", "", 8, /* sizeof("TLSv1.x") == 8 */
340 offsetof(struct pg_conn, ssl_min_protocol_version)},
341
342 {"ssl_max_protocol_version", "PGSSLMAXPROTOCOLVERSION", NULL, NULL,
343 "SSL-Maximum-Protocol-Version", "", 8, /* sizeof("TLSv1.x") == 8 */
344 offsetof(struct pg_conn, ssl_max_protocol_version)},
345
346 /*
347 * As with SSL, all GSS options are exposed even in builds that don't have
348 * support.
349 */
350 {"gssencmode", "PGGSSENCMODE", DefaultGSSMode, NULL,
351 "GSSENC-Mode", "", 8, /* sizeof("disable") == 8 */
352 offsetof(struct pg_conn, gssencmode)},
353
354 /* Kerberos and GSSAPI authentication support specifying the service name */
355 {"krbsrvname", "PGKRBSRVNAME", PG_KRB_SRVNAM, NULL,
356 "Kerberos-service-name", "", 20,
357 offsetof(struct pg_conn, krbsrvname)},
358
359 {"gsslib", "PGGSSLIB", NULL, NULL,
360 "GSS-library", "", 7, /* sizeof("gssapi") == 7 */
361 offsetof(struct pg_conn, gsslib)},
362
363 {"gssdelegation", "PGGSSDELEGATION", "0", NULL,
364 "GSS-delegation", "", 1,
365 offsetof(struct pg_conn, gssdelegation)},
366
367 {"replication", NULL, NULL, NULL,
368 "Replication", "D", 5,
369 offsetof(struct pg_conn, replication)},
370
371 {"target_session_attrs", "PGTARGETSESSIONATTRS",
372 DefaultTargetSessionAttrs, NULL,
373 "Target-Session-Attrs", "", 15, /* sizeof("prefer-standby") = 15 */
374 offsetof(struct pg_conn, target_session_attrs)},
375
376 {"load_balance_hosts", "PGLOADBALANCEHOSTS",
377 DefaultLoadBalanceHosts, NULL,
378 "Load-Balance-Hosts", "", 8, /* sizeof("disable") = 8 */
379 offsetof(struct pg_conn, load_balance_hosts)},
380
381 {"scram_client_key", NULL, NULL, NULL, "SCRAM-Client-Key", "D", SCRAM_MAX_KEY_LEN * 2,
382 offsetof(struct pg_conn, scram_client_key)},
383
384 {"scram_server_key", NULL, NULL, NULL, "SCRAM-Server-Key", "D", SCRAM_MAX_KEY_LEN * 2,
385 offsetof(struct pg_conn, scram_server_key)},
386
387 /* OAuth v2 */
388 {"oauth_issuer", NULL, NULL, NULL,
389 "OAuth-Issuer", "", 40,
390 offsetof(struct pg_conn, oauth_issuer)},
391
392 {"oauth_client_id", NULL, NULL, NULL,
393 "OAuth-Client-ID", "", 40,
394 offsetof(struct pg_conn, oauth_client_id)},
395
396 {"oauth_client_secret", NULL, NULL, NULL,
397 "OAuth-Client-Secret", "", 40,
398 offsetof(struct pg_conn, oauth_client_secret)},
399
400 {"oauth_scope", NULL, NULL, NULL,
401 "OAuth-Scope", "", 15,
402 offsetof(struct pg_conn, oauth_scope)},
403
404 {"sslkeylogfile", NULL, NULL, NULL,
405 "SSL-Key-Log-File", "D", 64,
406 offsetof(struct pg_conn, sslkeylogfile)},
407
408 /* Terminating entry --- MUST BE LAST */
409 {NULL, NULL, NULL, NULL,
410 NULL, NULL, 0}
411};
412
413static const PQEnvironmentOption EnvironmentOptions[] =
414{
415 /* common user-interface settings */
416 {
417 "PGDATESTYLE", "datestyle"
418 },
419 {
420 "PGTZ", "timezone"
421 },
422 /* internal performance-related settings */
423 {
424 "PGGEQO", "geqo"
425 },
426 {
427 NULL, NULL
428 }
429};
430
431static const pg_fe_sasl_mech *supported_sasl_mechs[] =
432{
433 &pg_scram_mech,
434 &pg_oauth_mech,
435};
436#define SASL_MECHANISM_COUNT lengthof(supported_sasl_mechs)
437
438/* The connection URI must start with either of the following designators: */
439static const char uri_designator[] = "postgresql://";
440static const char short_uri_designator[] = "postgres://";
441
442static bool connectOptions1(PGconn *conn, const char *conninfo);
443static bool init_allowed_encryption_methods(PGconn *conn);
444#if defined(USE_SSL) || defined(ENABLE_GSS)
445static int encryption_negotiation_failed(PGconn *conn);
446#endif
447static bool connection_failed(PGconn *conn);
448static bool select_next_encryption_method(PGconn *conn, bool have_valid_connection);
449static PGPing internal_ping(PGconn *conn);
450static void pqFreeCommandQueue(PGcmdQueueEntry *queue);
451static bool fillPGconn(PGconn *conn, PQconninfoOption *connOptions);
452static void freePGconn(PGconn *conn);
453static void release_conn_addrinfo(PGconn *conn);
454static int store_conn_addrinfo(PGconn *conn, struct addrinfo *addrlist);
455static void sendTerminateConn(PGconn *conn);
456static PQconninfoOption *conninfo_init(PQExpBuffer errorMessage);
457static PQconninfoOption *parse_connection_string(const char *connstr,
458 PQExpBuffer errorMessage, bool use_defaults);
459static int uri_prefix_length(const char *connstr);
460static bool recognized_connection_string(const char *connstr);
461static PQconninfoOption *conninfo_parse(const char *conninfo,
462 PQExpBuffer errorMessage, bool use_defaults);
463static PQconninfoOption *conninfo_array_parse(const char *const *keywords,
464 const char *const *values, PQExpBuffer errorMessage,
465 bool use_defaults, int expand_dbname);
466static bool conninfo_add_defaults(PQconninfoOption *options,
467 PQExpBuffer errorMessage);
468static PQconninfoOption *conninfo_uri_parse(const char *uri,
469 PQExpBuffer errorMessage, bool use_defaults);
470static bool conninfo_uri_parse_options(PQconninfoOption *options,
471 const char *uri, PQExpBuffer errorMessage);
472static bool conninfo_uri_parse_params(char *params,
473 PQconninfoOption *connOptions,
474 PQExpBuffer errorMessage);
475static char *conninfo_uri_decode(const char *str, PQExpBuffer errorMessage);
476static bool get_hexdigit(char digit, int *value);
477static const char *conninfo_getval(PQconninfoOption *connOptions,
478 const char *keyword);
479static PQconninfoOption *conninfo_storeval(PQconninfoOption *connOptions,
480 const char *keyword, const char *value,
481 PQExpBuffer errorMessage, bool ignoreMissing, bool uri_decode);
482static PQconninfoOption *conninfo_find(PQconninfoOption *connOptions,
483 const char *keyword);
484static void defaultNoticeReceiver(void *arg, const PGresult *res);
485static void defaultNoticeProcessor(void *arg, const char *message);
486static int parseServiceInfo(PQconninfoOption *options,
487 PQExpBuffer errorMessage);
488static int parseServiceFile(const char *serviceFile,
489 const char *service,
490 PQconninfoOption *options,
491 PQExpBuffer errorMessage,
492 bool *group_found);
493static char *pwdfMatchesString(char *buf, const char *token);
494static char *passwordFromFile(const char *hostname, const char *port, const char *dbname,
495 const char *username, const char *pgpassfile);
496static void pgpassfileWarning(PGconn *conn);
497static void default_threadlock(int acquire);
498static bool sslVerifyProtocolVersion(const char *version);
499static bool sslVerifyProtocolRange(const char *min, const char *max);
500static bool pqParseProtocolVersion(const char *value, ProtocolVersion *result, PGconn *conn, const char *context);
501
502
503/* global variable because fe-auth.c needs to access it */
504pgthreadlock_t pg_g_threadlock = default_threadlock;
505
506
507/*
508 * pqDropConnection
509 *
510 * Close any physical connection to the server, and reset associated
511 * state inside the connection object. We don't release state that
512 * would be needed to reconnect, though, nor local state that might still
513 * be useful later.
514 *
515 * We can always flush the output buffer, since there's no longer any hope
516 * of sending that data. However, unprocessed input data might still be
517 * valuable, so the caller must tell us whether to flush that or not.
518 */
519void
520pqDropConnection(PGconn *conn, bool flushInput)
521{
522 /* Drop any SSL state */
523 pqsecure_close(conn);
524
525 /* Close the socket itself */
526 if (conn->sock != PGINVALID_SOCKET)
527 closesocket(conn->sock);
528 conn->sock = PGINVALID_SOCKET;
529
530 /* Optionally discard any unread data */
531 if (flushInput)
532 conn->inStart = conn->inCursor = conn->inEnd = 0;
533
534 /* Always discard any unsent data */
535 conn->outCount = 0;
536
537 /* Likewise, discard any pending pipelined commands */
538 pqFreeCommandQueue(conn->cmd_queue_head);
539 conn->cmd_queue_head = conn->cmd_queue_tail = NULL;
540 pqFreeCommandQueue(conn->cmd_queue_recycle);
541 conn->cmd_queue_recycle = NULL;
542
543 /* Free authentication/encryption state */
544 if (conn->cleanup_async_auth)
545 {
546 /*
547 * Any in-progress async authentication should be torn down first so
548 * that cleanup_async_auth() can depend on the other authentication
549 * state if necessary.
550 */
551 conn->cleanup_async_auth(conn);
552 conn->cleanup_async_auth = NULL;
553 }
554 conn->async_auth = NULL;
555 /* cleanup_async_auth() should have done this, but make sure */
556 conn->altsock = PGINVALID_SOCKET;
557#ifdef ENABLE_GSS
558 {
559 OM_uint32 min_s;
560
561 if (conn->gcred != GSS_C_NO_CREDENTIAL)
562 {
563 gss_release_cred(&min_s, &conn->gcred);
564 conn->gcred = GSS_C_NO_CREDENTIAL;
565 }
566 if (conn->gctx)
567 gss_delete_sec_context(&min_s, &conn->gctx, GSS_C_NO_BUFFER);
568 if (conn->gtarg_nam)
569 gss_release_name(&min_s, &conn->gtarg_nam);
570 if (conn->gss_SendBuffer)
571 {
572 free(conn->gss_SendBuffer);
573 conn->gss_SendBuffer = NULL;
574 }
575 if (conn->gss_RecvBuffer)
576 {
577 free(conn->gss_RecvBuffer);
578 conn->gss_RecvBuffer = NULL;
579 }
580 if (conn->gss_ResultBuffer)
581 {
582 free(conn->gss_ResultBuffer);
583 conn->gss_ResultBuffer = NULL;
584 }
585 conn->gssenc = false;
586 }
587#endif
588#ifdef ENABLE_SSPI
589 if (conn->sspitarget)
590 {
591 free(conn->sspitarget);
592 conn->sspitarget = NULL;
593 }
594 if (conn->sspicred)
595 {
596 FreeCredentialsHandle(conn->sspicred);
597 free(conn->sspicred);
598 conn->sspicred = NULL;
599 }
600 if (conn->sspictx)
601 {
602 DeleteSecurityContext(conn->sspictx);
603 free(conn->sspictx);
604 conn->sspictx = NULL;
605 }
606 conn->usesspi = 0;
607#endif
608 if (conn->sasl_state)
609 {
610 conn->sasl->free(conn->sasl_state);
611 conn->sasl_state = NULL;
612 }
613}
614
615/*
616 * pqFreeCommandQueue
617 * Free all the entries of PGcmdQueueEntry queue passed.
618 */
619static void
620pqFreeCommandQueue(PGcmdQueueEntry *queue)
621{
622 while (queue != NULL)
623 {
624 PGcmdQueueEntry *cur = queue;
625
626 queue = cur->next;
627 free(cur->query);
628 free(cur);
629 }
630}
631
632/*
633 * pqDropServerData
634 *
635 * Clear all connection state data that was received from (or deduced about)
636 * the server. This is essential to do between connection attempts to
637 * different servers, else we may incorrectly hold over some data from the
638 * old server.
639 *
640 * It would be better to merge this into pqDropConnection, perhaps, but
641 * right now we cannot because that function is called immediately on
642 * detection of connection loss (cf. pqReadData, for instance). This data
643 * should be kept until we are actually starting a new connection.
644 */
645static void
646pqDropServerData(PGconn *conn)
647{
648 PGnotify *notify;
649 pgParameterStatus *pstatus;
650
651 /* Forget pending notifies */
652 notify = conn->notifyHead;
653 while (notify != NULL)
654 {
655 PGnotify *prev = notify;
656
657 notify = notify->next;
658 free(prev);
659 }
660 conn->notifyHead = conn->notifyTail = NULL;
661
662 /* Reset ParameterStatus data, as well as variables deduced from it */
663 pstatus = conn->pstatus;
664 while (pstatus != NULL)
665 {
666 pgParameterStatus *prev = pstatus;
667
668 pstatus = pstatus->next;
669 free(prev);
670 }
671 conn->pstatus = NULL;
672 conn->client_encoding = PG_SQL_ASCII;
673 conn->std_strings = false;
674 conn->default_transaction_read_only = PG_BOOL_UNKNOWN;
675 conn->in_hot_standby = PG_BOOL_UNKNOWN;
676 conn->scram_sha_256_iterations = SCRAM_SHA_256_DEFAULT_ITERATIONS;
677 conn->sversion = 0;
678
679 /* Drop large-object lookup data */
680 free(conn->lobjfuncs);
681 conn->lobjfuncs = NULL;
682
683 /* Reset assorted other per-connection state */
684 conn->last_sqlstate[0] = '\0';
685 conn->pversion_negotiated = false;
686 conn->auth_req_received = false;
687 conn->client_finished_auth = false;
688 conn->password_needed = false;
689 conn->gssapi_used = false;
690 conn->write_failed = false;
691 free(conn->write_err_msg);
692 conn->write_err_msg = NULL;
693 conn->oauth_want_retry = false;
694
695 /*
696 * Cancel connections need to retain their be_pid and be_key across
697 * PQcancelReset invocations, otherwise they would not have access to the
698 * secret token of the connection they are supposed to cancel.
699 */
700 if (!conn->cancelRequest)
701 {
702 conn->be_pid = 0;
703 if (conn->be_cancel_key != NULL)
704 {
705 free(conn->be_cancel_key);
706 conn->be_cancel_key = NULL;
707 }
708 conn->be_cancel_key_len = 0;
709 }
710}
711
712
713/*
714 * Connecting to a Database
715 *
716 * There are now six different ways a user of this API can connect to the
717 * database. Two are not recommended for use in new code, because of their
718 * lack of extensibility with respect to the passing of options to the
719 * backend. These are PQsetdb and PQsetdbLogin (the former now being a macro
720 * to the latter).
721 *
722 * If it is desired to connect in a synchronous (blocking) manner, use the
723 * function PQconnectdb or PQconnectdbParams. The former accepts a string of
724 * option = value pairs (or a URI) which must be parsed; the latter takes two
725 * NULL terminated arrays instead.
726 *
727 * To connect in an asynchronous (non-blocking) manner, use the functions
728 * PQconnectStart or PQconnectStartParams (which differ in the same way as
729 * PQconnectdb and PQconnectdbParams) and PQconnectPoll.
730 *
731 * The non-exported functions pqConnectDBStart, pqConnectDBComplete are
732 * part of the connection procedure implementation.
733 */
734
735/*
736 * PQconnectdbParams
737 *
738 * establishes a connection to a postgres backend through the postmaster
739 * using connection information in two arrays.
740 *
741 * The keywords array is defined as
742 *
743 * const char *params[] = {"option1", "option2", NULL}
744 *
745 * The values array is defined as
746 *
747 * const char *values[] = {"value1", "value2", NULL}
748 *
749 * Returns a PGconn* which is needed for all subsequent libpq calls, or NULL
750 * if a memory allocation failed.
751 * If the status field of the connection returned is CONNECTION_BAD,
752 * then some fields may be null'ed out instead of having valid values.
753 *
754 * You should call PQfinish (if conn is not NULL) regardless of whether this
755 * call succeeded.
756 */
757PGconn *
758PQconnectdbParams(const char *const *keywords,
759 const char *const *values,
760 int expand_dbname)
761{
762 PGconn *conn = PQconnectStartParams(keywords, values, expand_dbname);
763
764 if (conn && conn->status != CONNECTION_BAD)
765 (void) pqConnectDBComplete(conn);
766
767 return conn;
768}
769
770/*
771 * PQpingParams
772 *
773 * check server status, accepting parameters identical to PQconnectdbParams
774 */
775PGPing
776PQpingParams(const char *const *keywords,
777 const char *const *values,
778 int expand_dbname)
779{
780 PGconn *conn = PQconnectStartParams(keywords, values, expand_dbname);
781 PGPing ret;
782
783 ret = internal_ping(conn);
784 PQfinish(conn);
785
786 return ret;
787}
788
789/*
790 * PQconnectdb
791 *
792 * establishes a connection to a postgres backend through the postmaster
793 * using connection information in a string.
794 *
795 * The conninfo string is either a whitespace-separated list of
796 *
797 * option = value
798 *
799 * definitions or a URI (refer to the documentation for details.) Value
800 * might be a single value containing no whitespaces or a single quoted
801 * string. If a single quote should appear anywhere in the value, it must be
802 * escaped with a backslash like \'
803 *
804 * Returns a PGconn* which is needed for all subsequent libpq calls, or NULL
805 * if a memory allocation failed.
806 * If the status field of the connection returned is CONNECTION_BAD,
807 * then some fields may be null'ed out instead of having valid values.
808 *
809 * You should call PQfinish (if conn is not NULL) regardless of whether this
810 * call succeeded.
811 */
812PGconn *
813PQconnectdb(const char *conninfo)
814{
815 PGconn *conn = PQconnectStart(conninfo);
816
817 if (conn && conn->status != CONNECTION_BAD)
818 (void) pqConnectDBComplete(conn);
819
820 return conn;
821}
822
823/*
824 * PQping
825 *
826 * check server status, accepting parameters identical to PQconnectdb
827 */
828PGPing
829PQping(const char *conninfo)
830{
831 PGconn *conn = PQconnectStart(conninfo);
832 PGPing ret;
833
834 ret = internal_ping(conn);
835 PQfinish(conn);
836
837 return ret;
838}
839
840/*
841 * PQconnectStartParams
842 *
843 * Begins the establishment of a connection to a postgres backend through the
844 * postmaster using connection information in a struct.
845 *
846 * See comment for PQconnectdbParams for the definition of the string format.
847 *
848 * Returns a PGconn*. If NULL is returned, a malloc error has occurred, and
849 * you should not attempt to proceed with this connection. If the status
850 * field of the connection returned is CONNECTION_BAD, an error has
851 * occurred. In this case you should call PQfinish on the result, (perhaps
852 * inspecting the error message first). Other fields of the structure may not
853 * be valid if that occurs. If the status field is not CONNECTION_BAD, then
854 * this stage has succeeded - call PQconnectPoll, using select(2) to see when
855 * this is necessary.
856 *
857 * See PQconnectPoll for more info.
858 */
859PGconn *
860PQconnectStartParams(const char *const *keywords,
861 const char *const *values,
862 int expand_dbname)
863{
864 PGconn *conn;
865 PQconninfoOption *connOptions;
866
867 /*
868 * Allocate memory for the conn structure. Note that we also expect this
869 * to initialize conn->errorMessage to empty. All subsequent steps during
870 * connection initialization will only append to that buffer.
871 */
872 conn = pqMakeEmptyPGconn();
873 if (conn == NULL)
874 return NULL;
875
876 /*
877 * Parse the conninfo arrays
878 */
879 connOptions = conninfo_array_parse(keywords, values,
880 &conn->errorMessage,
881 true, expand_dbname);
882 if (connOptions == NULL)
883 {
884 conn->status = CONNECTION_BAD;
885 /* errorMessage is already set */
886 return conn;
887 }
888
889 /*
890 * Move option values into conn structure
891 */
892 if (!fillPGconn(conn, connOptions))
893 {
894 PQconninfoFree(connOptions);
895 return conn;
896 }
897
898 /*
899 * Free the option info - all is in conn now
900 */
901 PQconninfoFree(connOptions);
902
903 /*
904 * Compute derived options
905 */
906 if (!pqConnectOptions2(conn))
907 return conn;
908
909 /*
910 * Connect to the database
911 */
912 if (!pqConnectDBStart(conn))
913 {
914 /* Just in case we failed to set it in pqConnectDBStart */
915 conn->status = CONNECTION_BAD;
916 }
917
918 return conn;
919}
920
921/*
922 * PQconnectStart
923 *
924 * Begins the establishment of a connection to a postgres backend through the
925 * postmaster using connection information in a string.
926 *
927 * See comment for PQconnectdb for the definition of the string format.
928 *
929 * Returns a PGconn*. If NULL is returned, a malloc error has occurred, and
930 * you should not attempt to proceed with this connection. If the status
931 * field of the connection returned is CONNECTION_BAD, an error has
932 * occurred. In this case you should call PQfinish on the result, (perhaps
933 * inspecting the error message first). Other fields of the structure may not
934 * be valid if that occurs. If the status field is not CONNECTION_BAD, then
935 * this stage has succeeded - call PQconnectPoll, using select(2) to see when
936 * this is necessary.
937 *
938 * See PQconnectPoll for more info.
939 */
940PGconn *
941PQconnectStart(const char *conninfo)
942{
943 PGconn *conn;
944
945 /*
946 * Allocate memory for the conn structure. Note that we also expect this
947 * to initialize conn->errorMessage to empty. All subsequent steps during
948 * connection initialization will only append to that buffer.
949 */
950 conn = pqMakeEmptyPGconn();
951 if (conn == NULL)
952 return NULL;
953
954 /*
955 * Parse the conninfo string
956 */
957 if (!connectOptions1(conn, conninfo))
958 return conn;
959
960 /*
961 * Compute derived options
962 */
963 if (!pqConnectOptions2(conn))
964 return conn;
965
966 /*
967 * Connect to the database
968 */
969 if (!pqConnectDBStart(conn))
970 {
971 /* Just in case we failed to set it in pqConnectDBStart */
972 conn->status = CONNECTION_BAD;
973 }
974
975 return conn;
976}
977
978/*
979 * Move option values into conn structure
980 *
981 * Don't put anything cute here --- intelligence should be in
982 * pqConnectOptions2 ...
983 *
984 * Returns true on success. On failure, returns false and sets error message.
985 */
986static bool
987fillPGconn(PGconn *conn, PQconninfoOption *connOptions)
988{
989 const internalPQconninfoOption *option;
990
991 for (option = PQconninfoOptions; option->keyword; option++)
992 {
993 if (option->connofs >= 0)
994 {
995 const char *tmp = conninfo_getval(connOptions, option->keyword);
996
997 if (tmp)
998 {
999 char **connmember = (char **) ((char *) conn + option->connofs);
1000
1001 free(*connmember);
1002 *connmember = strdup(tmp);
1003 if (*connmember == NULL)
1004 {
1005 libpq_append_conn_error(conn, "out of memory");
1006 return false;
1007 }
1008 }
1009 }
1010 }
1011
1012 return true;
1013}
1014
1015/*
1016 * Copy over option values from srcConn to dstConn
1017 *
1018 * Don't put anything cute here --- intelligence should be in
1019 * pqConnectOptions2 ...
1020 *
1021 * Returns true on success. On failure, returns false and sets error message of
1022 * dstConn.
1023 */
1024bool
1025pqCopyPGconn(PGconn *srcConn, PGconn *dstConn)
1026{
1027 const internalPQconninfoOption *option;
1028
1029 /* copy over connection options */
1030 for (option = PQconninfoOptions; option->keyword; option++)
1031 {
1032 if (option->connofs >= 0)
1033 {
1034 const char **tmp = (const char **) ((char *) srcConn + option->connofs);
1035
1036 if (*tmp)
1037 {
1038 char **dstConnmember = (char **) ((char *) dstConn + option->connofs);
1039
1040 if (*dstConnmember)
1041 free(*dstConnmember);
1042 *dstConnmember = strdup(*tmp);
1043 if (*dstConnmember == NULL)
1044 {
1045 libpq_append_conn_error(dstConn, "out of memory");
1046 return false;
1047 }
1048 }
1049 }
1050 }
1051 return true;
1052}
1053
1054/*
1055 * connectOptions1
1056 *
1057 * Internal subroutine to set up connection parameters given an already-
1058 * created PGconn and a conninfo string. Derived settings should be
1059 * processed by calling pqConnectOptions2 next. (We split them because
1060 * PQsetdbLogin overrides defaults in between.)
1061 *
1062 * Returns true if OK, false if trouble (in which case errorMessage is set
1063 * and so is conn->status).
1064 */
1065static bool
1066connectOptions1(PGconn *conn, const char *conninfo)
1067{
1068 PQconninfoOption *connOptions;
1069
1070 /*
1071 * Parse the conninfo string
1072 */
1073 connOptions = parse_connection_string(conninfo, &conn->errorMessage, true);
1074 if (connOptions == NULL)
1075 {
1076 conn->status = CONNECTION_BAD;
1077 /* errorMessage is already set */
1078 return false;
1079 }
1080
1081 /*
1082 * Move option values into conn structure
1083 */
1084 if (!fillPGconn(conn, connOptions))
1085 {
1086 conn->status = CONNECTION_BAD;
1087 PQconninfoFree(connOptions);
1088 return false;
1089 }
1090
1091 /*
1092 * Free the option info - all is in conn now
1093 */
1094 PQconninfoFree(connOptions);
1095
1096 return true;
1097}
1098
1099/*
1100 * Count the number of elements in a simple comma-separated list.
1101 */
1102static int
1103count_comma_separated_elems(const char *input)
1104{
1105 int n;
1106
1107 n = 1;
1108 for (; *input != '\0'; input++)
1109 {
1110 if (*input == ',')
1111 n++;
1112 }
1113
1114 return n;
1115}
1116
1117/*
1118 * Parse a simple comma-separated list.
1119 *
1120 * On each call, returns a malloc'd copy of the next element, and sets *more
1121 * to indicate whether there are any more elements in the list after this,
1122 * and updates *startptr to point to the next element, if any.
1123 *
1124 * On out of memory, returns NULL.
1125 */
1126static char *
1127parse_comma_separated_list(char **startptr, bool *more)
1128{
1129 char *p;
1130 char *s = *startptr;
1131 char *e;
1132 int len;
1133
1134 /*
1135 * Search for the end of the current element; a comma or end-of-string
1136 * acts as a terminator.
1137 */
1138 e = s;
1139 while (*e != '\0' && *e != ',')
1140 ++e;
1141 *more = (*e == ',');
1142
1143 len = e - s;
1144 p = (char *) malloc(sizeof(char) * (len + 1));
1145 if (p)
1146 {
1147 memcpy(p, s, len);
1148 p[len] = '\0';
1149 }
1150 *startptr = e + 1;
1151
1152 return p;
1153}
1154
1155/*
1156 * Initializes the prng_state field of the connection. We want something
1157 * unpredictable, so if possible, use high-quality random bits for the
1158 * seed. Otherwise, fall back to a seed based on the connection address,
1159 * timestamp and PID.
1160 */
1161static void
1162libpq_prng_init(PGconn *conn)
1163{
1164 uint64 rseed;
1165 struct timeval tval = {0};
1166
1167 if (pg_prng_strong_seed(&conn->prng_state))
1168 return;
1169
1170 gettimeofday(&tval, NULL);
1171
1172 rseed = ((uintptr_t) conn) ^
1173 ((uint64) getpid()) ^
1174 ((uint64) tval.tv_usec) ^
1175 ((uint64) tval.tv_sec);
1176
1177 pg_prng_seed(&conn->prng_state, rseed);
1178}
1179
1180/*
1181 * Fills the connection's allowed_sasl_mechs list with all supported SASL
1182 * mechanisms.
1183 */
1184static inline void
1185fill_allowed_sasl_mechs(PGconn *conn)
1186{
1187 /*---
1188 * We only support two mechanisms at the moment, so rather than deal with a
1189 * linked list, conn->allowed_sasl_mechs is an array of static length. We
1190 * rely on the compile-time assertion here to keep us honest.
1191 *
1192 * To add a new mechanism to require_auth,
1193 * - add it to supported_sasl_mechs,
1194 * - update the length of conn->allowed_sasl_mechs,
1195 * - handle the new mechanism name in the require_auth portion of
1196 * pqConnectOptions2(), below.
1197 */
1198 StaticAssertDecl(lengthof(conn->allowed_sasl_mechs) == SASL_MECHANISM_COUNT,
1199 "conn->allowed_sasl_mechs[] is not sufficiently large for holding all supported SASL mechanisms");
1200
1201 for (int i = 0; i < SASL_MECHANISM_COUNT; i++)
1202 conn->allowed_sasl_mechs[i] = supported_sasl_mechs[i];
1203}
1204
1205/*
1206 * Clears the connection's allowed_sasl_mechs list.
1207 */
1208static inline void
1209clear_allowed_sasl_mechs(PGconn *conn)
1210{
1211 for (int i = 0; i < lengthof(conn->allowed_sasl_mechs); i++)
1212 conn->allowed_sasl_mechs[i] = NULL;
1213}
1214
1215/*
1216 * Helper routine that searches the static allowed_sasl_mechs list for a
1217 * specific mechanism.
1218 */
1219static inline int
1220index_of_allowed_sasl_mech(PGconn *conn, const pg_fe_sasl_mech *mech)
1221{
1222 for (int i = 0; i < lengthof(conn->allowed_sasl_mechs); i++)
1223 {
1224 if (conn->allowed_sasl_mechs[i] == mech)
1225 return i;
1226 }
1227
1228 return -1;
1229}
1230
1231/*
1232 * pqConnectOptions2
1233 *
1234 * Compute derived connection options after absorbing all user-supplied info.
1235 *
1236 * Returns true if OK, false if trouble (in which case errorMessage is set
1237 * and so is conn->status).
1238 */
1239bool
1240pqConnectOptions2(PGconn *conn)
1241{
1242 int i;
1243
1244 /*
1245 * Allocate memory for details about each host to which we might possibly
1246 * try to connect. For that, count the number of elements in the hostaddr
1247 * or host options. If neither is given, assume one host.
1248 */
1249 conn->whichhost = 0;
1250 if (conn->pghostaddr && conn->pghostaddr[0] != '\0')
1251 conn->nconnhost = count_comma_separated_elems(conn->pghostaddr);
1252 else if (conn->pghost && conn->pghost[0] != '\0')
1253 conn->nconnhost = count_comma_separated_elems(conn->pghost);
1254 else
1255 conn->nconnhost = 1;
1256 conn->connhost = (pg_conn_host *)
1257 calloc(conn->nconnhost, sizeof(pg_conn_host));
1258 if (conn->connhost == NULL)
1259 goto oom_error;
1260
1261 /*
1262 * We now have one pg_conn_host structure per possible host. Fill in the
1263 * host and hostaddr fields for each, by splitting the parameter strings.
1264 */
1265 if (conn->pghostaddr != NULL && conn->pghostaddr[0] != '\0')
1266 {
1267 char *s = conn->pghostaddr;
1268 bool more = true;
1269
1270 for (i = 0; i < conn->nconnhost && more; i++)
1271 {
1272 conn->connhost[i].hostaddr = parse_comma_separated_list(&s, &more);
1273 if (conn->connhost[i].hostaddr == NULL)
1274 goto oom_error;
1275 }
1276
1277 /*
1278 * If hostaddr was given, the array was allocated according to the
1279 * number of elements in the hostaddr list, so it really should be the
1280 * right size.
1281 */
1282 Assert(!more);
1283 Assert(i == conn->nconnhost);
1284 }
1285
1286 if (conn->pghost != NULL && conn->pghost[0] != '\0')
1287 {
1288 char *s = conn->pghost;
1289 bool more = true;
1290
1291 for (i = 0; i < conn->nconnhost && more; i++)
1292 {
1293 conn->connhost[i].host = parse_comma_separated_list(&s, &more);
1294 if (conn->connhost[i].host == NULL)
1295 goto oom_error;
1296 }
1297
1298 /* Check for wrong number of host items. */
1299 if (more || i != conn->nconnhost)
1300 {
1301 conn->status = CONNECTION_BAD;
1302 libpq_append_conn_error(conn, "could not match %d host names to %d hostaddr values",
1303 count_comma_separated_elems(conn->pghost), conn->nconnhost);
1304 return false;
1305 }
1306 }
1307
1308 /*
1309 * Now, for each host slot, identify the type of address spec, and fill in
1310 * the default address if nothing was given.
1311 */
1312 for (i = 0; i < conn->nconnhost; i++)
1313 {
1314 pg_conn_host *ch = &conn->connhost[i];
1315
1316 if (ch->hostaddr != NULL && ch->hostaddr[0] != '\0')
1317 ch->type = CHT_HOST_ADDRESS;
1318 else if (ch->host != NULL && ch->host[0] != '\0')
1319 {
1320 ch->type = CHT_HOST_NAME;
1321 if (is_unixsock_path(ch->host))
1322 ch->type = CHT_UNIX_SOCKET;
1323 }
1324 else
1325 {
1326 free(ch->host);
1327
1328 /*
1329 * This bit selects the default host location. If you change
1330 * this, see also pg_regress.
1331 */
1332 if (DEFAULT_PGSOCKET_DIR[0])
1333 {
1334 ch->host = strdup(DEFAULT_PGSOCKET_DIR);
1335 ch->type = CHT_UNIX_SOCKET;
1336 }
1337 else
1338 {
1339 ch->host = strdup(DefaultHost);
1340 ch->type = CHT_HOST_NAME;
1341 }
1342 if (ch->host == NULL)
1343 goto oom_error;
1344 }
1345 }
1346
1347 /*
1348 * Next, work out the port number corresponding to each host name.
1349 *
1350 * Note: unlike the above for host names, this could leave the port fields
1351 * as null or empty strings. We will substitute DEF_PGPORT whenever we
1352 * read such a port field.
1353 */
1354 if (conn->pgport != NULL && conn->pgport[0] != '\0')
1355 {
1356 char *s = conn->pgport;
1357 bool more = true;
1358
1359 for (i = 0; i < conn->nconnhost && more; i++)
1360 {
1361 conn->connhost[i].port = parse_comma_separated_list(&s, &more);
1362 if (conn->connhost[i].port == NULL)
1363 goto oom_error;
1364 }
1365
1366 /*
1367 * If exactly one port was given, use it for every host. Otherwise,
1368 * there must be exactly as many ports as there were hosts.
1369 */
1370 if (i == 1 && !more)
1371 {
1372 for (i = 1; i < conn->nconnhost; i++)
1373 {
1374 conn->connhost[i].port = strdup(conn->connhost[0].port);
1375 if (conn->connhost[i].port == NULL)
1376 goto oom_error;
1377 }
1378 }
1379 else if (more || i != conn->nconnhost)
1380 {
1381 conn->status = CONNECTION_BAD;
1382 libpq_append_conn_error(conn, "could not match %d port numbers to %d hosts",
1383 count_comma_separated_elems(conn->pgport), conn->nconnhost);
1384 return false;
1385 }
1386 }
1387
1388 /*
1389 * If user name was not given, fetch it. (Most likely, the fetch will
1390 * fail, since the only way we get here is if pg_fe_getauthname() failed
1391 * during conninfo_add_defaults(). But now we want an error message.)
1392 */
1393 if (conn->pguser == NULL || conn->pguser[0] == '\0')
1394 {
1395 free(conn->pguser);
1396 conn->pguser = pg_fe_getauthname(&conn->errorMessage);
1397 if (!conn->pguser)
1398 {
1399 conn->status = CONNECTION_BAD;
1400 return false;
1401 }
1402 }
1403
1404 /*
1405 * If database name was not given, default it to equal user name
1406 */
1407 if (conn->dbName == NULL || conn->dbName[0] == '\0')
1408 {
1409 free(conn->dbName);
1410 conn->dbName = strdup(conn->pguser);
1411 if (!conn->dbName)
1412 goto oom_error;
1413 }
1414
1415 /*
1416 * If password was not given, try to look it up in password file. Note
1417 * that the result might be different for each host/port pair.
1418 */
1419 if (conn->pgpass == NULL || conn->pgpass[0] == '\0')
1420 {
1421 /* If password file wasn't specified, use ~/PGPASSFILE */
1422 if (conn->pgpassfile == NULL || conn->pgpassfile[0] == '\0')
1423 {
1424 char homedir[MAXPGPATH];
1425
1426 if (pqGetHomeDirectory(homedir, sizeof(homedir)))
1427 {
1428 free(conn->pgpassfile);
1429 conn->pgpassfile = malloc(MAXPGPATH);
1430 if (!conn->pgpassfile)
1431 goto oom_error;
1432 snprintf(conn->pgpassfile, MAXPGPATH, "%s/%s",
1433 homedir, PGPASSFILE);
1434 }
1435 }
1436
1437 if (conn->pgpassfile != NULL && conn->pgpassfile[0] != '\0')
1438 {
1439 for (i = 0; i < conn->nconnhost; i++)
1440 {
1441 /*
1442 * Try to get a password for this host from file. We use host
1443 * for the hostname search key if given, else hostaddr (at
1444 * least one of them is guaranteed nonempty by now).
1445 */
1446 const char *pwhost = conn->connhost[i].host;
1447
1448 if (pwhost == NULL || pwhost[0] == '\0')
1449 pwhost = conn->connhost[i].hostaddr;
1450
1451 conn->connhost[i].password =
1452 passwordFromFile(pwhost,
1453 conn->connhost[i].port,
1454 conn->dbName,
1455 conn->pguser,
1456 conn->pgpassfile);
1457 }
1458 }
1459 }
1460
1461 /*
1462 * parse and validate require_auth option
1463 */
1464 if (conn->require_auth && conn->require_auth[0])
1465 {
1466 char *s = conn->require_auth;
1467 bool first,
1468 more;
1469 bool negated = false;
1470
1471 /*
1472 * By default, start from an empty set of allowed methods and
1473 * mechanisms, and add to it.
1474 */
1475 conn->auth_required = true;
1476 conn->allowed_auth_methods = 0;
1477 clear_allowed_sasl_mechs(conn);
1478
1479 for (first = true, more = true; more; first = false)
1480 {
1481 char *method,
1482 *part;
1483 uint32 bits = 0;
1484 const pg_fe_sasl_mech *mech = NULL;
1485
1486 part = parse_comma_separated_list(&s, &more);
1487 if (part == NULL)
1488 goto oom_error;
1489
1490 /*
1491 * Check for negation, e.g. '!password'. If one element is
1492 * negated, they all have to be.
1493 */
1494 method = part;
1495 if (*method == '!')
1496 {
1497 if (first)
1498 {
1499 /*
1500 * Switch to a permissive set of allowed methods and
1501 * mechanisms, and subtract from it.
1502 */
1503 conn->auth_required = false;
1504 conn->allowed_auth_methods = -1;
1505 fill_allowed_sasl_mechs(conn);
1506 }
1507 else if (!negated)
1508 {
1509 conn->status = CONNECTION_BAD;
1510 libpq_append_conn_error(conn, "negative require_auth method \"%s\" cannot be mixed with non-negative methods",
1511 method);
1512
1513 free(part);
1514 return false;
1515 }
1516
1517 negated = true;
1518 method++;
1519 }
1520 else if (negated)
1521 {
1522 conn->status = CONNECTION_BAD;
1523 libpq_append_conn_error(conn, "require_auth method \"%s\" cannot be mixed with negative methods",
1524 method);
1525
1526 free(part);
1527 return false;
1528 }
1529
1530 /*
1531 * First group: methods that can be handled solely with the
1532 * authentication request codes.
1533 */
1534 if (strcmp(method, "password") == 0)
1535 {
1536 bits = (1 << AUTH_REQ_PASSWORD);
1537 }
1538 else if (strcmp(method, "md5") == 0)
1539 {
1540 bits = (1 << AUTH_REQ_MD5);
1541 }
1542 else if (strcmp(method, "gss") == 0)
1543 {
1544 bits = (1 << AUTH_REQ_GSS);
1545 bits |= (1 << AUTH_REQ_GSS_CONT);
1546 }
1547 else if (strcmp(method, "sspi") == 0)
1548 {
1549 bits = (1 << AUTH_REQ_SSPI);
1550 bits |= (1 << AUTH_REQ_GSS_CONT);
1551 }
1552
1553 /*
1554 * Next group: SASL mechanisms. All of these use the same request
1555 * codes, so the list of allowed mechanisms is tracked separately.
1556 *
1557 * supported_sasl_mechs must contain all mechanisms handled here.
1558 */
1559 else if (strcmp(method, "scram-sha-256") == 0)
1560 {
1561 mech = &pg_scram_mech;
1562 }
1563 else if (strcmp(method, "oauth") == 0)
1564 {
1565 mech = &pg_oauth_mech;
1566 }
1567
1568 /*
1569 * Final group: meta-options.
1570 */
1571 else if (strcmp(method, "none") == 0)
1572 {
1573 /*
1574 * Special case: let the user explicitly allow (or disallow)
1575 * connections where the server does not send an explicit
1576 * authentication challenge, such as "trust" and "cert" auth.
1577 */
1578 if (negated) /* "!none" */
1579 {
1580 if (conn->auth_required)
1581 goto duplicate;
1582
1583 conn->auth_required = true;
1584 }
1585 else /* "none" */
1586 {
1587 if (!conn->auth_required)
1588 goto duplicate;
1589
1590 conn->auth_required = false;
1591 }
1592
1593 free(part);
1594 continue; /* avoid the bitmask manipulation below */
1595 }
1596 else
1597 {
1598 conn->status = CONNECTION_BAD;
1599 libpq_append_conn_error(conn, "invalid %s value: \"%s\"",
1600 "require_auth", method);
1601
1602 free(part);
1603 return false;
1604 }
1605
1606 if (mech)
1607 {
1608 /*
1609 * Update the mechanism set only. The method bitmask will be
1610 * updated for SASL further down.
1611 */
1612 Assert(!bits);
1613
1614 if (negated)
1615 {
1616 /* Remove the existing mechanism from the list. */
1617 i = index_of_allowed_sasl_mech(conn, mech);
1618 if (i < 0)
1619 goto duplicate;
1620
1621 conn->allowed_sasl_mechs[i] = NULL;
1622 }
1623 else
1624 {
1625 /*
1626 * Find a space to put the new mechanism (after making
1627 * sure it's not already there).
1628 */
1629 i = index_of_allowed_sasl_mech(conn, mech);
1630 if (i >= 0)
1631 goto duplicate;
1632
1633 i = index_of_allowed_sasl_mech(conn, NULL);
1634 if (i < 0)
1635 {
1636 /* Should not happen; the pointer list is corrupted. */
1637 Assert(false);
1638
1639 conn->status = CONNECTION_BAD;
1640 libpq_append_conn_error(conn,
1641 "internal error: no space in allowed_sasl_mechs");
1642 free(part);
1643 return false;
1644 }
1645
1646 conn->allowed_sasl_mechs[i] = mech;
1647 }
1648 }
1649 else
1650 {
1651 /* Update the method bitmask. */
1652 Assert(bits);
1653
1654 if (negated)
1655 {
1656 if ((conn->allowed_auth_methods & bits) == 0)
1657 goto duplicate;
1658
1659 conn->allowed_auth_methods &= ~bits;
1660 }
1661 else
1662 {
1663 if ((conn->allowed_auth_methods & bits) == bits)
1664 goto duplicate;
1665
1666 conn->allowed_auth_methods |= bits;
1667 }
1668 }
1669
1670 free(part);
1671 continue;
1672
1673 duplicate:
1674
1675 /*
1676 * A duplicated method probably indicates a typo in a setting
1677 * where typos are extremely risky.
1678 */
1679 conn->status = CONNECTION_BAD;
1680 libpq_append_conn_error(conn, "require_auth method \"%s\" is specified more than once",
1681 part);
1682
1683 free(part);
1684 return false;
1685 }
1686
1687 /*
1688 * Finally, allow SASL authentication requests if (and only if) we've
1689 * allowed any mechanisms.
1690 */
1691 {
1692 bool allowed = false;
1693 const uint32 sasl_bits =
1694 (1 << AUTH_REQ_SASL)
1695 | (1 << AUTH_REQ_SASL_CONT)
1696 | (1 << AUTH_REQ_SASL_FIN);
1697
1698 for (i = 0; i < lengthof(conn->allowed_sasl_mechs); i++)
1699 {
1700 if (conn->allowed_sasl_mechs[i])
1701 {
1702 allowed = true;
1703 break;
1704 }
1705 }
1706
1707 /*
1708 * For the standard case, add the SASL bits to the (default-empty)
1709 * set if needed. For the negated case, remove them.
1710 */
1711 if (!negated && allowed)
1712 conn->allowed_auth_methods |= sasl_bits;
1713 else if (negated && !allowed)
1714 conn->allowed_auth_methods &= ~sasl_bits;
1715 }
1716 }
1717
1718 /*
1719 * validate channel_binding option
1720 */
1721 if (conn->channel_binding)
1722 {
1723 if (strcmp(conn->channel_binding, "disable") != 0
1724 && strcmp(conn->channel_binding, "prefer") != 0
1725 && strcmp(conn->channel_binding, "require") != 0)
1726 {
1727 conn->status = CONNECTION_BAD;
1728 libpq_append_conn_error(conn, "invalid %s value: \"%s\"",
1729 "channel_binding", conn->channel_binding);
1730 return false;
1731 }
1732 }
1733 else
1734 {
1735 conn->channel_binding = strdup(DefaultChannelBinding);
1736 if (!conn->channel_binding)
1737 goto oom_error;
1738 }
1739
1740#ifndef USE_SSL
1741
1742 /*
1743 * sslrootcert=system is not supported. Since setting this changes the
1744 * default sslmode, check this _before_ we validate sslmode, to avoid
1745 * confusing the user with errors for an option they may not have set.
1746 */
1747 if (conn->sslrootcert
1748 && strcmp(conn->sslrootcert, "system") == 0)
1749 {
1750 conn->status = CONNECTION_BAD;
1751 libpq_append_conn_error(conn, "%s value \"%s\" invalid when SSL support is not compiled in",
1752 "sslrootcert", conn->sslrootcert);
1753 return false;
1754 }
1755#endif
1756
1757 /*
1758 * validate sslmode option
1759 */
1760 if (conn->sslmode)
1761 {
1762 if (strcmp(conn->sslmode, "disable") != 0
1763 && strcmp(conn->sslmode, "allow") != 0
1764 && strcmp(conn->sslmode, "prefer") != 0
1765 && strcmp(conn->sslmode, "require") != 0
1766 && strcmp(conn->sslmode, "verify-ca") != 0
1767 && strcmp(conn->sslmode, "verify-full") != 0)
1768 {
1769 conn->status = CONNECTION_BAD;
1770 libpq_append_conn_error(conn, "invalid %s value: \"%s\"",
1771 "sslmode", conn->sslmode);
1772 return false;
1773 }
1774
1775#ifndef USE_SSL
1776 switch (conn->sslmode[0])
1777 {
1778 case 'a': /* "allow" */
1779 case 'p': /* "prefer" */
1780
1781 /*
1782 * warn user that an SSL connection will never be negotiated
1783 * since SSL was not compiled in?
1784 */
1785 break;
1786
1787 case 'r': /* "require" */
1788 case 'v': /* "verify-ca" or "verify-full" */
1789 conn->status = CONNECTION_BAD;
1790 libpq_append_conn_error(conn, "%s value \"%s\" invalid when SSL support is not compiled in",
1791 "sslmode", conn->sslmode);
1792 return false;
1793 }
1794#endif
1795 }
1796 else
1797 {
1798 conn->sslmode = strdup(DefaultSSLMode);
1799 if (!conn->sslmode)
1800 goto oom_error;
1801 }
1802
1803 /*
1804 * validate sslnegotiation option, default is "postgres" for the postgres
1805 * style negotiated connection with an extra round trip but more options.
1806 */
1807 if (conn->sslnegotiation)
1808 {
1809 if (strcmp(conn->sslnegotiation, "postgres") != 0
1810 && strcmp(conn->sslnegotiation, "direct") != 0)
1811 {
1812 conn->status = CONNECTION_BAD;
1813 libpq_append_conn_error(conn, "invalid %s value: \"%s\"",
1814 "sslnegotiation", conn->sslnegotiation);
1815 return false;
1816 }
1817
1818#ifndef USE_SSL
1819 if (conn->sslnegotiation[0] != 'p')
1820 {
1821 conn->status = CONNECTION_BAD;
1822 libpq_append_conn_error(conn, "%s value \"%s\" invalid when SSL support is not compiled in",
1823 "sslnegotiation", conn->sslnegotiation);
1824 return false;
1825 }
1826#endif
1827
1828 /*
1829 * Don't allow direct SSL negotiation with sslmode='prefer', because
1830 * that poses a risk of unintentional fallback to plaintext connection
1831 * when connecting to a pre-v17 server that does not support direct
1832 * SSL connections. To keep things simple, don't allow it with
1833 * sslmode='allow' or sslmode='disable' either. If a user goes through
1834 * the trouble of setting sslnegotiation='direct', they probably
1835 * intend to use SSL, and sslmode=disable or allow is probably a user
1836 * user mistake anyway.
1837 */
1838 if (conn->sslnegotiation[0] == 'd' &&
1839 conn->sslmode[0] != 'r' && conn->sslmode[0] != 'v')
1840 {
1841 conn->status = CONNECTION_BAD;
1842 libpq_append_conn_error(conn, "weak sslmode \"%s\" may not be used with sslnegotiation=direct (use \"require\", \"verify-ca\", or \"verify-full\")",
1843 conn->sslmode);
1844 return false;
1845 }
1846 }
1847 else
1848 {
1849 conn->sslnegotiation = strdup(DefaultSSLNegotiation);
1850 if (!conn->sslnegotiation)
1851 goto oom_error;
1852 }
1853
1854#ifdef USE_SSL
1855
1856 /*
1857 * If sslrootcert=system, make sure our chosen sslmode is compatible.
1858 */
1859 if (conn->sslrootcert
1860 && strcmp(conn->sslrootcert, "system") == 0
1861 && strcmp(conn->sslmode, "verify-full") != 0)
1862 {
1863 conn->status = CONNECTION_BAD;
1864 libpq_append_conn_error(conn, "weak sslmode \"%s\" may not be used with sslrootcert=system (use \"verify-full\")",
1865 conn->sslmode);
1866 return false;
1867 }
1868#endif
1869
1870 /*
1871 * Validate TLS protocol versions for ssl_min_protocol_version and
1872 * ssl_max_protocol_version.
1873 */
1874 if (!sslVerifyProtocolVersion(conn->ssl_min_protocol_version))
1875 {
1876 conn->status = CONNECTION_BAD;
1877 libpq_append_conn_error(conn, "invalid \"%s\" value: \"%s\"",
1878 "ssl_min_protocol_version",
1879 conn->ssl_min_protocol_version);
1880 return false;
1881 }
1882 if (!sslVerifyProtocolVersion(conn->ssl_max_protocol_version))
1883 {
1884 conn->status = CONNECTION_BAD;
1885 libpq_append_conn_error(conn, "invalid \"%s\" value: \"%s\"",
1886 "ssl_max_protocol_version",
1887 conn->ssl_max_protocol_version);
1888 return false;
1889 }
1890
1891 /*
1892 * Check if the range of SSL protocols defined is correct. This is done
1893 * at this early step because this is independent of the SSL
1894 * implementation used, and this avoids unnecessary cycles with an
1895 * already-built SSL context when the connection is being established, as
1896 * it would be doomed anyway.
1897 */
1898 if (!sslVerifyProtocolRange(conn->ssl_min_protocol_version,
1899 conn->ssl_max_protocol_version))
1900 {
1901 conn->status = CONNECTION_BAD;
1902 libpq_append_conn_error(conn, "invalid SSL protocol version range");
1903 return false;
1904 }
1905
1906 /*
1907 * validate sslcertmode option
1908 */
1909 if (conn->sslcertmode)
1910 {
1911 if (strcmp(conn->sslcertmode, "disable") != 0 &&
1912 strcmp(conn->sslcertmode, "allow") != 0 &&
1913 strcmp(conn->sslcertmode, "require") != 0)
1914 {
1915 conn->status = CONNECTION_BAD;
1916 libpq_append_conn_error(conn, "invalid %s value: \"%s\"",
1917 "sslcertmode", conn->sslcertmode);
1918 return false;
1919 }
1920#ifndef USE_SSL
1921 if (strcmp(conn->sslcertmode, "require") == 0)
1922 {
1923 conn->status = CONNECTION_BAD;
1924 libpq_append_conn_error(conn, "%s value \"%s\" invalid when SSL support is not compiled in",
1925 "sslcertmode", conn->sslcertmode);
1926 return false;
1927 }
1928#endif
1929#ifndef HAVE_SSL_CTX_SET_CERT_CB
1930
1931 /*
1932 * Without a certificate callback, the current implementation can't
1933 * figure out if a certificate was actually requested, so "require" is
1934 * useless.
1935 */
1936 if (strcmp(conn->sslcertmode, "require") == 0)
1937 {
1938 conn->status = CONNECTION_BAD;
1939 libpq_append_conn_error(conn, "%s value \"%s\" is not supported (check OpenSSL version)",
1940 "sslcertmode", conn->sslcertmode);
1941 return false;
1942 }
1943#endif
1944 }
1945 else
1946 {
1947 conn->sslcertmode = strdup(DefaultSSLCertMode);
1948 if (!conn->sslcertmode)
1949 goto oom_error;
1950 }
1951
1952 /*
1953 * validate gssencmode option
1954 */
1955 if (conn->gssencmode)
1956 {
1957 if (strcmp(conn->gssencmode, "disable") != 0 &&
1958 strcmp(conn->gssencmode, "prefer") != 0 &&
1959 strcmp(conn->gssencmode, "require") != 0)
1960 {
1961 conn->status = CONNECTION_BAD;
1962 libpq_append_conn_error(conn, "invalid %s value: \"%s\"", "gssencmode", conn->gssencmode);
1963 return false;
1964 }
1965#ifndef ENABLE_GSS
1966 if (strcmp(conn->gssencmode, "require") == 0)
1967 {
1968 conn->status = CONNECTION_BAD;
1969 libpq_append_conn_error(conn, "gssencmode value \"%s\" invalid when GSSAPI support is not compiled in",
1970 conn->gssencmode);
1971 return false;
1972 }
1973#endif
1974 }
1975 else
1976 {
1977 conn->gssencmode = strdup(DefaultGSSMode);
1978 if (!conn->gssencmode)
1979 goto oom_error;
1980 }
1981
1982 /*
1983 * validate target_session_attrs option, and set target_server_type
1984 */
1985 if (conn->target_session_attrs)
1986 {
1987 if (strcmp(conn->target_session_attrs, "any") == 0)
1988 conn->target_server_type = SERVER_TYPE_ANY;
1989 else if (strcmp(conn->target_session_attrs, "read-write") == 0)
1990 conn->target_server_type = SERVER_TYPE_READ_WRITE;
1991 else if (strcmp(conn->target_session_attrs, "read-only") == 0)
1992 conn->target_server_type = SERVER_TYPE_READ_ONLY;
1993 else if (strcmp(conn->target_session_attrs, "primary") == 0)
1994 conn->target_server_type = SERVER_TYPE_PRIMARY;
1995 else if (strcmp(conn->target_session_attrs, "standby") == 0)
1996 conn->target_server_type = SERVER_TYPE_STANDBY;
1997 else if (strcmp(conn->target_session_attrs, "prefer-standby") == 0)
1998 conn->target_server_type = SERVER_TYPE_PREFER_STANDBY;
1999 else
2000 {
2001 conn->status = CONNECTION_BAD;
2002 libpq_append_conn_error(conn, "invalid %s value: \"%s\"",
2003 "target_session_attrs",
2004 conn->target_session_attrs);
2005 return false;
2006 }
2007 }
2008 else
2009 conn->target_server_type = SERVER_TYPE_ANY;
2010
2011 if (conn->scram_client_key)
2012 {
2013 int len;
2014
2015 len = pg_b64_dec_len(strlen(conn->scram_client_key));
2016 conn->scram_client_key_binary = malloc(len);
2017 if (!conn->scram_client_key_binary)
2018 goto oom_error;
2019 len = pg_b64_decode(conn->scram_client_key, strlen(conn->scram_client_key),
2020 conn->scram_client_key_binary, len);
2021 if (len < 0)
2022 {
2023 libpq_append_conn_error(conn, "invalid SCRAM client key");
2024 free(conn->scram_client_key_binary);
2025 return false;
2026 }
2027 if (len != SCRAM_MAX_KEY_LEN)
2028 {
2029 libpq_append_conn_error(conn, "invalid SCRAM client key length: %d", len);
2030 free(conn->scram_client_key_binary);
2031 return false;
2032 }
2033 conn->scram_client_key_len = len;
2034 }
2035
2036 if (conn->scram_server_key)
2037 {
2038 int len;
2039
2040 len = pg_b64_dec_len(strlen(conn->scram_server_key));
2041 conn->scram_server_key_binary = malloc(len);
2042 if (!conn->scram_server_key_binary)
2043 goto oom_error;
2044 len = pg_b64_decode(conn->scram_server_key, strlen(conn->scram_server_key),
2045 conn->scram_server_key_binary, len);
2046 if (len < 0)
2047 {
2048 libpq_append_conn_error(conn, "invalid SCRAM server key");
2049 free(conn->scram_server_key_binary);
2050 return false;
2051 }
2052 if (len != SCRAM_MAX_KEY_LEN)
2053 {
2054 libpq_append_conn_error(conn, "invalid SCRAM server key length: %d", len);
2055 free(conn->scram_server_key_binary);
2056 return false;
2057 }
2058 conn->scram_server_key_len = len;
2059 }
2060
2061 /*
2062 * validate load_balance_hosts option, and set load_balance_type
2063 */
2064 if (conn->load_balance_hosts)
2065 {
2066 if (strcmp(conn->load_balance_hosts, "disable") == 0)
2067 conn->load_balance_type = LOAD_BALANCE_DISABLE;
2068 else if (strcmp(conn->load_balance_hosts, "random") == 0)
2069 conn->load_balance_type = LOAD_BALANCE_RANDOM;
2070 else
2071 {
2072 conn->status = CONNECTION_BAD;
2073 libpq_append_conn_error(conn, "invalid %s value: \"%s\"",
2074 "load_balance_hosts",
2075 conn->load_balance_hosts);
2076 return false;
2077 }
2078 }
2079 else
2080 conn->load_balance_type = LOAD_BALANCE_DISABLE;
2081
2082 if (conn->load_balance_type == LOAD_BALANCE_RANDOM)
2083 {
2084 libpq_prng_init(conn);
2085
2086 /*
2087 * This is the "inside-out" variant of the Fisher-Yates shuffle
2088 * algorithm. Notionally, we append each new value to the array and
2089 * then swap it with a randomly-chosen array element (possibly
2090 * including itself, else we fail to generate permutations with the
2091 * last integer last). The swap step can be optimized by combining it
2092 * with the insertion.
2093 */
2094 for (i = 1; i < conn->nconnhost; i++)
2095 {
2096 int j = pg_prng_uint64_range(&conn->prng_state, 0, i);
2097 pg_conn_host temp = conn->connhost[j];
2098
2099 conn->connhost[j] = conn->connhost[i];
2100 conn->connhost[i] = temp;
2101 }
2102 }
2103
2104 if (conn->min_protocol_version)
2105 {
2106 if (!pqParseProtocolVersion(conn->min_protocol_version, &conn->min_pversion, conn, "min_protocol_version"))
2107 {
2108 conn->status = CONNECTION_BAD;
2109 return false;
2110 }
2111 }
2112 else
2113 {
2114 conn->min_pversion = PG_PROTOCOL_EARLIEST;
2115 }
2116
2117 if (conn->max_protocol_version)
2118 {
2119 if (!pqParseProtocolVersion(conn->max_protocol_version, &conn->max_pversion, conn, "max_protocol_version"))
2120 {
2121 conn->status = CONNECTION_BAD;
2122 return false;
2123 }
2124 }
2125 else
2126 {
2127 /*
2128 * To not break connecting to older servers/poolers that do not yet
2129 * support NegotiateProtocolVersion, default to the 3.0 protocol at
2130 * least for a while longer. Except when min_protocol_version is set
2131 * to something larger, then we might as well default to the latest.
2132 */
2133 if (conn->min_pversion > PG_PROTOCOL(3, 0))
2134 conn->max_pversion = PG_PROTOCOL_LATEST;
2135 else
2136 conn->max_pversion = PG_PROTOCOL(3, 0);
2137 }
2138
2139 if (conn->min_pversion > conn->max_pversion)
2140 {
2141 conn->status = CONNECTION_BAD;
2142 libpq_append_conn_error(conn, "min_protocol_version is greater than max_protocol_version");
2143 return false;
2144 }
2145
2146 /*
2147 * Resolve special "auto" client_encoding from the locale
2148 */
2149 if (conn->client_encoding_initial &&
2150 strcmp(conn->client_encoding_initial, "auto") == 0)
2151 {
2152 free(conn->client_encoding_initial);
2153 conn->client_encoding_initial = strdup(pg_encoding_to_char(pg_get_encoding_from_locale(NULL, true)));
2154 if (!conn->client_encoding_initial)
2155 goto oom_error;
2156 }
2157
2158 /*
2159 * Only if we get this far is it appropriate to try to connect. (We need a
2160 * state flag, rather than just the boolean result of this function, in
2161 * case someone tries to PQreset() the PGconn.)
2162 */
2163 conn->options_valid = true;
2164
2165 return true;
2166
2167oom_error:
2168 conn->status = CONNECTION_BAD;
2169 libpq_append_conn_error(conn, "out of memory");
2170 return false;
2171}
2172
2173/*
2174 * PQconndefaults
2175 *
2176 * Construct a default connection options array, which identifies all the
2177 * available options and shows any default values that are available from the
2178 * environment etc. On error (eg out of memory), NULL is returned.
2179 *
2180 * Using this function, an application may determine all possible options
2181 * and their current default values.
2182 *
2183 * NOTE: as of PostgreSQL 7.0, the returned array is dynamically allocated
2184 * and should be freed when no longer needed via PQconninfoFree(). (In prior
2185 * versions, the returned array was static, but that's not thread-safe.)
2186 * Pre-7.0 applications that use this function will see a small memory leak
2187 * until they are updated to call PQconninfoFree.
2188 */
2189PQconninfoOption *
2190PQconndefaults(void)
2191{
2192 PQExpBufferData errorBuf;
2193 PQconninfoOption *connOptions;
2194
2195 /* We don't actually report any errors here, but callees want a buffer */
2196 initPQExpBuffer(&errorBuf);
2197 if (PQExpBufferDataBroken(errorBuf))
2198 return NULL; /* out of memory already :-( */
2199
2200 connOptions = conninfo_init(&errorBuf);
2201 if (connOptions != NULL)
2202 {
2203 /* pass NULL errorBuf to ignore errors */
2204 if (!conninfo_add_defaults(connOptions, NULL))
2205 {
2206 PQconninfoFree(connOptions);
2207 connOptions = NULL;
2208 }
2209 }
2210
2211 termPQExpBuffer(&errorBuf);
2212 return connOptions;
2213}
2214
2215/* ----------------
2216 * PQsetdbLogin
2217 *
2218 * establishes a connection to a postgres backend through the postmaster
2219 * at the specified host and port.
2220 *
2221 * returns a PGconn* which is needed for all subsequent libpq calls
2222 *
2223 * if the status field of the connection returned is CONNECTION_BAD,
2224 * then only the errorMessage is likely to be useful.
2225 * ----------------
2226 */
2227PGconn *
2228PQsetdbLogin(const char *pghost, const char *pgport, const char *pgoptions,
2229 const char *pgtty, const char *dbName, const char *login,
2230 const char *pwd)
2231{
2232 PGconn *conn;
2233
2234 /*
2235 * Allocate memory for the conn structure. Note that we also expect this
2236 * to initialize conn->errorMessage to empty. All subsequent steps during
2237 * connection initialization will only append to that buffer.
2238 */
2239 conn = pqMakeEmptyPGconn();
2240 if (conn == NULL)
2241 return NULL;
2242
2243 /*
2244 * If the dbName parameter contains what looks like a connection string,
2245 * parse it into conn struct using connectOptions1.
2246 */
2247 if (dbName && recognized_connection_string(dbName))
2248 {
2249 if (!connectOptions1(conn, dbName))
2250 return conn;
2251 }
2252 else
2253 {
2254 /*
2255 * Old-style path: first, parse an empty conninfo string in order to
2256 * set up the same defaults that PQconnectdb() would use.
2257 */
2258 if (!connectOptions1(conn, ""))
2259 return conn;
2260
2261 /* Insert dbName parameter value into struct */
2262 if (dbName && dbName[0] != '\0')
2263 {
2264 free(conn->dbName);
2265 conn->dbName = strdup(dbName);
2266 if (!conn->dbName)
2267 goto oom_error;
2268 }
2269 }
2270
2271 /*
2272 * Insert remaining parameters into struct, overriding defaults (as well
2273 * as any conflicting data from dbName taken as a conninfo).
2274 */
2275 if (pghost && pghost[0] != '\0')
2276 {
2277 free(conn->pghost);
2278 conn->pghost = strdup(pghost);
2279 if (!conn->pghost)
2280 goto oom_error;
2281 }
2282
2283 if (pgport && pgport[0] != '\0')
2284 {
2285 free(conn->pgport);
2286 conn->pgport = strdup(pgport);
2287 if (!conn->pgport)
2288 goto oom_error;
2289 }
2290
2291 if (pgoptions && pgoptions[0] != '\0')
2292 {
2293 free(conn->pgoptions);
2294 conn->pgoptions = strdup(pgoptions);
2295 if (!conn->pgoptions)
2296 goto oom_error;
2297 }
2298
2299 if (login && login[0] != '\0')
2300 {
2301 free(conn->pguser);
2302 conn->pguser = strdup(login);
2303 if (!conn->pguser)
2304 goto oom_error;
2305 }
2306
2307 if (pwd && pwd[0] != '\0')
2308 {
2309 free(conn->pgpass);
2310 conn->pgpass = strdup(pwd);
2311 if (!conn->pgpass)
2312 goto oom_error;
2313 }
2314
2315 /*
2316 * Compute derived options
2317 */
2318 if (!pqConnectOptions2(conn))
2319 return conn;
2320
2321 /*
2322 * Connect to the database
2323 */
2324 if (pqConnectDBStart(conn))
2325 (void) pqConnectDBComplete(conn);
2326
2327 return conn;
2328
2329oom_error:
2330 conn->status = CONNECTION_BAD;
2331 libpq_append_conn_error(conn, "out of memory");
2332 return conn;
2333}
2334
2335
2336/* ----------
2337 * connectNoDelay -
2338 * Sets the TCP_NODELAY socket option.
2339 * Returns 1 if successful, 0 if not.
2340 * ----------
2341 */
2342static int
2343connectNoDelay(PGconn *conn)
2344{
2345#ifdef TCP_NODELAY
2346 int on = 1;
2347
2348 if (setsockopt(conn->sock, IPPROTO_TCP, TCP_NODELAY,
2349 (char *) &on,
2350 sizeof(on)) < 0)
2351 {
2352 char sebuf[PG_STRERROR_R_BUFLEN];
2353
2354 libpq_append_conn_error(conn, "could not set socket to TCP no delay mode: %s",
2355 SOCK_STRERROR(SOCK_ERRNO, sebuf, sizeof(sebuf)));
2356 return 0;
2357 }
2358#endif
2359
2360 return 1;
2361}
2362
2363/* ----------
2364 * Write currently connected IP address into host_addr (of len host_addr_len).
2365 * If unable to, set it to the empty string.
2366 * ----------
2367 */
2368static void
2369getHostaddr(PGconn *conn, char *host_addr, int host_addr_len)
2370{
2371 struct sockaddr_storage *addr = &conn->raddr.addr;
2372
2373 if (addr->ss_family == AF_INET)
2374 {
2375 if (pg_inet_net_ntop(AF_INET,
2376 &((struct sockaddr_in *) addr)->sin_addr.s_addr,
2377 32,
2378 host_addr, host_addr_len) == NULL)
2379 host_addr[0] = '\0';
2380 }
2381 else if (addr->ss_family == AF_INET6)
2382 {
2383 if (pg_inet_net_ntop(AF_INET6,
2384 &((struct sockaddr_in6 *) addr)->sin6_addr.s6_addr,
2385 128,
2386 host_addr, host_addr_len) == NULL)
2387 host_addr[0] = '\0';
2388 }
2389 else
2390 host_addr[0] = '\0';
2391}
2392
2393/*
2394 * emitHostIdentityInfo -
2395 * Speculatively append "connection to server so-and-so failed: " to
2396 * conn->errorMessage once we've identified the current connection target
2397 * address. This ensures that any subsequent error message will be properly
2398 * attributed to the server we couldn't connect to. conn->raddr must be
2399 * valid, and the result of getHostaddr() must be supplied.
2400 */
2401static void
2402emitHostIdentityInfo(PGconn *conn, const char *host_addr)
2403{
2404 if (conn->raddr.addr.ss_family == AF_UNIX)
2405 {
2406 char service[NI_MAXHOST];
2407
2408 pg_getnameinfo_all(&conn->raddr.addr, conn->raddr.salen,
2409 NULL, 0,
2410 service, sizeof(service),
2411 NI_NUMERICSERV);
2412 appendPQExpBuffer(&conn->errorMessage,
2413 libpq_gettext("connection to server on socket \"%s\" failed: "),
2414 service);
2415 }
2416 else
2417 {
2418 const char *displayed_host;
2419 const char *displayed_port;
2420
2421 /* To which host and port were we actually connecting? */
2422 if (conn->connhost[conn->whichhost].type == CHT_HOST_ADDRESS)
2423 displayed_host = conn->connhost[conn->whichhost].hostaddr;
2424 else
2425 displayed_host = conn->connhost[conn->whichhost].host;
2426 displayed_port = conn->connhost[conn->whichhost].port;
2427 if (displayed_port == NULL || displayed_port[0] == '\0')
2428 displayed_port = DEF_PGPORT_STR;
2429
2430 /*
2431 * If the user did not supply an IP address using 'hostaddr', and
2432 * 'host' was missing or does not match our lookup, display the
2433 * looked-up IP address.
2434 */
2435 if (conn->connhost[conn->whichhost].type != CHT_HOST_ADDRESS &&
2436 host_addr[0] &&
2437 strcmp(displayed_host, host_addr) != 0)
2438 appendPQExpBuffer(&conn->errorMessage,
2439 libpq_gettext("connection to server at \"%s\" (%s), port %s failed: "),
2440 displayed_host, host_addr,
2441 displayed_port);
2442 else
2443 appendPQExpBuffer(&conn->errorMessage,
2444 libpq_gettext("connection to server at \"%s\", port %s failed: "),
2445 displayed_host,
2446 displayed_port);
2447 }
2448}
2449
2450/* ----------
2451 * connectFailureMessage -
2452 * create a friendly error message on connection failure,
2453 * using the given errno value. Use this for error cases that
2454 * imply that there's no server there.
2455 * ----------
2456 */
2457static void
2458connectFailureMessage(PGconn *conn, int errorno)
2459{
2460 char sebuf[PG_STRERROR_R_BUFLEN];
2461
2462 appendPQExpBuffer(&conn->errorMessage,
2463 "%s\n",
2464 SOCK_STRERROR(errorno, sebuf, sizeof(sebuf)));
2465
2466 if (conn->raddr.addr.ss_family == AF_UNIX)
2467 libpq_append_conn_error(conn, "\tIs the server running locally and accepting connections on that socket?");
2468 else
2469 libpq_append_conn_error(conn, "\tIs the server running on that host and accepting TCP/IP connections?");
2470}
2471
2472/*
2473 * Should we use keepalives? Returns 1 if yes, 0 if no, and -1 if
2474 * conn->keepalives is set to a value which is not parseable as an
2475 * integer.
2476 */
2477static int
2478useKeepalives(PGconn *conn)
2479{
2480 int val;
2481
2482 if (conn->keepalives == NULL)
2483 return 1;
2484
2485 if (!pqParseIntParam(conn->keepalives, &val, conn, "keepalives"))
2486 return -1;
2487
2488 return val != 0 ? 1 : 0;
2489}
2490
2491#ifndef WIN32
2492/*
2493 * Set the keepalive idle timer.
2494 */
2495static int
2496setKeepalivesIdle(PGconn *conn)
2497{
2498 int idle;
2499
2500 if (conn->keepalives_idle == NULL)
2501 return 1;
2502
2503 if (!pqParseIntParam(conn->keepalives_idle, &idle, conn,
2504 "keepalives_idle"))
2505 return 0;
2506 if (idle < 0)
2507 idle = 0;
2508
2509#ifdef PG_TCP_KEEPALIVE_IDLE
2510 if (setsockopt(conn->sock, IPPROTO_TCP, PG_TCP_KEEPALIVE_IDLE,
2511 (char *) &idle, sizeof(idle)) < 0)
2512 {
2513 char sebuf[PG_STRERROR_R_BUFLEN];
2514
2515 libpq_append_conn_error(conn, "%s(%s) failed: %s",
2516 "setsockopt",
2517 PG_TCP_KEEPALIVE_IDLE_STR,
2518 SOCK_STRERROR(SOCK_ERRNO, sebuf, sizeof(sebuf)));
2519 return 0;
2520 }
2521#endif
2522
2523 return 1;
2524}
2525
2526/*
2527 * Set the keepalive interval.
2528 */
2529static int
2530setKeepalivesInterval(PGconn *conn)
2531{
2532 int interval;
2533
2534 if (conn->keepalives_interval == NULL)
2535 return 1;
2536
2537 if (!pqParseIntParam(conn->keepalives_interval, &interval, conn,
2538 "keepalives_interval"))
2539 return 0;
2540 if (interval < 0)
2541 interval = 0;
2542
2543#ifdef TCP_KEEPINTVL
2544 if (setsockopt(conn->sock, IPPROTO_TCP, TCP_KEEPINTVL,
2545 (char *) &interval, sizeof(interval)) < 0)
2546 {
2547 char sebuf[PG_STRERROR_R_BUFLEN];
2548
2549 libpq_append_conn_error(conn, "%s(%s) failed: %s",
2550 "setsockopt",
2551 "TCP_KEEPINTVL",
2552 SOCK_STRERROR(SOCK_ERRNO, sebuf, sizeof(sebuf)));
2553 return 0;
2554 }
2555#endif
2556
2557 return 1;
2558}
2559
2560/*
2561 * Set the count of lost keepalive packets that will trigger a connection
2562 * break.
2563 */
2564static int
2565setKeepalivesCount(PGconn *conn)
2566{
2567 int count;
2568
2569 if (conn->keepalives_count == NULL)
2570 return 1;
2571
2572 if (!pqParseIntParam(conn->keepalives_count, &count, conn,
2573 "keepalives_count"))
2574 return 0;
2575 if (count < 0)
2576 count = 0;
2577
2578#ifdef TCP_KEEPCNT
2579 if (setsockopt(conn->sock, IPPROTO_TCP, TCP_KEEPCNT,
2580 (char *) &count, sizeof(count)) < 0)
2581 {
2582 char sebuf[PG_STRERROR_R_BUFLEN];
2583
2584 libpq_append_conn_error(conn, "%s(%s) failed: %s",
2585 "setsockopt",
2586 "TCP_KEEPCNT",
2587 SOCK_STRERROR(SOCK_ERRNO, sebuf, sizeof(sebuf)));
2588 return 0;
2589 }
2590#endif
2591
2592 return 1;
2593}
2594#else /* WIN32 */
2595#ifdef SIO_KEEPALIVE_VALS
2596/*
2597 * Enable keepalives and set the keepalive values on Win32,
2598 * where they are always set in one batch.
2599 *
2600 * CAUTION: This needs to be signal safe, since it's used by PQcancel.
2601 */
2602int
2603pqSetKeepalivesWin32(pgsocket sock, int idle, int interval)
2604{
2605 struct tcp_keepalive ka;
2606 DWORD retsize;
2607
2608 if (idle <= 0)
2609 idle = 2 * 60 * 60; /* 2 hours = default */
2610 if (interval <= 0)
2611 interval = 1; /* 1 second = default */
2612
2613 ka.onoff = 1;
2614 ka.keepalivetime = idle * 1000;
2615 ka.keepaliveinterval = interval * 1000;
2616
2617 if (WSAIoctl(sock,
2618 SIO_KEEPALIVE_VALS,
2619 (LPVOID) &ka,
2620 sizeof(ka),
2621 NULL,
2622 0,
2623 &retsize,
2624 NULL,
2625 NULL)
2626 != 0)
2627 return 0;
2628 return 1;
2629}
2630
2631static int
2632prepKeepalivesWin32(PGconn *conn)
2633{
2634 int idle = -1;
2635 int interval = -1;
2636
2637 if (conn->keepalives_idle &&
2638 !pqParseIntParam(conn->keepalives_idle, &idle, conn,
2639 "keepalives_idle"))
2640 return 0;
2641 if (conn->keepalives_interval &&
2642 !pqParseIntParam(conn->keepalives_interval, &interval, conn,
2643 "keepalives_interval"))
2644 return 0;
2645
2646 if (!pqSetKeepalivesWin32(conn->sock, idle, interval))
2647 {
2648 libpq_append_conn_error(conn, "%s(%s) failed: error code %d",
2649 "WSAIoctl", "SIO_KEEPALIVE_VALS",
2650 WSAGetLastError());
2651 return 0;
2652 }
2653 return 1;
2654}
2655#endif /* SIO_KEEPALIVE_VALS */
2656#endif /* WIN32 */
2657
2658/*
2659 * Set the TCP user timeout.
2660 */
2661static int
2662setTCPUserTimeout(PGconn *conn)
2663{
2664 int timeout;
2665
2666 if (conn->pgtcp_user_timeout == NULL)
2667 return 1;
2668
2669 if (!pqParseIntParam(conn->pgtcp_user_timeout, &timeout, conn,
2670 "tcp_user_timeout"))
2671 return 0;
2672
2673 if (timeout < 0)
2674 timeout = 0;
2675
2676#ifdef TCP_USER_TIMEOUT
2677 if (setsockopt(conn->sock, IPPROTO_TCP, TCP_USER_TIMEOUT,
2678 (char *) &timeout, sizeof(timeout)) < 0)
2679 {
2680 char sebuf[256];
2681
2682 libpq_append_conn_error(conn, "%s(%s) failed: %s",
2683 "setsockopt",
2684 "TCP_USER_TIMEOUT",
2685 SOCK_STRERROR(SOCK_ERRNO, sebuf, sizeof(sebuf)));
2686 return 0;
2687 }
2688#endif
2689
2690 return 1;
2691}
2692
2693/* ----------
2694 * pqConnectDBStart -
2695 * Begin the process of making a connection to the backend.
2696 *
2697 * Returns 1 if successful, 0 if not.
2698 * ----------
2699 */
2700int
2701pqConnectDBStart(PGconn *conn)
2702{
2703 if (!conn)
2704 return 0;
2705
2706 if (!conn->options_valid)
2707 goto connect_errReturn;
2708
2709 /*
2710 * Check for bad linking to backend-internal versions of src/common
2711 * functions (see comments in link-canary.c for the reason we need this).
2712 * Nobody but developers should see this message, so we don't bother
2713 * translating it.
2714 */
2715 if (!pg_link_canary_is_frontend())
2716 {
2717 appendPQExpBufferStr(&conn->errorMessage,
2718 "libpq is incorrectly linked to backend functions\n");
2719 goto connect_errReturn;
2720 }
2721
2722 /* Ensure our buffers are empty */
2723 conn->inStart = conn->inCursor = conn->inEnd = 0;
2724 conn->outCount = 0;
2725
2726 /*
2727 * Set up to try to connect to the first host. (Setting whichhost = -1 is
2728 * a bit of a cheat, but PQconnectPoll will advance it to 0 before
2729 * anything else looks at it.)
2730 *
2731 * Cancel requests are special though, they should only try one host and
2732 * address, and these fields have already been set up in PQcancelCreate,
2733 * so leave these fields alone for cancel requests.
2734 */
2735 if (!conn->cancelRequest)
2736 {
2737 conn->whichhost = -1;
2738 conn->try_next_host = true;
2739 conn->try_next_addr = false;
2740 }
2741
2742 conn->status = CONNECTION_NEEDED;
2743
2744 /* Also reset the target_server_type state if needed */
2745 if (conn->target_server_type == SERVER_TYPE_PREFER_STANDBY_PASS2)
2746 conn->target_server_type = SERVER_TYPE_PREFER_STANDBY;
2747
2748 /*
2749 * The code for processing CONNECTION_NEEDED state is in PQconnectPoll(),
2750 * so that it can easily be re-executed if needed again during the
2751 * asynchronous startup process. However, we must run it once here,
2752 * because callers expect a success return from this routine to mean that
2753 * we are in PGRES_POLLING_WRITING connection state.
2754 */
2755 if (PQconnectPoll(conn) == PGRES_POLLING_WRITING)
2756 return 1;
2757
2758connect_errReturn:
2759
2760 /*
2761 * If we managed to open a socket, close it immediately rather than
2762 * waiting till PQfinish. (The application cannot have gotten the socket
2763 * from PQsocket yet, so this doesn't risk breaking anything.)
2764 */
2765 pqDropConnection(conn, true);
2766 conn->status = CONNECTION_BAD;
2767 return 0;
2768}
2769
2770
2771/*
2772 * pqConnectDBComplete
2773 *
2774 * Block and complete a connection.
2775 *
2776 * Returns 1 on success, 0 on failure.
2777 */
2778int
2779pqConnectDBComplete(PGconn *conn)
2780{
2781 PostgresPollingStatusType flag = PGRES_POLLING_WRITING;
2782 pg_usec_time_t end_time = -1;
2783 int timeout = 0;
2784 int last_whichhost = -2; /* certainly different from whichhost */
2785 int last_whichaddr = -2; /* certainly different from whichaddr */
2786
2787 if (conn == NULL || conn->status == CONNECTION_BAD)
2788 return 0;
2789
2790 /*
2791 * Set up a time limit, if connect_timeout is greater than zero.
2792 */
2793 if (conn->connect_timeout != NULL)
2794 {
2795 if (!pqParseIntParam(conn->connect_timeout, &timeout, conn,
2796 "connect_timeout"))
2797 {
2798 /* mark the connection as bad to report the parsing failure */
2799 conn->status = CONNECTION_BAD;
2800 return 0;
2801 }
2802 }
2803
2804 for (;;)
2805 {
2806 int ret = 0;
2807
2808 /*
2809 * (Re)start the connect_timeout timer if it's active and we are
2810 * considering a different host than we were last time through. If
2811 * we've already succeeded, though, needn't recalculate.
2812 */
2813 if (flag != PGRES_POLLING_OK &&
2814 timeout > 0 &&
2815 (conn->whichhost != last_whichhost ||
2816 conn->whichaddr != last_whichaddr))
2817 {
2818 end_time = PQgetCurrentTimeUSec() + (pg_usec_time_t) timeout * 1000000;
2819 last_whichhost = conn->whichhost;
2820 last_whichaddr = conn->whichaddr;
2821 }
2822
2823 /*
2824 * Wait, if necessary. Note that the initial state (just after
2825 * PQconnectStart) is to wait for the socket to select for writing.
2826 */
2827 switch (flag)
2828 {
2829 case PGRES_POLLING_OK:
2830 return 1; /* success! */
2831
2832 case PGRES_POLLING_READING:
2833 ret = pqWaitTimed(1, 0, conn, end_time);
2834 if (ret == -1)
2835 {
2836 /* hard failure, eg select() problem, aborts everything */
2837 conn->status = CONNECTION_BAD;
2838 return 0;
2839 }
2840 break;
2841
2842 case PGRES_POLLING_WRITING:
2843 ret = pqWaitTimed(0, 1, conn, end_time);
2844 if (ret == -1)
2845 {
2846 /* hard failure, eg select() problem, aborts everything */
2847 conn->status = CONNECTION_BAD;
2848 return 0;
2849 }
2850 break;
2851
2852 default:
2853 /* Just in case we failed to set it in PQconnectPoll */
2854 conn->status = CONNECTION_BAD;
2855 return 0;
2856 }
2857
2858 if (ret == 1) /* connect_timeout elapsed */
2859 {
2860 /*
2861 * Give up on current server/address, try the next one.
2862 */
2863 conn->try_next_addr = true;
2864 conn->status = CONNECTION_NEEDED;
2865 }
2866
2867 /*
2868 * Now try to advance the state machine.
2869 */
2870 if (conn->cancelRequest)
2871 flag = PQcancelPoll((PGcancelConn *) conn);
2872 else
2873 flag = PQconnectPoll(conn);
2874 }
2875}
2876
2877/* ----------------
2878 * PQconnectPoll
2879 *
2880 * Poll an asynchronous connection.
2881 *
2882 * Returns a PostgresPollingStatusType.
2883 * Before calling this function, use select(2) to determine when data
2884 * has arrived..
2885 *
2886 * You must call PQfinish whether or not this fails.
2887 *
2888 * This function and PQconnectStart are intended to allow connections to be
2889 * made without blocking the execution of your program on remote I/O. However,
2890 * there are a number of caveats:
2891 *
2892 * o If you call PQtrace, ensure that the stream object into which you trace
2893 * will not block.
2894 * o If you do not supply an IP address for the remote host (i.e. you
2895 * supply a host name instead) then PQconnectStart will block on
2896 * getaddrinfo. You will be fine if using Unix sockets (i.e. by
2897 * supplying neither a host name nor a host address).
2898 * o If your backend wants to use Kerberos authentication then you must
2899 * supply both a host name and a host address, otherwise this function
2900 * may block on gethostname.
2901 *
2902 * ----------------
2903 */
2904PostgresPollingStatusType
2905PQconnectPoll(PGconn *conn)
2906{
2907 bool reset_connection_state_machine = false;
2908 bool need_new_connection = false;
2909 PGresult *res;
2910 char sebuf[PG_STRERROR_R_BUFLEN];
2911 int optval;
2912
2913 if (conn == NULL)
2914 return PGRES_POLLING_FAILED;
2915
2916 /* Get the new data */
2917 switch (conn->status)
2918 {
2919 /*
2920 * We really shouldn't have been polled in these two cases, but we
2921 * can handle it.
2922 */
2923 case CONNECTION_BAD:
2924 return PGRES_POLLING_FAILED;
2925 case CONNECTION_OK:
2926 return PGRES_POLLING_OK;
2927
2928 /* These are reading states */
2929 case CONNECTION_AWAITING_RESPONSE:
2930 case CONNECTION_AUTH_OK:
2931 case CONNECTION_CHECK_WRITABLE:
2932 case CONNECTION_CONSUME:
2933 case CONNECTION_CHECK_STANDBY:
2934 {
2935 /* Load waiting data */
2936 int n = pqReadData(conn);
2937
2938 if (n < 0)
2939 goto error_return;
2940 if (n == 0)
2941 return PGRES_POLLING_READING;
2942
2943 break;
2944 }
2945
2946 /* These are writing states, so we just proceed. */
2947 case CONNECTION_STARTED:
2948 case CONNECTION_MADE:
2949 break;
2950
2951 /* Special cases: proceed without waiting. */
2952 case CONNECTION_SSL_STARTUP:
2953 case CONNECTION_NEEDED:
2954 case CONNECTION_GSS_STARTUP:
2955 case CONNECTION_CHECK_TARGET:
2956 case CONNECTION_AUTHENTICATING:
2957 break;
2958
2959 default:
2960 libpq_append_conn_error(conn, "invalid connection state, probably indicative of memory corruption");
2961 goto error_return;
2962 }
2963
2964
2965keep_going: /* We will come back to here until there is
2966 * nothing left to do. */
2967
2968 /* Time to advance to next address, or next host if no more addresses? */
2969 if (conn->try_next_addr)
2970 {
2971 if (conn->whichaddr < conn->naddr)
2972 {
2973 conn->whichaddr++;
2974 reset_connection_state_machine = true;
2975 }
2976 else
2977 conn->try_next_host = true;
2978 conn->try_next_addr = false;
2979 }
2980
2981 /* Time to advance to next connhost[] entry? */
2982 if (conn->try_next_host)
2983 {
2984 pg_conn_host *ch;
2985 struct addrinfo hint;
2986 struct addrinfo *addrlist;
2987 int thisport;
2988 int ret;
2989 char portstr[MAXPGPATH];
2990
2991 if (conn->whichhost + 1 < conn->nconnhost)
2992 conn->whichhost++;
2993 else
2994 {
2995 /*
2996 * Oops, no more hosts.
2997 *
2998 * If we are trying to connect in "prefer-standby" mode, then drop
2999 * the standby requirement and start over. Don't do this for
3000 * cancel requests though, since we are certain the list of
3001 * servers won't change as the target_server_type option is not
3002 * applicable to those connections.
3003 *
3004 * Otherwise, an appropriate error message is already set up, so
3005 * we just need to set the right status.
3006 */
3007 if (conn->target_server_type == SERVER_TYPE_PREFER_STANDBY &&
3008 conn->nconnhost > 0 &&
3009 !conn->cancelRequest)
3010 {
3011 conn->target_server_type = SERVER_TYPE_PREFER_STANDBY_PASS2;
3012 conn->whichhost = 0;
3013 }
3014 else
3015 goto error_return;
3016 }
3017
3018 /* Drop any address info for previous host */
3019 release_conn_addrinfo(conn);
3020
3021 /*
3022 * Look up info for the new host. On failure, log the problem in
3023 * conn->errorMessage, then loop around to try the next host. (Note
3024 * we don't clear try_next_host until we've succeeded.)
3025 */
3026 ch = &conn->connhost[conn->whichhost];
3027
3028 /* Initialize hint structure */
3029 MemSet(&hint, 0, sizeof(hint));
3030 hint.ai_socktype = SOCK_STREAM;
3031 hint.ai_family = AF_UNSPEC;
3032
3033 /* Figure out the port number we're going to use. */
3034 if (ch->port == NULL || ch->port[0] == '\0')
3035 thisport = DEF_PGPORT;
3036 else
3037 {
3038 if (!pqParseIntParam(ch->port, &thisport, conn, "port"))
3039 goto error_return;
3040
3041 if (thisport < 1 || thisport > 65535)
3042 {
3043 libpq_append_conn_error(conn, "invalid port number: \"%s\"", ch->port);
3044 goto keep_going;
3045 }
3046 }
3047 snprintf(portstr, sizeof(portstr), "%d", thisport);
3048
3049 /* Use pg_getaddrinfo_all() to resolve the address */
3050 switch (ch->type)
3051 {
3052 case CHT_HOST_NAME:
3053 ret = pg_getaddrinfo_all(ch->host, portstr, &hint,
3054 &addrlist);
3055 if (ret || !addrlist)
3056 {
3057 libpq_append_conn_error(conn, "could not translate host name \"%s\" to address: %s",
3058 ch->host, gai_strerror(ret));
3059 goto keep_going;
3060 }
3061 break;
3062
3063 case CHT_HOST_ADDRESS:
3064 hint.ai_flags = AI_NUMERICHOST;
3065 ret = pg_getaddrinfo_all(ch->hostaddr, portstr, &hint,
3066 &addrlist);
3067 if (ret || !addrlist)
3068 {
3069 libpq_append_conn_error(conn, "could not parse network address \"%s\": %s",
3070 ch->hostaddr, gai_strerror(ret));
3071 goto keep_going;
3072 }
3073 break;
3074
3075 case CHT_UNIX_SOCKET:
3076 hint.ai_family = AF_UNIX;
3077 UNIXSOCK_PATH(portstr, thisport, ch->host);
3078 if (strlen(portstr) >= UNIXSOCK_PATH_BUFLEN)
3079 {
3080 libpq_append_conn_error(conn, "Unix-domain socket path \"%s\" is too long (maximum %d bytes)",
3081 portstr,
3082 (int) (UNIXSOCK_PATH_BUFLEN - 1));
3083 goto keep_going;
3084 }
3085
3086 /*
3087 * NULL hostname tells pg_getaddrinfo_all to parse the service
3088 * name as a Unix-domain socket path.
3089 */
3090 ret = pg_getaddrinfo_all(NULL, portstr, &hint,
3091 &addrlist);
3092 if (ret || !addrlist)
3093 {
3094 libpq_append_conn_error(conn, "could not translate Unix-domain socket path \"%s\" to address: %s",
3095 portstr, gai_strerror(ret));
3096 goto keep_going;
3097 }
3098 break;
3099 }
3100
3101 /*
3102 * Store a copy of the addrlist in private memory so we can perform
3103 * randomization for load balancing.
3104 */
3105 ret = store_conn_addrinfo(conn, addrlist);
3106 pg_freeaddrinfo_all(hint.ai_family, addrlist);
3107 if (ret)
3108 goto error_return; /* message already logged */
3109
3110 /*
3111 * If random load balancing is enabled we shuffle the addresses.
3112 */
3113 if (conn->load_balance_type == LOAD_BALANCE_RANDOM)
3114 {
3115 /*
3116 * This is the "inside-out" variant of the Fisher-Yates shuffle
3117 * algorithm. Notionally, we append each new value to the array
3118 * and then swap it with a randomly-chosen array element (possibly
3119 * including itself, else we fail to generate permutations with
3120 * the last integer last). The swap step can be optimized by
3121 * combining it with the insertion.
3122 *
3123 * We don't need to initialize conn->prng_state here, because that
3124 * already happened in pqConnectOptions2.
3125 */
3126 for (int i = 1; i < conn->naddr; i++)
3127 {
3128 int j = pg_prng_uint64_range(&conn->prng_state, 0, i);
3129 AddrInfo temp = conn->addr[j];
3130
3131 conn->addr[j] = conn->addr[i];
3132 conn->addr[i] = temp;
3133 }
3134 }
3135
3136 reset_connection_state_machine = true;
3137 conn->try_next_host = false;
3138 }
3139
3140 /* Reset connection state machine? */
3141 if (reset_connection_state_machine)
3142 {
3143 /*
3144 * (Re) initialize our connection control variables for a set of
3145 * connection attempts to a single server address. These variables
3146 * must persist across individual connection attempts, but we must
3147 * reset them when we start to consider a new server.
3148 */
3149 conn->pversion = conn->max_pversion;
3150 conn->send_appname = true;
3151 conn->failed_enc_methods = 0;
3152 conn->current_enc_method = 0;
3153 conn->allowed_enc_methods = 0;
3154 reset_connection_state_machine = false;
3155 need_new_connection = true;
3156 }
3157
3158 /* Force a new connection (perhaps to the same server as before)? */
3159 if (need_new_connection)
3160 {
3161 /* Drop any existing connection */
3162 pqDropConnection(conn, true);
3163
3164 /* Reset all state obtained from old server */
3165 pqDropServerData(conn);
3166
3167 /* Drop any PGresult we might have, too */
3168 conn->asyncStatus = PGASYNC_IDLE;
3169 conn->xactStatus = PQTRANS_IDLE;
3170 conn->pipelineStatus = PQ_PIPELINE_OFF;
3171 pqClearAsyncResult(conn);
3172
3173 /* Reset conn->status to put the state machine in the right state */
3174 conn->status = CONNECTION_NEEDED;
3175
3176 need_new_connection = false;
3177 }
3178
3179 /*
3180 * Decide what to do next, if server rejects SSL or GSS negotiation, but
3181 * the connection is still valid. If there are no options left, error out
3182 * with 'msg'.
3183 */
3184#define ENCRYPTION_NEGOTIATION_FAILED(msg) \
3185 do { \
3186 switch (encryption_negotiation_failed(conn)) \
3187 { \
3188 case 0: \
3189 libpq_append_conn_error(conn, (msg)); \
3190 goto error_return; \
3191 case 1: \
3192 conn->status = CONNECTION_MADE; \
3193 return PGRES_POLLING_WRITING; \
3194 case 2: \
3195 need_new_connection = true; \
3196 goto keep_going; \
3197 } \
3198 } while(0);
3199
3200 /*
3201 * Decide what to do next, if connection fails. If there are no options
3202 * left, return with an error. The error message has already been written
3203 * to the connection's error buffer.
3204 */
3205#define CONNECTION_FAILED() \
3206 do { \
3207 if (connection_failed(conn)) \
3208 { \
3209 need_new_connection = true; \
3210 goto keep_going; \
3211 } \
3212 else \
3213 goto error_return; \
3214 } while(0);
3215
3216 /* Now try to advance the state machine for this connection */
3217 switch (conn->status)
3218 {
3219 case CONNECTION_NEEDED:
3220 {
3221 /*
3222 * Try to initiate a connection to one of the addresses
3223 * returned by pg_getaddrinfo_all(). conn->whichaddr is the
3224 * next one to try.
3225 *
3226 * The extra level of braces here is historical. It's not
3227 * worth reindenting this whole switch case to remove 'em.
3228 */
3229 {
3230 char host_addr[NI_MAXHOST];
3231 int sock_type;
3232 AddrInfo *addr_cur;
3233
3234 /*
3235 * Advance to next possible host, if we've tried all of
3236 * the addresses for the current host.
3237 */
3238 if (conn->whichaddr == conn->naddr)
3239 {
3240 conn->try_next_host = true;
3241 goto keep_going;
3242 }
3243 addr_cur = &conn->addr[conn->whichaddr];
3244
3245 /* Remember current address for possible use later */
3246 memcpy(&conn->raddr, &addr_cur->addr, sizeof(SockAddr));
3247
3248#ifdef ENABLE_GSS
3249
3250 /*
3251 * Before establishing the connection, check if it's
3252 * doomed to fail because gssencmode='require' but GSSAPI
3253 * is not available.
3254 */
3255 if (conn->gssencmode[0] == 'r')
3256 {
3257 if (conn->raddr.addr.ss_family == AF_UNIX)
3258 {
3259 libpq_append_conn_error(conn,
3260 "GSSAPI encryption required but it is not supported over a local socket");
3261 goto error_return;
3262 }
3263 if (conn->gcred == GSS_C_NO_CREDENTIAL)
3264 {
3265 if (!pg_GSS_have_cred_cache(&conn->gcred))
3266 {
3267 libpq_append_conn_error(conn,
3268 "GSSAPI encryption required but no credential cache");
3269 goto error_return;
3270 }
3271 }
3272 }
3273#endif
3274
3275 /*
3276 * Choose the encryption method to try first. Do this
3277 * before establishing the connection, so that if none of
3278 * the modes allowed by the connections options are
3279 * available, we can error out before establishing the
3280 * connection.
3281 */
3282 if (!init_allowed_encryption_methods(conn))
3283 goto error_return;
3284
3285 /*
3286 * Set connip, too. Note we purposely ignore strdup
3287 * failure; not a big problem if it fails.
3288 */
3289 if (conn->connip != NULL)
3290 {
3291 free(conn->connip);
3292 conn->connip = NULL;
3293 }
3294 getHostaddr(conn, host_addr, NI_MAXHOST);
3295 if (host_addr[0])
3296 conn->connip = strdup(host_addr);
3297
3298 /* Try to create the socket */
3299 sock_type = SOCK_STREAM;
3300#ifdef SOCK_CLOEXEC
3301
3302 /*
3303 * Atomically mark close-on-exec, if possible on this
3304 * platform, so that there isn't a window where a
3305 * subprogram executed by another thread inherits the
3306 * socket. See fallback code below.
3307 */
3308 sock_type |= SOCK_CLOEXEC;
3309#endif
3310#ifdef SOCK_NONBLOCK
3311
3312 /*
3313 * We might as well skip a system call for nonblocking
3314 * mode too, if we can.
3315 */
3316 sock_type |= SOCK_NONBLOCK;
3317#endif
3318 conn->sock = socket(addr_cur->family, sock_type, 0);
3319 if (conn->sock == PGINVALID_SOCKET)
3320 {
3321 int errorno = SOCK_ERRNO;
3322
3323 /*
3324 * Silently ignore socket() failure if we have more
3325 * addresses to try; this reduces useless chatter in
3326 * cases where the address list includes both IPv4 and
3327 * IPv6 but kernel only accepts one family.
3328 */
3329 if (conn->whichaddr < conn->naddr ||
3330 conn->whichhost + 1 < conn->nconnhost)
3331 {
3332 conn->try_next_addr = true;
3333 goto keep_going;
3334 }
3335 emitHostIdentityInfo(conn, host_addr);
3336 libpq_append_conn_error(conn, "could not create socket: %s",
3337 SOCK_STRERROR(errorno, sebuf, sizeof(sebuf)));
3338 goto error_return;
3339 }
3340
3341 /*
3342 * Once we've identified a target address, all errors
3343 * except the preceding socket()-failure case should be
3344 * prefixed with host-identity information. (If the
3345 * connection succeeds, the contents of conn->errorMessage
3346 * won't matter, so this is harmless.)
3347 */
3348 emitHostIdentityInfo(conn, host_addr);
3349
3350 /*
3351 * Select socket options: no delay of outgoing data for
3352 * TCP sockets, nonblock mode, close-on-exec. Try the
3353 * next address if any of this fails.
3354 */
3355 if (addr_cur->family != AF_UNIX)
3356 {
3357 if (!connectNoDelay(conn))
3358 {
3359 /* error message already created */
3360 conn->try_next_addr = true;
3361 goto keep_going;
3362 }
3363 }
3364#ifndef SOCK_NONBLOCK
3365 if (!pg_set_noblock(conn->sock))
3366 {
3367 libpq_append_conn_error(conn, "could not set socket to nonblocking mode: %s",
3368 SOCK_STRERROR(SOCK_ERRNO, sebuf, sizeof(sebuf)));
3369 conn->try_next_addr = true;
3370 goto keep_going;
3371 }
3372#endif
3373
3374#ifndef SOCK_CLOEXEC
3375#ifdef F_SETFD
3376 if (fcntl(conn->sock, F_SETFD, FD_CLOEXEC) == -1)
3377 {
3378 libpq_append_conn_error(conn, "could not set socket to close-on-exec mode: %s",
3379 SOCK_STRERROR(SOCK_ERRNO, sebuf, sizeof(sebuf)));
3380 conn->try_next_addr = true;
3381 goto keep_going;
3382 }
3383#endif /* F_SETFD */
3384#endif
3385
3386 if (addr_cur->family != AF_UNIX)
3387 {
3388#ifndef WIN32
3389 int on = 1;
3390#endif
3391 int usekeepalives = useKeepalives(conn);
3392 int err = 0;
3393
3394 if (usekeepalives < 0)
3395 {
3396 /* error is already reported */
3397 err = 1;
3398 }
3399 else if (usekeepalives == 0)
3400 {
3401 /* Do nothing */
3402 }
3403#ifndef WIN32
3404 else if (setsockopt(conn->sock,
3405 SOL_SOCKET, SO_KEEPALIVE,
3406 (char *) &on, sizeof(on)) < 0)
3407 {
3408 libpq_append_conn_error(conn, "%s(%s) failed: %s",
3409 "setsockopt",
3410 "SO_KEEPALIVE",
3411 SOCK_STRERROR(SOCK_ERRNO, sebuf, sizeof(sebuf)));
3412 err = 1;
3413 }
3414 else if (!setKeepalivesIdle(conn)
3415 || !setKeepalivesInterval(conn)
3416 || !setKeepalivesCount(conn))
3417 err = 1;
3418#else /* WIN32 */
3419#ifdef SIO_KEEPALIVE_VALS
3420 else if (!prepKeepalivesWin32(conn))
3421 err = 1;
3422#endif /* SIO_KEEPALIVE_VALS */
3423#endif /* WIN32 */
3424 else if (!setTCPUserTimeout(conn))
3425 err = 1;
3426
3427 if (err)
3428 {
3429 conn->try_next_addr = true;
3430 goto keep_going;
3431 }
3432 }
3433
3434 /*----------
3435 * We have three methods of blocking SIGPIPE during
3436 * send() calls to this socket:
3437 *
3438 * - setsockopt(sock, SO_NOSIGPIPE)
3439 * - send(sock, ..., MSG_NOSIGNAL)
3440 * - setting the signal mask to SIG_IGN during send()
3441 *
3442 * The third method requires three syscalls per send,
3443 * so we prefer either of the first two, but they are
3444 * less portable. The state is tracked in the following
3445 * members of PGconn:
3446 *
3447 * conn->sigpipe_so - we have set up SO_NOSIGPIPE
3448 * conn->sigpipe_flag - we're specifying MSG_NOSIGNAL
3449 *
3450 * If we can use SO_NOSIGPIPE, then set sigpipe_so here
3451 * and we're done. Otherwise, set sigpipe_flag so that
3452 * we will try MSG_NOSIGNAL on sends. If we get an error
3453 * with MSG_NOSIGNAL, we'll clear that flag and revert to
3454 * signal masking.
3455 *----------
3456 */
3457 conn->sigpipe_so = false;
3458#ifdef MSG_NOSIGNAL
3459 conn->sigpipe_flag = true;
3460#else
3461 conn->sigpipe_flag = false;
3462#endif /* MSG_NOSIGNAL */
3463
3464#ifdef SO_NOSIGPIPE
3465 optval = 1;
3466 if (setsockopt(conn->sock, SOL_SOCKET, SO_NOSIGPIPE,
3467 (char *) &optval, sizeof(optval)) == 0)
3468 {
3469 conn->sigpipe_so = true;
3470 conn->sigpipe_flag = false;
3471 }
3472#endif /* SO_NOSIGPIPE */
3473
3474 /*
3475 * Start/make connection. This should not block, since we
3476 * are in nonblock mode. If it does, well, too bad.
3477 */
3478 if (connect(conn->sock, (struct sockaddr *) &addr_cur->addr.addr,
3479 addr_cur->addr.salen) < 0)
3480 {
3481 if (SOCK_ERRNO == EINPROGRESS ||
3482#ifdef WIN32
3483 SOCK_ERRNO == EWOULDBLOCK ||
3484#endif
3485 SOCK_ERRNO == EINTR)
3486 {
3487 /*
3488 * This is fine - we're in non-blocking mode, and
3489 * the connection is in progress. Tell caller to
3490 * wait for write-ready on socket.
3491 */
3492 conn->status = CONNECTION_STARTED;
3493 return PGRES_POLLING_WRITING;
3494 }
3495 /* otherwise, trouble */
3496 }
3497 else
3498 {
3499 /*
3500 * Hm, we're connected already --- seems the "nonblock
3501 * connection" wasn't. Advance the state machine and
3502 * go do the next stuff.
3503 */
3504 conn->status = CONNECTION_STARTED;
3505 goto keep_going;
3506 }
3507
3508 /*
3509 * This connection failed. Add the error report to
3510 * conn->errorMessage, then try the next address if any.
3511 */
3512 connectFailureMessage(conn, SOCK_ERRNO);
3513 conn->try_next_addr = true;
3514 goto keep_going;
3515 }
3516 }
3517
3518 case CONNECTION_STARTED:
3519 {
3520 socklen_t optlen = sizeof(optval);
3521
3522 /*
3523 * Write ready, since we've made it here, so the connection
3524 * has been made ... or has failed.
3525 */
3526
3527 /*
3528 * Now check (using getsockopt) that there is not an error
3529 * state waiting for us on the socket.
3530 */
3531
3532 if (getsockopt(conn->sock, SOL_SOCKET, SO_ERROR,
3533 (char *) &optval, &optlen) == -1)
3534 {
3535 libpq_append_conn_error(conn, "could not get socket error status: %s",
3536 SOCK_STRERROR(SOCK_ERRNO, sebuf, sizeof(sebuf)));
3537 goto error_return;
3538 }
3539 else if (optval != 0)
3540 {
3541 /*
3542 * When using a nonblocking connect, we will typically see
3543 * connect failures at this point, so provide a friendly
3544 * error message.
3545 */
3546 connectFailureMessage(conn, optval);
3547
3548 /*
3549 * Try the next address if any, just as in the case where
3550 * connect() returned failure immediately.
3551 */
3552 conn->try_next_addr = true;
3553 goto keep_going;
3554 }
3555
3556 /* Fill in the client address */
3557 conn->laddr.salen = sizeof(conn->laddr.addr);
3558 if (getsockname(conn->sock,
3559 (struct sockaddr *) &conn->laddr.addr,
3560 &conn->laddr.salen) < 0)
3561 {
3562 libpq_append_conn_error(conn, "could not get client address from socket: %s",
3563 SOCK_STRERROR(SOCK_ERRNO, sebuf, sizeof(sebuf)));
3564 goto error_return;
3565 }
3566
3567 /*
3568 * Implement requirepeer check, if requested and it's a
3569 * Unix-domain socket.
3570 */
3571 if (conn->requirepeer && conn->requirepeer[0] &&
3572 conn->raddr.addr.ss_family == AF_UNIX)
3573 {
3574#ifndef WIN32
3575 char *remote_username;
3576#endif
3577 uid_t uid;
3578 gid_t gid;
3579
3580 errno = 0;
3581 if (getpeereid(conn->sock, &uid, &gid) != 0)
3582 {
3583 /*
3584 * Provide special error message if getpeereid is a
3585 * stub
3586 */
3587 if (errno == ENOSYS)
3588 libpq_append_conn_error(conn, "requirepeer parameter is not supported on this platform");
3589 else
3590 libpq_append_conn_error(conn, "could not get peer credentials: %s",
3591 strerror_r(errno, sebuf, sizeof(sebuf)));
3592 goto error_return;
3593 }
3594
3595#ifndef WIN32
3596 remote_username = pg_fe_getusername(uid,
3597 &conn->errorMessage);
3598 if (remote_username == NULL)
3599 goto error_return; /* message already logged */
3600
3601 if (strcmp(remote_username, conn->requirepeer) != 0)
3602 {
3603 libpq_append_conn_error(conn, "requirepeer specifies \"%s\", but actual peer user name is \"%s\"",
3604 conn->requirepeer, remote_username);
3605 free(remote_username);
3606 goto error_return;
3607 }
3608 free(remote_username);
3609#else /* WIN32 */
3610 /* should have failed with ENOSYS above */
3611 Assert(false);
3612#endif /* WIN32 */
3613 }
3614
3615 /*
3616 * Make sure we can write before advancing to next step.
3617 */
3618 conn->status = CONNECTION_MADE;
3619 return PGRES_POLLING_WRITING;
3620 }
3621
3622 case CONNECTION_MADE:
3623 {
3624 char *startpacket;
3625 int packetlen;
3626
3627#ifdef ENABLE_GSS
3628
3629 /*
3630 * If GSSAPI encryption is enabled, send a packet to the
3631 * server asking for GSSAPI Encryption and proceed with GSSAPI
3632 * handshake. We will come back here after GSSAPI encryption
3633 * has been established, with conn->gctx set.
3634 */
3635 if (conn->current_enc_method == ENC_GSSAPI && !conn->gctx)
3636 {
3637 ProtocolVersion pv = pg_hton32(NEGOTIATE_GSS_CODE);
3638
3639 if (pqPacketSend(conn, 0, &pv, sizeof(pv)) != STATUS_OK)
3640 {
3641 libpq_append_conn_error(conn, "could not send GSSAPI negotiation packet: %s",
3642 SOCK_STRERROR(SOCK_ERRNO, sebuf, sizeof(sebuf)));
3643 goto error_return;
3644 }
3645
3646 /* Ok, wait for response */
3647 conn->status = CONNECTION_GSS_STARTUP;
3648 return PGRES_POLLING_READING;
3649 }
3650#endif
3651
3652#ifdef USE_SSL
3653
3654 /*
3655 * If SSL is enabled, start the SSL negotiation. We will come
3656 * back here after SSL encryption has been established, with
3657 * ssl_in_use set.
3658 */
3659 if (conn->current_enc_method == ENC_SSL && !conn->ssl_in_use)
3660 {
3661 /*
3662 * If traditional postgres SSL negotiation is used, send
3663 * the SSL request. In direct negotiation, jump straight
3664 * into the SSL handshake.
3665 */
3666 if (conn->sslnegotiation[0] == 'p')
3667 {
3668 ProtocolVersion pv;
3669
3670 /*
3671 * Send the SSL request packet.
3672 *
3673 * Theoretically, this could block, but it really
3674 * shouldn't since we only got here if the socket is
3675 * write-ready.
3676 */
3677 pv = pg_hton32(NEGOTIATE_SSL_CODE);
3678 if (pqPacketSend(conn, 0, &pv, sizeof(pv)) != STATUS_OK)
3679 {
3680 libpq_append_conn_error(conn, "could not send SSL negotiation packet: %s",
3681 SOCK_STRERROR(SOCK_ERRNO, sebuf, sizeof(sebuf)));
3682 goto error_return;
3683 }
3684 /* Ok, wait for response */
3685 conn->status = CONNECTION_SSL_STARTUP;
3686 return PGRES_POLLING_READING;
3687 }
3688 else
3689 {
3690 Assert(conn->sslnegotiation[0] == 'd');
3691 conn->status = CONNECTION_SSL_STARTUP;
3692 return PGRES_POLLING_WRITING;
3693 }
3694 }
3695#endif /* USE_SSL */
3696
3697 /*
3698 * For cancel requests this is as far as we need to go in the
3699 * connection establishment. Now we can actually send our
3700 * cancellation request.
3701 */
3702 if (conn->cancelRequest)
3703 {
3704 if (PQsendCancelRequest(conn) != STATUS_OK)
3705 {
3706 libpq_append_conn_error(conn, "could not send cancel packet: %s",
3707 SOCK_STRERROR(SOCK_ERRNO, sebuf, sizeof(sebuf)));
3708 goto error_return;
3709 }
3710 conn->status = CONNECTION_AWAITING_RESPONSE;
3711 return PGRES_POLLING_READING;
3712 }
3713
3714 /*
3715 * We have now established encryption, or we are happy to
3716 * proceed without.
3717 */
3718
3719 /* Build the startup packet. */
3720 startpacket = pqBuildStartupPacket3(conn, &packetlen,
3721 EnvironmentOptions);
3722 if (!startpacket)
3723 {
3724 libpq_append_conn_error(conn, "out of memory");
3725 goto error_return;
3726 }
3727
3728 /*
3729 * Send the startup packet.
3730 *
3731 * Theoretically, this could block, but it really shouldn't
3732 * since we only got here if the socket is write-ready.
3733 */
3734 if (pqPacketSend(conn, 0, startpacket, packetlen) != STATUS_OK)
3735 {
3736 libpq_append_conn_error(conn, "could not send startup packet: %s",
3737 SOCK_STRERROR(SOCK_ERRNO, sebuf, sizeof(sebuf)));
3738 free(startpacket);
3739 goto error_return;
3740 }
3741
3742 free(startpacket);
3743
3744 conn->status = CONNECTION_AWAITING_RESPONSE;
3745 return PGRES_POLLING_READING;
3746 }
3747
3748 /*
3749 * Handle SSL negotiation: wait for postmaster messages and
3750 * respond as necessary.
3751 */
3752 case CONNECTION_SSL_STARTUP:
3753 {
3754#ifdef USE_SSL
3755 PostgresPollingStatusType pollres;
3756
3757 /*
3758 * On first time through with traditional SSL negotiation, get
3759 * the postmaster's response to our SSLRequest packet. With
3760 * sslnegotiation='direct', go straight to initiating SSL.
3761 */
3762 if (!conn->ssl_in_use && conn->sslnegotiation[0] == 'p')
3763 {
3764 /*
3765 * We use pqReadData here since it has the logic to
3766 * distinguish no-data-yet from connection closure. Since
3767 * conn->ssl isn't set, a plain recv() will occur.
3768 */
3769 char SSLok;
3770 int rdresult;
3771
3772 rdresult = pqReadData(conn);
3773 if (rdresult < 0)
3774 {
3775 /* errorMessage is already filled in */
3776 goto error_return;
3777 }
3778 if (rdresult == 0)
3779 {
3780 /* caller failed to wait for data */
3781 return PGRES_POLLING_READING;
3782 }
3783 if (pqGetc(&SSLok, conn) < 0)
3784 {
3785 /* should not happen really */
3786 return PGRES_POLLING_READING;
3787 }
3788 if (SSLok == 'S')
3789 {
3790 if (conn->Pfdebug)
3791 pqTraceOutputCharResponse(conn, "SSLResponse",
3792 SSLok);
3793 /* mark byte consumed */
3794 conn->inStart = conn->inCursor;
3795 }
3796 else if (SSLok == 'N')
3797 {
3798 if (conn->Pfdebug)
3799 pqTraceOutputCharResponse(conn, "SSLResponse",
3800 SSLok);
3801 /* mark byte consumed */
3802 conn->inStart = conn->inCursor;
3803
3804 /*
3805 * The connection is still valid, so if it's OK to
3806 * continue without SSL, we can proceed using this
3807 * connection. Otherwise return with an error.
3808 */
3809 ENCRYPTION_NEGOTIATION_FAILED(libpq_gettext("server does not support SSL, but SSL was required"));
3810 }
3811 else if (SSLok == 'E')
3812 {
3813 /*
3814 * Server failure of some sort, such as failure to
3815 * fork a backend process. Don't bother retrieving
3816 * the error message; we should not trust it as the
3817 * server has not been authenticated yet.
3818 */
3819 libpq_append_conn_error(conn, "server sent an error response during SSL exchange");
3820 goto error_return;
3821 }
3822 else
3823 {
3824 libpq_append_conn_error(conn, "received invalid response to SSL negotiation: %c",
3825 SSLok);
3826 goto error_return;
3827 }
3828 }
3829
3830 /*
3831 * Begin or continue the SSL negotiation process.
3832 */
3833 pollres = pqsecure_open_client(conn);
3834 if (pollres == PGRES_POLLING_OK)
3835 {
3836 /*
3837 * At this point we should have no data already buffered.
3838 * If we do, it was received before we performed the SSL
3839 * handshake, so it wasn't encrypted and indeed may have
3840 * been injected by a man-in-the-middle.
3841 */
3842 if (conn->inCursor != conn->inEnd)
3843 {
3844 libpq_append_conn_error(conn, "received unencrypted data after SSL response");
3845 goto error_return;
3846 }
3847
3848 /* SSL handshake done, ready to send startup packet */
3849 conn->status = CONNECTION_MADE;
3850 return PGRES_POLLING_WRITING;
3851 }
3852 if (pollres == PGRES_POLLING_FAILED)
3853 {
3854 /*
3855 * SSL handshake failed. We will retry with a plaintext
3856 * connection, if permitted by sslmode.
3857 */
3858 CONNECTION_FAILED();
3859 }
3860 /* Else, return POLLING_READING or POLLING_WRITING status */
3861 return pollres;
3862#else /* !USE_SSL */
3863 /* can't get here */
3864 goto error_return;
3865#endif /* USE_SSL */
3866 }
3867
3868 case CONNECTION_GSS_STARTUP:
3869 {
3870#ifdef ENABLE_GSS
3871 PostgresPollingStatusType pollres;
3872
3873 /*
3874 * If we haven't yet, get the postmaster's response to our
3875 * negotiation packet
3876 */
3877 if (!conn->gctx)
3878 {
3879 char gss_ok;
3880 int rdresult = pqReadData(conn);
3881
3882 if (rdresult < 0)
3883 /* pqReadData fills in error message */
3884 goto error_return;
3885 else if (rdresult == 0)
3886 /* caller failed to wait for data */
3887 return PGRES_POLLING_READING;
3888 if (pqGetc(&gss_ok, conn) < 0)
3889 /* shouldn't happen... */
3890 return PGRES_POLLING_READING;
3891
3892 if (gss_ok == 'E')
3893 {
3894 /*
3895 * Server failure of some sort, possibly protocol
3896 * version support failure. Don't bother retrieving
3897 * the error message; we should not trust it anyway as
3898 * the server has not authenticated yet.
3899 *
3900 * Note that unlike on an error response to
3901 * SSLRequest, we allow falling back to SSL or
3902 * plaintext connection here. GSS support was
3903 * introduced in PostgreSQL version 12, so an error
3904 * response might mean that we are connecting to a
3905 * pre-v12 server.
3906 */
3907 libpq_append_conn_error(conn, "server sent an error response during GSS encryption exchange");
3908 CONNECTION_FAILED();
3909 }
3910
3911 /* mark byte consumed */
3912 conn->inStart = conn->inCursor;
3913
3914 if (gss_ok == 'N')
3915 {
3916 if (conn->Pfdebug)
3917 pqTraceOutputCharResponse(conn, "GSSENCResponse",
3918 gss_ok);
3919
3920 /*
3921 * The connection is still valid, so if it's OK to
3922 * continue without GSS, we can proceed using this
3923 * connection. Otherwise return with an error.
3924 */
3925 ENCRYPTION_NEGOTIATION_FAILED(libpq_gettext("server doesn't support GSSAPI encryption, but it was required"));
3926 }
3927 else if (gss_ok != 'G')
3928 {
3929 libpq_append_conn_error(conn, "received invalid response to GSSAPI negotiation: %c",
3930 gss_ok);
3931 goto error_return;
3932 }
3933
3934 if (conn->Pfdebug)
3935 pqTraceOutputCharResponse(conn, "GSSENCResponse",
3936 gss_ok);
3937 }
3938
3939 /* Begin or continue GSSAPI negotiation */
3940 pollres = pqsecure_open_gss(conn);
3941 if (pollres == PGRES_POLLING_OK)
3942 {
3943 /*
3944 * At this point we should have no data already buffered.
3945 * If we do, it was received before we performed the GSS
3946 * handshake, so it wasn't encrypted and indeed may have
3947 * been injected by a man-in-the-middle.
3948 */
3949 if (conn->inCursor != conn->inEnd)
3950 {
3951 libpq_append_conn_error(conn, "received unencrypted data after GSSAPI encryption response");
3952 goto error_return;
3953 }
3954
3955 /* All set for startup packet */
3956 conn->status = CONNECTION_MADE;
3957 return PGRES_POLLING_WRITING;
3958 }
3959 else if (pollres == PGRES_POLLING_FAILED)
3960 {
3961 /*
3962 * GSS handshake failed. We will retry with an SSL or
3963 * plaintext connection, if permitted by the options.
3964 */
3965 CONNECTION_FAILED();
3966 }
3967 /* Else, return POLLING_READING or POLLING_WRITING status */
3968 return pollres;
3969#else /* !ENABLE_GSS */
3970 /* unreachable */
3971 goto error_return;
3972#endif /* ENABLE_GSS */
3973 }
3974
3975 /*
3976 * Handle authentication exchange: wait for postmaster messages
3977 * and respond as necessary.
3978 */
3979 case CONNECTION_AWAITING_RESPONSE:
3980 {
3981 char beresp;
3982 int msgLength;
3983 int avail;
3984 AuthRequest areq;
3985 int res;
3986 bool async;
3987
3988 /*
3989 * Scan the message from current point (note that if we find
3990 * the message is incomplete, we will return without advancing
3991 * inStart, and resume here next time).
3992 */
3993 conn->inCursor = conn->inStart;
3994
3995 /* Read type byte */
3996 if (pqGetc(&beresp, conn))
3997 {
3998 /* We'll come back when there is more data */
3999 return PGRES_POLLING_READING;
4000 }
4001
4002 /*
4003 * Validate message type: we expect only an authentication
4004 * request, NegotiateProtocolVersion, or an error here.
4005 * Anything else probably means it's not Postgres on the other
4006 * end at all.
4007 */
4008 if (beresp != PqMsg_AuthenticationRequest &&
4009 beresp != PqMsg_ErrorResponse &&
4010 beresp != PqMsg_NegotiateProtocolVersion)
4011 {
4012 libpq_append_conn_error(conn, "expected authentication request from server, but received %c",
4013 beresp);
4014 goto error_return;
4015 }
4016
4017 /* Read message length word */
4018 if (pqGetInt(&msgLength, 4, conn))
4019 {
4020 /* We'll come back when there is more data */
4021 return PGRES_POLLING_READING;
4022 }
4023
4024 /*
4025 * Try to validate message length before using it.
4026 *
4027 * Authentication requests can't be very large, although GSS
4028 * auth requests may not be that small. Same for
4029 * NegotiateProtocolVersion.
4030 *
4031 * Errors can be a little larger, but not huge. If we see a
4032 * large apparent length in an error, it means we're really
4033 * talking to a pre-3.0-protocol server; cope. (Before
4034 * version 14, the server also used the old protocol for
4035 * errors that happened before processing the startup packet.)
4036 */
4037 if (beresp == PqMsg_AuthenticationRequest &&
4038 (msgLength < 8 || msgLength > 2000))
4039 {
4040 libpq_append_conn_error(conn, "received invalid authentication request");
4041 goto error_return;
4042 }
4043 if (beresp == PqMsg_NegotiateProtocolVersion &&
4044 (msgLength < 8 || msgLength > 2000))
4045 {
4046 libpq_append_conn_error(conn, "received invalid protocol negotiation message");
4047 goto error_return;
4048 }
4049
4050#define MAX_ERRLEN 30000
4051 if (beresp == PqMsg_ErrorResponse &&
4052 (msgLength < 8 || msgLength > MAX_ERRLEN))
4053 {
4054 /* Handle error from a pre-3.0 server */
4055 conn->inCursor = conn->inStart + 1; /* reread data */
4056 if (pqGets_append(&conn->errorMessage, conn))
4057 {
4058 /*
4059 * We may not have authenticated the server yet, so
4060 * don't let the buffer grow forever.
4061 */
4062 avail = conn->inEnd - conn->inCursor;
4063 if (avail > MAX_ERRLEN)
4064 {
4065 libpq_append_conn_error(conn, "received invalid error message");
4066 goto error_return;
4067 }
4068
4069 /* We'll come back when there is more data */
4070 return PGRES_POLLING_READING;
4071 }
4072 /* OK, we read the message; mark data consumed */
4073 pqParseDone(conn, conn->inCursor);
4074
4075 /*
4076 * Before 7.2, the postmaster didn't always end its
4077 * messages with a newline, so add one if needed to
4078 * conform to libpq conventions.
4079 */
4080 if (conn->errorMessage.len == 0 ||
4081 conn->errorMessage.data[conn->errorMessage.len - 1] != '\n')
4082 {
4083 appendPQExpBufferChar(&conn->errorMessage, '\n');
4084 }
4085
4086 goto error_return;
4087 }
4088#undef MAX_ERRLEN
4089
4090 /*
4091 * Can't process if message body isn't all here yet.
4092 *
4093 * After this check passes, any further EOF during parsing
4094 * implies that the server sent a bad/truncated message.
4095 * Reading more bytes won't help in that case, so don't return
4096 * PGRES_POLLING_READING after this point.
4097 */
4098 msgLength -= 4;
4099 avail = conn->inEnd - conn->inCursor;
4100 if (avail < msgLength)
4101 {
4102 /*
4103 * Before returning, try to enlarge the input buffer if
4104 * needed to hold the whole message; see notes in
4105 * pqParseInput3.
4106 */
4107 if (pqCheckInBufferSpace(conn->inCursor + (size_t) msgLength,
4108 conn))
4109 goto error_return;
4110 /* We'll come back when there is more data */
4111 return PGRES_POLLING_READING;
4112 }
4113
4114 /* Handle errors. */
4115 if (beresp == PqMsg_ErrorResponse)
4116 {
4117 if (pqGetErrorNotice3(conn, true))
4118 {
4119 libpq_append_conn_error(conn, "received invalid error message");
4120 goto error_return;
4121 }
4122 /* OK, we read the message; mark data consumed */
4123 pqParseDone(conn, conn->inCursor);
4124
4125 /*
4126 * If error is "cannot connect now", try the next host if
4127 * any (but we don't want to consider additional addresses
4128 * for this host, nor is there much point in changing SSL
4129 * or GSS mode). This is helpful when dealing with
4130 * standby servers that might not be in hot-standby state.
4131 */
4132 if (strcmp(conn->last_sqlstate,
4133 ERRCODE_CANNOT_CONNECT_NOW) == 0)
4134 {
4135 conn->try_next_host = true;
4136 goto keep_going;
4137 }
4138
4139 /* Check to see if we should mention pgpassfile */
4140 pgpassfileWarning(conn);
4141
4142 CONNECTION_FAILED();
4143 }
4144 /* Handle NegotiateProtocolVersion */
4145 else if (beresp == PqMsg_NegotiateProtocolVersion)
4146 {
4147 if (conn->pversion_negotiated)
4148 {
4149 libpq_append_conn_error(conn, "received duplicate protocol negotiation message");
4150 goto error_return;
4151 }
4152 if (pqGetNegotiateProtocolVersion3(conn))
4153 {
4154 /* pqGetNegotiateProtocolVersion3 set error already */
4155 goto error_return;
4156 }
4157 conn->pversion_negotiated = true;
4158
4159 /* OK, we read the message; mark data consumed */
4160 pqParseDone(conn, conn->inCursor);
4161
4162 goto keep_going;
4163 }
4164
4165 /* It is an authentication request. */
4166 conn->auth_req_received = true;
4167
4168 /* Get the type of request. */
4169 if (pqGetInt((int *) &areq, 4, conn))
4170 {
4171 /* can't happen because we checked the length already */
4172 libpq_append_conn_error(conn, "received invalid authentication request");
4173 goto error_return;
4174 }
4175 msgLength -= 4;
4176
4177 /*
4178 * Process the rest of the authentication request message, and
4179 * respond to it if necessary.
4180 *
4181 * Note that conn->pghost must be non-NULL if we are going to
4182 * avoid the Kerberos code doing a hostname look-up.
4183 */
4184 res = pg_fe_sendauth(areq, msgLength, conn, &async);
4185
4186 if (async && (res == STATUS_OK))
4187 {
4188 /*
4189 * We'll come back later once we're ready to respond.
4190 * Don't consume the request yet.
4191 */
4192 conn->status = CONNECTION_AUTHENTICATING;
4193 goto keep_going;
4194 }
4195
4196 /*
4197 * OK, we have processed the message; mark data consumed. We
4198 * don't call pqParseDone here because we already traced this
4199 * message inside pg_fe_sendauth.
4200 */
4201 conn->inStart = conn->inCursor;
4202
4203 if (res != STATUS_OK)
4204 {
4205 /*
4206 * OAuth connections may perform two-step discovery, where
4207 * the first connection is a dummy.
4208 */
4209 if (conn->sasl == &pg_oauth_mech && conn->oauth_want_retry)
4210 {
4211 need_new_connection = true;
4212 goto keep_going;
4213 }
4214
4215 goto error_return;
4216 }
4217
4218 /*
4219 * Just make sure that any data sent by pg_fe_sendauth is
4220 * flushed out. Although this theoretically could block, it
4221 * really shouldn't since we don't send large auth responses.
4222 */
4223 if (pqFlush(conn))
4224 goto error_return;
4225
4226 if (areq == AUTH_REQ_OK)
4227 {
4228 /* We are done with authentication exchange */
4229 conn->status = CONNECTION_AUTH_OK;
4230
4231 /*
4232 * Set asyncStatus so that PQgetResult will think that
4233 * what comes back next is the result of a query. See
4234 * below.
4235 */
4236 conn->asyncStatus = PGASYNC_BUSY;
4237 }
4238
4239 /* Look to see if we have more data yet. */
4240 goto keep_going;
4241 }
4242
4243 case CONNECTION_AUTHENTICATING:
4244 {
4245 PostgresPollingStatusType status;
4246
4247 if (!conn->async_auth || !conn->cleanup_async_auth)
4248 {
4249 /* programmer error; should not happen */
4250 libpq_append_conn_error(conn,
4251 "internal error: async authentication has no handler");
4252 goto error_return;
4253 }
4254
4255 /* Drive some external authentication work. */
4256 status = conn->async_auth(conn);
4257
4258 if (status == PGRES_POLLING_FAILED)
4259 goto error_return;
4260
4261 if (status == PGRES_POLLING_OK)
4262 {
4263 /* Done. Tear down the async implementation. */
4264 conn->cleanup_async_auth(conn);
4265 conn->cleanup_async_auth = NULL;
4266
4267 /*
4268 * Cleanup must unset altsock, both as an indication that
4269 * it's been released, and to stop pqSocketCheck from
4270 * looking at the wrong socket after async auth is done.
4271 */
4272 if (conn->altsock != PGINVALID_SOCKET)
4273 {
4274 Assert(false);
4275 libpq_append_conn_error(conn,
4276 "internal error: async cleanup did not release polling socket");
4277 goto error_return;
4278 }
4279
4280 /*
4281 * Reenter the authentication exchange with the server. We
4282 * didn't consume the message that started external
4283 * authentication, so it'll be reprocessed as if we just
4284 * received it.
4285 */
4286 conn->status = CONNECTION_AWAITING_RESPONSE;
4287
4288 goto keep_going;
4289 }
4290
4291 /*
4292 * Caller needs to poll some more. conn->async_auth() should
4293 * have assigned an altsock to poll on.
4294 */
4295 if (conn->altsock == PGINVALID_SOCKET)
4296 {
4297 Assert(false);
4298 libpq_append_conn_error(conn,
4299 "internal error: async authentication did not set a socket for polling");
4300 goto error_return;
4301 }
4302
4303 return status;
4304 }
4305
4306 case CONNECTION_AUTH_OK:
4307 {
4308 /*
4309 * Now we expect to hear from the backend. A ReadyForQuery
4310 * message indicates that startup is successful, but we might
4311 * also get an Error message indicating failure. (Notice
4312 * messages indicating nonfatal warnings are also allowed by
4313 * the protocol, as are ParameterStatus and BackendKeyData
4314 * messages.) Easiest way to handle this is to let
4315 * PQgetResult() read the messages. We just have to fake it
4316 * out about the state of the connection, by setting
4317 * asyncStatus = PGASYNC_BUSY (done above).
4318 */
4319
4320 if (PQisBusy(conn))
4321 return PGRES_POLLING_READING;
4322
4323 res = PQgetResult(conn);
4324
4325 /*
4326 * NULL return indicating we have gone to IDLE state is
4327 * expected
4328 */
4329 if (res)
4330 {
4331 if (res->resultStatus != PGRES_FATAL_ERROR)
4332 libpq_append_conn_error(conn, "unexpected message from server during startup");
4333 else if (conn->send_appname &&
4334 (conn->appname || conn->fbappname))
4335 {
4336 /*
4337 * If we tried to send application_name, check to see
4338 * if the error is about that --- pre-9.0 servers will
4339 * reject it at this stage of the process. If so,
4340 * close the connection and retry without sending
4341 * application_name. We could possibly get a false
4342 * SQLSTATE match here and retry uselessly, but there
4343 * seems no great harm in that; we'll just get the
4344 * same error again if it's unrelated.
4345 */
4346 const char *sqlstate;
4347
4348 sqlstate = PQresultErrorField(res, PG_DIAG_SQLSTATE);
4349 if (sqlstate &&
4350 strcmp(sqlstate, ERRCODE_APPNAME_UNKNOWN) == 0)
4351 {
4352 PQclear(res);
4353 conn->send_appname = false;
4354 need_new_connection = true;
4355 goto keep_going;
4356 }
4357 }
4358
4359 /*
4360 * if the resultStatus is FATAL, then conn->errorMessage
4361 * already has a copy of the error; needn't copy it back.
4362 * But add a newline if it's not there already, since
4363 * postmaster error messages may not have one.
4364 */
4365 if (conn->errorMessage.len <= 0 ||
4366 conn->errorMessage.data[conn->errorMessage.len - 1] != '\n')
4367 appendPQExpBufferChar(&conn->errorMessage, '\n');
4368 PQclear(res);
4369 goto error_return;
4370 }
4371
4372 /* Almost there now ... */
4373 conn->status = CONNECTION_CHECK_TARGET;
4374 goto keep_going;
4375 }
4376
4377 case CONNECTION_CHECK_TARGET:
4378 {
4379 /*
4380 * If a read-write, read-only, primary, or standby connection
4381 * is required, see if we have one.
4382 */
4383 if (conn->target_server_type == SERVER_TYPE_READ_WRITE ||
4384 conn->target_server_type == SERVER_TYPE_READ_ONLY)
4385 {
4386 bool read_only_server;
4387
4388 /*
4389 * If the server didn't report
4390 * "default_transaction_read_only" or "in_hot_standby" at
4391 * startup, we must determine its state by sending the
4392 * query "SHOW transaction_read_only". This GUC exists in
4393 * all server versions that support 3.0 protocol.
4394 */
4395 if (conn->default_transaction_read_only == PG_BOOL_UNKNOWN ||
4396 conn->in_hot_standby == PG_BOOL_UNKNOWN)
4397 {
4398 /*
4399 * We use PQsendQueryContinue so that
4400 * conn->errorMessage does not get cleared. We need
4401 * to preserve any error messages related to previous
4402 * hosts we have tried and failed to connect to.
4403 */
4404 conn->status = CONNECTION_OK;
4405 if (!PQsendQueryContinue(conn,
4406 "SHOW transaction_read_only"))
4407 goto error_return;
4408 /* We'll return to this state when we have the answer */
4409 conn->status = CONNECTION_CHECK_WRITABLE;
4410 return PGRES_POLLING_READING;
4411 }
4412
4413 /* OK, we can make the test */
4414 read_only_server =
4415 (conn->default_transaction_read_only == PG_BOOL_YES ||
4416 conn->in_hot_standby == PG_BOOL_YES);
4417
4418 if ((conn->target_server_type == SERVER_TYPE_READ_WRITE) ?
4419 read_only_server : !read_only_server)
4420 {
4421 /* Wrong server state, reject and try the next host */
4422 if (conn->target_server_type == SERVER_TYPE_READ_WRITE)
4423 libpq_append_conn_error(conn, "session is read-only");
4424 else
4425 libpq_append_conn_error(conn, "session is not read-only");
4426
4427 /* Close connection politely. */
4428 conn->status = CONNECTION_OK;
4429 sendTerminateConn(conn);
4430
4431 /*
4432 * Try next host if any, but we don't want to consider
4433 * additional addresses for this host.
4434 */
4435 conn->try_next_host = true;
4436 goto keep_going;
4437 }
4438 }
4439 else if (conn->target_server_type == SERVER_TYPE_PRIMARY ||
4440 conn->target_server_type == SERVER_TYPE_STANDBY ||
4441 conn->target_server_type == SERVER_TYPE_PREFER_STANDBY)
4442 {
4443 /*
4444 * If the server didn't report "in_hot_standby" at
4445 * startup, we must determine its state by sending the
4446 * query "SELECT pg_catalog.pg_is_in_recovery()". Servers
4447 * before 9.0 don't have that function, but by the same
4448 * token they don't have any standby mode, so we may just
4449 * assume the result.
4450 */
4451 if (conn->sversion < 90000)
4452 conn->in_hot_standby = PG_BOOL_NO;
4453
4454 if (conn->in_hot_standby == PG_BOOL_UNKNOWN)
4455 {
4456 /*
4457 * We use PQsendQueryContinue so that
4458 * conn->errorMessage does not get cleared. We need
4459 * to preserve any error messages related to previous
4460 * hosts we have tried and failed to connect to.
4461 */
4462 conn->status = CONNECTION_OK;
4463 if (!PQsendQueryContinue(conn,
4464 "SELECT pg_catalog.pg_is_in_recovery()"))
4465 goto error_return;
4466 /* We'll return to this state when we have the answer */
4467 conn->status = CONNECTION_CHECK_STANDBY;
4468 return PGRES_POLLING_READING;
4469 }
4470
4471 /* OK, we can make the test */
4472 if ((conn->target_server_type == SERVER_TYPE_PRIMARY) ?
4473 (conn->in_hot_standby == PG_BOOL_YES) :
4474 (conn->in_hot_standby == PG_BOOL_NO))
4475 {
4476 /* Wrong server state, reject and try the next host */
4477 if (conn->target_server_type == SERVER_TYPE_PRIMARY)
4478 libpq_append_conn_error(conn, "server is in hot standby mode");
4479 else
4480 libpq_append_conn_error(conn, "server is not in hot standby mode");
4481
4482 /* Close connection politely. */
4483 conn->status = CONNECTION_OK;
4484 sendTerminateConn(conn);
4485
4486 /*
4487 * Try next host if any, but we don't want to consider
4488 * additional addresses for this host.
4489 */
4490 conn->try_next_host = true;
4491 goto keep_going;
4492 }
4493 }
4494
4495 /* Don't hold onto any OAuth tokens longer than necessary. */
4496 pqClearOAuthToken(conn);
4497
4498 /*
4499 * For non cancel requests we can release the address list
4500 * now. For cancel requests we never actually resolve
4501 * addresses and instead the addrinfo exists for the lifetime
4502 * of the connection.
4503 */
4504 if (!conn->cancelRequest)
4505 release_conn_addrinfo(conn);
4506
4507 /*
4508 * Contents of conn->errorMessage are no longer interesting
4509 * (and it seems some clients expect it to be empty after a
4510 * successful connection).
4511 */
4512 pqClearConnErrorState(conn);
4513
4514 /* We are open for business! */
4515 conn->status = CONNECTION_OK;
4516 return PGRES_POLLING_OK;
4517 }
4518
4519 case CONNECTION_CONSUME:
4520 {
4521 /*
4522 * This state just makes sure the connection is idle after
4523 * we've obtained the result of a SHOW or SELECT query. Once
4524 * we're clear, return to CONNECTION_CHECK_TARGET state to
4525 * decide what to do next. We must transiently set status =
4526 * CONNECTION_OK in order to use the result-consuming
4527 * subroutines.
4528 */
4529 conn->status = CONNECTION_OK;
4530 if (!PQconsumeInput(conn))
4531 goto error_return;
4532
4533 if (PQisBusy(conn))
4534 {
4535 conn->status = CONNECTION_CONSUME;
4536 return PGRES_POLLING_READING;
4537 }
4538
4539 /* Call PQgetResult() again until we get a NULL result */
4540 res = PQgetResult(conn);
4541 if (res != NULL)
4542 {
4543 PQclear(res);
4544 conn->status = CONNECTION_CONSUME;
4545 return PGRES_POLLING_READING;
4546 }
4547
4548 conn->status = CONNECTION_CHECK_TARGET;
4549 goto keep_going;
4550 }
4551
4552 case CONNECTION_CHECK_WRITABLE:
4553 {
4554 /*
4555 * Waiting for result of "SHOW transaction_read_only". We
4556 * must transiently set status = CONNECTION_OK in order to use
4557 * the result-consuming subroutines.
4558 */
4559 conn->status = CONNECTION_OK;
4560 if (!PQconsumeInput(conn))
4561 goto error_return;
4562
4563 if (PQisBusy(conn))
4564 {
4565 conn->status = CONNECTION_CHECK_WRITABLE;
4566 return PGRES_POLLING_READING;
4567 }
4568
4569 res = PQgetResult(conn);
4570 if (res && PQresultStatus(res) == PGRES_TUPLES_OK &&
4571 PQntuples(res) == 1)
4572 {
4573 char *val = PQgetvalue(res, 0, 0);
4574
4575 /*
4576 * "transaction_read_only = on" proves that at least one
4577 * of default_transaction_read_only and in_hot_standby is
4578 * on, but we don't actually know which. We don't care
4579 * though for the purpose of identifying a read-only
4580 * session, so satisfy the CONNECTION_CHECK_TARGET code by
4581 * claiming they are both on. On the other hand, if it's
4582 * a read-write session, they are certainly both off.
4583 */
4584 if (strncmp(val, "on", 2) == 0)
4585 {
4586 conn->default_transaction_read_only = PG_BOOL_YES;
4587 conn->in_hot_standby = PG_BOOL_YES;
4588 }
4589 else
4590 {
4591 conn->default_transaction_read_only = PG_BOOL_NO;
4592 conn->in_hot_standby = PG_BOOL_NO;
4593 }
4594 PQclear(res);
4595
4596 /* Finish reading messages before continuing */
4597 conn->status = CONNECTION_CONSUME;
4598 goto keep_going;
4599 }
4600
4601 /* Something went wrong with "SHOW transaction_read_only". */
4602 PQclear(res);
4603
4604 /* Append error report to conn->errorMessage. */
4605 libpq_append_conn_error(conn, "\"%s\" failed",
4606 "SHOW transaction_read_only");
4607
4608 /* Close connection politely. */
4609 conn->status = CONNECTION_OK;
4610 sendTerminateConn(conn);
4611
4612 /* Try next host. */
4613 conn->try_next_host = true;
4614 goto keep_going;
4615 }
4616
4617 case CONNECTION_CHECK_STANDBY:
4618 {
4619 /*
4620 * Waiting for result of "SELECT pg_is_in_recovery()". We
4621 * must transiently set status = CONNECTION_OK in order to use
4622 * the result-consuming subroutines.
4623 */
4624 conn->status = CONNECTION_OK;
4625 if (!PQconsumeInput(conn))
4626 goto error_return;
4627
4628 if (PQisBusy(conn))
4629 {
4630 conn->status = CONNECTION_CHECK_STANDBY;
4631 return PGRES_POLLING_READING;
4632 }
4633
4634 res = PQgetResult(conn);
4635 if (res && PQresultStatus(res) == PGRES_TUPLES_OK &&
4636 PQntuples(res) == 1)
4637 {
4638 char *val = PQgetvalue(res, 0, 0);
4639
4640 if (strncmp(val, "t", 1) == 0)
4641 conn->in_hot_standby = PG_BOOL_YES;
4642 else
4643 conn->in_hot_standby = PG_BOOL_NO;
4644 PQclear(res);
4645
4646 /* Finish reading messages before continuing */
4647 conn->status = CONNECTION_CONSUME;
4648 goto keep_going;
4649 }
4650
4651 /* Something went wrong with "SELECT pg_is_in_recovery()". */
4652 PQclear(res);
4653
4654 /* Append error report to conn->errorMessage. */
4655 libpq_append_conn_error(conn, "\"%s\" failed",
4656 "SELECT pg_is_in_recovery()");
4657
4658 /* Close connection politely. */
4659 conn->status = CONNECTION_OK;
4660 sendTerminateConn(conn);
4661
4662 /* Try next host. */
4663 conn->try_next_host = true;
4664 goto keep_going;
4665 }
4666
4667 default:
4668 libpq_append_conn_error(conn,
4669 "invalid connection state %d, probably indicative of memory corruption",
4670 conn->status);
4671 goto error_return;
4672 }
4673
4674 /* Unreachable */
4675
4676error_return:
4677
4678 /*
4679 * We used to close the socket at this point, but that makes it awkward
4680 * for those above us if they wish to remove this socket from their own
4681 * records (an fd_set for example). We'll just have this socket closed
4682 * when PQfinish is called (which is compulsory even after an error, since
4683 * the connection structure must be freed).
4684 */
4685 conn->status = CONNECTION_BAD;
4686 return PGRES_POLLING_FAILED;
4687}
4688
4689/*
4690 * Initialize the state machine for negotiating encryption
4691 */
4692static bool
4693init_allowed_encryption_methods(PGconn *conn)
4694{
4695 if (conn->raddr.addr.ss_family == AF_UNIX)
4696 {
4697 /* Don't request SSL or GSSAPI over Unix sockets */
4698 conn->allowed_enc_methods &= ~(ENC_SSL | ENC_GSSAPI);
4699
4700 /*
4701 * XXX: we probably should not do this. sslmode=require works
4702 * differently
4703 */
4704 if (conn->gssencmode[0] == 'r')
4705 {
4706 libpq_append_conn_error(conn,
4707 "GSSAPI encryption required but it is not supported over a local socket");
4708 conn->allowed_enc_methods = 0;
4709 conn->current_enc_method = ENC_ERROR;
4710 return false;
4711 }
4712
4713 conn->allowed_enc_methods = ENC_PLAINTEXT;
4714 conn->current_enc_method = ENC_PLAINTEXT;
4715 return true;
4716 }
4717
4718 /* initialize based on sslmode and gssencmode */
4719 conn->allowed_enc_methods = 0;
4720
4721#ifdef USE_SSL
4722 /* sslmode anything but 'disable', and GSSAPI not required */
4723 if (conn->sslmode[0] != 'd' && conn->gssencmode[0] != 'r')
4724 {
4725 conn->allowed_enc_methods |= ENC_SSL;
4726 }
4727#endif
4728
4729#ifdef ENABLE_GSS
4730 if (conn->gssencmode[0] != 'd')
4731 conn->allowed_enc_methods |= ENC_GSSAPI;
4732#endif
4733
4734 if ((conn->sslmode[0] == 'd' || conn->sslmode[0] == 'p' || conn->sslmode[0] == 'a') &&
4735 (conn->gssencmode[0] == 'd' || conn->gssencmode[0] == 'p'))
4736 {
4737 conn->allowed_enc_methods |= ENC_PLAINTEXT;
4738 }
4739
4740 return select_next_encryption_method(conn, false);
4741}
4742
4743/*
4744 * Out-of-line portion of the ENCRYPTION_NEGOTIATION_FAILED() macro in the
4745 * PQconnectPoll state machine.
4746 *
4747 * Return value:
4748 * 0: connection failed and we are out of encryption methods to try. return an error
4749 * 1: Retry with next connection method. The TCP connection is still valid and in
4750 * known state, so we can proceed with the negotiating next method without
4751 * reconnecting.
4752 * 2: Disconnect, and retry with next connection method.
4753 *
4754 * conn->current_enc_method is updated to the next method to try.
4755 */
4756#if defined(USE_SSL) || defined(ENABLE_GSS)
4757static int
4758encryption_negotiation_failed(PGconn *conn)
4759{
4760 Assert((conn->failed_enc_methods & conn->current_enc_method) == 0);
4761 conn->failed_enc_methods |= conn->current_enc_method;
4762
4763 if (select_next_encryption_method(conn, true))
4764 {
4765 /* An existing connection cannot be reused for direct SSL */
4766 if (conn->current_enc_method == ENC_SSL && conn->sslnegotiation[0] == 'd')
4767 return 2;
4768 else
4769 return 1;
4770 }
4771 else
4772 return 0;
4773}
4774#endif
4775
4776/*
4777 * Out-of-line portion of the CONNECTION_FAILED() macro
4778 *
4779 * Returns true, if we should reconnect and retry with a different encryption
4780 * method. conn->current_enc_method is updated to the next method to try.
4781 */
4782static bool
4783connection_failed(PGconn *conn)
4784{
4785 Assert((conn->failed_enc_methods & conn->current_enc_method) == 0);
4786 conn->failed_enc_methods |= conn->current_enc_method;
4787
4788 return select_next_encryption_method(conn, false);
4789}
4790
4791/*
4792 * Choose the next encryption method to try. If this is a retry,
4793 * conn->failed_enc_methods has already been updated. The function sets
4794 * conn->current_enc_method to the next method to try. Returns false if no
4795 * encryption methods remain.
4796 */
4797static bool
4798select_next_encryption_method(PGconn *conn, bool have_valid_connection)
4799{
4800 int remaining_methods;
4801
4802#define SELECT_NEXT_METHOD(method) \
4803 do { \
4804 if ((remaining_methods & method) != 0) \
4805 { \
4806 conn->current_enc_method = method; \
4807 return true; \
4808 } \
4809 } while (false)
4810
4811 remaining_methods = conn->allowed_enc_methods & ~conn->failed_enc_methods;
4812
4813 /*
4814 * Try GSSAPI before SSL
4815 */
4816#ifdef ENABLE_GSS
4817 if ((remaining_methods & ENC_GSSAPI) != 0)
4818 {
4819 /*
4820 * If GSSAPI encryption is enabled, then call pg_GSS_have_cred_cache()
4821 * which will return true if we can acquire credentials (and give us a
4822 * handle to use in conn->gcred), and then send a packet to the server
4823 * asking for GSSAPI Encryption (and skip past SSL negotiation and
4824 * regular startup below).
4825 */
4826 if (!conn->gctx)
4827 {
4828 if (!pg_GSS_have_cred_cache(&conn->gcred))
4829 {
4830 conn->allowed_enc_methods &= ~ENC_GSSAPI;
4831 remaining_methods &= ~ENC_GSSAPI;
4832
4833 if (conn->gssencmode[0] == 'r')
4834 {
4835 libpq_append_conn_error(conn,
4836 "GSSAPI encryption required but no credential cache");
4837 }
4838 }
4839 }
4840 }
4841
4842 SELECT_NEXT_METHOD(ENC_GSSAPI);
4843#endif
4844
4845 /*
4846 * The order between SSL encryption and plaintext depends on sslmode. With
4847 * sslmode=allow, try plaintext connection before SSL. With
4848 * sslmode=prefer, it's the other way round. With other modes, we only try
4849 * plaintext or SSL connections so the order they're listed here doesn't
4850 * matter.
4851 */
4852 if (conn->sslmode[0] == 'a')
4853 SELECT_NEXT_METHOD(ENC_PLAINTEXT);
4854
4855 SELECT_NEXT_METHOD(ENC_SSL);
4856
4857 if (conn->sslmode[0] != 'a')
4858 SELECT_NEXT_METHOD(ENC_PLAINTEXT);
4859
4860 /* No more options */
4861 conn->current_enc_method = ENC_ERROR;
4862 return false;
4863#undef SELECT_NEXT_METHOD
4864}
4865
4866/*
4867 * internal_ping
4868 * Determine if a server is running and if we can connect to it.
4869 *
4870 * The argument is a connection that's been started, but not completed.
4871 */
4872static PGPing
4873internal_ping(PGconn *conn)
4874{
4875 /* Say "no attempt" if we never got to PQconnectPoll */
4876 if (!conn || !conn->options_valid)
4877 return PQPING_NO_ATTEMPT;
4878
4879 /* Attempt to complete the connection */
4880 if (conn->status != CONNECTION_BAD)
4881 (void) pqConnectDBComplete(conn);
4882
4883 /* Definitely OK if we succeeded */
4884 if (conn->status != CONNECTION_BAD)
4885 return PQPING_OK;
4886
4887 /*
4888 * Here begins the interesting part of "ping": determine the cause of the
4889 * failure in sufficient detail to decide what to return. We do not want
4890 * to report that the server is not up just because we didn't have a valid
4891 * password, for example. In fact, any sort of authentication request
4892 * implies the server is up. (We need this check since the libpq side of
4893 * things might have pulled the plug on the connection before getting an
4894 * error as such from the postmaster.)
4895 */
4896 if (conn->auth_req_received)
4897 return PQPING_OK;
4898
4899 /*
4900 * If we failed to get any ERROR response from the postmaster, report
4901 * PQPING_NO_RESPONSE. This result could be somewhat misleading for a
4902 * pre-7.4 server, since it won't send back a SQLSTATE, but those are long
4903 * out of support. Another corner case where the server could return a
4904 * failure without a SQLSTATE is fork failure, but PQPING_NO_RESPONSE
4905 * isn't totally unreasonable for that anyway. We expect that every other
4906 * failure case in a modern server will produce a report with a SQLSTATE.
4907 *
4908 * NOTE: whenever we get around to making libpq generate SQLSTATEs for
4909 * client-side errors, we should either not store those into
4910 * last_sqlstate, or add an extra flag so we can tell client-side errors
4911 * apart from server-side ones.
4912 */
4913 if (strlen(conn->last_sqlstate) != 5)
4914 return PQPING_NO_RESPONSE;
4915
4916 /*
4917 * Report PQPING_REJECT if server says it's not accepting connections.
4918 */
4919 if (strcmp(conn->last_sqlstate, ERRCODE_CANNOT_CONNECT_NOW) == 0)
4920 return PQPING_REJECT;
4921
4922 /*
4923 * Any other SQLSTATE can be taken to indicate that the server is up.
4924 * Presumably it didn't like our username, password, or database name; or
4925 * perhaps it had some transient failure, but that should not be taken as
4926 * meaning "it's down".
4927 */
4928 return PQPING_OK;
4929}
4930
4931
4932/*
4933 * pqMakeEmptyPGconn
4934 * - create a PGconn data structure with (as yet) no interesting data
4935 */
4936PGconn *
4937pqMakeEmptyPGconn(void)
4938{
4939 PGconn *conn;
4940
4941#ifdef WIN32
4942
4943 /*
4944 * Make sure socket support is up and running in this process.
4945 *
4946 * Note: the Windows documentation says that we should eventually do a
4947 * matching WSACleanup() call, but experience suggests that that is at
4948 * least as likely to cause problems as fix them. So we don't.
4949 */
4950 static bool wsastartup_done = false;
4951
4952 if (!wsastartup_done)
4953 {
4954 WSADATA wsaData;
4955
4956 if (WSAStartup(MAKEWORD(2, 2), &wsaData) != 0)
4957 return NULL;
4958 wsastartup_done = true;
4959 }
4960
4961 /* Forget any earlier error */
4962 WSASetLastError(0);
4963#endif /* WIN32 */
4964
4965 conn = (PGconn *) malloc(sizeof(PGconn));
4966 if (conn == NULL)
4967 return conn;
4968
4969 /* Zero all pointers and booleans */
4970 MemSet(conn, 0, sizeof(PGconn));
4971
4972 /* install default notice hooks */
4973 conn->noticeHooks.noticeRec = defaultNoticeReceiver;
4974 conn->noticeHooks.noticeProc = defaultNoticeProcessor;
4975
4976 conn->status = CONNECTION_BAD;
4977 conn->asyncStatus = PGASYNC_IDLE;
4978 conn->pipelineStatus = PQ_PIPELINE_OFF;
4979 conn->xactStatus = PQTRANS_IDLE;
4980 conn->options_valid = false;
4981 conn->nonblocking = false;
4982 conn->client_encoding = PG_SQL_ASCII;
4983 conn->std_strings = false; /* unless server says differently */
4984 conn->default_transaction_read_only = PG_BOOL_UNKNOWN;
4985 conn->in_hot_standby = PG_BOOL_UNKNOWN;
4986 conn->scram_sha_256_iterations = SCRAM_SHA_256_DEFAULT_ITERATIONS;
4987 conn->verbosity = PQERRORS_DEFAULT;
4988 conn->show_context = PQSHOW_CONTEXT_ERRORS;
4989 conn->sock = PGINVALID_SOCKET;
4990 conn->altsock = PGINVALID_SOCKET;
4991 conn->Pfdebug = NULL;
4992
4993 /*
4994 * We try to send at least 8K at a time, which is the usual size of pipe
4995 * buffers on Unix systems. That way, when we are sending a large amount
4996 * of data, we avoid incurring extra kernel context swaps for partial
4997 * bufferloads. The output buffer is initially made 16K in size, and we
4998 * try to dump it after accumulating 8K.
4999 *
5000 * With the same goal of minimizing context swaps, the input buffer will
5001 * be enlarged anytime it has less than 8K free, so we initially allocate
5002 * twice that.
5003 */
5004 conn->inBufSize = 16 * 1024;
5005 conn->inBuffer = (char *) malloc(conn->inBufSize);
5006 conn->outBufSize = 16 * 1024;
5007 conn->outBuffer = (char *) malloc(conn->outBufSize);
5008 conn->rowBufLen = 32;
5009 conn->rowBuf = (PGdataValue *) malloc(conn->rowBufLen * sizeof(PGdataValue));
5010 initPQExpBuffer(&conn->errorMessage);
5011 initPQExpBuffer(&conn->workBuffer);
5012
5013 if (conn->inBuffer == NULL ||
5014 conn->outBuffer == NULL ||
5015 conn->rowBuf == NULL ||
5016 PQExpBufferBroken(&conn->errorMessage) ||
5017 PQExpBufferBroken(&conn->workBuffer))
5018 {
5019 /* out of memory already :-( */
5020 freePGconn(conn);
5021 conn = NULL;
5022 }
5023
5024 return conn;
5025}
5026
5027/*
5028 * freePGconn
5029 * - free an idle (closed) PGconn data structure
5030 *
5031 * NOTE: this should not overlap any functionality with pqClosePGconn().
5032 * Clearing/resetting of transient state belongs there; what we do here is
5033 * release data that is to be held for the life of the PGconn structure.
5034 * If a value ought to be cleared/freed during PQreset(), do it there not here.
5035 */
5036static void
5037freePGconn(PGconn *conn)
5038{
5039 /* let any event procs clean up their state data */
5040 for (int i = 0; i < conn->nEvents; i++)
5041 {
5042 PGEventConnDestroy evt;
5043
5044 evt.conn = conn;
5045 (void) conn->events[i].proc(PGEVT_CONNDESTROY, &evt,
5046 conn->events[i].passThrough);
5047 free(conn->events[i].name);
5048 }
5049
5050 release_conn_addrinfo(conn);
5051 pqReleaseConnHosts(conn);
5052
5053 free(conn->client_encoding_initial);
5054 free(conn->events);
5055 free(conn->pghost);
5056 free(conn->pghostaddr);
5057 free(conn->pgport);
5058 free(conn->connect_timeout);
5059 free(conn->pgtcp_user_timeout);
5060 free(conn->pgoptions);
5061 free(conn->appname);
5062 free(conn->fbappname);
5063 free(conn->dbName);
5064 free(conn->replication);
5065 free(conn->pguser);
5066 if (conn->pgpass)
5067 {
5068 explicit_bzero(conn->pgpass, strlen(conn->pgpass));
5069 free(conn->pgpass);
5070 }
5071 free(conn->pgpassfile);
5072 free(conn->channel_binding);
5073 free(conn->keepalives);
5074 free(conn->keepalives_idle);
5075 free(conn->keepalives_interval);
5076 free(conn->keepalives_count);
5077 free(conn->sslmode);
5078 free(conn->sslnegotiation);
5079 free(conn->sslcert);
5080 free(conn->sslkey);
5081 if (conn->sslpassword)
5082 {
5083 explicit_bzero(conn->sslpassword, strlen(conn->sslpassword));
5084 free(conn->sslpassword);
5085 }
5086 free(conn->sslcertmode);
5087 free(conn->sslrootcert);
5088 free(conn->sslcrl);
5089 free(conn->sslcrldir);
5090 free(conn->sslcompression);
5091 free(conn->sslsni);
5092 free(conn->requirepeer);
5093 free(conn->require_auth);
5094 free(conn->ssl_min_protocol_version);
5095 free(conn->ssl_max_protocol_version);
5096 free(conn->gssencmode);
5097 free(conn->krbsrvname);
5098 free(conn->gsslib);
5099 free(conn->gssdelegation);
5100 free(conn->connip);
5101 /* Note that conn->Pfdebug is not ours to close or free */
5102 free(conn->write_err_msg);
5103 free(conn->inBuffer);
5104 free(conn->outBuffer);
5105 free(conn->rowBuf);
5106 free(conn->target_session_attrs);
5107 free(conn->load_balance_hosts);
5108 free(conn->scram_client_key);
5109 free(conn->scram_server_key);
5110 free(conn->oauth_issuer);
5111 free(conn->oauth_issuer_id);
5112 free(conn->oauth_discovery_uri);
5113 free(conn->oauth_client_id);
5114 free(conn->oauth_client_secret);
5115 free(conn->oauth_scope);
5116 termPQExpBuffer(&conn->errorMessage);
5117 termPQExpBuffer(&conn->workBuffer);
5118
5119 free(conn);
5120}
5121
5122/*
5123 * pqReleaseConnHosts
5124 * - Free the host list in the PGconn.
5125 */
5126void
5127pqReleaseConnHosts(PGconn *conn)
5128{
5129 if (conn->connhost)
5130 {
5131 for (int i = 0; i < conn->nconnhost; ++i)
5132 {
5133 free(conn->connhost[i].host);
5134 free(conn->connhost[i].hostaddr);
5135 free(conn->connhost[i].port);
5136 if (conn->connhost[i].password != NULL)
5137 {
5138 explicit_bzero(conn->connhost[i].password,
5139 strlen(conn->connhost[i].password));
5140 free(conn->connhost[i].password);
5141 }
5142 }
5143 free(conn->connhost);
5144 }
5145}
5146
5147/*
5148 * store_conn_addrinfo
5149 * - copy addrinfo to PGconn object
5150 *
5151 * Copies the addrinfos from addrlist to the PGconn object such that the
5152 * addrinfos can be manipulated by libpq. Returns a positive integer on
5153 * failure, otherwise zero.
5154 */
5155static int
5156store_conn_addrinfo(PGconn *conn, struct addrinfo *addrlist)
5157{
5158 struct addrinfo *ai = addrlist;
5159
5160 conn->whichaddr = 0;
5161
5162 conn->naddr = 0;
5163 while (ai)
5164 {
5165 ai = ai->ai_next;
5166 conn->naddr++;
5167 }
5168
5169 conn->addr = calloc(conn->naddr, sizeof(AddrInfo));
5170 if (conn->addr == NULL)
5171 {
5172 libpq_append_conn_error(conn, "out of memory");
5173 return 1;
5174 }
5175
5176 ai = addrlist;
5177 for (int i = 0; i < conn->naddr; i++)
5178 {
5179 conn->addr[i].family = ai->ai_family;
5180
5181 memcpy(&conn->addr[i].addr.addr, ai->ai_addr,
5182 ai->ai_addrlen);
5183 conn->addr[i].addr.salen = ai->ai_addrlen;
5184 ai = ai->ai_next;
5185 }
5186
5187 return 0;
5188}
5189
5190/*
5191 * release_conn_addrinfo
5192 * - Free any addrinfo list in the PGconn.
5193 */
5194static void
5195release_conn_addrinfo(PGconn *conn)
5196{
5197 if (conn->addr)
5198 {
5199 free(conn->addr);
5200 conn->addr = NULL;
5201 }
5202}
5203
5204/*
5205 * sendTerminateConn
5206 * - Send a terminate message to backend.
5207 */
5208static void
5209sendTerminateConn(PGconn *conn)
5210{
5211 /*
5212 * The Postgres cancellation protocol does not have a notion of a
5213 * Terminate message, so don't send one.
5214 */
5215 if (conn->cancelRequest)
5216 return;
5217
5218 /*
5219 * Note that the protocol doesn't allow us to send Terminate messages
5220 * during the startup phase.
5221 */
5222 if (conn->sock != PGINVALID_SOCKET && conn->status == CONNECTION_OK)
5223 {
5224 /*
5225 * Try to send "close connection" message to backend. Ignore any
5226 * error.
5227 */
5228 pqPutMsgStart(PqMsg_Terminate, conn);
5229 pqPutMsgEnd(conn);
5230 (void) pqFlush(conn);
5231 }
5232}
5233
5234/*
5235 * pqClosePGconn
5236 * - properly close a connection to the backend
5237 *
5238 * This should reset or release all transient state, but NOT the connection
5239 * parameters. On exit, the PGconn should be in condition to start a fresh
5240 * connection with the same parameters (see PQreset()).
5241 */
5242void
5243pqClosePGconn(PGconn *conn)
5244{
5245 /*
5246 * If possible, send Terminate message to close the connection politely.
5247 */
5248 sendTerminateConn(conn);
5249
5250 /*
5251 * Must reset the blocking status so a possible reconnect will work.
5252 *
5253 * Don't call PQsetnonblocking() because it will fail if it's unable to
5254 * flush the connection.
5255 */
5256 conn->nonblocking = false;
5257
5258 /*
5259 * Close the connection, reset all transient state, flush I/O buffers.
5260 * Note that this includes clearing conn's error state; we're no longer
5261 * interested in any failures associated with the old connection, and we
5262 * want a clean slate for any new connection attempt.
5263 */
5264 pqDropConnection(conn, true);
5265 conn->status = CONNECTION_BAD; /* Well, not really _bad_ - just absent */
5266 conn->asyncStatus = PGASYNC_IDLE;
5267 conn->xactStatus = PQTRANS_IDLE;
5268 conn->pipelineStatus = PQ_PIPELINE_OFF;
5269 pqClearOAuthToken(conn);
5270 pqClearAsyncResult(conn); /* deallocate result */
5271 pqClearConnErrorState(conn);
5272
5273 /*
5274 * Release addrinfo, but since cancel requests never change their addrinfo
5275 * we don't do that. Otherwise we would have to rebuild it during a
5276 * PQcancelReset.
5277 */
5278 if (!conn->cancelRequest)
5279 release_conn_addrinfo(conn);
5280
5281 /* Reset all state obtained from server, too */
5282 pqDropServerData(conn);
5283}
5284
5285/*
5286 * PQfinish: properly close a connection to the backend. Also frees
5287 * the PGconn data structure so it shouldn't be re-used after this.
5288 */
5289void
5290PQfinish(PGconn *conn)
5291{
5292 if (conn)
5293 {
5294 pqClosePGconn(conn);
5295 freePGconn(conn);
5296 }
5297}
5298
5299/*
5300 * PQreset: resets the connection to the backend by closing the
5301 * existing connection and creating a new one.
5302 */
5303void
5304PQreset(PGconn *conn)
5305{
5306 if (conn)
5307 {
5308 pqClosePGconn(conn);
5309
5310 if (pqConnectDBStart(conn) && pqConnectDBComplete(conn))
5311 {
5312 /*
5313 * Notify event procs of successful reset.
5314 */
5315 int i;
5316
5317 for (i = 0; i < conn->nEvents; i++)
5318 {
5319 PGEventConnReset evt;
5320
5321 evt.conn = conn;
5322 (void) conn->events[i].proc(PGEVT_CONNRESET, &evt,
5323 conn->events[i].passThrough);
5324 }
5325 }
5326 }
5327}
5328
5329
5330/*
5331 * PQresetStart:
5332 * resets the connection to the backend
5333 * closes the existing connection and makes a new one
5334 * Returns 1 on success, 0 on failure.
5335 */
5336int
5337PQresetStart(PGconn *conn)
5338{
5339 if (conn)
5340 {
5341 pqClosePGconn(conn);
5342
5343 return pqConnectDBStart(conn);
5344 }
5345
5346 return 0;
5347}
5348
5349
5350/*
5351 * PQresetPoll:
5352 * resets the connection to the backend
5353 * closes the existing connection and makes a new one
5354 */
5355PostgresPollingStatusType
5356PQresetPoll(PGconn *conn)
5357{
5358 if (conn)
5359 {
5360 PostgresPollingStatusType status = PQconnectPoll(conn);
5361
5362 if (status == PGRES_POLLING_OK)
5363 {
5364 /*
5365 * Notify event procs of successful reset.
5366 */
5367 int i;
5368
5369 for (i = 0; i < conn->nEvents; i++)
5370 {
5371 PGEventConnReset evt;
5372
5373 evt.conn = conn;
5374 (void) conn->events[i].proc(PGEVT_CONNRESET, &evt,
5375 conn->events[i].passThrough);
5376 }
5377 }
5378
5379 return status;
5380 }
5381
5382 return PGRES_POLLING_FAILED;
5383}
5384
5385/*
5386 * pqPacketSend() -- convenience routine to send a message to server.
5387 *
5388 * pack_type: the single-byte message type code. (Pass zero for startup
5389 * packets, which have no message type code.)
5390 *
5391 * buf, buf_len: contents of message. The given length includes only what
5392 * is in buf; the message type and message length fields are added here.
5393 *
5394 * RETURNS: STATUS_ERROR if the write fails, STATUS_OK otherwise.
5395 * SIDE_EFFECTS: may block.
5396 */
5397int
5398pqPacketSend(PGconn *conn, char pack_type,
5399 const void *buf, size_t buf_len)
5400{
5401 /* Start the message. */
5402 if (pqPutMsgStart(pack_type, conn))
5403 return STATUS_ERROR;
5404
5405 /* Send the message body. */
5406 if (pqPutnchar(buf, buf_len, conn))
5407 return STATUS_ERROR;
5408
5409 /* Finish the message. */
5410 if (pqPutMsgEnd(conn))
5411 return STATUS_ERROR;
5412
5413 /* Flush to ensure backend gets it. */
5414 if (pqFlush(conn))
5415 return STATUS_ERROR;
5416
5417 return STATUS_OK;
5418}
5419
5420#ifdef USE_LDAP
5421
5422#define LDAP_URL "ldap://"
5423#define LDAP_DEF_PORT 389
5424#define PGLDAP_TIMEOUT 2
5425
5426#define ld_is_sp_tab(x) ((x) == ' ' || (x) == '\t')
5427#define ld_is_nl_cr(x) ((x) == '\r' || (x) == '\n')
5428
5429
5430/*
5431 * ldapServiceLookup
5432 *
5433 * Search the LDAP URL passed as first argument, treat the result as a
5434 * string of connection options that are parsed and added to the array of
5435 * options passed as second argument.
5436 *
5437 * LDAP URLs must conform to RFC 1959 without escape sequences.
5438 * ldap://host:port/dn?attributes?scope?filter?extensions
5439 *
5440 * Returns
5441 * 0 if the lookup was successful,
5442 * 1 if the connection to the LDAP server could be established but
5443 * the search was unsuccessful,
5444 * 2 if a connection could not be established, and
5445 * 3 if a fatal error occurred.
5446 *
5447 * An error message is appended to *errorMessage for return codes 1 and 3.
5448 */
5449static int
5450ldapServiceLookup(const char *purl, PQconninfoOption *options,
5451 PQExpBuffer errorMessage)
5452{
5453 int port = LDAP_DEF_PORT,
5454 scope,
5455 rc,
5456 size,
5457 state,
5458 oldstate,
5459 i;
5460#ifndef WIN32
5461 int msgid;
5462#endif
5463 bool found_keyword;
5464 char *url,
5465 *hostname,
5466 *portstr,
5467 *endptr,
5468 *dn,
5469 *scopestr,
5470 *filter,
5471 *result,
5472 *p,
5473 *p1 = NULL,
5474 *optname = NULL,
5475 *optval = NULL;
5476 char *attrs[2] = {NULL, NULL};
5477 LDAP *ld = NULL;
5478 LDAPMessage *res,
5479 *entry;
5480 struct berval **values;
5481 LDAP_TIMEVAL time = {PGLDAP_TIMEOUT, 0};
5482
5483 if ((url = strdup(purl)) == NULL)
5484 {
5485 libpq_append_error(errorMessage, "out of memory");
5486 return 3;
5487 }
5488
5489 /*
5490 * Parse URL components, check for correctness. Basically, url has '\0'
5491 * placed at component boundaries and variables are pointed at each
5492 * component.
5493 */
5494
5495 if (pg_strncasecmp(url, LDAP_URL, strlen(LDAP_URL)) != 0)
5496 {
5497 libpq_append_error(errorMessage,
5498 "invalid LDAP URL \"%s\": scheme must be ldap://", purl);
5499 free(url);
5500 return 3;
5501 }
5502
5503 /* hostname */
5504 hostname = url + strlen(LDAP_URL);
5505 if (*hostname == '/') /* no hostname? */
5506 hostname = DefaultHost; /* the default */
5507
5508 /* dn, "distinguished name" */
5509 p = strchr(url + strlen(LDAP_URL), '/');
5510 if (p == NULL || *(p + 1) == '\0' || *(p + 1) == '?')
5511 {
5512 libpq_append_error(errorMessage,
5513 "invalid LDAP URL \"%s\": missing distinguished name",
5514 purl);
5515 free(url);
5516 return 3;
5517 }
5518 *p = '\0'; /* terminate hostname */
5519 dn = p + 1;
5520
5521 /* attribute */
5522 if ((p = strchr(dn, '?')) == NULL || *(p + 1) == '\0' || *(p + 1) == '?')
5523 {
5524 libpq_append_error(errorMessage,
5525 "invalid LDAP URL \"%s\": must have exactly one attribute",
5526 purl);
5527 free(url);
5528 return 3;
5529 }
5530 *p = '\0';
5531 attrs[0] = p + 1;
5532
5533 /* scope */
5534 if ((p = strchr(attrs[0], '?')) == NULL || *(p + 1) == '\0' || *(p + 1) == '?')
5535 {
5536 libpq_append_error(errorMessage,
5537 "invalid LDAP URL \"%s\": must have search scope (base/one/sub)",
5538 purl);
5539 free(url);
5540 return 3;
5541 }
5542 *p = '\0';
5543 scopestr = p + 1;
5544
5545 /* filter */
5546 if ((p = strchr(scopestr, '?')) == NULL || *(p + 1) == '\0' || *(p + 1) == '?')
5547 {
5548 libpq_append_error(errorMessage,
5549 "invalid LDAP URL \"%s\": no filter",
5550 purl);
5551 free(url);
5552 return 3;
5553 }
5554 *p = '\0';
5555 filter = p + 1;
5556 if ((p = strchr(filter, '?')) != NULL)
5557 *p = '\0';
5558
5559 /* port number? */
5560 if ((p1 = strchr(hostname, ':')) != NULL)
5561 {
5562 long lport;
5563
5564 *p1 = '\0';
5565 portstr = p1 + 1;
5566 errno = 0;
5567 lport = strtol(portstr, &endptr, 10);
5568 if (*portstr == '\0' || *endptr != '\0' || errno || lport < 0 || lport > 65535)
5569 {
5570 libpq_append_error(errorMessage,
5571 "invalid LDAP URL \"%s\": invalid port number",
5572 purl);
5573 free(url);
5574 return 3;
5575 }
5576 port = (int) lport;
5577 }
5578
5579 /* Allow only one attribute */
5580 if (strchr(attrs[0], ',') != NULL)
5581 {
5582 libpq_append_error(errorMessage,
5583 "invalid LDAP URL \"%s\": must have exactly one attribute",
5584 purl);
5585 free(url);
5586 return 3;
5587 }
5588
5589 /* set scope */
5590 if (pg_strcasecmp(scopestr, "base") == 0)
5591 scope = LDAP_SCOPE_BASE;
5592 else if (pg_strcasecmp(scopestr, "one") == 0)
5593 scope = LDAP_SCOPE_ONELEVEL;
5594 else if (pg_strcasecmp(scopestr, "sub") == 0)
5595 scope = LDAP_SCOPE_SUBTREE;
5596 else
5597 {
5598 libpq_append_error(errorMessage,
5599 "invalid LDAP URL \"%s\": must have search scope (base/one/sub)",
5600 purl);
5601 free(url);
5602 return 3;
5603 }
5604
5605 /* initialize LDAP structure */
5606 if ((ld = ldap_init(hostname, port)) == NULL)
5607 {
5608 libpq_append_error(errorMessage, "could not create LDAP structure");
5609 free(url);
5610 return 3;
5611 }
5612
5613 /*
5614 * Perform an explicit anonymous bind.
5615 *
5616 * LDAP does not require that an anonymous bind is performed explicitly,
5617 * but we want to distinguish between the case where LDAP bind does not
5618 * succeed within PGLDAP_TIMEOUT seconds (return 2 to continue parsing the
5619 * service control file) and the case where querying the LDAP server fails
5620 * (return 1 to end parsing).
5621 *
5622 * Unfortunately there is no way of setting a timeout that works for both
5623 * Windows and OpenLDAP.
5624 */
5625#ifdef WIN32
5626 /* the nonstandard ldap_connect function performs an anonymous bind */
5627 if (ldap_connect(ld, &time) != LDAP_SUCCESS)
5628 {
5629 /* error or timeout in ldap_connect */
5630 free(url);
5631 ldap_unbind(ld);
5632 return 2;
5633 }
5634#else /* !WIN32 */
5635 /* in OpenLDAP, use the LDAP_OPT_NETWORK_TIMEOUT option */
5636 if (ldap_set_option(ld, LDAP_OPT_NETWORK_TIMEOUT, &time) != LDAP_SUCCESS)
5637 {
5638 free(url);
5639 ldap_unbind(ld);
5640 return 3;
5641 }
5642
5643 /* anonymous bind */
5644 if ((msgid = ldap_simple_bind(ld, NULL, NULL)) == -1)
5645 {
5646 /* error or network timeout */
5647 free(url);
5648 ldap_unbind(ld);
5649 return 2;
5650 }
5651
5652 /* wait some time for the connection to succeed */
5653 res = NULL;
5654 if ((rc = ldap_result(ld, msgid, LDAP_MSG_ALL, &time, &res)) == -1 ||
5655 res == NULL)
5656 {
5657 /* error or timeout */
5658 if (res != NULL)
5659 ldap_msgfree(res);
5660 free(url);
5661 ldap_unbind(ld);
5662 return 2;
5663 }
5664 ldap_msgfree(res);
5665
5666 /* reset timeout */
5667 time.tv_sec = -1;
5668 if (ldap_set_option(ld, LDAP_OPT_NETWORK_TIMEOUT, &time) != LDAP_SUCCESS)
5669 {
5670 free(url);
5671 ldap_unbind(ld);
5672 return 3;
5673 }
5674#endif /* WIN32 */
5675
5676 /* search */
5677 res = NULL;
5678 if ((rc = ldap_search_st(ld, dn, scope, filter, attrs, 0, &time, &res))
5679 != LDAP_SUCCESS)
5680 {
5681 if (res != NULL)
5682 ldap_msgfree(res);
5683 libpq_append_error(errorMessage, "lookup on LDAP server failed: %s", ldap_err2string(rc));
5684 ldap_unbind(ld);
5685 free(url);
5686 return 1;
5687 }
5688
5689 /* complain if there was not exactly one result */
5690 if ((rc = ldap_count_entries(ld, res)) != 1)
5691 {
5692 if (rc > 1)
5693 libpq_append_error(errorMessage, "more than one entry found on LDAP lookup");
5694 else
5695 libpq_append_error(errorMessage, "no entry found on LDAP lookup");
5696 ldap_msgfree(res);
5697 ldap_unbind(ld);
5698 free(url);
5699 return 1;
5700 }
5701
5702 /* get entry */
5703 if ((entry = ldap_first_entry(ld, res)) == NULL)
5704 {
5705 /* should never happen */
5706 libpq_append_error(errorMessage, "no entry found on LDAP lookup");
5707 ldap_msgfree(res);
5708 ldap_unbind(ld);
5709 free(url);
5710 return 1;
5711 }
5712
5713 /* get values */
5714 if ((values = ldap_get_values_len(ld, entry, attrs[0])) == NULL)
5715 {
5716 libpq_append_error(errorMessage, "attribute has no values on LDAP lookup");
5717 ldap_msgfree(res);
5718 ldap_unbind(ld);
5719 free(url);
5720 return 1;
5721 }
5722
5723 ldap_msgfree(res);
5724 free(url);
5725
5726 if (values[0] == NULL)
5727 {
5728 libpq_append_error(errorMessage, "attribute has no values on LDAP lookup");
5729 ldap_value_free_len(values);
5730 ldap_unbind(ld);
5731 return 1;
5732 }
5733
5734 /* concatenate values into a single string with newline terminators */
5735 size = 1; /* for the trailing null */
5736 for (i = 0; values[i] != NULL; i++)
5737 size += values[i]->bv_len + 1;
5738 if ((result = malloc(size)) == NULL)
5739 {
5740 libpq_append_error(errorMessage, "out of memory");
5741 ldap_value_free_len(values);
5742 ldap_unbind(ld);
5743 return 3;
5744 }
5745 p = result;
5746 for (i = 0; values[i] != NULL; i++)
5747 {
5748 memcpy(p, values[i]->bv_val, values[i]->bv_len);
5749 p += values[i]->bv_len;
5750 *(p++) = '\n';
5751 }
5752 *p = '\0';
5753
5754 ldap_value_free_len(values);
5755 ldap_unbind(ld);
5756
5757 /* parse result string */
5758 oldstate = state = 0;
5759 for (p = result; *p != '\0'; ++p)
5760 {
5761 switch (state)
5762 {
5763 case 0: /* between entries */
5764 if (!ld_is_sp_tab(*p) && !ld_is_nl_cr(*p))
5765 {
5766 optname = p;
5767 state = 1;
5768 }
5769 break;
5770 case 1: /* in option name */
5771 if (ld_is_sp_tab(*p))
5772 {
5773 *p = '\0';
5774 state = 2;
5775 }
5776 else if (ld_is_nl_cr(*p))
5777 {
5778 libpq_append_error(errorMessage,
5779 "missing \"=\" after \"%s\" in connection info string",
5780 optname);
5781 free(result);
5782 return 3;
5783 }
5784 else if (*p == '=')
5785 {
5786 *p = '\0';
5787 state = 3;
5788 }
5789 break;
5790 case 2: /* after option name */
5791 if (*p == '=')
5792 {
5793 state = 3;
5794 }
5795 else if (!ld_is_sp_tab(*p))
5796 {
5797 libpq_append_error(errorMessage,
5798 "missing \"=\" after \"%s\" in connection info string",
5799 optname);
5800 free(result);
5801 return 3;
5802 }
5803 break;
5804 case 3: /* before option value */
5805 if (*p == '\'')
5806 {
5807 optval = p + 1;
5808 p1 = p + 1;
5809 state = 5;
5810 }
5811 else if (ld_is_nl_cr(*p))
5812 {
5813 optval = optname + strlen(optname); /* empty */
5814 state = 0;
5815 }
5816 else if (!ld_is_sp_tab(*p))
5817 {
5818 optval = p;
5819 state = 4;
5820 }
5821 break;
5822 case 4: /* in unquoted option value */
5823 if (ld_is_sp_tab(*p) || ld_is_nl_cr(*p))
5824 {
5825 *p = '\0';
5826 state = 0;
5827 }
5828 break;
5829 case 5: /* in quoted option value */
5830 if (*p == '\'')
5831 {
5832 *p1 = '\0';
5833 state = 0;
5834 }
5835 else if (*p == '\\')
5836 state = 6;
5837 else
5838 *(p1++) = *p;
5839 break;
5840 case 6: /* in quoted option value after escape */
5841 *(p1++) = *p;
5842 state = 5;
5843 break;
5844 }
5845
5846 if (state == 0 && oldstate != 0)
5847 {
5848 found_keyword = false;
5849 for (i = 0; options[i].keyword; i++)
5850 {
5851 if (strcmp(options[i].keyword, optname) == 0)
5852 {
5853 if (options[i].val == NULL)
5854 {
5855 options[i].val = strdup(optval);
5856 if (!options[i].val)
5857 {
5858 libpq_append_error(errorMessage, "out of memory");
5859 free(result);
5860 return 3;
5861 }
5862 }
5863 found_keyword = true;
5864 break;
5865 }
5866 }
5867 if (!found_keyword)
5868 {
5869 libpq_append_error(errorMessage, "invalid connection option \"%s\"", optname);
5870 free(result);
5871 return 1;
5872 }
5873 optname = NULL;
5874 optval = NULL;
5875 }
5876 oldstate = state;
5877 }
5878
5879 free(result);
5880
5881 if (state == 5 || state == 6)
5882 {
5883 libpq_append_error(errorMessage,
5884 "unterminated quoted string in connection info string");
5885 return 3;
5886 }
5887
5888 return 0;
5889}
5890
5891#endif /* USE_LDAP */
5892
5893/*
5894 * parseServiceInfo: if a service name has been given, look it up and absorb
5895 * connection options from it into *options.
5896 *
5897 * Returns 0 on success, nonzero on failure. On failure, if errorMessage
5898 * isn't null, also store an error message there. (Note: the only reason
5899 * this function and related ones don't dump core on errorMessage == NULL
5900 * is the undocumented fact that appendPQExpBuffer does nothing when passed
5901 * a null PQExpBuffer pointer.)
5902 */
5903static int
5904parseServiceInfo(PQconninfoOption *options, PQExpBuffer errorMessage)
5905{
5906 const char *service = conninfo_getval(options, "service");
5907 char serviceFile[MAXPGPATH];
5908 char *env;
5909 bool group_found = false;
5910 int status;
5911 struct stat stat_buf;
5912
5913 /*
5914 * We have to special-case the environment variable PGSERVICE here, since
5915 * this is and should be called before inserting environment defaults for
5916 * other connection options.
5917 */
5918 if (service == NULL)
5919 service = getenv("PGSERVICE");
5920
5921 /* If no service name given, nothing to do */
5922 if (service == NULL)
5923 return 0;
5924
5925 /*
5926 * Try PGSERVICEFILE if specified, else try ~/.pg_service.conf (if that
5927 * exists).
5928 */
5929 if ((env = getenv("PGSERVICEFILE")) != NULL)
5930 strlcpy(serviceFile, env, sizeof(serviceFile));
5931 else
5932 {
5933 char homedir[MAXPGPATH];
5934
5935 if (!pqGetHomeDirectory(homedir, sizeof(homedir)))
5936 goto next_file;
5937 snprintf(serviceFile, MAXPGPATH, "%s/%s", homedir, ".pg_service.conf");
5938 if (stat(serviceFile, &stat_buf) != 0)
5939 goto next_file;
5940 }
5941
5942 status = parseServiceFile(serviceFile, service, options, errorMessage, &group_found);
5943 if (group_found || status != 0)
5944 return status;
5945
5946next_file:
5947
5948 /*
5949 * This could be used by any application so we can't use the binary
5950 * location to find our config files.
5951 */
5952 snprintf(serviceFile, MAXPGPATH, "%s/pg_service.conf",
5953 getenv("PGSYSCONFDIR") ? getenv("PGSYSCONFDIR") : SYSCONFDIR);
5954 if (stat(serviceFile, &stat_buf) != 0)
5955 goto last_file;
5956
5957 status = parseServiceFile(serviceFile, service, options, errorMessage, &group_found);
5958 if (status != 0)
5959 return status;
5960
5961last_file:
5962 if (!group_found)
5963 {
5964 libpq_append_error(errorMessage, "definition of service \"%s\" not found", service);
5965 return 3;
5966 }
5967
5968 return 0;
5969}
5970
5971static int
5972parseServiceFile(const char *serviceFile,
5973 const char *service,
5974 PQconninfoOption *options,
5975 PQExpBuffer errorMessage,
5976 bool *group_found)
5977{
5978 int result = 0,
5979 linenr = 0,
5980 i;
5981 FILE *f;
5982 char *line;
5983 char buf[1024];
5984
5985 *group_found = false;
5986
5987 f = fopen(serviceFile, "r");
5988 if (f == NULL)
5989 {
5990 libpq_append_error(errorMessage, "service file \"%s\" not found", serviceFile);
5991 return 1;
5992 }
5993
5994 while ((line = fgets(buf, sizeof(buf), f)) != NULL)
5995 {
5996 int len;
5997
5998 linenr++;
5999
6000 if (strlen(line) >= sizeof(buf) - 1)
6001 {
6002 libpq_append_error(errorMessage,
6003 "line %d too long in service file \"%s\"",
6004 linenr,
6005 serviceFile);
6006 result = 2;
6007 goto exit;
6008 }
6009
6010 /* ignore whitespace at end of line, especially the newline */
6011 len = strlen(line);
6012 while (len > 0 && isspace((unsigned char) line[len - 1]))
6013 line[--len] = '\0';
6014
6015 /* ignore leading whitespace too */
6016 while (*line && isspace((unsigned char) line[0]))
6017 line++;
6018
6019 /* ignore comments and empty lines */
6020 if (line[0] == '\0' || line[0] == '#')
6021 continue;
6022
6023 /* Check for right groupname */
6024 if (line[0] == '[')
6025 {
6026 if (*group_found)
6027 {
6028 /* end of desired group reached; return success */
6029 goto exit;
6030 }
6031
6032 if (strncmp(line + 1, service, strlen(service)) == 0 &&
6033 line[strlen(service) + 1] == ']')
6034 *group_found = true;
6035 else
6036 *group_found = false;
6037 }
6038 else
6039 {
6040 if (*group_found)
6041 {
6042 /*
6043 * Finally, we are in the right group and can parse the line
6044 */
6045 char *key,
6046 *val;
6047 bool found_keyword;
6048
6049#ifdef USE_LDAP
6050 if (strncmp(line, "ldap", 4) == 0)
6051 {
6052 int rc = ldapServiceLookup(line, options, errorMessage);
6053
6054 /* if rc = 2, go on reading for fallback */
6055 switch (rc)
6056 {
6057 case 0:
6058 goto exit;
6059 case 1:
6060 case 3:
6061 result = 3;
6062 goto exit;
6063 case 2:
6064 continue;
6065 }
6066 }
6067#endif
6068
6069 key = line;
6070 val = strchr(line, '=');
6071 if (val == NULL)
6072 {
6073 libpq_append_error(errorMessage,
6074 "syntax error in service file \"%s\", line %d",
6075 serviceFile,
6076 linenr);
6077 result = 3;
6078 goto exit;
6079 }
6080 *val++ = '\0';
6081
6082 if (strcmp(key, "service") == 0)
6083 {
6084 libpq_append_error(errorMessage,
6085 "nested service specifications not supported in service file \"%s\", line %d",
6086 serviceFile,
6087 linenr);
6088 result = 3;
6089 goto exit;
6090 }
6091
6092 /*
6093 * Set the parameter --- but don't override any previous
6094 * explicit setting.
6095 */
6096 found_keyword = false;
6097 for (i = 0; options[i].keyword; i++)
6098 {
6099 if (strcmp(options[i].keyword, key) == 0)
6100 {
6101 if (options[i].val == NULL)
6102 options[i].val = strdup(val);
6103 if (!options[i].val)
6104 {
6105 libpq_append_error(errorMessage, "out of memory");
6106 result = 3;
6107 goto exit;
6108 }
6109 found_keyword = true;
6110 break;
6111 }
6112 }
6113
6114 if (!found_keyword)
6115 {
6116 libpq_append_error(errorMessage,
6117 "syntax error in service file \"%s\", line %d",
6118 serviceFile,
6119 linenr);
6120 result = 3;
6121 goto exit;
6122 }
6123 }
6124 }
6125 }
6126
6127exit:
6128 fclose(f);
6129
6130 return result;
6131}
6132
6133
6134/*
6135 * PQconninfoParse
6136 *
6137 * Parse a string like PQconnectdb() would do and return the
6138 * resulting connection options array. NULL is returned on failure.
6139 * The result contains only options specified directly in the string,
6140 * not any possible default values.
6141 *
6142 * If errmsg isn't NULL, *errmsg is set to NULL on success, or a malloc'd
6143 * string on failure (use PQfreemem to free it). In out-of-memory conditions
6144 * both *errmsg and the result could be NULL.
6145 *
6146 * NOTE: the returned array is dynamically allocated and should
6147 * be freed when no longer needed via PQconninfoFree().
6148 */
6149PQconninfoOption *
6150PQconninfoParse(const char *conninfo, char **errmsg)
6151{
6152 PQExpBufferData errorBuf;
6153 PQconninfoOption *connOptions;
6154
6155 if (errmsg)
6156 *errmsg = NULL; /* default */
6157 initPQExpBuffer(&errorBuf);
6158 if (PQExpBufferDataBroken(errorBuf))
6159 return NULL; /* out of memory already :-( */
6160 connOptions = parse_connection_string(conninfo, &errorBuf, false);
6161 if (connOptions == NULL && errmsg)
6162 *errmsg = errorBuf.data;
6163 else
6164 termPQExpBuffer(&errorBuf);
6165 return connOptions;
6166}
6167
6168/*
6169 * Build a working copy of the constant PQconninfoOptions array.
6170 */
6171static PQconninfoOption *
6172conninfo_init(PQExpBuffer errorMessage)
6173{
6174 PQconninfoOption *options;
6175 PQconninfoOption *opt_dest;
6176 const internalPQconninfoOption *cur_opt;
6177
6178 /*
6179 * Get enough memory for all options in PQconninfoOptions, even if some
6180 * end up being filtered out.
6181 */
6182 options = (PQconninfoOption *) malloc(sizeof(PQconninfoOption) * sizeof(PQconninfoOptions) / sizeof(PQconninfoOptions[0]));
6183 if (options == NULL)
6184 {
6185 libpq_append_error(errorMessage, "out of memory");
6186 return NULL;
6187 }
6188 opt_dest = options;
6189
6190 for (cur_opt = PQconninfoOptions; cur_opt->keyword; cur_opt++)
6191 {
6192 /* Only copy the public part of the struct, not the full internal */
6193 memcpy(opt_dest, cur_opt, sizeof(PQconninfoOption));
6194 opt_dest++;
6195 }
6196 MemSet(opt_dest, 0, sizeof(PQconninfoOption));
6197
6198 return options;
6199}
6200
6201/*
6202 * Connection string parser
6203 *
6204 * Returns a malloc'd PQconninfoOption array, if parsing is successful.
6205 * Otherwise, NULL is returned and an error message is added to errorMessage.
6206 *
6207 * If use_defaults is true, default values are filled in (from a service file,
6208 * environment variables, etc).
6209 */
6210static PQconninfoOption *
6211parse_connection_string(const char *connstr, PQExpBuffer errorMessage,
6212 bool use_defaults)
6213{
6214 /* Parse as URI if connection string matches URI prefix */
6215 if (uri_prefix_length(connstr) != 0)
6216 return conninfo_uri_parse(connstr, errorMessage, use_defaults);
6217
6218 /* Parse as default otherwise */
6219 return conninfo_parse(connstr, errorMessage, use_defaults);
6220}
6221
6222/*
6223 * Checks if connection string starts with either of the valid URI prefix
6224 * designators.
6225 *
6226 * Returns the URI prefix length, 0 if the string doesn't contain a URI prefix.
6227 *
6228 * XXX this is duplicated in psql/common.c.
6229 */
6230static int
6231uri_prefix_length(const char *connstr)
6232{
6233 if (strncmp(connstr, uri_designator,
6234 sizeof(uri_designator) - 1) == 0)
6235 return sizeof(uri_designator) - 1;
6236
6237 if (strncmp(connstr, short_uri_designator,
6238 sizeof(short_uri_designator) - 1) == 0)
6239 return sizeof(short_uri_designator) - 1;
6240
6241 return 0;
6242}
6243
6244/*
6245 * Recognized connection string either starts with a valid URI prefix or
6246 * contains a "=" in it.
6247 *
6248 * Must be consistent with parse_connection_string: anything for which this
6249 * returns true should at least look like it's parseable by that routine.
6250 *
6251 * XXX this is duplicated in psql/common.c
6252 */
6253static bool
6254recognized_connection_string(const char *connstr)
6255{
6256 return uri_prefix_length(connstr) != 0 || strchr(connstr, '=') != NULL;
6257}
6258
6259/*
6260 * Subroutine for parse_connection_string
6261 *
6262 * Deal with a string containing key=value pairs.
6263 */
6264static PQconninfoOption *
6265conninfo_parse(const char *conninfo, PQExpBuffer errorMessage,
6266 bool use_defaults)
6267{
6268 char *pname;
6269 char *pval;
6270 char *buf;
6271 char *cp;
6272 char *cp2;
6273 PQconninfoOption *options;
6274
6275 /* Make a working copy of PQconninfoOptions */
6276 options = conninfo_init(errorMessage);
6277 if (options == NULL)
6278 return NULL;
6279
6280 /* Need a modifiable copy of the input string */
6281 if ((buf = strdup(conninfo)) == NULL)
6282 {
6283 libpq_append_error(errorMessage, "out of memory");
6284 PQconninfoFree(options);
6285 return NULL;
6286 }
6287 cp = buf;
6288
6289 while (*cp)
6290 {
6291 /* Skip blanks before the parameter name */
6292 if (isspace((unsigned char) *cp))
6293 {
6294 cp++;
6295 continue;
6296 }
6297
6298 /* Get the parameter name */
6299 pname = cp;
6300 while (*cp)
6301 {
6302 if (*cp == '=')
6303 break;
6304 if (isspace((unsigned char) *cp))
6305 {
6306 *cp++ = '\0';
6307 while (*cp)
6308 {
6309 if (!isspace((unsigned char) *cp))
6310 break;
6311 cp++;
6312 }
6313 break;
6314 }
6315 cp++;
6316 }
6317
6318 /* Check that there is a following '=' */
6319 if (*cp != '=')
6320 {
6321 libpq_append_error(errorMessage,
6322 "missing \"=\" after \"%s\" in connection info string",
6323 pname);
6324 PQconninfoFree(options);
6325 free(buf);
6326 return NULL;
6327 }
6328 *cp++ = '\0';
6329
6330 /* Skip blanks after the '=' */
6331 while (*cp)
6332 {
6333 if (!isspace((unsigned char) *cp))
6334 break;
6335 cp++;
6336 }
6337
6338 /* Get the parameter value */
6339 pval = cp;
6340
6341 if (*cp != '\'')
6342 {
6343 cp2 = pval;
6344 while (*cp)
6345 {
6346 if (isspace((unsigned char) *cp))
6347 {
6348 *cp++ = '\0';
6349 break;
6350 }
6351 if (*cp == '\\')
6352 {
6353 cp++;
6354 if (*cp != '\0')
6355 *cp2++ = *cp++;
6356 }
6357 else
6358 *cp2++ = *cp++;
6359 }
6360 *cp2 = '\0';
6361 }
6362 else
6363 {
6364 cp2 = pval;
6365 cp++;
6366 for (;;)
6367 {
6368 if (*cp == '\0')
6369 {
6370 libpq_append_error(errorMessage, "unterminated quoted string in connection info string");
6371 PQconninfoFree(options);
6372 free(buf);
6373 return NULL;
6374 }
6375 if (*cp == '\\')
6376 {
6377 cp++;
6378 if (*cp != '\0')
6379 *cp2++ = *cp++;
6380 continue;
6381 }
6382 if (*cp == '\'')
6383 {
6384 *cp2 = '\0';
6385 cp++;
6386 break;
6387 }
6388 *cp2++ = *cp++;
6389 }
6390 }
6391
6392 /*
6393 * Now that we have the name and the value, store the record.
6394 */
6395 if (!conninfo_storeval(options, pname, pval, errorMessage, false, false))
6396 {
6397 PQconninfoFree(options);
6398 free(buf);
6399 return NULL;
6400 }
6401 }
6402
6403 /* Done with the modifiable input string */
6404 free(buf);
6405
6406 /*
6407 * Add in defaults if the caller wants that.
6408 */
6409 if (use_defaults)
6410 {
6411 if (!conninfo_add_defaults(options, errorMessage))
6412 {
6413 PQconninfoFree(options);
6414 return NULL;
6415 }
6416 }
6417
6418 return options;
6419}
6420
6421/*
6422 * Conninfo array parser routine
6423 *
6424 * If successful, a malloc'd PQconninfoOption array is returned.
6425 * If not successful, NULL is returned and an error message is
6426 * appended to errorMessage.
6427 * Defaults are supplied (from a service file, environment variables, etc)
6428 * for unspecified options, but only if use_defaults is true.
6429 *
6430 * If expand_dbname is non-zero, and the value passed for the first occurrence
6431 * of "dbname" keyword is a connection string (as indicated by
6432 * recognized_connection_string) then parse and process it, overriding any
6433 * previously processed conflicting keywords. Subsequent keywords will take
6434 * precedence, however. In-tree programs generally specify expand_dbname=true,
6435 * so command-line arguments naming a database can use a connection string.
6436 * Some code acquires arbitrary database names from known-literal sources like
6437 * PQdb(), PQconninfoParse() and pg_database.datname. When connecting to such
6438 * a database, in-tree code first wraps the name in a connection string.
6439 */
6440static PQconninfoOption *
6441conninfo_array_parse(const char *const *keywords, const char *const *values,
6442 PQExpBuffer errorMessage, bool use_defaults,
6443 int expand_dbname)
6444{
6445 PQconninfoOption *options;
6446 PQconninfoOption *dbname_options = NULL;
6447 PQconninfoOption *option;
6448 int i = 0;
6449
6450 /*
6451 * If expand_dbname is non-zero, check keyword "dbname" to see if val is
6452 * actually a recognized connection string.
6453 */
6454 while (expand_dbname && keywords[i])
6455 {
6456 const char *pname = keywords[i];
6457 const char *pvalue = values[i];
6458
6459 /* first find "dbname" if any */
6460 if (strcmp(pname, "dbname") == 0 && pvalue)
6461 {
6462 /*
6463 * If value is a connection string, parse it, but do not use
6464 * defaults here -- those get picked up later. We only want to
6465 * override for those parameters actually passed.
6466 */
6467 if (recognized_connection_string(pvalue))
6468 {
6469 dbname_options = parse_connection_string(pvalue, errorMessage, false);
6470 if (dbname_options == NULL)
6471 return NULL;
6472 }
6473 break;
6474 }
6475 ++i;
6476 }
6477
6478 /* Make a working copy of PQconninfoOptions */
6479 options = conninfo_init(errorMessage);
6480 if (options == NULL)
6481 {
6482 PQconninfoFree(dbname_options);
6483 return NULL;
6484 }
6485
6486 /* Parse the keywords/values arrays */
6487 i = 0;
6488 while (keywords[i])
6489 {
6490 const char *pname = keywords[i];
6491 const char *pvalue = values[i];
6492
6493 if (pvalue != NULL && pvalue[0] != '\0')
6494 {
6495 /* Search for the param record */
6496 for (option = options; option->keyword != NULL; option++)
6497 {
6498 if (strcmp(option->keyword, pname) == 0)
6499 break;
6500 }
6501
6502 /* Check for invalid connection option */
6503 if (option->keyword == NULL)
6504 {
6505 libpq_append_error(errorMessage, "invalid connection option \"%s\"", pname);
6506 PQconninfoFree(options);
6507 PQconninfoFree(dbname_options);
6508 return NULL;
6509 }
6510
6511 /*
6512 * If we are on the first dbname parameter, and we have a parsed
6513 * connection string, copy those parameters across, overriding any
6514 * existing previous settings.
6515 */
6516 if (strcmp(pname, "dbname") == 0 && dbname_options)
6517 {
6518 PQconninfoOption *str_option;
6519
6520 for (str_option = dbname_options; str_option->keyword != NULL; str_option++)
6521 {
6522 if (str_option->val != NULL)
6523 {
6524 int k;
6525
6526 for (k = 0; options[k].keyword; k++)
6527 {
6528 if (strcmp(options[k].keyword, str_option->keyword) == 0)
6529 {
6530 free(options[k].val);
6531 options[k].val = strdup(str_option->val);
6532 if (!options[k].val)
6533 {
6534 libpq_append_error(errorMessage, "out of memory");
6535 PQconninfoFree(options);
6536 PQconninfoFree(dbname_options);
6537 return NULL;
6538 }
6539 break;
6540 }
6541 }
6542 }
6543 }
6544
6545 /*
6546 * Forget the parsed connection string, so that any subsequent
6547 * dbname parameters will not be expanded.
6548 */
6549 PQconninfoFree(dbname_options);
6550 dbname_options = NULL;
6551 }
6552 else
6553 {
6554 /*
6555 * Store the value, overriding previous settings
6556 */
6557 free(option->val);
6558 option->val = strdup(pvalue);
6559 if (!option->val)
6560 {
6561 libpq_append_error(errorMessage, "out of memory");
6562 PQconninfoFree(options);
6563 PQconninfoFree(dbname_options);
6564 return NULL;
6565 }
6566 }
6567 }
6568 ++i;
6569 }
6570 PQconninfoFree(dbname_options);
6571
6572 /*
6573 * Add in defaults if the caller wants that.
6574 */
6575 if (use_defaults)
6576 {
6577 if (!conninfo_add_defaults(options, errorMessage))
6578 {
6579 PQconninfoFree(options);
6580 return NULL;
6581 }
6582 }
6583
6584 return options;
6585}
6586
6587/*
6588 * Add the default values for any unspecified options to the connection
6589 * options array.
6590 *
6591 * Defaults are obtained from a service file, environment variables, etc.
6592 *
6593 * Returns true if successful, otherwise false; errorMessage, if supplied,
6594 * is filled in upon failure. Note that failure to locate a default value
6595 * is not an error condition here --- we just leave the option's value as
6596 * NULL.
6597 */
6598static bool
6599conninfo_add_defaults(PQconninfoOption *options, PQExpBuffer errorMessage)
6600{
6601 PQconninfoOption *option;
6602 PQconninfoOption *sslmode_default = NULL,
6603 *sslrootcert = NULL;
6604 char *tmp;
6605
6606 /*
6607 * If there's a service spec, use it to obtain any not-explicitly-given
6608 * parameters. Ignore error if no error message buffer is passed because
6609 * there is no way to pass back the failure message.
6610 */
6611 if (parseServiceInfo(options, errorMessage) != 0 && errorMessage)
6612 return false;
6613
6614 /*
6615 * Get the fallback resources for parameters not specified in the conninfo
6616 * string nor the service.
6617 */
6618 for (option = options; option->keyword != NULL; option++)
6619 {
6620 if (strcmp(option->keyword, "sslrootcert") == 0)
6621 sslrootcert = option; /* save for later */
6622
6623 if (option->val != NULL)
6624 continue; /* Value was in conninfo or service */
6625
6626 /*
6627 * Try to get the environment variable fallback
6628 */
6629 if (option->envvar != NULL)
6630 {
6631 if ((tmp = getenv(option->envvar)) != NULL)
6632 {
6633 option->val = strdup(tmp);
6634 if (!option->val)
6635 {
6636 if (errorMessage)
6637 libpq_append_error(errorMessage, "out of memory");
6638 return false;
6639 }
6640 continue;
6641 }
6642 }
6643
6644 /*
6645 * Interpret the deprecated PGREQUIRESSL environment variable. Per
6646 * tradition, translate values starting with "1" to sslmode=require,
6647 * and ignore other values. Given both PGREQUIRESSL=1 and PGSSLMODE,
6648 * PGSSLMODE takes precedence; the opposite was true before v9.3.
6649 */
6650 if (strcmp(option->keyword, "sslmode") == 0)
6651 {
6652 const char *requiresslenv = getenv("PGREQUIRESSL");
6653
6654 if (requiresslenv != NULL && requiresslenv[0] == '1')
6655 {
6656 option->val = strdup("require");
6657 if (!option->val)
6658 {
6659 if (errorMessage)
6660 libpq_append_error(errorMessage, "out of memory");
6661 return false;
6662 }
6663 continue;
6664 }
6665
6666 /*
6667 * sslmode is not specified. Let it be filled in with the compiled
6668 * default for now, but if sslrootcert=system, we'll override the
6669 * default later before returning.
6670 */
6671 sslmode_default = option;
6672 }
6673
6674 /*
6675 * No environment variable specified or the variable isn't set - try
6676 * compiled-in default
6677 */
6678 if (option->compiled != NULL)
6679 {
6680 option->val = strdup(option->compiled);
6681 if (!option->val)
6682 {
6683 if (errorMessage)
6684 libpq_append_error(errorMessage, "out of memory");
6685 return false;
6686 }
6687 continue;
6688 }
6689
6690 /*
6691 * Special handling for "user" option. Note that if pg_fe_getauthname
6692 * fails, we just leave the value as NULL; there's no need for this to
6693 * be an error condition if the caller provides a user name. The only
6694 * reason we do this now at all is so that callers of PQconndefaults
6695 * will see a correct default (barring error, of course).
6696 */
6697 if (strcmp(option->keyword, "user") == 0)
6698 {
6699 option->val = pg_fe_getauthname(NULL);
6700 continue;
6701 }
6702 }
6703
6704 /*
6705 * Special handling for sslrootcert=system with no sslmode explicitly
6706 * defined. In this case we want to strengthen the default sslmode to
6707 * verify-full.
6708 */
6709 if (sslmode_default && sslrootcert)
6710 {
6711 if (sslrootcert->val && strcmp(sslrootcert->val, "system") == 0)
6712 {
6713 free(sslmode_default->val);
6714
6715 sslmode_default->val = strdup("verify-full");
6716 if (!sslmode_default->val)
6717 {
6718 if (errorMessage)
6719 libpq_append_error(errorMessage, "out of memory");
6720 return false;
6721 }
6722 }
6723 }
6724
6725 return true;
6726}
6727
6728/*
6729 * Subroutine for parse_connection_string
6730 *
6731 * Deal with a URI connection string.
6732 */
6733static PQconninfoOption *
6734conninfo_uri_parse(const char *uri, PQExpBuffer errorMessage,
6735 bool use_defaults)
6736{
6737 PQconninfoOption *options;
6738
6739 /* Make a working copy of PQconninfoOptions */
6740 options = conninfo_init(errorMessage);
6741 if (options == NULL)
6742 return NULL;
6743
6744 if (!conninfo_uri_parse_options(options, uri, errorMessage))
6745 {
6746 PQconninfoFree(options);
6747 return NULL;
6748 }
6749
6750 /*
6751 * Add in defaults if the caller wants that.
6752 */
6753 if (use_defaults)
6754 {
6755 if (!conninfo_add_defaults(options, errorMessage))
6756 {
6757 PQconninfoFree(options);
6758 return NULL;
6759 }
6760 }
6761
6762 return options;
6763}
6764
6765/*
6766 * conninfo_uri_parse_options
6767 * Actual URI parser.
6768 *
6769 * If successful, returns true while the options array is filled with parsed
6770 * options from the URI.
6771 * If not successful, returns false and fills errorMessage accordingly.
6772 *
6773 * Parses the connection URI string in 'uri' according to the URI syntax (RFC
6774 * 3986):
6775 *
6776 * postgresql://[user[:password]@][netloc][:port][/dbname][?param1=value1&...]
6777 *
6778 * where "netloc" is a hostname, an IPv4 address, or an IPv6 address surrounded
6779 * by literal square brackets. As an extension, we also allow multiple
6780 * netloc[:port] specifications, separated by commas:
6781 *
6782 * postgresql://[user[:password]@][netloc][:port][,...][/dbname][?param1=value1&...]
6783 *
6784 * Any of the URI parts might use percent-encoding (%xy).
6785 */
6786static bool
6787conninfo_uri_parse_options(PQconninfoOption *options, const char *uri,
6788 PQExpBuffer errorMessage)
6789{
6790 int prefix_len;
6791 char *p;
6792 char *buf = NULL;
6793 char *start;
6794 char prevchar = '\0';
6795 char *user = NULL;
6796 char *host = NULL;
6797 bool retval = false;
6798 PQExpBufferData hostbuf;
6799 PQExpBufferData portbuf;
6800
6801 initPQExpBuffer(&hostbuf);
6802 initPQExpBuffer(&portbuf);
6803 if (PQExpBufferDataBroken(hostbuf) || PQExpBufferDataBroken(portbuf))
6804 {
6805 libpq_append_error(errorMessage, "out of memory");
6806 goto cleanup;
6807 }
6808
6809 /* need a modifiable copy of the input URI */
6810 buf = strdup(uri);
6811 if (buf == NULL)
6812 {
6813 libpq_append_error(errorMessage, "out of memory");
6814 goto cleanup;
6815 }
6816 start = buf;
6817
6818 /* Skip the URI prefix */
6819 prefix_len = uri_prefix_length(uri);
6820 if (prefix_len == 0)
6821 {
6822 /* Should never happen */
6823 libpq_append_error(errorMessage,
6824 "invalid URI propagated to internal parser routine: \"%s\"",
6825 uri);
6826 goto cleanup;
6827 }
6828 start += prefix_len;
6829 p = start;
6830
6831 /* Look ahead for possible user credentials designator */
6832 while (*p && *p != '@' && *p != '/')
6833 ++p;
6834 if (*p == '@')
6835 {
6836 /*
6837 * Found username/password designator, so URI should be of the form
6838 * "scheme://user[:password]@[netloc]".
6839 */
6840 user = start;
6841
6842 p = user;
6843 while (*p != ':' && *p != '@')
6844 ++p;
6845
6846 /* Save last char and cut off at end of user name */
6847 prevchar = *p;
6848 *p = '\0';
6849
6850 if (*user &&
6851 !conninfo_storeval(options, "user", user,
6852 errorMessage, false, true))
6853 goto cleanup;
6854
6855 if (prevchar == ':')
6856 {
6857 const char *password = p + 1;
6858
6859 while (*p != '@')
6860 ++p;
6861 *p = '\0';
6862
6863 if (*password &&
6864 !conninfo_storeval(options, "password", password,
6865 errorMessage, false, true))
6866 goto cleanup;
6867 }
6868
6869 /* Advance past end of parsed user name or password token */
6870 ++p;
6871 }
6872 else
6873 {
6874 /*
6875 * No username/password designator found. Reset to start of URI.
6876 */
6877 p = start;
6878 }
6879
6880 /*
6881 * There may be multiple netloc[:port] pairs, each separated from the next
6882 * by a comma. When we initially enter this loop, "p" has been
6883 * incremented past optional URI credential information at this point and
6884 * now points at the "netloc" part of the URI. On subsequent loop
6885 * iterations, "p" has been incremented past the comma separator and now
6886 * points at the start of the next "netloc".
6887 */
6888 for (;;)
6889 {
6890 /*
6891 * Look for IPv6 address.
6892 */
6893 if (*p == '[')
6894 {
6895 host = ++p;
6896 while (*p && *p != ']')
6897 ++p;
6898 if (!*p)
6899 {
6900 libpq_append_error(errorMessage,
6901 "end of string reached when looking for matching \"]\" in IPv6 host address in URI: \"%s\"",
6902 uri);
6903 goto cleanup;
6904 }
6905 if (p == host)
6906 {
6907 libpq_append_error(errorMessage,
6908 "IPv6 host address may not be empty in URI: \"%s\"",
6909 uri);
6910 goto cleanup;
6911 }
6912
6913 /* Cut off the bracket and advance */
6914 *(p++) = '\0';
6915
6916 /*
6917 * The address may be followed by a port specifier or a slash or a
6918 * query or a separator comma.
6919 */
6920 if (*p && *p != ':' && *p != '/' && *p != '?' && *p != ',')
6921 {
6922 libpq_append_error(errorMessage,
6923 "unexpected character \"%c\" at position %d in URI (expected \":\" or \"/\"): \"%s\"",
6924 *p, (int) (p - buf + 1), uri);
6925 goto cleanup;
6926 }
6927 }
6928 else
6929 {
6930 /* not an IPv6 address: DNS-named or IPv4 netloc */
6931 host = p;
6932
6933 /*
6934 * Look for port specifier (colon) or end of host specifier
6935 * (slash) or query (question mark) or host separator (comma).
6936 */
6937 while (*p && *p != ':' && *p != '/' && *p != '?' && *p != ',')
6938 ++p;
6939 }
6940
6941 /* Save the hostname terminator before we null it */
6942 prevchar = *p;
6943 *p = '\0';
6944
6945 appendPQExpBufferStr(&hostbuf, host);
6946
6947 if (prevchar == ':')
6948 {
6949 const char *port = ++p; /* advance past host terminator */
6950
6951 while (*p && *p != '/' && *p != '?' && *p != ',')
6952 ++p;
6953
6954 prevchar = *p;
6955 *p = '\0';
6956
6957 appendPQExpBufferStr(&portbuf, port);
6958 }
6959
6960 if (prevchar != ',')
6961 break;
6962 ++p; /* advance past comma separator */
6963 appendPQExpBufferChar(&hostbuf, ',');
6964 appendPQExpBufferChar(&portbuf, ',');
6965 }
6966
6967 /* Save final values for host and port. */
6968 if (PQExpBufferDataBroken(hostbuf) || PQExpBufferDataBroken(portbuf))
6969 goto cleanup;
6970 if (hostbuf.data[0] &&
6971 !conninfo_storeval(options, "host", hostbuf.data,
6972 errorMessage, false, true))
6973 goto cleanup;
6974 if (portbuf.data[0] &&
6975 !conninfo_storeval(options, "port", portbuf.data,
6976 errorMessage, false, true))
6977 goto cleanup;
6978
6979 if (prevchar && prevchar != '?')
6980 {
6981 const char *dbname = ++p; /* advance past host terminator */
6982
6983 /* Look for query parameters */
6984 while (*p && *p != '?')
6985 ++p;
6986
6987 prevchar = *p;
6988 *p = '\0';
6989
6990 /*
6991 * Avoid setting dbname to an empty string, as it forces the default
6992 * value (username) and ignores $PGDATABASE, as opposed to not setting
6993 * it at all.
6994 */
6995 if (*dbname &&
6996 !conninfo_storeval(options, "dbname", dbname,
6997 errorMessage, false, true))
6998 goto cleanup;
6999 }
7000
7001 if (prevchar)
7002 {
7003 ++p; /* advance past terminator */
7004
7005 if (!conninfo_uri_parse_params(p, options, errorMessage))
7006 goto cleanup;
7007 }
7008
7009 /* everything parsed okay */
7010 retval = true;
7011
7012cleanup:
7013 termPQExpBuffer(&hostbuf);
7014 termPQExpBuffer(&portbuf);
7015 free(buf);
7016 return retval;
7017}
7018
7019/*
7020 * Connection URI parameters parser routine
7021 *
7022 * If successful, returns true while connOptions is filled with parsed
7023 * parameters. Otherwise, returns false and fills errorMessage appropriately.
7024 *
7025 * Destructively modifies 'params' buffer.
7026 */
7027static bool
7028conninfo_uri_parse_params(char *params,
7029 PQconninfoOption *connOptions,
7030 PQExpBuffer errorMessage)
7031{
7032 while (*params)
7033 {
7034 char *keyword = params;
7035 char *value = NULL;
7036 char *p = params;
7037 bool malloced = false;
7038 int oldmsglen;
7039
7040 /*
7041 * Scan the params string for '=' and '&', marking the end of keyword
7042 * and value respectively.
7043 */
7044 for (;;)
7045 {
7046 if (*p == '=')
7047 {
7048 /* Was there '=' already? */
7049 if (value != NULL)
7050 {
7051 libpq_append_error(errorMessage,
7052 "extra key/value separator \"=\" in URI query parameter: \"%s\"",
7053 keyword);
7054 return false;
7055 }
7056 /* Cut off keyword, advance to value */
7057 *p++ = '\0';
7058 value = p;
7059 }
7060 else if (*p == '&' || *p == '\0')
7061 {
7062 /*
7063 * If not at the end, cut off value and advance; leave p
7064 * pointing to start of the next parameter, if any.
7065 */
7066 if (*p != '\0')
7067 *p++ = '\0';
7068 /* Was there '=' at all? */
7069 if (value == NULL)
7070 {
7071 libpq_append_error(errorMessage,
7072 "missing key/value separator \"=\" in URI query parameter: \"%s\"",
7073 keyword);
7074 return false;
7075 }
7076 /* Got keyword and value, go process them. */
7077 break;
7078 }
7079 else
7080 ++p; /* Advance over all other bytes. */
7081 }
7082
7083 keyword = conninfo_uri_decode(keyword, errorMessage);
7084 if (keyword == NULL)
7085 {
7086 /* conninfo_uri_decode already set an error message */
7087 return false;
7088 }
7089 value = conninfo_uri_decode(value, errorMessage);
7090 if (value == NULL)
7091 {
7092 /* conninfo_uri_decode already set an error message */
7093 free(keyword);
7094 return false;
7095 }
7096 malloced = true;
7097
7098 /*
7099 * Special keyword handling for improved JDBC compatibility.
7100 */
7101 if (strcmp(keyword, "ssl") == 0 &&
7102 strcmp(value, "true") == 0)
7103 {
7104 free(keyword);
7105 free(value);
7106 malloced = false;
7107
7108 keyword = "sslmode";
7109 value = "require";
7110 }
7111
7112 /*
7113 * Store the value if the corresponding option exists; ignore
7114 * otherwise. At this point both keyword and value are not
7115 * URI-encoded.
7116 */
7117 oldmsglen = errorMessage->len;
7118 if (!conninfo_storeval(connOptions, keyword, value,
7119 errorMessage, true, false))
7120 {
7121 /* Insert generic message if conninfo_storeval didn't give one. */
7122 if (errorMessage->len == oldmsglen)
7123 libpq_append_error(errorMessage,
7124 "invalid URI query parameter: \"%s\"",
7125 keyword);
7126 /* And fail. */
7127 if (malloced)
7128 {
7129 free(keyword);
7130 free(value);
7131 }
7132 return false;
7133 }
7134
7135 if (malloced)
7136 {
7137 free(keyword);
7138 free(value);
7139 }
7140
7141 /* Proceed to next key=value pair, if any */
7142 params = p;
7143 }
7144
7145 return true;
7146}
7147
7148/*
7149 * Connection URI decoder routine
7150 *
7151 * If successful, returns the malloc'd decoded string.
7152 * If not successful, returns NULL and fills errorMessage accordingly.
7153 *
7154 * The string is decoded by replacing any percent-encoded tokens with
7155 * corresponding characters, while preserving any non-encoded characters. A
7156 * percent-encoded token is a character triplet: a percent sign, followed by a
7157 * pair of hexadecimal digits (0-9A-F), where lower- and upper-case letters are
7158 * treated identically.
7159 */
7160static char *
7161conninfo_uri_decode(const char *str, PQExpBuffer errorMessage)
7162{
7163 char *buf; /* result */
7164 char *p; /* output location */
7165 const char *q = str; /* input location */
7166
7167 buf = malloc(strlen(str) + 1);
7168 if (buf == NULL)
7169 {
7170 libpq_append_error(errorMessage, "out of memory");
7171 return NULL;
7172 }
7173 p = buf;
7174
7175 /* skip leading whitespaces */
7176 for (const char *s = q; *s == ' '; s++)
7177 {
7178 q++;
7179 continue;
7180 }
7181
7182 for (;;)
7183 {
7184 if (*q != '%')
7185 {
7186 /* if found a whitespace or NUL, the string ends */
7187 if (*q == ' ' || *q == '\0')
7188 goto end;
7189
7190 /* copy character */
7191 *(p++) = *(q++);
7192 }
7193 else
7194 {
7195 int hi;
7196 int lo;
7197 int c;
7198
7199 ++q; /* skip the percent sign itself */
7200
7201 /*
7202 * Possible EOL will be caught by the first call to
7203 * get_hexdigit(), so we never dereference an invalid q pointer.
7204 */
7205 if (!(get_hexdigit(*q++, &hi) && get_hexdigit(*q++, &lo)))
7206 {
7207 libpq_append_error(errorMessage,
7208 "invalid percent-encoded token: \"%s\"",
7209 str);
7210 free(buf);
7211 return NULL;
7212 }
7213
7214 c = (hi << 4) | lo;
7215 if (c == 0)
7216 {
7217 libpq_append_error(errorMessage,
7218 "forbidden value %%00 in percent-encoded value: \"%s\"",
7219 str);
7220 free(buf);
7221 return NULL;
7222 }
7223 *(p++) = c;
7224 }
7225 }
7226
7227end:
7228
7229 /* skip trailing whitespaces */
7230 for (const char *s = q; *s == ' '; s++)
7231 {
7232 q++;
7233 continue;
7234 }
7235
7236 /* Not at the end of the string yet? Fail. */
7237 if (*q != '\0')
7238 {
7239 libpq_append_error(errorMessage,
7240 "unexpected spaces found in \"%s\", use percent-encoded spaces (%%20) instead",
7241 str);
7242 free(buf);
7243 return NULL;
7244 }
7245
7246 /* Copy NUL terminator */
7247 *p = '\0';
7248
7249 return buf;
7250}
7251
7252/*
7253 * Convert hexadecimal digit character to its integer value.
7254 *
7255 * If successful, returns true and value is filled with digit's base 16 value.
7256 * If not successful, returns false.
7257 *
7258 * Lower- and upper-case letters in the range A-F are treated identically.
7259 */
7260static bool
7261get_hexdigit(char digit, int *value)
7262{
7263 if ('0' <= digit && digit <= '9')
7264 *value = digit - '0';
7265 else if ('A' <= digit && digit <= 'F')
7266 *value = digit - 'A' + 10;
7267 else if ('a' <= digit && digit <= 'f')
7268 *value = digit - 'a' + 10;
7269 else
7270 return false;
7271
7272 return true;
7273}
7274
7275/*
7276 * Find an option value corresponding to the keyword in the connOptions array.
7277 *
7278 * If successful, returns a pointer to the corresponding option's value.
7279 * If not successful, returns NULL.
7280 */
7281static const char *
7282conninfo_getval(PQconninfoOption *connOptions,
7283 const char *keyword)
7284{
7285 PQconninfoOption *option;
7286
7287 option = conninfo_find(connOptions, keyword);
7288
7289 return option ? option->val : NULL;
7290}
7291
7292/*
7293 * Store a (new) value for an option corresponding to the keyword in
7294 * connOptions array.
7295 *
7296 * If uri_decode is true, the value is URI-decoded. The keyword is always
7297 * assumed to be non URI-encoded.
7298 *
7299 * If successful, returns a pointer to the corresponding PQconninfoOption,
7300 * which value is replaced with a strdup'd copy of the passed value string.
7301 * The existing value for the option is free'd before replacing, if any.
7302 *
7303 * If not successful, returns NULL and fills errorMessage accordingly.
7304 * However, if the reason of failure is an invalid keyword being passed and
7305 * ignoreMissing is true, errorMessage will be left untouched.
7306 */
7307static PQconninfoOption *
7308conninfo_storeval(PQconninfoOption *connOptions,
7309 const char *keyword, const char *value,
7310 PQExpBuffer errorMessage, bool ignoreMissing,
7311 bool uri_decode)
7312{
7313 PQconninfoOption *option;
7314 char *value_copy;
7315
7316 /*
7317 * For backwards compatibility, requiressl=1 gets translated to
7318 * sslmode=require, and requiressl=0 gets translated to sslmode=prefer
7319 * (which is the default for sslmode).
7320 */
7321 if (strcmp(keyword, "requiressl") == 0)
7322 {
7323 keyword = "sslmode";
7324 if (value[0] == '1')
7325 value = "require";
7326 else
7327 value = "prefer";
7328 }
7329
7330 option = conninfo_find(connOptions, keyword);
7331 if (option == NULL)
7332 {
7333 if (!ignoreMissing)
7334 libpq_append_error(errorMessage,
7335 "invalid connection option \"%s\"",
7336 keyword);
7337 return NULL;
7338 }
7339
7340 if (uri_decode)
7341 {
7342 value_copy = conninfo_uri_decode(value, errorMessage);
7343 if (value_copy == NULL)
7344 /* conninfo_uri_decode already set an error message */
7345 return NULL;
7346 }
7347 else
7348 {
7349 value_copy = strdup(value);
7350 if (value_copy == NULL)
7351 {
7352 libpq_append_error(errorMessage, "out of memory");
7353 return NULL;
7354 }
7355 }
7356
7357 free(option->val);
7358 option->val = value_copy;
7359
7360 return option;
7361}
7362
7363/*
7364 * Find a PQconninfoOption option corresponding to the keyword in the
7365 * connOptions array.
7366 *
7367 * If successful, returns a pointer to the corresponding PQconninfoOption
7368 * structure.
7369 * If not successful, returns NULL.
7370 */
7371static PQconninfoOption *
7372conninfo_find(PQconninfoOption *connOptions, const char *keyword)
7373{
7374 PQconninfoOption *option;
7375
7376 for (option = connOptions; option->keyword != NULL; option++)
7377 {
7378 if (strcmp(option->keyword, keyword) == 0)
7379 return option;
7380 }
7381
7382 return NULL;
7383}
7384
7385
7386/*
7387 * Return the connection options used for the connection
7388 */
7389PQconninfoOption *
7390PQconninfo(PGconn *conn)
7391{
7392 PQExpBufferData errorBuf;
7393 PQconninfoOption *connOptions;
7394
7395 if (conn == NULL)
7396 return NULL;
7397
7398 /*
7399 * We don't actually report any errors here, but callees want a buffer,
7400 * and we prefer not to trash the conn's errorMessage.
7401 */
7402 initPQExpBuffer(&errorBuf);
7403 if (PQExpBufferDataBroken(errorBuf))
7404 return NULL; /* out of memory already :-( */
7405
7406 connOptions = conninfo_init(&errorBuf);
7407
7408 if (connOptions != NULL)
7409 {
7410 const internalPQconninfoOption *option;
7411
7412 for (option = PQconninfoOptions; option->keyword; option++)
7413 {
7414 char **connmember;
7415
7416 if (option->connofs < 0)
7417 continue;
7418
7419 connmember = (char **) ((char *) conn + option->connofs);
7420
7421 if (*connmember)
7422 conninfo_storeval(connOptions, option->keyword, *connmember,
7423 &errorBuf, true, false);
7424 }
7425 }
7426
7427 termPQExpBuffer(&errorBuf);
7428
7429 return connOptions;
7430}
7431
7432
7433void
7434PQconninfoFree(PQconninfoOption *connOptions)
7435{
7436 if (connOptions == NULL)
7437 return;
7438
7439 for (PQconninfoOption *option = connOptions; option->keyword != NULL; option++)
7440 free(option->val);
7441 free(connOptions);
7442}
7443
7444
7445/* =========== accessor functions for PGconn ========= */
7446char *
7447PQdb(const PGconn *conn)
7448{
7449 if (!conn)
7450 return NULL;
7451 return conn->dbName;
7452}
7453
7454char *
7455PQservice(const PGconn *conn)
7456{
7457 if (!conn)
7458 return NULL;
7459 return conn->pgservice;
7460}
7461
7462char *
7463PQuser(const PGconn *conn)
7464{
7465 if (!conn)
7466 return NULL;
7467 return conn->pguser;
7468}
7469
7470char *
7471PQpass(const PGconn *conn)
7472{
7473 char *password = NULL;
7474
7475 if (!conn)
7476 return NULL;
7477 if (conn->connhost != NULL)
7478 password = conn->connhost[conn->whichhost].password;
7479 if (password == NULL)
7480 password = conn->pgpass;
7481 /* Historically we've returned "" not NULL for no password specified */
7482 if (password == NULL)
7483 password = "";
7484 return password;
7485}
7486
7487char *
7488PQhost(const PGconn *conn)
7489{
7490 if (!conn)
7491 return NULL;
7492
7493 if (conn->connhost != NULL)
7494 {
7495 /*
7496 * Return the verbatim host value provided by user, or hostaddr in its
7497 * lack.
7498 */
7499 if (conn->connhost[conn->whichhost].host != NULL &&
7500 conn->connhost[conn->whichhost].host[0] != '\0')
7501 return conn->connhost[conn->whichhost].host;
7502 else if (conn->connhost[conn->whichhost].hostaddr != NULL &&
7503 conn->connhost[conn->whichhost].hostaddr[0] != '\0')
7504 return conn->connhost[conn->whichhost].hostaddr;
7505 }
7506
7507 return "";
7508}
7509
7510char *
7511PQhostaddr(const PGconn *conn)
7512{
7513 if (!conn)
7514 return NULL;
7515
7516 /* Return the parsed IP address */
7517 if (conn->connhost != NULL && conn->connip != NULL)
7518 return conn->connip;
7519
7520 return "";
7521}
7522
7523char *
7524PQport(const PGconn *conn)
7525{
7526 if (!conn)
7527 return NULL;
7528
7529 if (conn->connhost != NULL)
7530 return conn->connhost[conn->whichhost].port;
7531
7532 return "";
7533}
7534
7535/*
7536 * No longer does anything, but the function remains for API backwards
7537 * compatibility.
7538 */
7539char *
7540PQtty(const PGconn *conn)
7541{
7542 if (!conn)
7543 return NULL;
7544 return "";
7545}
7546
7547char *
7548PQoptions(const PGconn *conn)
7549{
7550 if (!conn)
7551 return NULL;
7552 return conn->pgoptions;
7553}
7554
7555ConnStatusType
7556PQstatus(const PGconn *conn)
7557{
7558 if (!conn)
7559 return CONNECTION_BAD;
7560 return conn->status;
7561}
7562
7563PGTransactionStatusType
7564PQtransactionStatus(const PGconn *conn)
7565{
7566 if (!conn || conn->status != CONNECTION_OK)
7567 return PQTRANS_UNKNOWN;
7568 if (conn->asyncStatus != PGASYNC_IDLE)
7569 return PQTRANS_ACTIVE;
7570 return conn->xactStatus;
7571}
7572
7573const char *
7574PQparameterStatus(const PGconn *conn, const char *paramName)
7575{
7576 const pgParameterStatus *pstatus;
7577
7578 if (!conn || !paramName)
7579 return NULL;
7580 for (pstatus = conn->pstatus; pstatus != NULL; pstatus = pstatus->next)
7581 {
7582 if (strcmp(pstatus->name, paramName) == 0)
7583 return pstatus->value;
7584 }
7585 return NULL;
7586}
7587
7588int
7589PQprotocolVersion(const PGconn *conn)
7590{
7591 if (!conn)
7592 return 0;
7593 if (conn->status == CONNECTION_BAD)
7594 return 0;
7595 return PG_PROTOCOL_MAJOR(conn->pversion);
7596}
7597
7598int
7599PQfullProtocolVersion(const PGconn *conn)
7600{
7601 if (!conn)
7602 return 0;
7603 if (conn->status == CONNECTION_BAD)
7604 return 0;
7605 return PG_PROTOCOL_FULL(conn->pversion);
7606}
7607
7608int
7609PQserverVersion(const PGconn *conn)
7610{
7611 if (!conn)
7612 return 0;
7613 if (conn->status == CONNECTION_BAD)
7614 return 0;
7615 return conn->sversion;
7616}
7617
7618char *
7619PQerrorMessage(const PGconn *conn)
7620{
7621 if (!conn)
7622 return libpq_gettext("connection pointer is NULL\n");
7623
7624 /*
7625 * The errorMessage buffer might be marked "broken" due to having
7626 * previously failed to allocate enough memory for the message. In that
7627 * case, tell the application we ran out of memory.
7628 */
7629 if (PQExpBufferBroken(&conn->errorMessage))
7630 return libpq_gettext("out of memory\n");
7631
7632 return conn->errorMessage.data;
7633}
7634
7635/*
7636 * In Windows, socket values are unsigned, and an invalid socket value
7637 * (INVALID_SOCKET) is ~0, which equals -1 in comparisons (with no compiler
7638 * warning). Ideally we would return an unsigned value for PQsocket() on
7639 * Windows, but that would cause the function's return value to differ from
7640 * Unix, so we just return -1 for invalid sockets.
7641 * http://msdn.microsoft.com/en-us/library/windows/desktop/cc507522%28v=vs.85%29.aspx
7642 * http://stackoverflow.com/questions/10817252/why-is-invalid-socket-defined-as-0-in-winsock2-h-c
7643 */
7644int
7645PQsocket(const PGconn *conn)
7646{
7647 if (!conn)
7648 return -1;
7649 if (conn->altsock != PGINVALID_SOCKET)
7650 return conn->altsock;
7651 return (conn->sock != PGINVALID_SOCKET) ? conn->sock : -1;
7652}
7653
7654int
7655PQbackendPID(const PGconn *conn)
7656{
7657 if (!conn || conn->status != CONNECTION_OK)
7658 return 0;
7659 return conn->be_pid;
7660}
7661
7662PGpipelineStatus
7663PQpipelineStatus(const PGconn *conn)
7664{
7665 if (!conn)
7666 return PQ_PIPELINE_OFF;
7667
7668 return conn->pipelineStatus;
7669}
7670
7671int
7672PQconnectionNeedsPassword(const PGconn *conn)
7673{
7674 char *password;
7675
7676 if (!conn)
7677 return false;
7678 password = PQpass(conn);
7679 if (conn->password_needed &&
7680 (password == NULL || password[0] == '\0'))
7681 return true;
7682 else
7683 return false;
7684}
7685
7686int
7687PQconnectionUsedPassword(const PGconn *conn)
7688{
7689 if (!conn)
7690 return false;
7691 if (conn->password_needed)
7692 return true;
7693 else
7694 return false;
7695}
7696
7697int
7698PQconnectionUsedGSSAPI(const PGconn *conn)
7699{
7700 if (!conn)
7701 return false;
7702 if (conn->gssapi_used)
7703 return true;
7704 else
7705 return false;
7706}
7707
7708int
7709PQclientEncoding(const PGconn *conn)
7710{
7711 if (!conn || conn->status != CONNECTION_OK)
7712 return -1;
7713 return conn->client_encoding;
7714}
7715
7716int
7717PQsetClientEncoding(PGconn *conn, const char *encoding)
7718{
7719 char qbuf[128];
7720 static const char query[] = "set client_encoding to '%s'";
7721 PGresult *res;
7722 int status;
7723
7724 if (!conn || conn->status != CONNECTION_OK)
7725 return -1;
7726
7727 if (!encoding)
7728 return -1;
7729
7730 /* Resolve special "auto" value from the locale */
7731 if (strcmp(encoding, "auto") == 0)
7732 encoding = pg_encoding_to_char(pg_get_encoding_from_locale(NULL, true));
7733
7734 /* check query buffer overflow */
7735 if (sizeof(qbuf) < (sizeof(query) + strlen(encoding)))
7736 return -1;
7737
7738 /* ok, now send a query */
7739 sprintf(qbuf, query, encoding);
7740 res = PQexec(conn, qbuf);
7741
7742 if (res == NULL)
7743 return -1;
7744 if (res->resultStatus != PGRES_COMMAND_OK)
7745 status = -1;
7746 else
7747 {
7748 /*
7749 * We rely on the backend to report the parameter value, and we'll
7750 * change state at that time.
7751 */
7752 status = 0; /* everything is ok */
7753 }
7754 PQclear(res);
7755 return status;
7756}
7757
7758PGVerbosity
7759PQsetErrorVerbosity(PGconn *conn, PGVerbosity verbosity)
7760{
7761 PGVerbosity old;
7762
7763 if (!conn)
7764 return PQERRORS_DEFAULT;
7765 old = conn->verbosity;
7766 conn->verbosity = verbosity;
7767 return old;
7768}
7769
7770PGContextVisibility
7771PQsetErrorContextVisibility(PGconn *conn, PGContextVisibility show_context)
7772{
7773 PGContextVisibility old;
7774
7775 if (!conn)
7776 return PQSHOW_CONTEXT_ERRORS;
7777 old = conn->show_context;
7778 conn->show_context = show_context;
7779 return old;
7780}
7781
7782PQnoticeReceiver
7783PQsetNoticeReceiver(PGconn *conn, PQnoticeReceiver proc, void *arg)
7784{
7785 PQnoticeReceiver old;
7786
7787 if (conn == NULL)
7788 return NULL;
7789
7790 old = conn->noticeHooks.noticeRec;
7791 if (proc)
7792 {
7793 conn->noticeHooks.noticeRec = proc;
7794 conn->noticeHooks.noticeRecArg = arg;
7795 }
7796 return old;
7797}
7798
7799PQnoticeProcessor
7800PQsetNoticeProcessor(PGconn *conn, PQnoticeProcessor proc, void *arg)
7801{
7802 PQnoticeProcessor old;
7803
7804 if (conn == NULL)
7805 return NULL;
7806
7807 old = conn->noticeHooks.noticeProc;
7808 if (proc)
7809 {
7810 conn->noticeHooks.noticeProc = proc;
7811 conn->noticeHooks.noticeProcArg = arg;
7812 }
7813 return old;
7814}
7815
7816/*
7817 * The default notice message receiver just gets the standard notice text
7818 * and sends it to the notice processor. This two-level setup exists
7819 * mostly for backwards compatibility; perhaps we should deprecate use of
7820 * PQsetNoticeProcessor?
7821 */
7822static void
7823defaultNoticeReceiver(void *arg, const PGresult *res)
7824{
7825 (void) arg; /* not used */
7826 if (res->noticeHooks.noticeProc != NULL)
7827 res->noticeHooks.noticeProc(res->noticeHooks.noticeProcArg,
7828 PQresultErrorMessage(res));
7829}
7830
7831/*
7832 * The default notice message processor just prints the
7833 * message on stderr. Applications can override this if they
7834 * want the messages to go elsewhere (a window, for example).
7835 * Note that simply discarding notices is probably a bad idea.
7836 */
7837static void
7838defaultNoticeProcessor(void *arg, const char *message)
7839{
7840 (void) arg; /* not used */
7841 /* Note: we expect the supplied string to end with a newline already. */
7842 fprintf(stderr, "%s", message);
7843}
7844
7845/*
7846 * returns a pointer to the next token or NULL if the current
7847 * token doesn't match
7848 */
7849static char *
7850pwdfMatchesString(char *buf, const char *token)
7851{
7852 char *tbuf;
7853 const char *ttok;
7854 bool bslash = false;
7855
7856 if (buf == NULL || token == NULL)
7857 return NULL;
7858 tbuf = buf;
7859 ttok = token;
7860 if (tbuf[0] == '*' && tbuf[1] == ':')
7861 return tbuf + 2;
7862 while (*tbuf != 0)
7863 {
7864 if (*tbuf == '\\' && !bslash)
7865 {
7866 tbuf++;
7867 bslash = true;
7868 }
7869 if (*tbuf == ':' && *ttok == 0 && !bslash)
7870 return tbuf + 1;
7871 bslash = false;
7872 if (*ttok == 0)
7873 return NULL;
7874 if (*tbuf == *ttok)
7875 {
7876 tbuf++;
7877 ttok++;
7878 }
7879 else
7880 return NULL;
7881 }
7882 return NULL;
7883}
7884
7885/* Get a password from the password file. Return value is malloc'd. */
7886static char *
7887passwordFromFile(const char *hostname, const char *port, const char *dbname,
7888 const char *username, const char *pgpassfile)
7889{
7890 FILE *fp;
7891#ifndef WIN32
7892 struct stat stat_buf;
7893#endif
7894 PQExpBufferData buf;
7895
7896 if (dbname == NULL || dbname[0] == '\0')
7897 return NULL;
7898
7899 if (username == NULL || username[0] == '\0')
7900 return NULL;
7901
7902 /* 'localhost' matches pghost of '' or the default socket directory */
7903 if (hostname == NULL || hostname[0] == '\0')
7904 hostname = DefaultHost;
7905 else if (is_unixsock_path(hostname))
7906
7907 /*
7908 * We should probably use canonicalize_path(), but then we have to
7909 * bring path.c into libpq, and it doesn't seem worth it.
7910 */
7911 if (strcmp(hostname, DEFAULT_PGSOCKET_DIR) == 0)
7912 hostname = DefaultHost;
7913
7914 if (port == NULL || port[0] == '\0')
7915 port = DEF_PGPORT_STR;
7916
7917 /* If password file cannot be opened, ignore it. */
7918 fp = fopen(pgpassfile, "r");
7919 if (fp == NULL)
7920 return NULL;
7921
7922#ifndef WIN32
7923 if (fstat(fileno(fp), &stat_buf) != 0)
7924 {
7925 fclose(fp);
7926 return NULL;
7927 }
7928
7929 if (!S_ISREG(stat_buf.st_mode))
7930 {
7931 fprintf(stderr,
7932 libpq_gettext("WARNING: password file \"%s\" is not a plain file\n"),
7933 pgpassfile);
7934 fclose(fp);
7935 return NULL;
7936 }
7937
7938 /* If password file is insecure, alert the user and ignore it. */
7939 if (stat_buf.st_mode & (S_IRWXG | S_IRWXO))
7940 {
7941 fprintf(stderr,
7942 libpq_gettext("WARNING: password file \"%s\" has group or world access; permissions should be u=rw (0600) or less\n"),
7943 pgpassfile);
7944 fclose(fp);
7945 return NULL;
7946 }
7947#else
7948
7949 /*
7950 * On Win32, the directory is protected, so we don't have to check the
7951 * file.
7952 */
7953#endif
7954
7955 /* Use an expansible buffer to accommodate any reasonable line length */
7956 initPQExpBuffer(&buf);
7957
7958 while (!feof(fp) && !ferror(fp))
7959 {
7960 /* Make sure there's a reasonable amount of room in the buffer */
7961 if (!enlargePQExpBuffer(&buf, 128))
7962 break;
7963
7964 /* Read some data, appending it to what we already have */
7965 if (fgets(buf.data + buf.len, buf.maxlen - buf.len, fp) == NULL)
7966 break;
7967 buf.len += strlen(buf.data + buf.len);
7968
7969 /* If we don't yet have a whole line, loop around to read more */
7970 if (!(buf.len > 0 && buf.data[buf.len - 1] == '\n') && !feof(fp))
7971 continue;
7972
7973 /* ignore comments */
7974 if (buf.data[0] != '#')
7975 {
7976 char *t = buf.data;
7977 int len;
7978
7979 /* strip trailing newline and carriage return */
7980 len = pg_strip_crlf(t);
7981
7982 if (len > 0 &&
7983 (t = pwdfMatchesString(t, hostname)) != NULL &&
7984 (t = pwdfMatchesString(t, port)) != NULL &&
7985 (t = pwdfMatchesString(t, dbname)) != NULL &&
7986 (t = pwdfMatchesString(t, username)) != NULL)
7987 {
7988 /* Found a match. */
7989 char *ret,
7990 *p1,
7991 *p2;
7992
7993 ret = strdup(t);
7994
7995 fclose(fp);
7996 explicit_bzero(buf.data, buf.maxlen);
7997 termPQExpBuffer(&buf);
7998
7999 if (!ret)
8000 {
8001 /* Out of memory. XXX: an error message would be nice. */
8002 return NULL;
8003 }
8004
8005 /* De-escape password. */
8006 for (p1 = p2 = ret; *p1 != ':' && *p1 != '\0'; ++p1, ++p2)
8007 {
8008 if (*p1 == '\\' && p1[1] != '\0')
8009 ++p1;
8010 *p2 = *p1;
8011 }
8012 *p2 = '\0';
8013
8014 return ret;
8015 }
8016 }
8017
8018 /* No match, reset buffer to prepare for next line. */
8019 buf.len = 0;
8020 }
8021
8022 fclose(fp);
8023 explicit_bzero(buf.data, buf.maxlen);
8024 termPQExpBuffer(&buf);
8025 return NULL;
8026}
8027
8028
8029/*
8030 * If the connection failed due to bad password, we should mention
8031 * if we got the password from the pgpassfile.
8032 */
8033static void
8034pgpassfileWarning(PGconn *conn)
8035{
8036 /* If it was 'invalid authorization', add pgpassfile mention */
8037 /* only works with >= 9.0 servers */
8038 if (conn->password_needed &&
8039 conn->connhost[conn->whichhost].password != NULL &&
8040 conn->result)
8041 {
8042 const char *sqlstate = PQresultErrorField(conn->result,
8043 PG_DIAG_SQLSTATE);
8044
8045 if (sqlstate && strcmp(sqlstate, ERRCODE_INVALID_PASSWORD) == 0)
8046 libpq_append_conn_error(conn, "password retrieved from file \"%s\"",
8047 conn->pgpassfile);
8048 }
8049}
8050
8051/*
8052 * Check if the SSL protocol value given in input is valid or not.
8053 * This is used as a sanity check routine for the connection parameters
8054 * ssl_min_protocol_version and ssl_max_protocol_version.
8055 */
8056static bool
8057sslVerifyProtocolVersion(const char *version)
8058{
8059 /*
8060 * An empty string and a NULL value are considered valid as it is
8061 * equivalent to ignoring the parameter.
8062 */
8063 if (!version || strlen(version) == 0)
8064 return true;
8065
8066 if (pg_strcasecmp(version, "TLSv1") == 0 ||
8067 pg_strcasecmp(version, "TLSv1.1") == 0 ||
8068 pg_strcasecmp(version, "TLSv1.2") == 0 ||
8069 pg_strcasecmp(version, "TLSv1.3") == 0)
8070 return true;
8071
8072 /* anything else is wrong */
8073 return false;
8074}
8075
8076
8077/*
8078 * Ensure that the SSL protocol range given in input is correct. The check
8079 * is performed on the input string to keep it TLS backend agnostic. Input
8080 * to this function is expected verified with sslVerifyProtocolVersion().
8081 */
8082static bool
8083sslVerifyProtocolRange(const char *min, const char *max)
8084{
8085 Assert(sslVerifyProtocolVersion(min) &&
8086 sslVerifyProtocolVersion(max));
8087
8088 /* If at least one of the bounds is not set, the range is valid */
8089 if (min == NULL || max == NULL || strlen(min) == 0 || strlen(max) == 0)
8090 return true;
8091
8092 /*
8093 * If the minimum version is the lowest one we accept, then all options
8094 * for the maximum are valid.
8095 */
8096 if (pg_strcasecmp(min, "TLSv1") == 0)
8097 return true;
8098
8099 /*
8100 * The minimum bound is valid, and cannot be TLSv1, so using TLSv1 for the
8101 * maximum is incorrect.
8102 */
8103 if (pg_strcasecmp(max, "TLSv1") == 0)
8104 return false;
8105
8106 /*
8107 * At this point we know that we have a mix of TLSv1.1 through 1.3
8108 * versions.
8109 */
8110 if (pg_strcasecmp(min, max) > 0)
8111 return false;
8112
8113 return true;
8114}
8115
8116
8117/*
8118 * Obtain user's home directory, return in given buffer
8119 *
8120 * On Unix, this actually returns the user's home directory. On Windows
8121 * it returns the PostgreSQL-specific application data folder.
8122 *
8123 * This is essentially the same as get_home_path(), but we don't use that
8124 * because we don't want to pull path.c into libpq (it pollutes application
8125 * namespace).
8126 *
8127 * Returns true on success, false on failure to obtain the directory name.
8128 *
8129 * CAUTION: although in most situations failure is unexpected, there are users
8130 * who like to run applications in a home-directory-less environment. On
8131 * failure, you almost certainly DO NOT want to report an error. Just act as
8132 * though whatever file you were hoping to find in the home directory isn't
8133 * there (which it isn't).
8134 */
8135bool
8136pqGetHomeDirectory(char *buf, int bufsize)
8137{
8138#ifndef WIN32
8139 const char *home;
8140
8141 home = getenv("HOME");
8142 if (home && home[0])
8143 {
8144 strlcpy(buf, home, bufsize);
8145 return true;
8146 }
8147 else
8148 {
8149 struct passwd pwbuf;
8150 struct passwd *pw;
8151 char tmpbuf[1024];
8152 int rc;
8153
8154 rc = getpwuid_r(geteuid(), &pwbuf, tmpbuf, sizeof tmpbuf, &pw);
8155 if (rc != 0 || !pw)
8156 return false;
8157 strlcpy(buf, pw->pw_dir, bufsize);
8158 return true;
8159 }
8160#else
8161 char tmppath[MAX_PATH];
8162
8163 ZeroMemory(tmppath, sizeof(tmppath));
8164 if (SHGetFolderPath(NULL, CSIDL_APPDATA, NULL, 0, tmppath) != S_OK)
8165 return false;
8166 snprintf(buf, bufsize, "%s/postgresql", tmppath);
8167 return true;
8168#endif
8169}
8170
8171/*
8172 * Parse and try to interpret "value" as an integer value, and if successful,
8173 * store it in *result, complaining if there is any trailing garbage or an
8174 * overflow. This allows any number of leading and trailing whitespaces.
8175 */
8176bool
8177pqParseIntParam(const char *value, int *result, PGconn *conn,
8178 const char *context)
8179{
8180 char *end;
8181 long numval;
8182
8183 Assert(value != NULL);
8184
8185 *result = 0;
8186
8187 /* strtol(3) skips leading whitespaces */
8188 errno = 0;
8189 numval = strtol(value, &end, 10);
8190
8191 /*
8192 * If no progress was done during the parsing or an error happened, fail.
8193 * This tests properly for overflows of the result.
8194 */
8195 if (value == end || errno != 0 || numval != (int) numval)
8196 goto error;
8197
8198 /*
8199 * Skip any trailing whitespace; if anything but whitespace remains before
8200 * the terminating character, fail
8201 */
8202 while (*end != '\0' && isspace((unsigned char) *end))
8203 end++;
8204
8205 if (*end != '\0')
8206 goto error;
8207
8208 *result = numval;
8209 return true;
8210
8211error:
8212 libpq_append_conn_error(conn, "invalid integer value \"%s\" for connection option \"%s\"",
8213 value, context);
8214 return false;
8215}
8216
8217/*
8218 * Parse and try to interpret "value" as a ProtocolVersion value, and if
8219 * successful, store it in *result.
8220 */
8221static bool
8222pqParseProtocolVersion(const char *value, ProtocolVersion *result, PGconn *conn,
8223 const char *context)
8224{
8225 if (strcmp(value, "latest") == 0)
8226 {
8227 *result = PG_PROTOCOL_LATEST;
8228 return true;
8229 }
8230 if (strcmp(value, "3.0") == 0)
8231 {
8232 *result = PG_PROTOCOL(3, 0);
8233 return true;
8234 }
8235
8236 /* 3.1 never existed, we went straight from 3.0 to 3.2 */
8237
8238 if (strcmp(value, "3.2") == 0)
8239 {
8240 *result = PG_PROTOCOL(3, 2);
8241 return true;
8242 }
8243
8244 libpq_append_conn_error(conn, "invalid %s value: \"%s\"",
8245 context, value);
8246 return false;
8247}
8248
8249/*
8250 * To keep the API consistent, the locking stubs are always provided, even
8251 * if they are not required.
8252 *
8253 * Since we neglected to provide any error-return convention in the
8254 * pgthreadlock_t API, we can't do much except Assert upon failure of any
8255 * mutex primitive. Fortunately, such failures appear to be nonexistent in
8256 * the field.
8257 */
8258
8259static void
8260default_threadlock(int acquire)
8261{
8262 static pthread_mutex_t singlethread_lock = PTHREAD_MUTEX_INITIALIZER;
8263
8264 if (acquire)
8265 {
8266 if (pthread_mutex_lock(&singlethread_lock))
8267 Assert(false);
8268 }
8269 else
8270 {
8271 if (pthread_mutex_unlock(&singlethread_lock))
8272 Assert(false);
8273 }
8274}
8275
8276pgthreadlock_t
8277PQregisterThreadLock(pgthreadlock_t newhandler)
8278{
8279 pgthreadlock_t prev = pg_g_threadlock;
8280
8281 if (newhandler)
8282 pg_g_threadlock = newhandler;
8283 else
8284 pg_g_threadlock = default_threadlock;
8285
8286 return prev;
8287}
pg_b64_decode
int pg_b64_decode(const char *src, int len, char *dst, int dstlen)
Definition: base64.c:116
pg_b64_dec_len
int pg_b64_dec_len(int srclen)
Definition: base64.c:239
ssl_min_protocol_version
int ssl_min_protocol_version
Definition: be-secure.c:60
ssl_max_protocol_version
int ssl_max_protocol_version
Definition: be-secure.c:61
values
static Datum values[MAXATTR]
Definition: bootstrap.c:151
cleanup
static void cleanup(void)
Definition: bootstrap.c:713
STATUS_OK
#define STATUS_OK
Definition: c.h:1140
uint64
uint64_t uint64
Definition: c.h:503
uint32
uint32_t uint32
Definition: c.h:502
lengthof
#define lengthof(array)
Definition: c.h:759
MemSet
#define MemSet(start, val, len)
Definition: c.h:991
StaticAssertDecl
#define StaticAssertDecl(condition, errmessage)
Definition: c.h:907
STATUS_ERROR
#define STATUS_ERROR
Definition: c.h:1141
fprintf
#define fprintf(file, fmt, msg)
Definition: cubescan.l:21
cur
struct cursor * cur
Definition: ecpg.c:29
errmsg
int errmsg(const char *fmt,...)
Definition: elog.c:1071
err
void err(int eval, const char *fmt,...)
Definition: err.c:43
pg_oauth_mech
const pg_fe_sasl_mech pg_oauth_mech
Definition: fe-auth-oauth.c:35
pqClearOAuthToken
void pqClearOAuthToken(PGconn *conn)
Definition: fe-auth-oauth.c:1144
pg_scram_mech
const pg_fe_sasl_mech pg_scram_mech
Definition: fe-auth-scram.c:33
pg_fe_sendauth
int pg_fe_sendauth(AuthRequest areq, int payloadlen, PGconn *conn, bool *async)
Definition: fe-auth.c:1066
pg_fe_getauthname
char * pg_fe_getauthname(PQExpBuffer errorMessage)
Definition: fe-auth.c:1344
pg_fe_getusername
char * pg_fe_getusername(uid_t user_id, PQExpBuffer errorMessage)
Definition: fe-auth.c:1286
PQsendCancelRequest
int PQsendCancelRequest(PGconn *cancelConn)
Definition: fe-cancel.c:454
PQcancelPoll
PostgresPollingStatusType PQcancelPoll(PGcancelConn *cancelConn)
Definition: fe-cancel.c:225
pqFreeCommandQueue
static void pqFreeCommandQueue(PGcmdQueueEntry *queue)
Definition: fe-connect.c:620
MAX_ERRLEN
#define MAX_ERRLEN
PQserverVersion
int PQserverVersion(const PGconn *conn)
Definition: fe-connect.c:7609
conninfo_getval
static const char * conninfo_getval(PQconninfoOption *connOptions, const char *keyword)
Definition: fe-connect.c:7282
PQprotocolVersion
int PQprotocolVersion(const PGconn *conn)
Definition: fe-connect.c:7589
pqDropConnection
void pqDropConnection(PGconn *conn, bool flushInput)
Definition: fe-connect.c:520
PQresetStart
int PQresetStart(PGconn *conn)
Definition: fe-connect.c:5337
connectOptions1
static bool connectOptions1(PGconn *conn, const char *conninfo)
Definition: fe-connect.c:1066
EnvironmentOptions
static const PQEnvironmentOption EnvironmentOptions[]
Definition: fe-connect.c:413
CONNECTION_FAILED
#define CONNECTION_FAILED()
pqConnectOptions2
bool pqConnectOptions2(PGconn *conn)
Definition: fe-connect.c:1240
conninfo_init
static PQconninfoOption * conninfo_init(PQExpBuffer errorMessage)
Definition: fe-connect.c:6172
sendTerminateConn
static void sendTerminateConn(PGconn *conn)
Definition: fe-connect.c:5209
PQoptions
char * PQoptions(const PGconn *conn)
Definition: fe-connect.c:7548
setKeepalivesCount
static int setKeepalivesCount(PGconn *conn)
Definition: fe-connect.c:2565
parse_connection_string
static PQconninfoOption * parse_connection_string(const char *connstr, PQExpBuffer errorMessage, bool use_defaults)
Definition: fe-connect.c:6211
useKeepalives
static int useKeepalives(PGconn *conn)
Definition: fe-connect.c:2478
PQdb
char * PQdb(const PGconn *conn)
Definition: fe-connect.c:7447
defaultNoticeReceiver
static void defaultNoticeReceiver(void *arg, const PGresult *res)
Definition: fe-connect.c:7823
uri_prefix_length
static int uri_prefix_length(const char *connstr)
Definition: fe-connect.c:6231
pqParseProtocolVersion
static bool pqParseProtocolVersion(const char *value, ProtocolVersion *result, PGconn *conn, const char *context)
Definition: fe-connect.c:8222
store_conn_addrinfo
static int store_conn_addrinfo(PGconn *conn, struct addrinfo *addrlist)
Definition: fe-connect.c:5156
parseServiceFile
static int parseServiceFile(const char *serviceFile, const char *service, PQconninfoOption *options, PQExpBuffer errorMessage, bool *group_found)
Definition: fe-connect.c:5972
connectFailureMessage
static void connectFailureMessage(PGconn *conn, int errorno)
Definition: fe-connect.c:2458
DefaultHost
#define DefaultHost
Definition: fe-connect.c:119
passwordFromFile
static char * passwordFromFile(const char *hostname, const char *port, const char *dbname, const char *username, const char *pgpassfile)
Definition: fe-connect.c:7887
sslVerifyProtocolRange
static bool sslVerifyProtocolRange(const char *min, const char *max)
Definition: fe-connect.c:8083
default_threadlock
static void default_threadlock(int acquire)
Definition: fe-connect.c:8260
PQfullProtocolVersion
int PQfullProtocolVersion(const PGconn *conn)
Definition: fe-connect.c:7599
libpq_prng_init
static void libpq_prng_init(PGconn *conn)
Definition: fe-connect.c:1162
PQreset
void PQreset(PGconn *conn)
Definition: fe-connect.c:5304
pqClosePGconn
void pqClosePGconn(PGconn *conn)
Definition: fe-connect.c:5243
pqGetHomeDirectory
bool pqGetHomeDirectory(char *buf, int bufsize)
Definition: fe-connect.c:8136
DefaultSSLMode
#define DefaultSSLMode
Definition: fe-connect.c:132
internalPQconninfoOption
struct _internalPQconninfoOption internalPQconninfoOption
short_uri_designator
static const char short_uri_designator[]
Definition: fe-connect.c:440
DefaultGSSMode
#define DefaultGSSMode
Definition: fe-connect.c:140
release_conn_addrinfo
static void release_conn_addrinfo(PGconn *conn)
Definition: fe-connect.c:5195
PQport
char * PQport(const PGconn *conn)
Definition: fe-connect.c:7524
PQtransactionStatus
PGTransactionStatusType PQtransactionStatus(const PGconn *conn)
Definition: fe-connect.c:7564
count_comma_separated_elems
static int count_comma_separated_elems(const char *input)
Definition: fe-connect.c:1103
DefaultOption
#define DefaultOption
Definition: fe-connect.c:120
conninfo_add_defaults
static bool conninfo_add_defaults(PQconninfoOption *options, PQExpBuffer errorMessage)
Definition: fe-connect.c:6599
select_next_encryption_method
static bool select_next_encryption_method(PGconn *conn, bool have_valid_connection)
Definition: fe-connect.c:4798
PQconnectdb
PGconn * PQconnectdb(const char *conninfo)
Definition: fe-connect.c:813
PQhost
char * PQhost(const PGconn *conn)
Definition: fe-connect.c:7488
ERRCODE_APPNAME_UNKNOWN
#define ERRCODE_APPNAME_UNKNOWN
Definition: fe-connect.c:89
conninfo_uri_parse_params
static bool conninfo_uri_parse_params(char *params, PQconninfoOption *connOptions, PQExpBuffer errorMessage)
Definition: fe-connect.c:7028
PQservice
char * PQservice(const PGconn *conn)
Definition: fe-connect.c:7455
PQconnectionUsedPassword
int PQconnectionUsedPassword(const PGconn *conn)
Definition: fe-connect.c:7687
clear_allowed_sasl_mechs
static void clear_allowed_sasl_mechs(PGconn *conn)
Definition: fe-connect.c:1209
PQconninfo
PQconninfoOption * PQconninfo(PGconn *conn)
Definition: fe-connect.c:7390
conninfo_uri_decode
static char * conninfo_uri_decode(const char *str, PQExpBuffer errorMessage)
Definition: fe-connect.c:7161
setKeepalivesInterval
static int setKeepalivesInterval(PGconn *conn)
Definition: fe-connect.c:2530
fill_allowed_sasl_mechs
static void fill_allowed_sasl_mechs(PGconn *conn)
Definition: fe-connect.c:1185
setKeepalivesIdle
static int setKeepalivesIdle(PGconn *conn)
Definition: fe-connect.c:2496
PQconnectPoll
PostgresPollingStatusType PQconnectPoll(PGconn *conn)
Definition: fe-connect.c:2905
PQconninfoFree
void PQconninfoFree(PQconninfoOption *connOptions)
Definition: fe-connect.c:7434
DefaultChannelBinding
#define DefaultChannelBinding
Definition: fe-connect.c:124
pqParseIntParam
bool pqParseIntParam(const char *value, int *result, PGconn *conn, const char *context)
Definition: fe-connect.c:8177
defaultNoticeProcessor
static void defaultNoticeProcessor(void *arg, const char *message)
Definition: fe-connect.c:7838
pgpassfileWarning
static void pgpassfileWarning(PGconn *conn)
Definition: fe-connect.c:8034
PQtty
char * PQtty(const PGconn *conn)
Definition: fe-connect.c:7540
index_of_allowed_sasl_mech
static int index_of_allowed_sasl_mech(PGconn *conn, const pg_fe_sasl_mech *mech)
Definition: fe-connect.c:1220
internal_ping
static PGPing internal_ping(PGconn *conn)
Definition: fe-connect.c:4873
conninfo_find
static PQconninfoOption * conninfo_find(PQconninfoOption *connOptions, const char *keyword)
Definition: fe-connect.c:7372
uri_designator
static const char uri_designator[]
Definition: fe-connect.c:439
PQconninfoParse
PQconninfoOption * PQconninfoParse(const char *conninfo, char **errmsg)
Definition: fe-connect.c:6150
PQparameterStatus
const char * PQparameterStatus(const PGconn *conn, const char *paramName)
Definition: fe-connect.c:7574
sslVerifyProtocolVersion
static bool sslVerifyProtocolVersion(const char *version)
Definition: fe-connect.c:8057
SELECT_NEXT_METHOD
#define SELECT_NEXT_METHOD(method)
PQconnectionNeedsPassword
int PQconnectionNeedsPassword(const PGconn *conn)
Definition: fe-connect.c:7672
PQpass
char * PQpass(const PGconn *conn)
Definition: fe-connect.c:7471
PQresetPoll
PostgresPollingStatusType PQresetPoll(PGconn *conn)
Definition: fe-connect.c:5356
PQconnectionUsedGSSAPI
int PQconnectionUsedGSSAPI(const PGconn *conn)
Definition: fe-connect.c:7698
conninfo_uri_parse
static PQconninfoOption * conninfo_uri_parse(const char *uri, PQExpBuffer errorMessage, bool use_defaults)
Definition: fe-connect.c:6734
pqReleaseConnHosts
void pqReleaseConnHosts(PGconn *conn)
Definition: fe-connect.c:5127
emitHostIdentityInfo
static void emitHostIdentityInfo(PGconn *conn, const char *host_addr)
Definition: fe-connect.c:2402
connection_failed
static bool connection_failed(PGconn *conn)
Definition: fe-connect.c:4783
pg_g_threadlock
pgthreadlock_t pg_g_threadlock
Definition: fe-connect.c:504
PQstatus
ConnStatusType PQstatus(const PGconn *conn)
Definition: fe-connect.c:7556
PQconnectStart
PGconn * PQconnectStart(const char *conninfo)
Definition: fe-connect.c:941
setTCPUserTimeout
static int setTCPUserTimeout(PGconn *conn)
Definition: fe-connect.c:2662
conninfo_array_parse
static PQconninfoOption * conninfo_array_parse(const char *const *keywords, const char *const *values, PQExpBuffer errorMessage, bool use_defaults, int expand_dbname)
Definition: fe-connect.c:6441
PQclientEncoding
int PQclientEncoding(const PGconn *conn)
Definition: fe-connect.c:7709
PQconnectStartParams
PGconn * PQconnectStartParams(const char *const *keywords, const char *const *values, int expand_dbname)
Definition: fe-connect.c:860
conninfo_parse
static PQconninfoOption * conninfo_parse(const char *conninfo, PQExpBuffer errorMessage, bool use_defaults)
Definition: fe-connect.c:6265
PQfinish
void PQfinish(PGconn *conn)
Definition: fe-connect.c:5290
pqDropServerData
static void pqDropServerData(PGconn *conn)
Definition: fe-connect.c:646
pqMakeEmptyPGconn
PGconn * pqMakeEmptyPGconn(void)
Definition: fe-connect.c:4937
PQping
PGPing PQping(const char *conninfo)
Definition: fe-connect.c:829
PQsetErrorContextVisibility
PGContextVisibility PQsetErrorContextVisibility(PGconn *conn, PGContextVisibility show_context)
Definition: fe-connect.c:7771
DefaultLoadBalanceHosts
#define DefaultLoadBalanceHosts
Definition: fe-connect.c:127
connectNoDelay
static int connectNoDelay(PGconn *conn)
Definition: fe-connect.c:2343
DefaultSSLNegotiation
#define DefaultSSLNegotiation
Definition: fe-connect.c:135
PQsetNoticeReceiver
PQnoticeReceiver PQsetNoticeReceiver(PGconn *conn, PQnoticeReceiver proc, void *arg)
Definition: fe-connect.c:7783
PQsetdbLogin
PGconn * PQsetdbLogin(const char *pghost, const char *pgport, const char *pgoptions, const char *pgtty, const char *dbName, const char *login, const char *pwd)
Definition: fe-connect.c:2228
PQhostaddr
char * PQhostaddr(const PGconn *conn)
Definition: fe-connect.c:7511
PQbackendPID
int PQbackendPID(const PGconn *conn)
Definition: fe-connect.c:7655
PQconndefaults
PQconninfoOption * PQconndefaults(void)
Definition: fe-connect.c:2190
conninfo_storeval
static PQconninfoOption * conninfo_storeval(PQconninfoOption *connOptions, const char *keyword, const char *value, PQExpBuffer errorMessage, bool ignoreMissing, bool uri_decode)
Definition: fe-connect.c:7308
PGPASSFILE
#define PGPASSFILE
Definition: fe-connect.c:78
conninfo_uri_parse_options
static bool conninfo_uri_parse_options(PQconninfoOption *options, const char *uri, PQExpBuffer errorMessage)
Definition: fe-connect.c:6787
pqConnectDBStart
int pqConnectDBStart(PGconn *conn)
Definition: fe-connect.c:2701
getHostaddr
static void getHostaddr(PGconn *conn, char *host_addr, int host_addr_len)
Definition: fe-connect.c:2369
PQuser
char * PQuser(const PGconn *conn)
Definition: fe-connect.c:7463
freePGconn
static void freePGconn(PGconn *conn)
Definition: fe-connect.c:5037
pqCopyPGconn
bool pqCopyPGconn(PGconn *srcConn, PGconn *dstConn)
Definition: fe-connect.c:1025
pwdfMatchesString
static char * pwdfMatchesString(char *buf, const char *token)
Definition: fe-connect.c:7850
PQpipelineStatus
PGpipelineStatus PQpipelineStatus(const PGconn *conn)
Definition: fe-connect.c:7663
get_hexdigit
static bool get_hexdigit(char digit, int *value)
Definition: fe-connect.c:7261
ERRCODE_INVALID_PASSWORD
#define ERRCODE_INVALID_PASSWORD
Definition: fe-connect.c:92
PQsetErrorVerbosity
PGVerbosity PQsetErrorVerbosity(PGconn *conn, PGVerbosity verbosity)
Definition: fe-connect.c:7759
SASL_MECHANISM_COUNT
#define SASL_MECHANISM_COUNT
Definition: fe-connect.c:436
PQsetNoticeProcessor
PQnoticeProcessor PQsetNoticeProcessor(PGconn *conn, PQnoticeProcessor proc, void *arg)
Definition: fe-connect.c:7800
DefaultSSLCertMode
#define DefaultSSLCertMode
Definition: fe-connect.c:133
ERRCODE_CANNOT_CONNECT_NOW
#define ERRCODE_CANNOT_CONNECT_NOW
Definition: fe-connect.c:94
PQconninfoOptions
static const internalPQconninfoOption PQconninfoOptions[]
Definition: fe-connect.c:193
ENCRYPTION_NEGOTIATION_FAILED
#define ENCRYPTION_NEGOTIATION_FAILED(msg)
recognized_connection_string
static bool recognized_connection_string(const char *connstr)
Definition: fe-connect.c:6254
DefaultTargetSessionAttrs
#define DefaultTargetSessionAttrs
Definition: fe-connect.c:126
parseServiceInfo
static int parseServiceInfo(PQconninfoOption *options, PQExpBuffer errorMessage)
Definition: fe-connect.c:5904
PQerrorMessage
char * PQerrorMessage(const PGconn *conn)
Definition: fe-connect.c:7619
init_allowed_encryption_methods
static bool init_allowed_encryption_methods(PGconn *conn)
Definition: fe-connect.c:4693
supported_sasl_mechs
static const pg_fe_sasl_mech * supported_sasl_mechs[]
Definition: fe-connect.c:431
PQpingParams
PGPing PQpingParams(const char *const *keywords, const char *const *values, int expand_dbname)
Definition: fe-connect.c:776
PQsocket
int PQsocket(const PGconn *conn)
Definition: fe-connect.c:7645
pqConnectDBComplete
int pqConnectDBComplete(PGconn *conn)
Definition: fe-connect.c:2779
PQsetClientEncoding
int PQsetClientEncoding(PGconn *conn, const char *encoding)
Definition: fe-connect.c:7717
PQconnectdbParams
PGconn * PQconnectdbParams(const char *const *keywords, const char *const *values, int expand_dbname)
Definition: fe-connect.c:758
parse_comma_separated_list
static char * parse_comma_separated_list(char **startptr, bool *more)
Definition: fe-connect.c:1127
pqPacketSend
int pqPacketSend(PGconn *conn, char pack_type, const void *buf, size_t buf_len)
Definition: fe-connect.c:5398
fillPGconn
static bool fillPGconn(PGconn *conn, PQconninfoOption *connOptions)
Definition: fe-connect.c:987
PQregisterThreadLock
pgthreadlock_t PQregisterThreadLock(pgthreadlock_t newhandler)
Definition: fe-connect.c:8277
PQsendQueryContinue
int PQsendQueryContinue(PGconn *conn, const char *query)
Definition: fe-exec.c:1422
PQgetvalue
char * PQgetvalue(const PGresult *res, int tup_num, int field_num)
Definition: fe-exec.c:3876
PQgetResult
PGresult * PQgetResult(PGconn *conn)
Definition: fe-exec.c:2062
PQresultStatus
ExecStatusType PQresultStatus(const PGresult *res)
Definition: fe-exec.c:3411
PQclear
void PQclear(PGresult *res)
Definition: fe-exec.c:721
PQntuples
int PQntuples(const PGresult *res)
Definition: fe-exec.c:3481
PQresultErrorMessage
char * PQresultErrorMessage(const PGresult *res)
Definition: fe-exec.c:3427
PQconsumeInput
int PQconsumeInput(PGconn *conn)
Definition: fe-exec.c:1984
pqClearAsyncResult
void pqClearAsyncResult(PGconn *conn)
Definition: fe-exec.c:779
PQresultErrorField
char * PQresultErrorField(const PGresult *res, int fieldcode)
Definition: fe-exec.c:3466
PQisBusy
int PQisBusy(PGconn *conn)
Definition: fe-exec.c:2031
PQexec
PGresult * PQexec(PGconn *conn, const char *query)
Definition: fe-exec.c:2262
pg_GSS_have_cred_cache
bool pg_GSS_have_cred_cache(gss_cred_id_t *cred_out)
Definition: fe-gssapi-common.c:61
pqReadData
int pqReadData(PGconn *conn)
Definition: fe-misc.c:580
pqFlush
int pqFlush(PGconn *conn)
Definition: fe-misc.c:968
pqParseDone
void pqParseDone(PGconn *conn, int newInStart)
Definition: fe-misc.c:443
pqPutMsgStart
int pqPutMsgStart(char msg_type, PGconn *conn)
Definition: fe-misc.c:473
pqGetc
int pqGetc(char *result, PGconn *conn)
Definition: fe-misc.c:77
pqGetInt
int pqGetInt(int *result, size_t bytes, PGconn *conn)
Definition: fe-misc.c:216
pqCheckInBufferSpace
int pqCheckInBufferSpace(size_t bytes_needed, PGconn *conn)
Definition: fe-misc.c:351
pqPutnchar
int pqPutnchar(const char *s, size_t len, PGconn *conn)
Definition: fe-misc.c:202
PQgetCurrentTimeUSec
pg_usec_time_t PQgetCurrentTimeUSec(void)
Definition: fe-misc.c:1209
libpq_append_error
void libpq_append_error(PQExpBuffer errorMessage, const char *fmt,...)
Definition: fe-misc.c:1352
libpq_append_conn_error
void libpq_append_conn_error(PGconn *conn, const char *fmt,...)
Definition: fe-misc.c:1381
pqWaitTimed
int pqWaitTimed(int forRead, int forWrite, PGconn *conn, pg_usec_time_t end_time)
Definition: fe-misc.c:1009
pqGets_append
int pqGets_append(PQExpBuffer buf, PGconn *conn)
Definition: fe-misc.c:142
pqPutMsgEnd
int pqPutMsgEnd(PGconn *conn)
Definition: fe-misc.c:532
pqBuildStartupPacket3
char * pqBuildStartupPacket3(PGconn *conn, int *packetlen, const PQEnvironmentOption *options)
Definition: fe-protocol3.c:2313
pqGetNegotiateProtocolVersion3
int pqGetNegotiateProtocolVersion3(PGconn *conn)
Definition: fe-protocol3.c:1410
pqGetErrorNotice3
int pqGetErrorNotice3(PGconn *conn, bool isError)
Definition: fe-protocol3.c:878
pqsecure_open_gss
PostgresPollingStatusType pqsecure_open_gss(PGconn *conn)
Definition: fe-secure-gssapi.c:472
pqsecure_open_client
PostgresPollingStatusType pqsecure_open_client(PGconn *conn)
Definition: fe-secure.c:138
pqsecure_close
void pqsecure_close(PGconn *conn)
Definition: fe-secure.c:152
pqTraceOutputCharResponse
void pqTraceOutputCharResponse(PGconn *conn, const char *responseType, char response)
Definition: fe-trace.c:915
Assert
Assert(PointerIsAligned(start, uint64))
start
return str start
Definition: hashfn_unstable.h:282
str
const char * str
Definition: hashfn_unstable.h:254
calloc
#define calloc(a, b)
Definition: header.h:55
free
#define free(a)
Definition: header.h:65
malloc
#define malloc(a)
Definition: header.h:50
token
#define token
Definition: indent_globs.h:126
bufsize
#define bufsize
Definition: indent_globs.h:36
input
FILE * input
val
long val
Definition: informix.c:689
value
static struct @165 value
username
static char * username
Definition: initdb.c:153
pg_freeaddrinfo_all
void pg_freeaddrinfo_all(int hint_ai_family, struct addrinfo *ai)
Definition: ip.c:82
pg_getnameinfo_all
int pg_getnameinfo_all(const struct sockaddr_storage *addr, int salen, char *node, int nodelen, char *service, int servicelen, int flags)
Definition: ip.c:114
pg_getaddrinfo_all
int pg_getaddrinfo_all(const char *hostname, const char *servname, const struct addrinfo *hintp, struct addrinfo **result)
Definition: ip.c:53
j
int j
Definition: isn.c:78
i
int i
Definition: isn.c:77
keywords
static const JsonPathKeyword keywords[]
Definition: jsonpath_scan.l:402
PGEVT_CONNDESTROY
@ PGEVT_CONNDESTROY
Definition: libpq-events.h:31
PGEVT_CONNRESET
@ PGEVT_CONNRESET
Definition: libpq-events.h:30
ConnStatusType
ConnStatusType
Definition: libpq-fe.h:83
CONNECTION_CONSUME
@ CONNECTION_CONSUME
Definition: libpq-fe.h:102
CONNECTION_AUTHENTICATING
@ CONNECTION_AUTHENTICATING
Definition: libpq-fe.h:109
CONNECTION_CHECK_STANDBY
@ CONNECTION_CHECK_STANDBY
Definition: libpq-fe.h:106
CONNECTION_STARTED
@ CONNECTION_STARTED
Definition: libpq-fe.h:92
CONNECTION_AWAITING_RESPONSE
@ CONNECTION_AWAITING_RESPONSE
Definition: libpq-fe.h:94
CONNECTION_MADE
@ CONNECTION_MADE
Definition: libpq-fe.h:93
CONNECTION_CHECK_WRITABLE
@ CONNECTION_CHECK_WRITABLE
Definition: libpq-fe.h:101
CONNECTION_BAD
@ CONNECTION_BAD
Definition: libpq-fe.h:85
CONNECTION_OK
@ CONNECTION_OK
Definition: libpq-fe.h:84
CONNECTION_GSS_STARTUP
@ CONNECTION_GSS_STARTUP
Definition: libpq-fe.h:103
CONNECTION_SSL_STARTUP
@ CONNECTION_SSL_STARTUP
Definition: libpq-fe.h:99
CONNECTION_AUTH_OK
@ CONNECTION_AUTH_OK
Definition: libpq-fe.h:96
CONNECTION_CHECK_TARGET
@ CONNECTION_CHECK_TARGET
Definition: libpq-fe.h:104
CONNECTION_NEEDED
@ CONNECTION_NEEDED
Definition: libpq-fe.h:100
PGRES_COMMAND_OK
@ PGRES_COMMAND_OK
Definition: libpq-fe.h:125
PGRES_FATAL_ERROR
@ PGRES_FATAL_ERROR
Definition: libpq-fe.h:136
PGRES_TUPLES_OK
@ PGRES_TUPLES_OK
Definition: libpq-fe.h:128
pgthreadlock_t
void(* pgthreadlock_t)(int acquire)
Definition: libpq-fe.h:472
PGPing
PGPing
Definition: libpq-fe.h:175
PQPING_OK
@ PQPING_OK
Definition: libpq-fe.h:176
PQPING_REJECT
@ PQPING_REJECT
Definition: libpq-fe.h:177
PQPING_NO_RESPONSE
@ PQPING_NO_RESPONSE
Definition: libpq-fe.h:178
PQPING_NO_ATTEMPT
@ PQPING_NO_ATTEMPT
Definition: libpq-fe.h:179
PGContextVisibility
PGContextVisibility
Definition: libpq-fe.h:163
PQSHOW_CONTEXT_ERRORS
@ PQSHOW_CONTEXT_ERRORS
Definition: libpq-fe.h:165
PGTransactionStatusType
PGTransactionStatusType
Definition: libpq-fe.h:146
PQTRANS_IDLE
@ PQTRANS_IDLE
Definition: libpq-fe.h:147
PQTRANS_ACTIVE
@ PQTRANS_ACTIVE
Definition: libpq-fe.h:148
PQTRANS_UNKNOWN
@ PQTRANS_UNKNOWN
Definition: libpq-fe.h:151
PQnoticeReceiver
void(* PQnoticeReceiver)(void *arg, const PGresult *res)
Definition: libpq-fe.h:244
pg_usec_time_t
int64_t pg_usec_time_t
Definition: libpq-fe.h:241
PQnoticeProcessor
void(* PQnoticeProcessor)(void *arg, const char *message)
Definition: libpq-fe.h:245
PostgresPollingStatusType
PostgresPollingStatusType
Definition: libpq-fe.h:114
PGRES_POLLING_OK
@ PGRES_POLLING_OK
Definition: libpq-fe.h:118
PGRES_POLLING_READING
@ PGRES_POLLING_READING
Definition: libpq-fe.h:116
PGRES_POLLING_WRITING
@ PGRES_POLLING_WRITING
Definition: libpq-fe.h:117
PGRES_POLLING_FAILED
@ PGRES_POLLING_FAILED
Definition: libpq-fe.h:115
PGpipelineStatus
PGpipelineStatus
Definition: libpq-fe.h:186
PQ_PIPELINE_OFF
@ PQ_PIPELINE_OFF
Definition: libpq-fe.h:187
PGVerbosity
PGVerbosity
Definition: libpq-fe.h:155
PQERRORS_DEFAULT
@ PQERRORS_DEFAULT
Definition: libpq-fe.h:157
PGASYNC_IDLE
@ PGASYNC_IDLE
Definition: libpq-int.h:215
PGASYNC_BUSY
@ PGASYNC_BUSY
Definition: libpq-int.h:216
libpq_gettext
#define libpq_gettext(x)
Definition: libpq-int.h:938
LOAD_BALANCE_DISABLE
@ LOAD_BALANCE_DISABLE
Definition: libpq-int.h:249
LOAD_BALANCE_RANDOM
@ LOAD_BALANCE_RANDOM
Definition: libpq-int.h:250
SOCK_STRERROR
#define SOCK_STRERROR
Definition: libpq-int.h:960
SOCK_ERRNO
#define SOCK_ERRNO
Definition: libpq-int.h:959
ENC_PLAINTEXT
#define ENC_PLAINTEXT
Definition: libpq-int.h:230
ENC_GSSAPI
#define ENC_GSSAPI
Definition: libpq-int.h:231
ENC_SSL
#define ENC_SSL
Definition: libpq-int.h:232
CHT_UNIX_SOCKET
@ CHT_UNIX_SOCKET
Definition: libpq-int.h:311
CHT_HOST_ADDRESS
@ CHT_HOST_ADDRESS
Definition: libpq-int.h:310
CHT_HOST_NAME
@ CHT_HOST_NAME
Definition: libpq-int.h:309
pqClearConnErrorState
#define pqClearConnErrorState(conn)
Definition: libpq-int.h:911
PG_BOOL_YES
@ PG_BOOL_YES
Definition: libpq-int.h:257
PG_BOOL_NO
@ PG_BOOL_NO
Definition: libpq-int.h:258
PG_BOOL_UNKNOWN
@ PG_BOOL_UNKNOWN
Definition: libpq-int.h:256
ENC_ERROR
#define ENC_ERROR
Definition: libpq-int.h:229
SERVER_TYPE_STANDBY
@ SERVER_TYPE_STANDBY
Definition: libpq-int.h:241
SERVER_TYPE_PRIMARY
@ SERVER_TYPE_PRIMARY
Definition: libpq-int.h:240
SERVER_TYPE_ANY
@ SERVER_TYPE_ANY
Definition: libpq-int.h:237
SERVER_TYPE_READ_WRITE
@ SERVER_TYPE_READ_WRITE
Definition: libpq-int.h:238
SERVER_TYPE_PREFER_STANDBY_PASS2
@ SERVER_TYPE_PREFER_STANDBY_PASS2
Definition: libpq-int.h:243
SERVER_TYPE_PREFER_STANDBY
@ SERVER_TYPE_PREFER_STANDBY
Definition: libpq-int.h:242
SERVER_TYPE_READ_ONLY
@ SERVER_TYPE_READ_ONLY
Definition: libpq-int.h:239
arg
void * arg
Definition: pg_backup_utils.c:29
pg_bswap.h
pg_hton32
#define pg_hton32(x)
Definition: pg_bswap.h:121
MAXPGPATH
#define MAXPGPATH
Definition: pg_config_manual.h:100
DEFAULT_PGSOCKET_DIR
#define DEFAULT_PGSOCKET_DIR
Definition: pg_config_manual.h:193
len
const void size_t len
Definition: pg_crc32c_sse42.c:28
encoding
int32 encoding
Definition: pg_database.h:41
connstr
static const char * connstr
Definition: pg_dumpall.c:84
pg_prng_uint64_range
uint64 pg_prng_uint64_range(pg_prng_state *state, uint64 rmin, uint64 rmax)
Definition: pg_prng.c:144
pg_prng_seed
void pg_prng_seed(pg_prng_state *state, uint64 seed)
Definition: pg_prng.c:89
pg_prng_strong_seed
#define pg_prng_strong_seed(state)
Definition: pg_prng.h:46
options
static char ** options
Definition: pg_recvlogical.c:58
user
static char * user
Definition: pg_regress.c:119
port
static int port
Definition: pg_regress.c:115
portstr
static char portstr[16]
Definition: pg_regress.c:116
hostname
static char * hostname
Definition: pg_regress.c:114
buf
static char * buf
Definition: pg_test_fsync.c:72
pg_wchar.h
PG_SQL_ASCII
@ PG_SQL_ASCII
Definition: pg_wchar.h:226
pg_encoding_to_char
#define pg_encoding_to_char
Definition: pg_wchar.h:630
end_time
static int64 end_time
Definition: pgbench.c:176
pghost
static const char * pghost
Definition: pgbench.c:295
pgport
static const char * pgport
Definition: pgbench.c:296
dbName
static const char * dbName
Definition: pgbench.c:298
PG_STRERROR_R_BUFLEN
#define PG_STRERROR_R_BUFLEN
Definition: port.h:257
pg_strcasecmp
int pg_strcasecmp(const char *s1, const char *s2)
Definition: pgstrcasecmp.c:36
pg_inet_net_ntop
char * pg_inet_net_ntop(int af, const void *src, int bits, char *dst, size_t size)
Definition: inet_net_ntop.c:77
sprintf
#define sprintf
Definition: port.h:241
pg_set_noblock
bool pg_set_noblock(pgsocket sock)
Definition: noblock.c:25
explicit_bzero
void explicit_bzero(void *buf, size_t len)
Definition: explicit_bzero.c:50
pgsocket
int pgsocket
Definition: port.h:29
snprintf
#define snprintf
Definition: port.h:239
socklen_t
unsigned int socklen_t
Definition: port.h:40
PGINVALID_SOCKET
#define PGINVALID_SOCKET
Definition: port.h:31
strerror_r
#define strerror_r
Definition: port.h:256
pg_get_encoding_from_locale
int pg_get_encoding_from_locale(const char *ctype, bool write_message)
Definition: chklocale.c:301
strlcpy
size_t strlcpy(char *dst, const char *src, size_t siz)
Definition: strlcpy.c:45
pg_strncasecmp
int pg_strncasecmp(const char *s1, const char *s2, size_t n)
Definition: pgstrcasecmp.c:69
closesocket
#define closesocket
Definition: port.h:377
getpeereid
int getpeereid(int sock, uid_t *uid, gid_t *gid)
Definition: getpeereid.c:33
PG_DIAG_SQLSTATE
#define PG_DIAG_SQLSTATE
Definition: postgres_ext.h:52
postgres_fe.h
PG_PROTOCOL_MAJOR
#define PG_PROTOCOL_MAJOR(v)
Definition: pqcomm.h:87
PG_PROTOCOL_EARLIEST
#define PG_PROTOCOL_EARLIEST
Definition: pqcomm.h:96
PG_PROTOCOL_FULL
#define PG_PROTOCOL_FULL(v)
Definition: pqcomm.h:89
is_unixsock_path
static bool is_unixsock_path(const char *path)
Definition: pqcomm.h:67
PG_PROTOCOL_LATEST
#define PG_PROTOCOL_LATEST
Definition: pqcomm.h:97
UNIXSOCK_PATH
#define UNIXSOCK_PATH(path, port, sockdir)
Definition: pqcomm.h:44
UNIXSOCK_PATH_BUFLEN
#define UNIXSOCK_PATH_BUFLEN
Definition: pqcomm.h:60
NEGOTIATE_GSS_CODE
#define NEGOTIATE_GSS_CODE
Definition: pqcomm.h:173
NEGOTIATE_SSL_CODE
#define NEGOTIATE_SSL_CODE
Definition: pqcomm.h:172
ProtocolVersion
uint32 ProtocolVersion
Definition: pqcomm.h:99
AuthRequest
uint32 AuthRequest
Definition: pqcomm.h:121
PG_PROTOCOL
#define PG_PROTOCOL(m, n)
Definition: pqcomm.h:90
initPQExpBuffer
void initPQExpBuffer(PQExpBuffer str)
Definition: pqexpbuffer.c:90
enlargePQExpBuffer
int enlargePQExpBuffer(PQExpBuffer str, size_t needed)
Definition: pqexpbuffer.c:172
appendPQExpBuffer
void appendPQExpBuffer(PQExpBuffer str, const char *fmt,...)
Definition: pqexpbuffer.c:265
appendPQExpBufferChar
void appendPQExpBufferChar(PQExpBuffer str, char ch)
Definition: pqexpbuffer.c:378
appendPQExpBufferStr
void appendPQExpBufferStr(PQExpBuffer str, const char *data)
Definition: pqexpbuffer.c:367
termPQExpBuffer
void termPQExpBuffer(PQExpBuffer str)
Definition: pqexpbuffer.c:129
PQExpBufferBroken
#define PQExpBufferBroken(str)
Definition: pqexpbuffer.h:59
PQExpBufferDataBroken
#define PQExpBufferDataBroken(buf)
Definition: pqexpbuffer.h:67
c
char * c
Definition: preproc-cursor.c:31
e
e
Definition: preproc-init.c:82
AUTH_REQ_SSPI
#define AUTH_REQ_SSPI
Definition: protocol.h:83
AUTH_REQ_SASL_CONT
#define AUTH_REQ_SASL_CONT
Definition: protocol.h:85
AUTH_REQ_GSS
#define AUTH_REQ_GSS
Definition: protocol.h:81
AUTH_REQ_MD5
#define AUTH_REQ_MD5
Definition: protocol.h:79
AUTH_REQ_OK
#define AUTH_REQ_OK
Definition: protocol.h:74
PqMsg_AuthenticationRequest
#define PqMsg_AuthenticationRequest
Definition: protocol.h:50
PqMsg_NegotiateProtocolVersion
#define PqMsg_NegotiateProtocolVersion
Definition: protocol.h:59
AUTH_REQ_PASSWORD
#define AUTH_REQ_PASSWORD
Definition: protocol.h:77
AUTH_REQ_GSS_CONT
#define AUTH_REQ_GSS_CONT
Definition: protocol.h:82
PqMsg_ErrorResponse
#define PqMsg_ErrorResponse
Definition: protocol.h:44
AUTH_REQ_SASL
#define AUTH_REQ_SASL
Definition: protocol.h:84
PqMsg_Terminate
#define PqMsg_Terminate
Definition: protocol.h:28
AUTH_REQ_SASL_FIN
#define AUTH_REQ_SASL_FIN
Definition: protocol.h:86
pthread_mutex_unlock
int pthread_mutex_unlock(pthread_mutex_t *mp)
Definition: pthread-win32.c:60
pthread_mutex_lock
int pthread_mutex_lock(pthread_mutex_t *mp)
Definition: pthread-win32.c:42
PTHREAD_MUTEX_INITIALIZER
#define PTHREAD_MUTEX_INITIALIZER
Definition: pthread-win32.h:16
SCRAM_MAX_KEY_LEN
#define SCRAM_MAX_KEY_LEN
Definition: scram-common.h:30
SCRAM_SHA_256_DEFAULT_ITERATIONS
#define SCRAM_SHA_256_DEFAULT_ITERATIONS
Definition: scram-common.h:50
gai_strerror
const char * gai_strerror(int ecode)
Definition: win32gai_strerror.c:22
error
static void error(void)
Definition: sql-dyntest.c:147
password
static char * password
Definition: streamutil.c:51
dbname
char * dbname
Definition: streamutil.c:49
conn
PGconn * conn
Definition: streamutil.c:52
pg_strip_crlf
int pg_strip_crlf(char *str)
Definition: string.c:154
AddrInfo::family
int family
Definition: pqcomm.h:38
AddrInfo::addr
SockAddr addr
Definition: pqcomm.h:39
PGEvent::passThrough
void * passThrough
Definition: libpq-int.h:159
PGEvent::name
char * name
Definition: libpq-int.h:158
PGEvent::proc
PGEventProc proc
Definition: libpq-int.h:157
PGNoticeHooks::noticeProcArg
void * noticeProcArg
Definition: libpq-int.h:152
PGNoticeHooks::noticeRec
PQnoticeReceiver noticeRec
Definition: libpq-int.h:149
PGNoticeHooks::noticeProc
PQnoticeProcessor noticeProc
Definition: libpq-int.h:151
PGNoticeHooks::noticeRecArg
void * noticeRecArg
Definition: libpq-int.h:150
SockAddr::addr
struct sockaddr_storage addr
Definition: pqcomm.h:32
SockAddr::salen
socklen_t salen
Definition: pqcomm.h:33
_PQconninfoOption
Definition: libpq-fe.h:275
_PQconninfoOption::keyword
char * keyword
Definition: libpq-fe.h:276
_PQconninfoOption::val
char * val
Definition: libpq-fe.h:279
_internalPQconninfoOption
Definition: fe-connect.c:172
_internalPQconninfoOption::dispchar
char * dispchar
Definition: fe-connect.c:178
_internalPQconninfoOption::val
char * val
Definition: fe-connect.c:176
_internalPQconninfoOption::keyword
char * keyword
Definition: fe-connect.c:173
_internalPQconninfoOption::connofs
off_t connofs
Definition: fe-connect.c:190
_internalPQconninfoOption::label
char * label
Definition: fe-connect.c:177
_internalPQconninfoOption::envvar
char * envvar
Definition: fe-connect.c:174
_internalPQconninfoOption::compiled
char * compiled
Definition: fe-connect.c:175
_internalPQconninfoOption::dispsize
int dispsize
Definition: fe-connect.c:183
cursor::next
struct cursor * next
Definition: type.h:148
option::val
int val
Definition: getopt_long.h:22
pgNotify::next
struct pgNotify * next
Definition: libpq-fe.h:234
pgParameterStatus::next
struct pgParameterStatus * next
Definition: libpq-int.h:271
pg_cancel_conn
Definition: fe-cancel.c:32
pg_conn_host
Definition: libpq-int.h:356
pg_conn_host::host
char * host
Definition: libpq-int.h:358
pg_conn_host::password
char * password
Definition: libpq-int.h:361
pg_conn_host::port
char * port
Definition: libpq-int.h:360
pg_conn_host::hostaddr
char * hostaddr
Definition: libpq-int.h:359
pg_conn_host::type
pg_conn_host_type type
Definition: libpq-int.h:357
pg_conn
Definition: libpq-int.h:371
pg_conn::laddr
SockAddr laddr
Definition: libpq-int.h:498
pg_conn::try_next_host
bool try_next_host
Definition: libpq-int.h:535
pg_conn::addr
AddrInfo * addr
Definition: libpq-int.h:538
pg_conn::replication
char * replication
Definition: libpq-int.h:390
pg_conn::write_err_msg
char * write_err_msg
Definition: libpq-int.h:510
pg_conn::failed_enc_methods
uint8 failed_enc_methods
Definition: libpq-int.h:604
pg_conn::notifyHead
PGnotify * notifyHead
Definition: libpq-int.h:473
pg_conn::sslrootcert
char * sslrootcert
Definition: libpq-int.h:410
pg_conn::rowBuf
PGdataValue * rowBuf
Definition: libpq-int.h:581
pg_conn::sslnegotiation
char * sslnegotiation
Definition: libpq-int.h:404
pg_conn::sslcompression
char * sslcompression
Definition: libpq-int.h:405
pg_conn::oauth_discovery_uri
char * oauth_discovery_uri
Definition: libpq-int.h:438
pg_conn::sigpipe_flag
bool sigpipe_flag
Definition: libpq-int.h:508
pg_conn::be_cancel_key
char * be_cancel_key
Definition: libpq-int.h:550
pg_conn::oauth_scope
char * oauth_scope
Definition: libpq-int.h:442
pg_conn::nconnhost
int nconnhost
Definition: libpq-int.h:477
pg_conn::require_auth
char * require_auth
Definition: libpq-int.h:425
pg_conn::sock
pgsocket sock
Definition: libpq-int.h:496
pg_conn::inBuffer
char * inBuffer
Definition: libpq-int.h:564
pg_conn::channel_binding
char * channel_binding
Definition: libpq-int.h:395
pg_conn::scram_server_key_binary
void * scram_server_key_binary
Definition: libpq-int.h:544
pg_conn::pversion
ProtocolVersion pversion
Definition: libpq-int.h:500
pg_conn::std_strings
bool std_strings
Definition: libpq-int.h:554
pg_conn::write_failed
bool write_failed
Definition: libpq-int.h:509
pg_conn::sslcrldir
char * sslcrldir
Definition: libpq-int.h:412
pg_conn::gssdelegation
char * gssdelegation
Definition: libpq-int.h:419
pg_conn::pgoptions
char * pgoptions
Definition: libpq-int.h:386
pg_conn::send_appname
bool send_appname
Definition: libpq-int.h:540
pg_conn::xactStatus
PGTransactionStatusType xactStatus
Definition: libpq-int.h:461
pg_conn::sslcrl
char * sslcrl
Definition: libpq-int.h:411
pg_conn::pghost
char * pghost
Definition: libpq-int.h:373
pg_conn::sasl
const pg_fe_sasl_mech * sasl
Definition: libpq-int.h:599
pg_conn::scram_client_key_len
size_t scram_client_key_len
Definition: libpq-int.h:541
pg_conn::cancelRequest
bool cancelRequest
Definition: libpq-int.h:431
pg_conn::inCursor
int inCursor
Definition: libpq-int.h:567
pg_conn::ssl_max_protocol_version
char * ssl_max_protocol_version
Definition: libpq-int.h:423
pg_conn::in_hot_standby
PGTernaryBool in_hot_standby
Definition: libpq-int.h:556
pg_conn::cleanup_async_auth
void(* cleanup_async_auth)(PGconn *conn)
Definition: libpq-int.h:526
pg_conn::pgpass
char * pgpass
Definition: libpq-int.h:393
pg_conn::be_pid
int be_pid
Definition: libpq-int.h:549
pg_conn::client_finished_auth
bool client_finished_auth
Definition: libpq-int.h:518
pg_conn::cmd_queue_recycle
PGcmdQueueEntry * cmd_queue_recycle
Definition: libpq-int.h:493
pg_conn::min_pversion
ProtocolVersion min_pversion
Definition: libpq-int.h:545
pg_conn::dbName
char * dbName
Definition: libpq-int.h:389
pg_conn::oauth_client_id
char * oauth_client_id
Definition: libpq-int.h:440
pg_conn::inEnd
int inEnd
Definition: libpq-int.h:568
pg_conn::oauth_issuer
char * oauth_issuer
Definition: libpq-int.h:436
pg_conn::fbappname
char * fbappname
Definition: libpq-int.h:388
pg_conn::sslcert
char * sslcert
Definition: libpq-int.h:407
pg_conn::sslcertmode
char * sslcertmode
Definition: libpq-int.h:409
pg_conn::allowed_auth_methods
uint32 allowed_auth_methods
Definition: libpq-int.h:514
pg_conn::target_session_attrs
char * target_session_attrs
Definition: libpq-int.h:424
pg_conn::cmd_queue_tail
PGcmdQueueEntry * cmd_queue_tail
Definition: libpq-int.h:487
pg_conn::current_enc_method
uint8 current_enc_method
Definition: libpq-int.h:605
pg_conn::notifyTail
PGnotify * notifyTail
Definition: libpq-int.h:474
pg_conn::auth_required
bool auth_required
Definition: libpq-int.h:512
pg_conn::inBufSize
int inBufSize
Definition: libpq-int.h:565
pg_conn::naddr
int naddr
Definition: libpq-int.h:536
pg_conn::sslpassword
char * sslpassword
Definition: libpq-int.h:408
pg_conn::nonblocking
bool nonblocking
Definition: libpq-int.h:464
pg_conn::gssapi_used
bool gssapi_used
Definition: libpq-int.h:506
pg_conn::client_encoding
int client_encoding
Definition: libpq-int.h:553
pg_conn::workBuffer
PQExpBufferData workBuffer
Definition: libpq-int.h:675
pg_conn::inStart
int inStart
Definition: libpq-int.h:566
pg_conn::keepalives_idle
char * keepalives_idle
Definition: libpq-int.h:398
pg_conn::connip
char * connip
Definition: libpq-int.h:480
pg_conn::sversion
int sversion
Definition: libpq-int.h:501
pg_conn::auth_req_received
bool auth_req_received
Definition: libpq-int.h:504
pg_conn::oauth_client_secret
char * oauth_client_secret
Definition: libpq-int.h:441
pg_conn::max_protocol_version
char * max_protocol_version
Definition: libpq-int.h:421
pg_conn::load_balance_hosts
char * load_balance_hosts
Definition: libpq-int.h:426
pg_conn::pversion_negotiated
bool pversion_negotiated
Definition: libpq-int.h:502
pg_conn::oauth_want_retry
bool oauth_want_retry
Definition: libpq-int.h:444
pg_conn::default_transaction_read_only
PGTernaryBool default_transaction_read_only
Definition: libpq-int.h:555
pg_conn::pstatus
pgParameterStatus * pstatus
Definition: libpq-int.h:552
pg_conn::pguser
char * pguser
Definition: libpq-int.h:392
pg_conn::keepalives
char * keepalives
Definition: libpq-int.h:397
pg_conn::min_protocol_version
char * min_protocol_version
Definition: libpq-int.h:420
pg_conn::result
PGresult * result
Definition: libpq-int.h:594
pg_conn::sigpipe_so
bool sigpipe_so
Definition: libpq-int.h:507
pg_conn::verbosity
PGVerbosity verbosity
Definition: libpq-int.h:557
pg_conn::client_encoding_initial
char * client_encoding_initial
Definition: libpq-int.h:385
pg_conn::keepalives_interval
char * keepalives_interval
Definition: libpq-int.h:399
pg_conn::whichaddr
int whichaddr
Definition: libpq-int.h:537
pg_conn::appname
char * appname
Definition: libpq-int.h:387
pg_conn::sslmode
char * sslmode
Definition: libpq-int.h:403
pg_conn::prng_state
pg_prng_state prng_state
Definition: libpq-int.h:560
pg_conn::pgtcp_user_timeout
char * pgtcp_user_timeout
Definition: libpq-int.h:384
pg_conn::ssl_min_protocol_version
char * ssl_min_protocol_version
Definition: libpq-int.h:422
pg_conn::oauth_issuer_id
char * oauth_issuer_id
Definition: libpq-int.h:437
pg_conn::errorMessage
PQExpBufferData errorMessage
Definition: libpq-int.h:671
pg_conn::gssencmode
char * gssencmode
Definition: libpq-int.h:415
pg_conn::scram_server_key
char * scram_server_key
Definition: libpq-int.h:428
pg_conn::nEvents
int nEvents
Definition: libpq-int.h:455
pg_conn::pghostaddr
char * pghostaddr
Definition: libpq-int.h:377
pg_conn::sslkey
char * sslkey
Definition: libpq-int.h:406
pg_conn::scram_client_key_binary
void * scram_client_key_binary
Definition: libpq-int.h:542
pg_conn::altsock
pgsocket altsock
Definition: libpq-int.h:527
pg_conn::scram_client_key
char * scram_client_key
Definition: libpq-int.h:427
pg_conn::max_pversion
ProtocolVersion max_pversion
Definition: libpq-int.h:546
pg_conn::rowBufLen
int rowBufLen
Definition: libpq-int.h:582
pg_conn::async_auth
PostgresPollingStatusType(* async_auth)(PGconn *conn)
Definition: libpq-int.h:525
pg_conn::pgpassfile
char * pgpassfile
Definition: libpq-int.h:394
pg_conn::last_sqlstate
char last_sqlstate[6]
Definition: libpq-int.h:462
pg_conn::asyncStatus
PGAsyncStatusType asyncStatus
Definition: libpq-int.h:460
pg_conn::load_balance_type
PGLoadBalanceType load_balance_type
Definition: libpq-int.h:532
pg_conn::connect_timeout
char * connect_timeout
Definition: libpq-int.h:383
pg_conn::scram_sha_256_iterations
int scram_sha_256_iterations
Definition: libpq-int.h:601
pg_conn::krbsrvname
char * krbsrvname
Definition: libpq-int.h:416
pg_conn::pipelineStatus
PGpipelineStatus pipelineStatus
Definition: libpq-int.h:466
pg_conn::gsslib
char * gsslib
Definition: libpq-int.h:417
pg_conn::lobjfuncs
PGlobjfuncs * lobjfuncs
Definition: libpq-int.h:559
pg_conn::outBufSize
int outBufSize
Definition: libpq-int.h:572
pg_conn::allowed_enc_methods
uint8 allowed_enc_methods
Definition: libpq-int.h:603
pg_conn::options_valid
bool options_valid
Definition: libpq-int.h:463
pg_conn::noticeHooks
PGNoticeHooks noticeHooks
Definition: libpq-int.h:451
pg_conn::target_server_type
PGTargetServerType target_server_type
Definition: libpq-int.h:531
pg_conn::Pfdebug
FILE * Pfdebug
Definition: libpq-int.h:447
pg_conn::sasl_state
void * sasl_state
Definition: libpq-int.h:600
pg_conn::scram_server_key_len
size_t scram_server_key_len
Definition: libpq-int.h:543
pg_conn::cmd_queue_head
PGcmdQueueEntry * cmd_queue_head
Definition: libpq-int.h:486
pg_conn::raddr
SockAddr raddr
Definition: libpq-int.h:499
pg_conn::try_next_addr
bool try_next_addr
Definition: libpq-int.h:534
pg_conn::outCount
int outCount
Definition: libpq-int.h:573
pg_conn::pgport
char * pgport
Definition: libpq-int.h:381
pg_conn::be_cancel_key_len
uint16 be_cancel_key_len
Definition: libpq-int.h:551
pg_conn::pgservice
char * pgservice
Definition: libpq-int.h:391
pg_conn::allowed_sasl_mechs
const pg_fe_sasl_mech * allowed_sasl_mechs[2]
Definition: libpq-int.h:516
pg_conn::whichhost
int whichhost
Definition: libpq-int.h:478
pg_conn::show_context
PGContextVisibility show_context
Definition: libpq-int.h:558
pg_conn::keepalives_count
char * keepalives_count
Definition: libpq-int.h:401
pg_conn::requirepeer
char * requirepeer
Definition: libpq-int.h:414
pg_conn::sslsni
char * sslsni
Definition: libpq-int.h:413
pg_conn::connhost
pg_conn_host * connhost
Definition: libpq-int.h:479
pg_conn::ssl_in_use
bool ssl_in_use
Definition: libpq-int.h:608
pg_conn::events
PGEvent * events
Definition: libpq-int.h:454
pg_conn::password_needed
bool password_needed
Definition: libpq-int.h:505
pg_conn::outBuffer
char * outBuffer
Definition: libpq-int.h:571
pg_conn::status
ConnStatusType status
Definition: libpq-int.h:459
pg_fe_sasl_mech
Definition: fe-auth-sasl.h:44
pg_fe_sasl_mech::free
void(* free)(void *state)
Definition: fe-auth-sasl.h:149
pg_result
Definition: libpq-int.h:165
pg_result::noticeHooks
PGNoticeHooks noticeHooks
Definition: libpq-int.h:183
pg_result::resultStatus
ExecStatusType resultStatus
Definition: libpq-int.h:174
pthread_mutex_t
Definition: pthread-win32.h:10
stat::st_mode
unsigned short st_mode
Definition: win32_port.h:258
state
Definition: regguts.h:323
flag
char * flag(int b)
Definition: test-ctype.c:33
tmpbuf
static StringInfoData tmpbuf
Definition: walsender.c:175
stat
#define stat
Definition: win32_port.h:274
S_IRWXG
#define S_IRWXG
Definition: win32_port.h:300
EINTR
#define EINTR
Definition: win32_port.h:364
EWOULDBLOCK
#define EWOULDBLOCK
Definition: win32_port.h:370
S_IRWXO
#define S_IRWXO
Definition: win32_port.h:312
EINPROGRESS
#define EINPROGRESS
Definition: win32_port.h:376
gid_t
int gid_t
Definition: win32_port.h:235
fstat
#define fstat
Definition: win32_port.h:273
S_ISREG
#define S_ISREG(m)
Definition: win32_port.h:318
socket
#define socket(af, type, protocol)
Definition: win32_port.h:498
connect
#define connect(s, name, namelen)
Definition: win32_port.h:502
uid_t
int uid_t
Definition: win32_port.h:234
gettimeofday
int gettimeofday(struct timeval *tp, void *tzp)
Definition: win32gettimeofday.c:53