1996-07-09 08:22:35 +02:00
|
|
|
/*-------------------------------------------------------------------------
|
|
|
|
|
*
|
1999-02-14 00:22:53 +01:00
|
|
|
* fe-exec.c
|
1996-07-09 08:22:35 +02:00
|
|
|
* functions related to sending a query down to the backend
|
|
|
|
|
*
|
2023-01-02 21:00:37 +01:00
|
|
|
* Portions Copyright (c) 1996-2023, PostgreSQL Global Development Group
|
2000-01-26 06:58:53 +01:00
|
|
|
* Portions Copyright (c) 1994, Regents of the University of California
|
1996-07-09 08:22:35 +02:00
|
|
|
*
|
|
|
|
|
*
|
|
|
|
|
* IDENTIFICATION
|
2010-09-20 22:08:53 +02:00
|
|
|
* src/interfaces/libpq/fe-exec.c
|
1996-07-09 08:22:35 +02:00
|
|
|
*
|
|
|
|
|
*-------------------------------------------------------------------------
|
|
|
|
|
*/
|
2001-02-10 03:31:31 +01:00
|
|
|
#include "postgres_fe.h"
|
|
|
|
|
|
1999-07-19 04:27:16 +02:00
|
|
|
#include <ctype.h>
|
2000-01-18 07:09:24 +01:00
|
|
|
#include <fcntl.h>
|
Teach libpq to detect integer overflow in the row count of a PGresult.
Adding more than 1 billion rows to a PGresult would overflow its ntups and
tupArrSize fields, leading to client crashes. It'd be desirable to use
wider fields on 64-bit machines, but because all of libpq's external APIs
use plain "int" for row counters, that's going to be hard to accomplish
without an ABI break. Given the lack of complaints so far, and the general
pain that would be involved in using such huge PGresults, let's settle for
just preventing the overflow and reporting a useful error message if it
does happen. Also, for a couple more lines of code we can increase the
threshold of trouble from INT_MAX/2 to INT_MAX rows.
To do that, refactor pqAddTuple() to allow returning an error message that
replaces the default assumption that it failed because of out-of-memory.
Along the way, fix PQsetvalue() so that it reports all failures via
pqInternalNotice(). It already did so in the case of bad field number,
but neglected to report anything for other error causes.
Because of the potential for crashes, this seems like a back-patchable
bug fix, despite the lack of field reports.
Michael Paquier, per a complaint from Igor Korot.
Discussion: https://postgr.es/m/CA+FnnTxyLWyjY1goewmJNxC==HQCCF4fKkoCTa9qR36oRAHDPw@mail.gmail.com
2017-08-29 21:18:01 +02:00
|
|
|
#include <limits.h>
|
1999-07-19 04:27:16 +02:00
|
|
|
|
1998-07-03 06:24:16 +02:00
|
|
|
#ifdef WIN32
|
|
|
|
|
#include "win32.h"
|
1999-07-19 08:25:40 +02:00
|
|
|
#else
|
|
|
|
|
#include <unistd.h>
|
1998-07-03 06:24:16 +02:00
|
|
|
#endif
|
1997-11-10 06:10:50 +01:00
|
|
|
|
2019-10-23 06:08:53 +02:00
|
|
|
#include "libpq-fe.h"
|
|
|
|
|
#include "libpq-int.h"
|
|
|
|
|
#include "mb/pg_wchar.h"
|
|
|
|
|
|
1998-05-07 01:51:16 +02:00
|
|
|
/* keep this in same order as ExecStatusType in libpq-fe.h */
|
2005-06-09 22:01:16 +02:00
|
|
|
char *const pgresStatus[] = {
|
1996-07-09 08:22:35 +02:00
|
|
|
"PGRES_EMPTY_QUERY",
|
|
|
|
|
"PGRES_COMMAND_OK",
|
|
|
|
|
"PGRES_TUPLES_OK",
|
1998-03-15 09:11:11 +01:00
|
|
|
"PGRES_COPY_OUT",
|
|
|
|
|
"PGRES_COPY_IN",
|
1996-07-09 08:22:35 +02:00
|
|
|
"PGRES_BAD_RESPONSE",
|
|
|
|
|
"PGRES_NONFATAL_ERROR",
|
2010-12-28 17:02:10 +01:00
|
|
|
"PGRES_FATAL_ERROR",
|
2012-08-02 19:10:30 +02:00
|
|
|
"PGRES_COPY_BOTH",
|
2021-03-15 22:13:42 +01:00
|
|
|
"PGRES_SINGLE_TUPLE",
|
|
|
|
|
"PGRES_PIPELINE_SYNC",
|
|
|
|
|
"PGRES_PIPELINE_ABORTED"
|
1996-07-09 08:22:35 +02:00
|
|
|
};
|
|
|
|
|
|
Rearrange libpq's error reporting to avoid duplicated error text.
Since commit ffa2e4670, libpq accumulates text in conn->errorMessage
across a whole query cycle. In some situations, we may report more
than one error event within a cycle: the easiest case to reach is
where we report a FATAL error message from the server, and then a
bit later we detect loss of connection. Since, historically, each
error PGresult bears the entire content of conn->errorMessage,
this results in duplication of the FATAL message in any output that
concatenates the contents of the PGresults.
Accumulation in errorMessage still seems like a good idea, especially
in view of the number of places that did ad-hoc error concatenation
before ffa2e4670. So to fix this, let's track how much of
conn->errorMessage has been read out into error PGresults, and only
include new text in later PGresults. The tricky part of that is
to be sure that we never discard an error PGresult once made (else
we'd risk dropping some text, a problem much worse than duplication).
While libpq formerly did that in some code paths, a little bit of
rearrangement lets us postpone making an error PGresult at all until
we are about to return it.
A side benefit of that postponement is that it now becomes practical
to return a dummy static PGresult in cases where we hit out-of-memory
while trying to manufacture an error PGresult. This eliminates the
admittedly-very-rare case where we'd return NULL from PQgetResult,
indicating successful query completion, even though what actually
happened was an OOM failure.
Discussion: https://postgr.es/m/ab4288f8-be5c-57fb-2400-e3e857f53e46@enterprisedb.com
2022-02-18 21:35:15 +01:00
|
|
|
/* We return this if we're unable to make a PGresult at all */
|
|
|
|
|
static const PGresult OOM_result = {
|
|
|
|
|
.resultStatus = PGRES_FATAL_ERROR,
|
|
|
|
|
.client_encoding = PG_SQL_ASCII,
|
|
|
|
|
.errMsg = "out of memory\n",
|
|
|
|
|
};
|
|
|
|
|
|
Modify libpq's string-escaping routines to be aware of encoding considerations
and standard_conforming_strings. The encoding changes are needed for proper
escaping in multibyte encodings, as per the SQL-injection vulnerabilities
noted in CVE-2006-2313 and CVE-2006-2314. Concurrent fixes are being applied
to the server to ensure that it rejects queries that may have been corrupted
by attempted SQL injection, but this merely guarantees that unpatched clients
will fail rather than allow injection. An actual fix requires changing the
client-side code. While at it we have also fixed these routines to understand
about standard_conforming_strings, so that the upcoming changeover to SQL-spec
string syntax can be somewhat transparent to client code.
Since the existing API of PQescapeString and PQescapeBytea provides no way to
inform them which settings are in use, these functions are now deprecated in
favor of new functions PQescapeStringConn and PQescapeByteaConn. The new
functions take the PGconn to which the string will be sent as an additional
parameter, and look inside the connection structure to determine what to do.
So as to provide some functionality for clients using the old functions,
libpq stores the latest encoding and standard_conforming_strings values
received from the backend in static variables, and the old functions consult
these variables. This will work reliably in clients using only one Postgres
connection at a time, or even multiple connections if they all use the same
encoding and string syntax settings; which should cover many practical
scenarios.
Clients that use homebrew escaping methods, such as PHP's addslashes()
function or even hardwired regexp substitution, will require extra effort
to fix :-(. It is strongly recommended that such code be replaced by use of
PQescapeStringConn/PQescapeByteaConn if at all feasible.
2006-05-21 22:19:23 +02:00
|
|
|
/*
|
|
|
|
|
* static state needed by PQescapeString and PQescapeBytea; initialize to
|
|
|
|
|
* values that result in backward-compatible behavior
|
|
|
|
|
*/
|
|
|
|
|
static int static_client_encoding = PG_SQL_ASCII;
|
|
|
|
|
static bool static_std_strings = false;
|
1996-07-09 08:22:35 +02:00
|
|
|
|
1998-08-09 04:59:33 +02:00
|
|
|
|
2018-09-12 00:45:02 +02:00
|
|
|
static PGEvent *dupEvents(PGEvent *events, int count, size_t *memSize);
|
Teach libpq to detect integer overflow in the row count of a PGresult.
Adding more than 1 billion rows to a PGresult would overflow its ntups and
tupArrSize fields, leading to client crashes. It'd be desirable to use
wider fields on 64-bit machines, but because all of libpq's external APIs
use plain "int" for row counters, that's going to be hard to accomplish
without an ABI break. Given the lack of complaints so far, and the general
pain that would be involved in using such huge PGresults, let's settle for
just preventing the overflow and reporting a useful error message if it
does happen. Also, for a couple more lines of code we can increase the
threshold of trouble from INT_MAX/2 to INT_MAX rows.
To do that, refactor pqAddTuple() to allow returning an error message that
replaces the default assumption that it failed because of out-of-memory.
Along the way, fix PQsetvalue() so that it reports all failures via
pqInternalNotice(). It already did so in the case of bad field number,
but neglected to report anything for other error causes.
Because of the potential for crashes, this seems like a back-patchable
bug fix, despite the lack of field reports.
Michael Paquier, per a complaint from Igor Korot.
Discussion: https://postgr.es/m/CA+FnnTxyLWyjY1goewmJNxC==HQCCF4fKkoCTa9qR36oRAHDPw@mail.gmail.com
2017-08-29 21:18:01 +02:00
|
|
|
static bool pqAddTuple(PGresult *res, PGresAttValue *tup,
|
|
|
|
|
const char **errmsgp);
|
In libpq, always append new error messages to conn->errorMessage.
Previously, we had an undisciplined mish-mash of printfPQExpBuffer and
appendPQExpBuffer calls to report errors within libpq. This commit
establishes a uniform rule that appendPQExpBuffer[Str] should be used.
conn->errorMessage is reset only at the start of an application request,
and then accumulates messages till we're done. We can remove no less
than three different ad-hoc mechanisms that were used to get the effect
of concatenation of error messages within a sequence of operations.
Although this makes things quite a bit cleaner conceptually, the main
reason to do it is to make the world safer for the multiple-target-host
feature that was added awhile back. Previously, there were many cases
in which an error occurring during an individual host connection attempt
would wipe out the record of what had happened during previous attempts.
(The reporting is still inadequate, in that it can be hard to tell which
host got the failure, but that seems like a matter for a separate commit.)
Currently, lo_import and lo_export contain exceptions to the "never
use printfPQExpBuffer" rule. If we changed them, we'd risk reporting
an incidental lo_close failure before the actual read or write
failure, which would be confusing, not least because lo_close happened
after the main failure. We could improve this by inventing an
internal version of lo_close that doesn't reset the errorMessage; but
we'd also need a version of PQfn() that does that, and it didn't quite
seem worth the trouble for now.
Discussion: https://postgr.es/m/BN6PR05MB3492948E4FD76C156E747E8BC9160@BN6PR05MB3492.namprd05.prod.outlook.com
2021-01-11 19:12:09 +01:00
|
|
|
static int PQsendQueryInternal(PGconn *conn, const char *query, bool newQuery);
|
|
|
|
|
static bool PQsendQueryStart(PGconn *conn, bool newQuery);
|
2003-08-13 18:29:03 +02:00
|
|
|
static int PQsendQueryGuts(PGconn *conn,
|
|
|
|
|
const char *command,
|
|
|
|
|
const char *stmtName,
|
|
|
|
|
int nParams,
|
|
|
|
|
const Oid *paramTypes,
|
|
|
|
|
const char *const *paramValues,
|
|
|
|
|
const int *paramLengths,
|
|
|
|
|
const int *paramFormats,
|
|
|
|
|
int resultFormat);
|
1998-05-07 01:51:16 +02:00
|
|
|
static void parseInput(PGconn *conn);
|
2014-02-12 23:50:07 +01:00
|
|
|
static PGresult *getCopyResult(PGconn *conn, ExecStatusType copytype);
|
2003-06-21 23:51:35 +02:00
|
|
|
static bool PQexecStart(PGconn *conn);
|
|
|
|
|
static PGresult *PQexecFinish(PGconn *conn);
|
2006-08-18 21:52:39 +02:00
|
|
|
static int PQsendDescribe(PGconn *conn, char desc_type,
|
|
|
|
|
const char *desc_target);
|
2008-09-17 06:31:08 +02:00
|
|
|
static int check_field_number(const PGresult *res, int field_num);
|
2021-03-15 22:13:42 +01:00
|
|
|
static void pqPipelineProcessQueue(PGconn *conn);
|
|
|
|
|
static int pqPipelineFlush(PGconn *conn);
|
1997-09-07 07:04:48 +02:00
|
|
|
|
2003-03-22 04:29:06 +01:00
|
|
|
|
1998-11-18 01:47:28 +01:00
|
|
|
/* ----------------
|
|
|
|
|
* Space management for PGresult.
|
|
|
|
|
*
|
|
|
|
|
* Formerly, libpq did a separate malloc() for each field of each tuple
|
|
|
|
|
* returned by a query. This was remarkably expensive --- malloc/free
|
|
|
|
|
* consumed a sizable part of the application's runtime. And there is
|
|
|
|
|
* no real need to keep track of the fields separately, since they will
|
|
|
|
|
* all be freed together when the PGresult is released. So now, we grab
|
|
|
|
|
* large blocks of storage from malloc and allocate space for query data
|
|
|
|
|
* within these blocks, using a trivially simple allocator. This reduces
|
|
|
|
|
* the number of malloc/free calls dramatically, and it also avoids
|
|
|
|
|
* fragmentation of the malloc storage arena.
|
|
|
|
|
* The PGresult structure itself is still malloc'd separately. We could
|
|
|
|
|
* combine it with the first allocation block, but that would waste space
|
|
|
|
|
* for the common case that no extra storage is actually needed (that is,
|
|
|
|
|
* the SQL command did not return tuples).
|
2001-08-17 17:11:15 +02:00
|
|
|
*
|
1998-11-18 01:47:28 +01:00
|
|
|
* We also malloc the top-level array of tuple pointers separately, because
|
|
|
|
|
* we need to be able to enlarge it via realloc, and our trivial space
|
|
|
|
|
* allocator doesn't handle that effectively. (Too bad the FE/BE protocol
|
|
|
|
|
* doesn't tell us up front how many tuples will be returned.)
|
|
|
|
|
* All other subsidiary storage for a PGresult is kept in PGresult_data blocks
|
|
|
|
|
* of size PGRESULT_DATA_BLOCKSIZE. The overhead at the start of each block
|
|
|
|
|
* is just a link to the next one, if any. Free-space management info is
|
|
|
|
|
* kept in the owning PGresult.
|
|
|
|
|
* A query returning a small amount of data will thus require three malloc
|
|
|
|
|
* calls: one for the PGresult, one for the tuples pointer array, and one
|
|
|
|
|
* PGresult_data block.
|
2001-08-17 17:11:15 +02:00
|
|
|
*
|
1998-11-18 01:47:28 +01:00
|
|
|
* Only the most recently allocated PGresult_data block is a candidate to
|
|
|
|
|
* have more stuff added to it --- any extra space left over in older blocks
|
|
|
|
|
* is wasted. We could be smarter and search the whole chain, but the point
|
|
|
|
|
* here is to be simple and fast. Typical applications do not keep a PGresult
|
|
|
|
|
* around very long anyway, so some wasted space within one is not a problem.
|
|
|
|
|
*
|
|
|
|
|
* Tuning constants for the space allocator are:
|
|
|
|
|
* PGRESULT_DATA_BLOCKSIZE: size of a standard allocation block, in bytes
|
|
|
|
|
* PGRESULT_ALIGN_BOUNDARY: assumed alignment requirement for binary data
|
|
|
|
|
* PGRESULT_SEP_ALLOC_THRESHOLD: objects bigger than this are given separate
|
|
|
|
|
* blocks, instead of being crammed into a regular allocation block.
|
|
|
|
|
* Requirements for correct function are:
|
|
|
|
|
* PGRESULT_ALIGN_BOUNDARY must be a multiple of the alignment requirements
|
1999-05-12 06:38:24 +02:00
|
|
|
* of all machine data types. (Currently this is set from configure
|
|
|
|
|
* tests, so it should be OK automatically.)
|
|
|
|
|
* PGRESULT_SEP_ALLOC_THRESHOLD + PGRESULT_BLOCK_OVERHEAD <=
|
1998-11-18 01:47:28 +01:00
|
|
|
* PGRESULT_DATA_BLOCKSIZE
|
|
|
|
|
* pqResultAlloc assumes an object smaller than the threshold will fit
|
|
|
|
|
* in a new block.
|
|
|
|
|
* The amount of space wasted at the end of a block could be as much as
|
|
|
|
|
* PGRESULT_SEP_ALLOC_THRESHOLD, so it doesn't pay to make that too large.
|
|
|
|
|
* ----------------
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
#define PGRESULT_DATA_BLOCKSIZE 2048
|
1999-04-04 22:10:12 +02:00
|
|
|
#define PGRESULT_ALIGN_BOUNDARY MAXIMUM_ALIGNOF /* from configure */
|
2004-10-21 21:28:36 +02:00
|
|
|
#define PGRESULT_BLOCK_OVERHEAD Max(sizeof(PGresult_data), PGRESULT_ALIGN_BOUNDARY)
|
1998-11-18 01:47:28 +01:00
|
|
|
#define PGRESULT_SEP_ALLOC_THRESHOLD (PGRESULT_DATA_BLOCKSIZE / 2)
|
|
|
|
|
|
|
|
|
|
|
1996-07-09 08:22:35 +02:00
|
|
|
/*
|
1998-09-03 04:10:56 +02:00
|
|
|
* PQmakeEmptyPGresult
|
1998-10-01 03:40:26 +02:00
|
|
|
* returns a newly allocated, initialized PGresult with given status.
|
|
|
|
|
* If conn is not NULL and status indicates an error, the conn's
|
2008-09-17 06:31:08 +02:00
|
|
|
* errorMessage is copied. Also, any PGEvents are copied from the conn.
|
Rearrange libpq's error reporting to avoid duplicated error text.
Since commit ffa2e4670, libpq accumulates text in conn->errorMessage
across a whole query cycle. In some situations, we may report more
than one error event within a cycle: the easiest case to reach is
where we report a FATAL error message from the server, and then a
bit later we detect loss of connection. Since, historically, each
error PGresult bears the entire content of conn->errorMessage,
this results in duplication of the FATAL message in any output that
concatenates the contents of the PGresults.
Accumulation in errorMessage still seems like a good idea, especially
in view of the number of places that did ad-hoc error concatenation
before ffa2e4670. So to fix this, let's track how much of
conn->errorMessage has been read out into error PGresults, and only
include new text in later PGresults. The tricky part of that is
to be sure that we never discard an error PGresult once made (else
we'd risk dropping some text, a problem much worse than duplication).
While libpq formerly did that in some code paths, a little bit of
rearrangement lets us postpone making an error PGresult at all until
we are about to return it.
A side benefit of that postponement is that it now becomes practical
to return a dummy static PGresult in cases where we hit out-of-memory
while trying to manufacture an error PGresult. This eliminates the
admittedly-very-rare case where we'd return NULL from PQgetResult,
indicating successful query completion, even though what actually
happened was an OOM failure.
Discussion: https://postgr.es/m/ab4288f8-be5c-57fb-2400-e3e857f53e46@enterprisedb.com
2022-02-18 21:35:15 +01:00
|
|
|
*
|
|
|
|
|
* Note: the logic to copy the conn's errorMessage is now vestigial;
|
|
|
|
|
* no internal caller uses it. However, that behavior is documented for
|
|
|
|
|
* outside callers, so we'd better keep it.
|
1996-07-09 08:22:35 +02:00
|
|
|
*/
|
1998-09-03 04:10:56 +02:00
|
|
|
PGresult *
|
|
|
|
|
PQmakeEmptyPGresult(PGconn *conn, ExecStatusType status)
|
1996-07-09 08:22:35 +02:00
|
|
|
{
|
|
|
|
|
PGresult *result;
|
1997-09-07 07:04:48 +02:00
|
|
|
|
1996-07-09 08:22:35 +02:00
|
|
|
result = (PGresult *) malloc(sizeof(PGresult));
|
2005-06-12 02:00:21 +02:00
|
|
|
if (!result)
|
|
|
|
|
return NULL;
|
1997-09-07 07:04:48 +02:00
|
|
|
|
1996-07-09 08:22:35 +02:00
|
|
|
result->ntups = 0;
|
|
|
|
|
result->numAttributes = 0;
|
|
|
|
|
result->attDescs = NULL;
|
|
|
|
|
result->tuples = NULL;
|
|
|
|
|
result->tupArrSize = 0;
|
2006-08-18 21:52:39 +02:00
|
|
|
result->numParameters = 0;
|
|
|
|
|
result->paramDescs = NULL;
|
1996-07-09 08:22:35 +02:00
|
|
|
result->resultStatus = status;
|
|
|
|
|
result->cmdStatus[0] = '\0';
|
|
|
|
|
result->binary = 0;
|
2008-09-17 06:31:08 +02:00
|
|
|
result->events = NULL;
|
|
|
|
|
result->nEvents = 0;
|
1998-10-01 03:40:26 +02:00
|
|
|
result->errMsg = NULL;
|
2003-06-21 23:51:35 +02:00
|
|
|
result->errFields = NULL;
|
2016-04-03 18:24:54 +02:00
|
|
|
result->errQuery = NULL;
|
1998-11-18 01:47:28 +01:00
|
|
|
result->null_field[0] = '\0';
|
|
|
|
|
result->curBlock = NULL;
|
|
|
|
|
result->curOffset = 0;
|
|
|
|
|
result->spaceLeft = 0;
|
2018-09-12 00:45:02 +02:00
|
|
|
result->memorySize = sizeof(PGresult);
|
1998-11-18 01:47:28 +01:00
|
|
|
|
2000-03-11 04:08:37 +01:00
|
|
|
if (conn)
|
1998-10-01 03:40:26 +02:00
|
|
|
{
|
2000-03-15 00:59:23 +01:00
|
|
|
/* copy connection data we might need for operations on PGresult */
|
2003-06-21 23:51:35 +02:00
|
|
|
result->noticeHooks = conn->noticeHooks;
|
2000-03-15 00:59:23 +01:00
|
|
|
result->client_encoding = conn->client_encoding;
|
|
|
|
|
|
2000-03-11 04:08:37 +01:00
|
|
|
/* consider copying conn's errorMessage */
|
1998-10-01 03:40:26 +02:00
|
|
|
switch (status)
|
|
|
|
|
{
|
|
|
|
|
case PGRES_EMPTY_QUERY:
|
|
|
|
|
case PGRES_COMMAND_OK:
|
|
|
|
|
case PGRES_TUPLES_OK:
|
|
|
|
|
case PGRES_COPY_OUT:
|
|
|
|
|
case PGRES_COPY_IN:
|
2010-12-11 15:27:37 +01:00
|
|
|
case PGRES_COPY_BOTH:
|
2012-08-02 19:10:30 +02:00
|
|
|
case PGRES_SINGLE_TUPLE:
|
1998-10-01 03:40:26 +02:00
|
|
|
/* non-error cases */
|
|
|
|
|
break;
|
|
|
|
|
default:
|
Rearrange libpq's error reporting to avoid duplicated error text.
Since commit ffa2e4670, libpq accumulates text in conn->errorMessage
across a whole query cycle. In some situations, we may report more
than one error event within a cycle: the easiest case to reach is
where we report a FATAL error message from the server, and then a
bit later we detect loss of connection. Since, historically, each
error PGresult bears the entire content of conn->errorMessage,
this results in duplication of the FATAL message in any output that
concatenates the contents of the PGresults.
Accumulation in errorMessage still seems like a good idea, especially
in view of the number of places that did ad-hoc error concatenation
before ffa2e4670. So to fix this, let's track how much of
conn->errorMessage has been read out into error PGresults, and only
include new text in later PGresults. The tricky part of that is
to be sure that we never discard an error PGresult once made (else
we'd risk dropping some text, a problem much worse than duplication).
While libpq formerly did that in some code paths, a little bit of
rearrangement lets us postpone making an error PGresult at all until
we are about to return it.
A side benefit of that postponement is that it now becomes practical
to return a dummy static PGresult in cases where we hit out-of-memory
while trying to manufacture an error PGresult. This eliminates the
admittedly-very-rare case where we'd return NULL from PQgetResult,
indicating successful query completion, even though what actually
happened was an OOM failure.
Discussion: https://postgr.es/m/ab4288f8-be5c-57fb-2400-e3e857f53e46@enterprisedb.com
2022-02-18 21:35:15 +01:00
|
|
|
/* we intentionally do not use or modify errorReported here */
|
|
|
|
|
pqSetResultError(result, &conn->errorMessage, 0);
|
1998-10-01 03:40:26 +02:00
|
|
|
break;
|
|
|
|
|
}
|
2008-09-17 06:31:08 +02:00
|
|
|
|
|
|
|
|
/* copy events last; result must be valid if we need to PQclear */
|
|
|
|
|
if (conn->nEvents > 0)
|
|
|
|
|
{
|
2018-09-12 00:45:02 +02:00
|
|
|
result->events = dupEvents(conn->events, conn->nEvents,
|
|
|
|
|
&result->memorySize);
|
2008-09-17 06:31:08 +02:00
|
|
|
if (!result->events)
|
|
|
|
|
{
|
|
|
|
|
PQclear(result);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
result->nEvents = conn->nEvents;
|
|
|
|
|
}
|
1998-10-01 03:40:26 +02:00
|
|
|
}
|
2000-03-11 04:08:37 +01:00
|
|
|
else
|
|
|
|
|
{
|
2000-03-15 00:59:23 +01:00
|
|
|
/* defaults... */
|
2003-06-21 23:51:35 +02:00
|
|
|
result->noticeHooks.noticeRec = NULL;
|
|
|
|
|
result->noticeHooks.noticeRecArg = NULL;
|
|
|
|
|
result->noticeHooks.noticeProc = NULL;
|
|
|
|
|
result->noticeHooks.noticeProcArg = NULL;
|
|
|
|
|
result->client_encoding = PG_SQL_ASCII;
|
2000-03-11 04:08:37 +01:00
|
|
|
}
|
|
|
|
|
|
1996-07-09 08:22:35 +02:00
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
|
2008-09-17 06:31:08 +02:00
|
|
|
/*
|
|
|
|
|
* PQsetResultAttrs
|
|
|
|
|
*
|
|
|
|
|
* Set the attributes for a given result. This function fails if there are
|
|
|
|
|
* already attributes contained in the provided result. The call is
|
2012-04-24 04:43:09 +02:00
|
|
|
* ignored if numAttributes is zero or attDescs is NULL. If the
|
2008-09-17 06:31:08 +02:00
|
|
|
* function fails, it returns zero. If the function succeeds, it
|
|
|
|
|
* returns a non-zero value.
|
|
|
|
|
*/
|
|
|
|
|
int
|
|
|
|
|
PQsetResultAttrs(PGresult *res, int numAttributes, PGresAttDesc *attDescs)
|
|
|
|
|
{
|
|
|
|
|
int i;
|
|
|
|
|
|
Rearrange libpq's error reporting to avoid duplicated error text.
Since commit ffa2e4670, libpq accumulates text in conn->errorMessage
across a whole query cycle. In some situations, we may report more
than one error event within a cycle: the easiest case to reach is
where we report a FATAL error message from the server, and then a
bit later we detect loss of connection. Since, historically, each
error PGresult bears the entire content of conn->errorMessage,
this results in duplication of the FATAL message in any output that
concatenates the contents of the PGresults.
Accumulation in errorMessage still seems like a good idea, especially
in view of the number of places that did ad-hoc error concatenation
before ffa2e4670. So to fix this, let's track how much of
conn->errorMessage has been read out into error PGresults, and only
include new text in later PGresults. The tricky part of that is
to be sure that we never discard an error PGresult once made (else
we'd risk dropping some text, a problem much worse than duplication).
While libpq formerly did that in some code paths, a little bit of
rearrangement lets us postpone making an error PGresult at all until
we are about to return it.
A side benefit of that postponement is that it now becomes practical
to return a dummy static PGresult in cases where we hit out-of-memory
while trying to manufacture an error PGresult. This eliminates the
admittedly-very-rare case where we'd return NULL from PQgetResult,
indicating successful query completion, even though what actually
happened was an OOM failure.
Discussion: https://postgr.es/m/ab4288f8-be5c-57fb-2400-e3e857f53e46@enterprisedb.com
2022-02-18 21:35:15 +01:00
|
|
|
/* Fail if argument is NULL or OOM_result */
|
|
|
|
|
if (!res || (const PGresult *) res == &OOM_result)
|
|
|
|
|
return false;
|
|
|
|
|
|
2008-09-17 06:31:08 +02:00
|
|
|
/* If attrs already exist, they cannot be overwritten. */
|
Rearrange libpq's error reporting to avoid duplicated error text.
Since commit ffa2e4670, libpq accumulates text in conn->errorMessage
across a whole query cycle. In some situations, we may report more
than one error event within a cycle: the easiest case to reach is
where we report a FATAL error message from the server, and then a
bit later we detect loss of connection. Since, historically, each
error PGresult bears the entire content of conn->errorMessage,
this results in duplication of the FATAL message in any output that
concatenates the contents of the PGresults.
Accumulation in errorMessage still seems like a good idea, especially
in view of the number of places that did ad-hoc error concatenation
before ffa2e4670. So to fix this, let's track how much of
conn->errorMessage has been read out into error PGresults, and only
include new text in later PGresults. The tricky part of that is
to be sure that we never discard an error PGresult once made (else
we'd risk dropping some text, a problem much worse than duplication).
While libpq formerly did that in some code paths, a little bit of
rearrangement lets us postpone making an error PGresult at all until
we are about to return it.
A side benefit of that postponement is that it now becomes practical
to return a dummy static PGresult in cases where we hit out-of-memory
while trying to manufacture an error PGresult. This eliminates the
admittedly-very-rare case where we'd return NULL from PQgetResult,
indicating successful query completion, even though what actually
happened was an OOM failure.
Discussion: https://postgr.es/m/ab4288f8-be5c-57fb-2400-e3e857f53e46@enterprisedb.com
2022-02-18 21:35:15 +01:00
|
|
|
if (res->numAttributes > 0)
|
2017-08-16 06:22:32 +02:00
|
|
|
return false;
|
2008-09-17 06:31:08 +02:00
|
|
|
|
|
|
|
|
/* ignore no-op request */
|
|
|
|
|
if (numAttributes <= 0 || !attDescs)
|
2017-08-16 06:22:32 +02:00
|
|
|
return true;
|
2008-09-17 06:31:08 +02:00
|
|
|
|
|
|
|
|
res->attDescs = (PGresAttDesc *)
|
|
|
|
|
PQresultAlloc(res, numAttributes * sizeof(PGresAttDesc));
|
|
|
|
|
|
|
|
|
|
if (!res->attDescs)
|
2017-08-16 06:22:32 +02:00
|
|
|
return false;
|
2008-09-17 06:31:08 +02:00
|
|
|
|
|
|
|
|
res->numAttributes = numAttributes;
|
|
|
|
|
memcpy(res->attDescs, attDescs, numAttributes * sizeof(PGresAttDesc));
|
|
|
|
|
|
|
|
|
|
/* deep-copy the attribute names, and determine format */
|
|
|
|
|
res->binary = 1;
|
|
|
|
|
for (i = 0; i < res->numAttributes; i++)
|
|
|
|
|
{
|
|
|
|
|
if (res->attDescs[i].name)
|
|
|
|
|
res->attDescs[i].name = pqResultStrdup(res, res->attDescs[i].name);
|
|
|
|
|
else
|
|
|
|
|
res->attDescs[i].name = res->null_field;
|
|
|
|
|
|
|
|
|
|
if (!res->attDescs[i].name)
|
2017-08-16 06:22:32 +02:00
|
|
|
return false;
|
2008-09-17 06:31:08 +02:00
|
|
|
|
|
|
|
|
if (res->attDescs[i].format == 0)
|
|
|
|
|
res->binary = 0;
|
|
|
|
|
}
|
|
|
|
|
|
2017-08-16 06:22:32 +02:00
|
|
|
return true;
|
2008-09-17 06:31:08 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* PQcopyResult
|
|
|
|
|
*
|
|
|
|
|
* Returns a deep copy of the provided 'src' PGresult, which cannot be NULL.
|
|
|
|
|
* The 'flags' argument controls which portions of the result will or will
|
|
|
|
|
* NOT be copied. The created result is always put into the
|
|
|
|
|
* PGRES_TUPLES_OK status. The source result error message is not copied,
|
|
|
|
|
* although cmdStatus is.
|
|
|
|
|
*
|
|
|
|
|
* To set custom attributes, use PQsetResultAttrs. That function requires
|
|
|
|
|
* that there are no attrs contained in the result, so to use that
|
|
|
|
|
* function you cannot use the PG_COPYRES_ATTRS or PG_COPYRES_TUPLES
|
|
|
|
|
* options with this function.
|
|
|
|
|
*
|
|
|
|
|
* Options:
|
|
|
|
|
* PG_COPYRES_ATTRS - Copy the source result's attributes
|
|
|
|
|
*
|
|
|
|
|
* PG_COPYRES_TUPLES - Copy the source result's tuples. This implies
|
2013-06-03 14:40:27 +02:00
|
|
|
* copying the attrs, seeing how the attrs are needed by the tuples.
|
2008-09-17 06:31:08 +02:00
|
|
|
*
|
|
|
|
|
* PG_COPYRES_EVENTS - Copy the source result's events.
|
|
|
|
|
*
|
|
|
|
|
* PG_COPYRES_NOTICEHOOKS - Copy the source result's notice hooks.
|
|
|
|
|
*/
|
|
|
|
|
PGresult *
|
|
|
|
|
PQcopyResult(const PGresult *src, int flags)
|
|
|
|
|
{
|
|
|
|
|
PGresult *dest;
|
|
|
|
|
int i;
|
|
|
|
|
|
|
|
|
|
if (!src)
|
|
|
|
|
return NULL;
|
|
|
|
|
|
|
|
|
|
dest = PQmakeEmptyPGresult(NULL, PGRES_TUPLES_OK);
|
|
|
|
|
if (!dest)
|
|
|
|
|
return NULL;
|
|
|
|
|
|
|
|
|
|
/* Always copy these over. Is cmdStatus really useful here? */
|
|
|
|
|
dest->client_encoding = src->client_encoding;
|
|
|
|
|
strcpy(dest->cmdStatus, src->cmdStatus);
|
|
|
|
|
|
|
|
|
|
/* Wants attrs? */
|
|
|
|
|
if (flags & (PG_COPYRES_ATTRS | PG_COPYRES_TUPLES))
|
|
|
|
|
{
|
|
|
|
|
if (!PQsetResultAttrs(dest, src->numAttributes, src->attDescs))
|
|
|
|
|
{
|
|
|
|
|
PQclear(dest);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Wants to copy tuples? */
|
|
|
|
|
if (flags & PG_COPYRES_TUPLES)
|
|
|
|
|
{
|
|
|
|
|
int tup,
|
|
|
|
|
field;
|
|
|
|
|
|
|
|
|
|
for (tup = 0; tup < src->ntups; tup++)
|
|
|
|
|
{
|
|
|
|
|
for (field = 0; field < src->numAttributes; field++)
|
|
|
|
|
{
|
|
|
|
|
if (!PQsetvalue(dest, tup, field,
|
|
|
|
|
src->tuples[tup][field].value,
|
|
|
|
|
src->tuples[tup][field].len))
|
|
|
|
|
{
|
|
|
|
|
PQclear(dest);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Wants to copy notice hooks? */
|
|
|
|
|
if (flags & PG_COPYRES_NOTICEHOOKS)
|
|
|
|
|
dest->noticeHooks = src->noticeHooks;
|
|
|
|
|
|
2008-09-19 18:40:40 +02:00
|
|
|
/* Wants to copy PGEvents? */
|
2008-09-17 06:31:08 +02:00
|
|
|
if ((flags & PG_COPYRES_EVENTS) && src->nEvents > 0)
|
|
|
|
|
{
|
2018-09-12 00:45:02 +02:00
|
|
|
dest->events = dupEvents(src->events, src->nEvents,
|
|
|
|
|
&dest->memorySize);
|
2008-09-17 06:31:08 +02:00
|
|
|
if (!dest->events)
|
|
|
|
|
{
|
|
|
|
|
PQclear(dest);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
dest->nEvents = src->nEvents;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Okay, trigger PGEVT_RESULTCOPY event */
|
|
|
|
|
for (i = 0; i < dest->nEvents; i++)
|
|
|
|
|
{
|
2022-02-18 17:37:27 +01:00
|
|
|
/* We don't fire events that had some previous failure */
|
2008-09-19 18:40:40 +02:00
|
|
|
if (src->events[i].resultInitialized)
|
2008-09-17 06:31:08 +02:00
|
|
|
{
|
2008-09-19 18:40:40 +02:00
|
|
|
PGEventResultCopy evt;
|
|
|
|
|
|
|
|
|
|
evt.src = src;
|
|
|
|
|
evt.dest = dest;
|
2022-02-18 17:37:27 +01:00
|
|
|
if (dest->events[i].proc(PGEVT_RESULTCOPY, &evt,
|
|
|
|
|
dest->events[i].passThrough))
|
|
|
|
|
dest->events[i].resultInitialized = true;
|
2008-09-17 06:31:08 +02:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return dest;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
2008-09-19 18:40:40 +02:00
|
|
|
* Copy an array of PGEvents (with no extra space for more).
|
|
|
|
|
* Does not duplicate the event instance data, sets this to NULL.
|
|
|
|
|
* Also, the resultInitialized flags are all cleared.
|
2018-09-12 00:45:02 +02:00
|
|
|
* The total space allocated is added to *memSize.
|
2008-09-17 06:31:08 +02:00
|
|
|
*/
|
|
|
|
|
static PGEvent *
|
2018-09-12 00:45:02 +02:00
|
|
|
dupEvents(PGEvent *events, int count, size_t *memSize)
|
2008-09-17 06:31:08 +02:00
|
|
|
{
|
|
|
|
|
PGEvent *newEvents;
|
2018-09-12 00:45:02 +02:00
|
|
|
size_t msize;
|
2008-09-17 06:31:08 +02:00
|
|
|
int i;
|
|
|
|
|
|
|
|
|
|
if (!events || count <= 0)
|
|
|
|
|
return NULL;
|
|
|
|
|
|
2018-09-12 00:45:02 +02:00
|
|
|
msize = count * sizeof(PGEvent);
|
|
|
|
|
newEvents = (PGEvent *) malloc(msize);
|
2008-09-17 06:31:08 +02:00
|
|
|
if (!newEvents)
|
|
|
|
|
return NULL;
|
|
|
|
|
|
|
|
|
|
for (i = 0; i < count; i++)
|
|
|
|
|
{
|
2008-09-19 18:40:40 +02:00
|
|
|
newEvents[i].proc = events[i].proc;
|
|
|
|
|
newEvents[i].passThrough = events[i].passThrough;
|
2008-09-17 06:31:08 +02:00
|
|
|
newEvents[i].data = NULL;
|
2017-08-16 06:22:32 +02:00
|
|
|
newEvents[i].resultInitialized = false;
|
2008-09-19 18:40:40 +02:00
|
|
|
newEvents[i].name = strdup(events[i].name);
|
2008-09-17 06:31:08 +02:00
|
|
|
if (!newEvents[i].name)
|
|
|
|
|
{
|
|
|
|
|
while (--i >= 0)
|
|
|
|
|
free(newEvents[i].name);
|
|
|
|
|
free(newEvents);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
2018-09-12 00:45:02 +02:00
|
|
|
msize += strlen(events[i].name) + 1;
|
2008-09-17 06:31:08 +02:00
|
|
|
}
|
|
|
|
|
|
2018-09-12 00:45:02 +02:00
|
|
|
*memSize += msize;
|
2008-09-17 06:31:08 +02:00
|
|
|
return newEvents;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Sets the value for a tuple field. The tup_num must be less than or
|
|
|
|
|
* equal to PQntuples(res). If it is equal, a new tuple is created and
|
|
|
|
|
* added to the result.
|
|
|
|
|
* Returns a non-zero value for success and zero for failure.
|
Teach libpq to detect integer overflow in the row count of a PGresult.
Adding more than 1 billion rows to a PGresult would overflow its ntups and
tupArrSize fields, leading to client crashes. It'd be desirable to use
wider fields on 64-bit machines, but because all of libpq's external APIs
use plain "int" for row counters, that's going to be hard to accomplish
without an ABI break. Given the lack of complaints so far, and the general
pain that would be involved in using such huge PGresults, let's settle for
just preventing the overflow and reporting a useful error message if it
does happen. Also, for a couple more lines of code we can increase the
threshold of trouble from INT_MAX/2 to INT_MAX rows.
To do that, refactor pqAddTuple() to allow returning an error message that
replaces the default assumption that it failed because of out-of-memory.
Along the way, fix PQsetvalue() so that it reports all failures via
pqInternalNotice(). It already did so in the case of bad field number,
but neglected to report anything for other error causes.
Because of the potential for crashes, this seems like a back-patchable
bug fix, despite the lack of field reports.
Michael Paquier, per a complaint from Igor Korot.
Discussion: https://postgr.es/m/CA+FnnTxyLWyjY1goewmJNxC==HQCCF4fKkoCTa9qR36oRAHDPw@mail.gmail.com
2017-08-29 21:18:01 +02:00
|
|
|
* (On failure, we report the specific problem via pqInternalNotice.)
|
2008-09-17 06:31:08 +02:00
|
|
|
*/
|
|
|
|
|
int
|
|
|
|
|
PQsetvalue(PGresult *res, int tup_num, int field_num, char *value, int len)
|
|
|
|
|
{
|
|
|
|
|
PGresAttValue *attval;
|
Teach libpq to detect integer overflow in the row count of a PGresult.
Adding more than 1 billion rows to a PGresult would overflow its ntups and
tupArrSize fields, leading to client crashes. It'd be desirable to use
wider fields on 64-bit machines, but because all of libpq's external APIs
use plain "int" for row counters, that's going to be hard to accomplish
without an ABI break. Given the lack of complaints so far, and the general
pain that would be involved in using such huge PGresults, let's settle for
just preventing the overflow and reporting a useful error message if it
does happen. Also, for a couple more lines of code we can increase the
threshold of trouble from INT_MAX/2 to INT_MAX rows.
To do that, refactor pqAddTuple() to allow returning an error message that
replaces the default assumption that it failed because of out-of-memory.
Along the way, fix PQsetvalue() so that it reports all failures via
pqInternalNotice(). It already did so in the case of bad field number,
but neglected to report anything for other error causes.
Because of the potential for crashes, this seems like a back-patchable
bug fix, despite the lack of field reports.
Michael Paquier, per a complaint from Igor Korot.
Discussion: https://postgr.es/m/CA+FnnTxyLWyjY1goewmJNxC==HQCCF4fKkoCTa9qR36oRAHDPw@mail.gmail.com
2017-08-29 21:18:01 +02:00
|
|
|
const char *errmsg = NULL;
|
2008-09-17 06:31:08 +02:00
|
|
|
|
Rearrange libpq's error reporting to avoid duplicated error text.
Since commit ffa2e4670, libpq accumulates text in conn->errorMessage
across a whole query cycle. In some situations, we may report more
than one error event within a cycle: the easiest case to reach is
where we report a FATAL error message from the server, and then a
bit later we detect loss of connection. Since, historically, each
error PGresult bears the entire content of conn->errorMessage,
this results in duplication of the FATAL message in any output that
concatenates the contents of the PGresults.
Accumulation in errorMessage still seems like a good idea, especially
in view of the number of places that did ad-hoc error concatenation
before ffa2e4670. So to fix this, let's track how much of
conn->errorMessage has been read out into error PGresults, and only
include new text in later PGresults. The tricky part of that is
to be sure that we never discard an error PGresult once made (else
we'd risk dropping some text, a problem much worse than duplication).
While libpq formerly did that in some code paths, a little bit of
rearrangement lets us postpone making an error PGresult at all until
we are about to return it.
A side benefit of that postponement is that it now becomes practical
to return a dummy static PGresult in cases where we hit out-of-memory
while trying to manufacture an error PGresult. This eliminates the
admittedly-very-rare case where we'd return NULL from PQgetResult,
indicating successful query completion, even though what actually
happened was an OOM failure.
Discussion: https://postgr.es/m/ab4288f8-be5c-57fb-2400-e3e857f53e46@enterprisedb.com
2022-02-18 21:35:15 +01:00
|
|
|
/* Fail if argument is NULL or OOM_result */
|
|
|
|
|
if (!res || (const PGresult *) res == &OOM_result)
|
|
|
|
|
return false;
|
|
|
|
|
|
|
|
|
|
/* Invalid field_num? */
|
2008-09-17 06:31:08 +02:00
|
|
|
if (!check_field_number(res, field_num))
|
2017-08-16 06:22:32 +02:00
|
|
|
return false;
|
2008-09-17 06:31:08 +02:00
|
|
|
|
|
|
|
|
/* Invalid tup_num, must be <= ntups */
|
|
|
|
|
if (tup_num < 0 || tup_num > res->ntups)
|
Teach libpq to detect integer overflow in the row count of a PGresult.
Adding more than 1 billion rows to a PGresult would overflow its ntups and
tupArrSize fields, leading to client crashes. It'd be desirable to use
wider fields on 64-bit machines, but because all of libpq's external APIs
use plain "int" for row counters, that's going to be hard to accomplish
without an ABI break. Given the lack of complaints so far, and the general
pain that would be involved in using such huge PGresults, let's settle for
just preventing the overflow and reporting a useful error message if it
does happen. Also, for a couple more lines of code we can increase the
threshold of trouble from INT_MAX/2 to INT_MAX rows.
To do that, refactor pqAddTuple() to allow returning an error message that
replaces the default assumption that it failed because of out-of-memory.
Along the way, fix PQsetvalue() so that it reports all failures via
pqInternalNotice(). It already did so in the case of bad field number,
but neglected to report anything for other error causes.
Because of the potential for crashes, this seems like a back-patchable
bug fix, despite the lack of field reports.
Michael Paquier, per a complaint from Igor Korot.
Discussion: https://postgr.es/m/CA+FnnTxyLWyjY1goewmJNxC==HQCCF4fKkoCTa9qR36oRAHDPw@mail.gmail.com
2017-08-29 21:18:01 +02:00
|
|
|
{
|
|
|
|
|
pqInternalNotice(&res->noticeHooks,
|
|
|
|
|
"row number %d is out of range 0..%d",
|
|
|
|
|
tup_num, res->ntups);
|
2017-08-16 06:22:32 +02:00
|
|
|
return false;
|
Teach libpq to detect integer overflow in the row count of a PGresult.
Adding more than 1 billion rows to a PGresult would overflow its ntups and
tupArrSize fields, leading to client crashes. It'd be desirable to use
wider fields on 64-bit machines, but because all of libpq's external APIs
use plain "int" for row counters, that's going to be hard to accomplish
without an ABI break. Given the lack of complaints so far, and the general
pain that would be involved in using such huge PGresults, let's settle for
just preventing the overflow and reporting a useful error message if it
does happen. Also, for a couple more lines of code we can increase the
threshold of trouble from INT_MAX/2 to INT_MAX rows.
To do that, refactor pqAddTuple() to allow returning an error message that
replaces the default assumption that it failed because of out-of-memory.
Along the way, fix PQsetvalue() so that it reports all failures via
pqInternalNotice(). It already did so in the case of bad field number,
but neglected to report anything for other error causes.
Because of the potential for crashes, this seems like a back-patchable
bug fix, despite the lack of field reports.
Michael Paquier, per a complaint from Igor Korot.
Discussion: https://postgr.es/m/CA+FnnTxyLWyjY1goewmJNxC==HQCCF4fKkoCTa9qR36oRAHDPw@mail.gmail.com
2017-08-29 21:18:01 +02:00
|
|
|
}
|
2008-09-17 06:31:08 +02:00
|
|
|
|
|
|
|
|
/* need to allocate a new tuple? */
|
2011-07-21 18:24:14 +02:00
|
|
|
if (tup_num == res->ntups)
|
2008-09-17 06:31:08 +02:00
|
|
|
{
|
|
|
|
|
PGresAttValue *tup;
|
|
|
|
|
int i;
|
|
|
|
|
|
|
|
|
|
tup = (PGresAttValue *)
|
|
|
|
|
pqResultAlloc(res, res->numAttributes * sizeof(PGresAttValue),
|
2017-08-16 06:22:32 +02:00
|
|
|
true);
|
2008-09-17 06:31:08 +02:00
|
|
|
|
|
|
|
|
if (!tup)
|
Teach libpq to detect integer overflow in the row count of a PGresult.
Adding more than 1 billion rows to a PGresult would overflow its ntups and
tupArrSize fields, leading to client crashes. It'd be desirable to use
wider fields on 64-bit machines, but because all of libpq's external APIs
use plain "int" for row counters, that's going to be hard to accomplish
without an ABI break. Given the lack of complaints so far, and the general
pain that would be involved in using such huge PGresults, let's settle for
just preventing the overflow and reporting a useful error message if it
does happen. Also, for a couple more lines of code we can increase the
threshold of trouble from INT_MAX/2 to INT_MAX rows.
To do that, refactor pqAddTuple() to allow returning an error message that
replaces the default assumption that it failed because of out-of-memory.
Along the way, fix PQsetvalue() so that it reports all failures via
pqInternalNotice(). It already did so in the case of bad field number,
but neglected to report anything for other error causes.
Because of the potential for crashes, this seems like a back-patchable
bug fix, despite the lack of field reports.
Michael Paquier, per a complaint from Igor Korot.
Discussion: https://postgr.es/m/CA+FnnTxyLWyjY1goewmJNxC==HQCCF4fKkoCTa9qR36oRAHDPw@mail.gmail.com
2017-08-29 21:18:01 +02:00
|
|
|
goto fail;
|
2008-09-17 06:31:08 +02:00
|
|
|
|
|
|
|
|
/* initialize each column to NULL */
|
|
|
|
|
for (i = 0; i < res->numAttributes; i++)
|
|
|
|
|
{
|
|
|
|
|
tup[i].len = NULL_LEN;
|
|
|
|
|
tup[i].value = res->null_field;
|
|
|
|
|
}
|
|
|
|
|
|
2011-07-21 18:24:14 +02:00
|
|
|
/* add it to the array */
|
Teach libpq to detect integer overflow in the row count of a PGresult.
Adding more than 1 billion rows to a PGresult would overflow its ntups and
tupArrSize fields, leading to client crashes. It'd be desirable to use
wider fields on 64-bit machines, but because all of libpq's external APIs
use plain "int" for row counters, that's going to be hard to accomplish
without an ABI break. Given the lack of complaints so far, and the general
pain that would be involved in using such huge PGresults, let's settle for
just preventing the overflow and reporting a useful error message if it
does happen. Also, for a couple more lines of code we can increase the
threshold of trouble from INT_MAX/2 to INT_MAX rows.
To do that, refactor pqAddTuple() to allow returning an error message that
replaces the default assumption that it failed because of out-of-memory.
Along the way, fix PQsetvalue() so that it reports all failures via
pqInternalNotice(). It already did so in the case of bad field number,
but neglected to report anything for other error causes.
Because of the potential for crashes, this seems like a back-patchable
bug fix, despite the lack of field reports.
Michael Paquier, per a complaint from Igor Korot.
Discussion: https://postgr.es/m/CA+FnnTxyLWyjY1goewmJNxC==HQCCF4fKkoCTa9qR36oRAHDPw@mail.gmail.com
2017-08-29 21:18:01 +02:00
|
|
|
if (!pqAddTuple(res, tup, &errmsg))
|
|
|
|
|
goto fail;
|
2008-09-17 06:31:08 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
attval = &res->tuples[tup_num][field_num];
|
|
|
|
|
|
|
|
|
|
/* treat either NULL_LEN or NULL value pointer as a NULL field */
|
|
|
|
|
if (len == NULL_LEN || value == NULL)
|
|
|
|
|
{
|
|
|
|
|
attval->len = NULL_LEN;
|
|
|
|
|
attval->value = res->null_field;
|
|
|
|
|
}
|
|
|
|
|
else if (len <= 0)
|
|
|
|
|
{
|
|
|
|
|
attval->len = 0;
|
|
|
|
|
attval->value = res->null_field;
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
2017-08-16 06:22:32 +02:00
|
|
|
attval->value = (char *) pqResultAlloc(res, len + 1, true);
|
2008-09-17 06:31:08 +02:00
|
|
|
if (!attval->value)
|
Teach libpq to detect integer overflow in the row count of a PGresult.
Adding more than 1 billion rows to a PGresult would overflow its ntups and
tupArrSize fields, leading to client crashes. It'd be desirable to use
wider fields on 64-bit machines, but because all of libpq's external APIs
use plain "int" for row counters, that's going to be hard to accomplish
without an ABI break. Given the lack of complaints so far, and the general
pain that would be involved in using such huge PGresults, let's settle for
just preventing the overflow and reporting a useful error message if it
does happen. Also, for a couple more lines of code we can increase the
threshold of trouble from INT_MAX/2 to INT_MAX rows.
To do that, refactor pqAddTuple() to allow returning an error message that
replaces the default assumption that it failed because of out-of-memory.
Along the way, fix PQsetvalue() so that it reports all failures via
pqInternalNotice(). It already did so in the case of bad field number,
but neglected to report anything for other error causes.
Because of the potential for crashes, this seems like a back-patchable
bug fix, despite the lack of field reports.
Michael Paquier, per a complaint from Igor Korot.
Discussion: https://postgr.es/m/CA+FnnTxyLWyjY1goewmJNxC==HQCCF4fKkoCTa9qR36oRAHDPw@mail.gmail.com
2017-08-29 21:18:01 +02:00
|
|
|
goto fail;
|
2008-09-17 06:31:08 +02:00
|
|
|
attval->len = len;
|
|
|
|
|
memcpy(attval->value, value, len);
|
|
|
|
|
attval->value[len] = '\0';
|
|
|
|
|
}
|
|
|
|
|
|
2017-08-16 06:22:32 +02:00
|
|
|
return true;
|
Teach libpq to detect integer overflow in the row count of a PGresult.
Adding more than 1 billion rows to a PGresult would overflow its ntups and
tupArrSize fields, leading to client crashes. It'd be desirable to use
wider fields on 64-bit machines, but because all of libpq's external APIs
use plain "int" for row counters, that's going to be hard to accomplish
without an ABI break. Given the lack of complaints so far, and the general
pain that would be involved in using such huge PGresults, let's settle for
just preventing the overflow and reporting a useful error message if it
does happen. Also, for a couple more lines of code we can increase the
threshold of trouble from INT_MAX/2 to INT_MAX rows.
To do that, refactor pqAddTuple() to allow returning an error message that
replaces the default assumption that it failed because of out-of-memory.
Along the way, fix PQsetvalue() so that it reports all failures via
pqInternalNotice(). It already did so in the case of bad field number,
but neglected to report anything for other error causes.
Because of the potential for crashes, this seems like a back-patchable
bug fix, despite the lack of field reports.
Michael Paquier, per a complaint from Igor Korot.
Discussion: https://postgr.es/m/CA+FnnTxyLWyjY1goewmJNxC==HQCCF4fKkoCTa9qR36oRAHDPw@mail.gmail.com
2017-08-29 21:18:01 +02:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Report failure via pqInternalNotice. If preceding code didn't provide
|
|
|
|
|
* an error message, assume "out of memory" was meant.
|
|
|
|
|
*/
|
|
|
|
|
fail:
|
|
|
|
|
if (!errmsg)
|
|
|
|
|
errmsg = libpq_gettext("out of memory");
|
|
|
|
|
pqInternalNotice(&res->noticeHooks, "%s", errmsg);
|
|
|
|
|
|
2017-08-16 06:22:32 +02:00
|
|
|
return false;
|
2008-09-17 06:31:08 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* pqResultAlloc - exported routine to allocate local storage in a PGresult.
|
|
|
|
|
*
|
|
|
|
|
* We force all such allocations to be maxaligned, since we don't know
|
|
|
|
|
* whether the value might be binary.
|
|
|
|
|
*/
|
|
|
|
|
void *
|
|
|
|
|
PQresultAlloc(PGresult *res, size_t nBytes)
|
|
|
|
|
{
|
Rearrange libpq's error reporting to avoid duplicated error text.
Since commit ffa2e4670, libpq accumulates text in conn->errorMessage
across a whole query cycle. In some situations, we may report more
than one error event within a cycle: the easiest case to reach is
where we report a FATAL error message from the server, and then a
bit later we detect loss of connection. Since, historically, each
error PGresult bears the entire content of conn->errorMessage,
this results in duplication of the FATAL message in any output that
concatenates the contents of the PGresults.
Accumulation in errorMessage still seems like a good idea, especially
in view of the number of places that did ad-hoc error concatenation
before ffa2e4670. So to fix this, let's track how much of
conn->errorMessage has been read out into error PGresults, and only
include new text in later PGresults. The tricky part of that is
to be sure that we never discard an error PGresult once made (else
we'd risk dropping some text, a problem much worse than duplication).
While libpq formerly did that in some code paths, a little bit of
rearrangement lets us postpone making an error PGresult at all until
we are about to return it.
A side benefit of that postponement is that it now becomes practical
to return a dummy static PGresult in cases where we hit out-of-memory
while trying to manufacture an error PGresult. This eliminates the
admittedly-very-rare case where we'd return NULL from PQgetResult,
indicating successful query completion, even though what actually
happened was an OOM failure.
Discussion: https://postgr.es/m/ab4288f8-be5c-57fb-2400-e3e857f53e46@enterprisedb.com
2022-02-18 21:35:15 +01:00
|
|
|
/* Fail if argument is NULL or OOM_result */
|
|
|
|
|
if (!res || (const PGresult *) res == &OOM_result)
|
|
|
|
|
return NULL;
|
|
|
|
|
|
2017-08-16 06:22:32 +02:00
|
|
|
return pqResultAlloc(res, nBytes, true);
|
2008-09-17 06:31:08 +02:00
|
|
|
}
|
|
|
|
|
|
1998-11-18 01:47:28 +01:00
|
|
|
/*
|
|
|
|
|
* pqResultAlloc -
|
|
|
|
|
* Allocate subsidiary storage for a PGresult.
|
|
|
|
|
*
|
|
|
|
|
* nBytes is the amount of space needed for the object.
|
|
|
|
|
* If isBinary is true, we assume that we need to align the object on
|
|
|
|
|
* a machine allocation boundary.
|
|
|
|
|
* If isBinary is false, we assume the object is a char string and can
|
|
|
|
|
* be allocated on any byte boundary.
|
|
|
|
|
*/
|
|
|
|
|
void *
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
pqResultAlloc(PGresult *res, size_t nBytes, bool isBinary)
|
1998-11-18 01:47:28 +01:00
|
|
|
{
|
|
|
|
|
char *space;
|
|
|
|
|
PGresult_data *block;
|
|
|
|
|
|
|
|
|
|
if (!res)
|
|
|
|
|
return NULL;
|
|
|
|
|
|
|
|
|
|
if (nBytes <= 0)
|
|
|
|
|
return res->null_field;
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* If alignment is needed, round up the current position to an alignment
|
|
|
|
|
* boundary.
|
|
|
|
|
*/
|
|
|
|
|
if (isBinary)
|
|
|
|
|
{
|
|
|
|
|
int offset = res->curOffset % PGRESULT_ALIGN_BOUNDARY;
|
1999-05-25 18:15:34 +02:00
|
|
|
|
1998-11-18 01:47:28 +01:00
|
|
|
if (offset)
|
|
|
|
|
{
|
|
|
|
|
res->curOffset += PGRESULT_ALIGN_BOUNDARY - offset;
|
|
|
|
|
res->spaceLeft -= PGRESULT_ALIGN_BOUNDARY - offset;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* If there's enough space in the current block, no problem. */
|
2001-07-20 19:45:06 +02:00
|
|
|
if (nBytes <= (size_t) res->spaceLeft)
|
1998-11-18 01:47:28 +01:00
|
|
|
{
|
|
|
|
|
space = res->curBlock->space + res->curOffset;
|
|
|
|
|
res->curOffset += nBytes;
|
|
|
|
|
res->spaceLeft -= nBytes;
|
|
|
|
|
return space;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* If the requested object is very large, give it its own block; this
|
|
|
|
|
* avoids wasting what might be most of the current block to start a new
|
|
|
|
|
* block. (We'd have to special-case requests bigger than the block size
|
|
|
|
|
* anyway.) The object is always given binary alignment in this case.
|
|
|
|
|
*/
|
|
|
|
|
if (nBytes >= PGRESULT_SEP_ALLOC_THRESHOLD)
|
|
|
|
|
{
|
2018-09-12 00:45:02 +02:00
|
|
|
size_t alloc_size = nBytes + PGRESULT_BLOCK_OVERHEAD;
|
|
|
|
|
|
|
|
|
|
block = (PGresult_data *) malloc(alloc_size);
|
1998-11-18 01:47:28 +01:00
|
|
|
if (!block)
|
|
|
|
|
return NULL;
|
2018-09-12 00:45:02 +02:00
|
|
|
res->memorySize += alloc_size;
|
1999-05-12 06:38:24 +02:00
|
|
|
space = block->space + PGRESULT_BLOCK_OVERHEAD;
|
1998-11-18 01:47:28 +01:00
|
|
|
if (res->curBlock)
|
|
|
|
|
{
|
|
|
|
|
/*
|
|
|
|
|
* Tuck special block below the active block, so that we don't
|
|
|
|
|
* have to waste the free space in the active block.
|
|
|
|
|
*/
|
|
|
|
|
block->next = res->curBlock->next;
|
|
|
|
|
res->curBlock->next = block;
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
/* Must set up the new block as the first active block. */
|
|
|
|
|
block->next = NULL;
|
|
|
|
|
res->curBlock = block;
|
|
|
|
|
res->spaceLeft = 0; /* be sure it's marked full */
|
|
|
|
|
}
|
|
|
|
|
return space;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Otherwise, start a new block. */
|
|
|
|
|
block = (PGresult_data *) malloc(PGRESULT_DATA_BLOCKSIZE);
|
|
|
|
|
if (!block)
|
|
|
|
|
return NULL;
|
2018-09-12 00:45:02 +02:00
|
|
|
res->memorySize += PGRESULT_DATA_BLOCKSIZE;
|
1998-11-18 01:47:28 +01:00
|
|
|
block->next = res->curBlock;
|
|
|
|
|
res->curBlock = block;
|
|
|
|
|
if (isBinary)
|
|
|
|
|
{
|
|
|
|
|
/* object needs full alignment */
|
1999-05-12 06:38:24 +02:00
|
|
|
res->curOffset = PGRESULT_BLOCK_OVERHEAD;
|
|
|
|
|
res->spaceLeft = PGRESULT_DATA_BLOCKSIZE - PGRESULT_BLOCK_OVERHEAD;
|
1998-11-18 01:47:28 +01:00
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
/* we can cram it right after the overhead pointer */
|
|
|
|
|
res->curOffset = sizeof(PGresult_data);
|
|
|
|
|
res->spaceLeft = PGRESULT_DATA_BLOCKSIZE - sizeof(PGresult_data);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
space = block->space + res->curOffset;
|
|
|
|
|
res->curOffset += nBytes;
|
|
|
|
|
res->spaceLeft -= nBytes;
|
|
|
|
|
return space;
|
|
|
|
|
}
|
|
|
|
|
|
2018-09-12 00:45:02 +02:00
|
|
|
/*
|
|
|
|
|
* PQresultMemorySize -
|
|
|
|
|
* Returns total space allocated for the PGresult.
|
|
|
|
|
*/
|
|
|
|
|
size_t
|
|
|
|
|
PQresultMemorySize(const PGresult *res)
|
|
|
|
|
{
|
|
|
|
|
if (!res)
|
|
|
|
|
return 0;
|
|
|
|
|
return res->memorySize;
|
|
|
|
|
}
|
|
|
|
|
|
1998-11-18 01:47:28 +01:00
|
|
|
/*
|
|
|
|
|
* pqResultStrdup -
|
|
|
|
|
* Like strdup, but the space is subsidiary PGresult space.
|
|
|
|
|
*/
|
|
|
|
|
char *
|
|
|
|
|
pqResultStrdup(PGresult *res, const char *str)
|
|
|
|
|
{
|
2017-08-16 06:22:32 +02:00
|
|
|
char *space = (char *) pqResultAlloc(res, strlen(str) + 1, false);
|
1999-05-25 18:15:34 +02:00
|
|
|
|
1998-11-18 01:47:28 +01:00
|
|
|
if (space)
|
|
|
|
|
strcpy(space, str);
|
|
|
|
|
return space;
|
|
|
|
|
}
|
|
|
|
|
|
1998-10-01 03:40:26 +02:00
|
|
|
/*
|
|
|
|
|
* pqSetResultError -
|
|
|
|
|
* assign a new error message to a PGresult
|
Rearrange libpq's error reporting to avoid duplicated error text.
Since commit ffa2e4670, libpq accumulates text in conn->errorMessage
across a whole query cycle. In some situations, we may report more
than one error event within a cycle: the easiest case to reach is
where we report a FATAL error message from the server, and then a
bit later we detect loss of connection. Since, historically, each
error PGresult bears the entire content of conn->errorMessage,
this results in duplication of the FATAL message in any output that
concatenates the contents of the PGresults.
Accumulation in errorMessage still seems like a good idea, especially
in view of the number of places that did ad-hoc error concatenation
before ffa2e4670. So to fix this, let's track how much of
conn->errorMessage has been read out into error PGresults, and only
include new text in later PGresults. The tricky part of that is
to be sure that we never discard an error PGresult once made (else
we'd risk dropping some text, a problem much worse than duplication).
While libpq formerly did that in some code paths, a little bit of
rearrangement lets us postpone making an error PGresult at all until
we are about to return it.
A side benefit of that postponement is that it now becomes practical
to return a dummy static PGresult in cases where we hit out-of-memory
while trying to manufacture an error PGresult. This eliminates the
admittedly-very-rare case where we'd return NULL from PQgetResult,
indicating successful query completion, even though what actually
happened was an OOM failure.
Discussion: https://postgr.es/m/ab4288f8-be5c-57fb-2400-e3e857f53e46@enterprisedb.com
2022-02-18 21:35:15 +01:00
|
|
|
*
|
|
|
|
|
* Copy text from errorMessage buffer beginning at given offset
|
|
|
|
|
* (it's caller's responsibility that offset is valid)
|
1998-10-01 03:40:26 +02:00
|
|
|
*/
|
|
|
|
|
void
|
Rearrange libpq's error reporting to avoid duplicated error text.
Since commit ffa2e4670, libpq accumulates text in conn->errorMessage
across a whole query cycle. In some situations, we may report more
than one error event within a cycle: the easiest case to reach is
where we report a FATAL error message from the server, and then a
bit later we detect loss of connection. Since, historically, each
error PGresult bears the entire content of conn->errorMessage,
this results in duplication of the FATAL message in any output that
concatenates the contents of the PGresults.
Accumulation in errorMessage still seems like a good idea, especially
in view of the number of places that did ad-hoc error concatenation
before ffa2e4670. So to fix this, let's track how much of
conn->errorMessage has been read out into error PGresults, and only
include new text in later PGresults. The tricky part of that is
to be sure that we never discard an error PGresult once made (else
we'd risk dropping some text, a problem much worse than duplication).
While libpq formerly did that in some code paths, a little bit of
rearrangement lets us postpone making an error PGresult at all until
we are about to return it.
A side benefit of that postponement is that it now becomes practical
to return a dummy static PGresult in cases where we hit out-of-memory
while trying to manufacture an error PGresult. This eliminates the
admittedly-very-rare case where we'd return NULL from PQgetResult,
indicating successful query completion, even though what actually
happened was an OOM failure.
Discussion: https://postgr.es/m/ab4288f8-be5c-57fb-2400-e3e857f53e46@enterprisedb.com
2022-02-18 21:35:15 +01:00
|
|
|
pqSetResultError(PGresult *res, PQExpBuffer errorMessage, int offset)
|
1998-10-01 03:40:26 +02:00
|
|
|
{
|
2021-07-29 19:33:31 +02:00
|
|
|
char *msg;
|
|
|
|
|
|
1998-10-01 03:40:26 +02:00
|
|
|
if (!res)
|
|
|
|
|
return;
|
2021-07-29 19:33:31 +02:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* We handle two OOM scenarios here. The errorMessage buffer might be
|
|
|
|
|
* marked "broken" due to having previously failed to allocate enough
|
|
|
|
|
* memory for the message, or it might be fine but pqResultStrdup fails
|
|
|
|
|
* and returns NULL. In either case, just make res->errMsg point directly
|
|
|
|
|
* at a constant "out of memory" string.
|
|
|
|
|
*/
|
|
|
|
|
if (!PQExpBufferBroken(errorMessage))
|
Rearrange libpq's error reporting to avoid duplicated error text.
Since commit ffa2e4670, libpq accumulates text in conn->errorMessage
across a whole query cycle. In some situations, we may report more
than one error event within a cycle: the easiest case to reach is
where we report a FATAL error message from the server, and then a
bit later we detect loss of connection. Since, historically, each
error PGresult bears the entire content of conn->errorMessage,
this results in duplication of the FATAL message in any output that
concatenates the contents of the PGresults.
Accumulation in errorMessage still seems like a good idea, especially
in view of the number of places that did ad-hoc error concatenation
before ffa2e4670. So to fix this, let's track how much of
conn->errorMessage has been read out into error PGresults, and only
include new text in later PGresults. The tricky part of that is
to be sure that we never discard an error PGresult once made (else
we'd risk dropping some text, a problem much worse than duplication).
While libpq formerly did that in some code paths, a little bit of
rearrangement lets us postpone making an error PGresult at all until
we are about to return it.
A side benefit of that postponement is that it now becomes practical
to return a dummy static PGresult in cases where we hit out-of-memory
while trying to manufacture an error PGresult. This eliminates the
admittedly-very-rare case where we'd return NULL from PQgetResult,
indicating successful query completion, even though what actually
happened was an OOM failure.
Discussion: https://postgr.es/m/ab4288f8-be5c-57fb-2400-e3e857f53e46@enterprisedb.com
2022-02-18 21:35:15 +01:00
|
|
|
msg = pqResultStrdup(res, errorMessage->data + offset);
|
2021-07-29 19:33:31 +02:00
|
|
|
else
|
|
|
|
|
msg = NULL;
|
|
|
|
|
if (msg)
|
|
|
|
|
res->errMsg = msg;
|
1998-11-18 01:47:28 +01:00
|
|
|
else
|
2021-07-29 19:33:31 +02:00
|
|
|
res->errMsg = libpq_gettext("out of memory\n");
|
1998-10-01 03:40:26 +02:00
|
|
|
}
|
|
|
|
|
|
1996-07-09 08:22:35 +02:00
|
|
|
/*
|
1998-05-07 01:51:16 +02:00
|
|
|
* PQclear -
|
|
|
|
|
* free's the memory associated with a PGresult
|
1996-07-09 08:22:35 +02:00
|
|
|
*/
|
1998-05-07 01:51:16 +02:00
|
|
|
void
|
|
|
|
|
PQclear(PGresult *res)
|
1996-07-09 08:22:35 +02:00
|
|
|
{
|
1998-11-18 01:47:28 +01:00
|
|
|
PGresult_data *block;
|
2008-09-17 06:31:08 +02:00
|
|
|
int i;
|
1997-09-07 07:04:48 +02:00
|
|
|
|
Rearrange libpq's error reporting to avoid duplicated error text.
Since commit ffa2e4670, libpq accumulates text in conn->errorMessage
across a whole query cycle. In some situations, we may report more
than one error event within a cycle: the easiest case to reach is
where we report a FATAL error message from the server, and then a
bit later we detect loss of connection. Since, historically, each
error PGresult bears the entire content of conn->errorMessage,
this results in duplication of the FATAL message in any output that
concatenates the contents of the PGresults.
Accumulation in errorMessage still seems like a good idea, especially
in view of the number of places that did ad-hoc error concatenation
before ffa2e4670. So to fix this, let's track how much of
conn->errorMessage has been read out into error PGresults, and only
include new text in later PGresults. The tricky part of that is
to be sure that we never discard an error PGresult once made (else
we'd risk dropping some text, a problem much worse than duplication).
While libpq formerly did that in some code paths, a little bit of
rearrangement lets us postpone making an error PGresult at all until
we are about to return it.
A side benefit of that postponement is that it now becomes practical
to return a dummy static PGresult in cases where we hit out-of-memory
while trying to manufacture an error PGresult. This eliminates the
admittedly-very-rare case where we'd return NULL from PQgetResult,
indicating successful query completion, even though what actually
happened was an OOM failure.
Discussion: https://postgr.es/m/ab4288f8-be5c-57fb-2400-e3e857f53e46@enterprisedb.com
2022-02-18 21:35:15 +01:00
|
|
|
/* As a convenience, do nothing for a NULL pointer */
|
1998-05-07 01:51:16 +02:00
|
|
|
if (!res)
|
|
|
|
|
return;
|
Rearrange libpq's error reporting to avoid duplicated error text.
Since commit ffa2e4670, libpq accumulates text in conn->errorMessage
across a whole query cycle. In some situations, we may report more
than one error event within a cycle: the easiest case to reach is
where we report a FATAL error message from the server, and then a
bit later we detect loss of connection. Since, historically, each
error PGresult bears the entire content of conn->errorMessage,
this results in duplication of the FATAL message in any output that
concatenates the contents of the PGresults.
Accumulation in errorMessage still seems like a good idea, especially
in view of the number of places that did ad-hoc error concatenation
before ffa2e4670. So to fix this, let's track how much of
conn->errorMessage has been read out into error PGresults, and only
include new text in later PGresults. The tricky part of that is
to be sure that we never discard an error PGresult once made (else
we'd risk dropping some text, a problem much worse than duplication).
While libpq formerly did that in some code paths, a little bit of
rearrangement lets us postpone making an error PGresult at all until
we are about to return it.
A side benefit of that postponement is that it now becomes practical
to return a dummy static PGresult in cases where we hit out-of-memory
while trying to manufacture an error PGresult. This eliminates the
admittedly-very-rare case where we'd return NULL from PQgetResult,
indicating successful query completion, even though what actually
happened was an OOM failure.
Discussion: https://postgr.es/m/ab4288f8-be5c-57fb-2400-e3e857f53e46@enterprisedb.com
2022-02-18 21:35:15 +01:00
|
|
|
/* Also, do nothing if the argument is OOM_result */
|
|
|
|
|
if ((const PGresult *) res == &OOM_result)
|
|
|
|
|
return;
|
1997-09-07 07:04:48 +02:00
|
|
|
|
Rearrange libpq's error reporting to avoid duplicated error text.
Since commit ffa2e4670, libpq accumulates text in conn->errorMessage
across a whole query cycle. In some situations, we may report more
than one error event within a cycle: the easiest case to reach is
where we report a FATAL error message from the server, and then a
bit later we detect loss of connection. Since, historically, each
error PGresult bears the entire content of conn->errorMessage,
this results in duplication of the FATAL message in any output that
concatenates the contents of the PGresults.
Accumulation in errorMessage still seems like a good idea, especially
in view of the number of places that did ad-hoc error concatenation
before ffa2e4670. So to fix this, let's track how much of
conn->errorMessage has been read out into error PGresults, and only
include new text in later PGresults. The tricky part of that is
to be sure that we never discard an error PGresult once made (else
we'd risk dropping some text, a problem much worse than duplication).
While libpq formerly did that in some code paths, a little bit of
rearrangement lets us postpone making an error PGresult at all until
we are about to return it.
A side benefit of that postponement is that it now becomes practical
to return a dummy static PGresult in cases where we hit out-of-memory
while trying to manufacture an error PGresult. This eliminates the
admittedly-very-rare case where we'd return NULL from PQgetResult,
indicating successful query completion, even though what actually
happened was an OOM failure.
Discussion: https://postgr.es/m/ab4288f8-be5c-57fb-2400-e3e857f53e46@enterprisedb.com
2022-02-18 21:35:15 +01:00
|
|
|
/* Close down any events we may have */
|
2008-09-17 06:31:08 +02:00
|
|
|
for (i = 0; i < res->nEvents; i++)
|
|
|
|
|
{
|
2008-09-19 18:40:40 +02:00
|
|
|
/* only send DESTROY to successfully-initialized event procs */
|
|
|
|
|
if (res->events[i].resultInitialized)
|
|
|
|
|
{
|
|
|
|
|
PGEventResultDestroy evt;
|
2008-09-17 06:31:08 +02:00
|
|
|
|
2008-09-19 18:40:40 +02:00
|
|
|
evt.result = res;
|
|
|
|
|
(void) res->events[i].proc(PGEVT_RESULTDESTROY, &evt,
|
|
|
|
|
res->events[i].passThrough);
|
|
|
|
|
}
|
2008-09-17 06:31:08 +02:00
|
|
|
free(res->events[i].name);
|
|
|
|
|
}
|
|
|
|
|
|
2022-06-16 21:50:56 +02:00
|
|
|
free(res->events);
|
2008-09-17 06:31:08 +02:00
|
|
|
|
1998-11-18 01:47:28 +01:00
|
|
|
/* Free all the subsidiary blocks */
|
|
|
|
|
while ((block = res->curBlock) != NULL)
|
|
|
|
|
{
|
|
|
|
|
res->curBlock = block->next;
|
|
|
|
|
free(block);
|
1998-05-07 01:51:16 +02:00
|
|
|
}
|
|
|
|
|
|
1998-11-18 01:47:28 +01:00
|
|
|
/* Free the top-level tuple pointer array */
|
2022-06-16 21:50:56 +02:00
|
|
|
free(res->tuples);
|
1998-10-01 03:40:26 +02:00
|
|
|
|
2006-05-28 19:23:29 +02:00
|
|
|
/* zero out the pointer fields to catch programming errors */
|
|
|
|
|
res->attDescs = NULL;
|
|
|
|
|
res->tuples = NULL;
|
2006-08-18 21:52:39 +02:00
|
|
|
res->paramDescs = NULL;
|
2006-05-28 19:23:29 +02:00
|
|
|
res->errFields = NULL;
|
2008-09-17 06:31:08 +02:00
|
|
|
res->events = NULL;
|
|
|
|
|
res->nEvents = 0;
|
2006-05-28 19:23:29 +02:00
|
|
|
/* res->curBlock was zeroed out earlier */
|
|
|
|
|
|
1998-11-18 01:47:28 +01:00
|
|
|
/* Free the PGresult structure itself */
|
1998-05-07 01:51:16 +02:00
|
|
|
free(res);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Handy subroutine to deallocate any partially constructed async result.
|
2012-08-02 19:10:30 +02:00
|
|
|
*
|
|
|
|
|
* Any "next" result gets cleared too.
|
1998-05-07 01:51:16 +02:00
|
|
|
*/
|
|
|
|
|
void
|
1998-08-17 05:50:43 +02:00
|
|
|
pqClearAsyncResult(PGconn *conn)
|
1998-05-07 01:51:16 +02:00
|
|
|
{
|
2022-07-03 20:11:05 +02:00
|
|
|
PQclear(conn->result);
|
1998-05-07 01:51:16 +02:00
|
|
|
conn->result = NULL;
|
Rearrange libpq's error reporting to avoid duplicated error text.
Since commit ffa2e4670, libpq accumulates text in conn->errorMessage
across a whole query cycle. In some situations, we may report more
than one error event within a cycle: the easiest case to reach is
where we report a FATAL error message from the server, and then a
bit later we detect loss of connection. Since, historically, each
error PGresult bears the entire content of conn->errorMessage,
this results in duplication of the FATAL message in any output that
concatenates the contents of the PGresults.
Accumulation in errorMessage still seems like a good idea, especially
in view of the number of places that did ad-hoc error concatenation
before ffa2e4670. So to fix this, let's track how much of
conn->errorMessage has been read out into error PGresults, and only
include new text in later PGresults. The tricky part of that is
to be sure that we never discard an error PGresult once made (else
we'd risk dropping some text, a problem much worse than duplication).
While libpq formerly did that in some code paths, a little bit of
rearrangement lets us postpone making an error PGresult at all until
we are about to return it.
A side benefit of that postponement is that it now becomes practical
to return a dummy static PGresult in cases where we hit out-of-memory
while trying to manufacture an error PGresult. This eliminates the
admittedly-very-rare case where we'd return NULL from PQgetResult,
indicating successful query completion, even though what actually
happened was an OOM failure.
Discussion: https://postgr.es/m/ab4288f8-be5c-57fb-2400-e3e857f53e46@enterprisedb.com
2022-02-18 21:35:15 +01:00
|
|
|
conn->error_result = false;
|
2022-07-03 20:11:05 +02:00
|
|
|
PQclear(conn->next_result);
|
2012-08-02 19:10:30 +02:00
|
|
|
conn->next_result = NULL;
|
1996-07-09 08:22:35 +02:00
|
|
|
}
|
|
|
|
|
|
1999-08-31 03:37:37 +02:00
|
|
|
/*
|
Rearrange libpq's error reporting to avoid duplicated error text.
Since commit ffa2e4670, libpq accumulates text in conn->errorMessage
across a whole query cycle. In some situations, we may report more
than one error event within a cycle: the easiest case to reach is
where we report a FATAL error message from the server, and then a
bit later we detect loss of connection. Since, historically, each
error PGresult bears the entire content of conn->errorMessage,
this results in duplication of the FATAL message in any output that
concatenates the contents of the PGresults.
Accumulation in errorMessage still seems like a good idea, especially
in view of the number of places that did ad-hoc error concatenation
before ffa2e4670. So to fix this, let's track how much of
conn->errorMessage has been read out into error PGresults, and only
include new text in later PGresults. The tricky part of that is
to be sure that we never discard an error PGresult once made (else
we'd risk dropping some text, a problem much worse than duplication).
While libpq formerly did that in some code paths, a little bit of
rearrangement lets us postpone making an error PGresult at all until
we are about to return it.
A side benefit of that postponement is that it now becomes practical
to return a dummy static PGresult in cases where we hit out-of-memory
while trying to manufacture an error PGresult. This eliminates the
admittedly-very-rare case where we'd return NULL from PQgetResult,
indicating successful query completion, even though what actually
happened was an OOM failure.
Discussion: https://postgr.es/m/ab4288f8-be5c-57fb-2400-e3e857f53e46@enterprisedb.com
2022-02-18 21:35:15 +01:00
|
|
|
* pqSaveErrorResult -
|
|
|
|
|
* remember that we have an error condition
|
|
|
|
|
*
|
|
|
|
|
* In much of libpq, reporting an error just requires appending text to
|
|
|
|
|
* conn->errorMessage and returning a failure code to one's caller.
|
|
|
|
|
* Where returning a failure code is impractical, instead call this
|
|
|
|
|
* function to remember that an error needs to be reported.
|
|
|
|
|
*
|
|
|
|
|
* (It might seem that appending text to conn->errorMessage should be
|
|
|
|
|
* sufficient, but we can't rely on that working under out-of-memory
|
|
|
|
|
* conditions. The OOM hazard is also why we don't try to make a new
|
|
|
|
|
* PGresult right here.)
|
1999-08-31 03:37:37 +02:00
|
|
|
*/
|
2003-06-08 19:43:00 +02:00
|
|
|
void
|
|
|
|
|
pqSaveErrorResult(PGconn *conn)
|
1999-08-31 03:37:37 +02:00
|
|
|
{
|
Rearrange libpq's error reporting to avoid duplicated error text.
Since commit ffa2e4670, libpq accumulates text in conn->errorMessage
across a whole query cycle. In some situations, we may report more
than one error event within a cycle: the easiest case to reach is
where we report a FATAL error message from the server, and then a
bit later we detect loss of connection. Since, historically, each
error PGresult bears the entire content of conn->errorMessage,
this results in duplication of the FATAL message in any output that
concatenates the contents of the PGresults.
Accumulation in errorMessage still seems like a good idea, especially
in view of the number of places that did ad-hoc error concatenation
before ffa2e4670. So to fix this, let's track how much of
conn->errorMessage has been read out into error PGresults, and only
include new text in later PGresults. The tricky part of that is
to be sure that we never discard an error PGresult once made (else
we'd risk dropping some text, a problem much worse than duplication).
While libpq formerly did that in some code paths, a little bit of
rearrangement lets us postpone making an error PGresult at all until
we are about to return it.
A side benefit of that postponement is that it now becomes practical
to return a dummy static PGresult in cases where we hit out-of-memory
while trying to manufacture an error PGresult. This eliminates the
admittedly-very-rare case where we'd return NULL from PQgetResult,
indicating successful query completion, even though what actually
happened was an OOM failure.
Discussion: https://postgr.es/m/ab4288f8-be5c-57fb-2400-e3e857f53e46@enterprisedb.com
2022-02-18 21:35:15 +01:00
|
|
|
/* Drop any pending result ... */
|
In libpq, always append new error messages to conn->errorMessage.
Previously, we had an undisciplined mish-mash of printfPQExpBuffer and
appendPQExpBuffer calls to report errors within libpq. This commit
establishes a uniform rule that appendPQExpBuffer[Str] should be used.
conn->errorMessage is reset only at the start of an application request,
and then accumulates messages till we're done. We can remove no less
than three different ad-hoc mechanisms that were used to get the effect
of concatenation of error messages within a sequence of operations.
Although this makes things quite a bit cleaner conceptually, the main
reason to do it is to make the world safer for the multiple-target-host
feature that was added awhile back. Previously, there were many cases
in which an error occurring during an individual host connection attempt
would wipe out the record of what had happened during previous attempts.
(The reporting is still inadequate, in that it can be hard to tell which
host got the failure, but that seems like a matter for a separate commit.)
Currently, lo_import and lo_export contain exceptions to the "never
use printfPQExpBuffer" rule. If we changed them, we'd risk reporting
an incidental lo_close failure before the actual read or write
failure, which would be confusing, not least because lo_close happened
after the main failure. We could improve this by inventing an
internal version of lo_close that doesn't reset the errorMessage; but
we'd also need a version of PQfn() that does that, and it didn't quite
seem worth the trouble for now.
Discussion: https://postgr.es/m/BN6PR05MB3492948E4FD76C156E747E8BC9160@BN6PR05MB3492.namprd05.prod.outlook.com
2021-01-11 19:12:09 +01:00
|
|
|
pqClearAsyncResult(conn);
|
Rearrange libpq's error reporting to avoid duplicated error text.
Since commit ffa2e4670, libpq accumulates text in conn->errorMessage
across a whole query cycle. In some situations, we may report more
than one error event within a cycle: the easiest case to reach is
where we report a FATAL error message from the server, and then a
bit later we detect loss of connection. Since, historically, each
error PGresult bears the entire content of conn->errorMessage,
this results in duplication of the FATAL message in any output that
concatenates the contents of the PGresults.
Accumulation in errorMessage still seems like a good idea, especially
in view of the number of places that did ad-hoc error concatenation
before ffa2e4670. So to fix this, let's track how much of
conn->errorMessage has been read out into error PGresults, and only
include new text in later PGresults. The tricky part of that is
to be sure that we never discard an error PGresult once made (else
we'd risk dropping some text, a problem much worse than duplication).
While libpq formerly did that in some code paths, a little bit of
rearrangement lets us postpone making an error PGresult at all until
we are about to return it.
A side benefit of that postponement is that it now becomes practical
to return a dummy static PGresult in cases where we hit out-of-memory
while trying to manufacture an error PGresult. This eliminates the
admittedly-very-rare case where we'd return NULL from PQgetResult,
indicating successful query completion, even though what actually
happened was an OOM failure.
Discussion: https://postgr.es/m/ab4288f8-be5c-57fb-2400-e3e857f53e46@enterprisedb.com
2022-02-18 21:35:15 +01:00
|
|
|
/* ... and set flag to remember to make an error result later */
|
|
|
|
|
conn->error_result = true;
|
1999-08-31 03:37:37 +02:00
|
|
|
}
|
|
|
|
|
|
Restructure libpq's handling of send failures.
Originally, if libpq got a failure (e.g., ECONNRESET) while trying to
send data to the server, it would just report that and wash its hands
of the matter. It was soon found that that wasn't a very pleasant way
of coping with server-initiated disconnections, so we introduced a hack
(pqHandleSendFailure) in the code that sends queries to make it peek
ahead for server error reports before reporting the send failure.
It now emerges that related cases can occur during connection setup;
in particular, as of TLS 1.3 it's unsafe to assume that SSL connection
failures will be reported by SSL_connect rather than during our first
send attempt. We could have fixed that in a hacky way by applying
pqHandleSendFailure after a startup packet send failure, but
(a) pqHandleSendFailure explicitly disclaims suitability for use in any
state except query startup, and (b) the problem still potentially exists
for other send attempts in libpq.
Instead, let's fix this in a more general fashion by eliminating
pqHandleSendFailure altogether, and instead arranging to postpone
all reports of send failures in libpq until after we've made an
attempt to read and process server messages. The send failure won't
be reported at all if we find a server message or detect input EOF.
(Note: this removes one of the reasons why libpq typically overwrites,
rather than appending to, conn->errorMessage: pqHandleSendFailure needed
that behavior so that the send failure report would be replaced if we
got a server message or read failure report. Eventually I'd like to get
rid of that overwrite behavior altogether, but today is not that day.
For the moment, pqSendSome is assuming that its callees will overwrite
not append to conn->errorMessage.)
Possibly this change should get back-patched someday; but it needs
testing first, so let's not consider that till after v12 beta.
Discussion: https://postgr.es/m/CAEepm=2n6Nv+5tFfe8YnkUm1fXgvxR0Mm1FoD+QKG-vLNGLyKg@mail.gmail.com
2019-03-19 21:20:20 +01:00
|
|
|
/*
|
Rearrange libpq's error reporting to avoid duplicated error text.
Since commit ffa2e4670, libpq accumulates text in conn->errorMessage
across a whole query cycle. In some situations, we may report more
than one error event within a cycle: the easiest case to reach is
where we report a FATAL error message from the server, and then a
bit later we detect loss of connection. Since, historically, each
error PGresult bears the entire content of conn->errorMessage,
this results in duplication of the FATAL message in any output that
concatenates the contents of the PGresults.
Accumulation in errorMessage still seems like a good idea, especially
in view of the number of places that did ad-hoc error concatenation
before ffa2e4670. So to fix this, let's track how much of
conn->errorMessage has been read out into error PGresults, and only
include new text in later PGresults. The tricky part of that is
to be sure that we never discard an error PGresult once made (else
we'd risk dropping some text, a problem much worse than duplication).
While libpq formerly did that in some code paths, a little bit of
rearrangement lets us postpone making an error PGresult at all until
we are about to return it.
A side benefit of that postponement is that it now becomes practical
to return a dummy static PGresult in cases where we hit out-of-memory
while trying to manufacture an error PGresult. This eliminates the
admittedly-very-rare case where we'd return NULL from PQgetResult,
indicating successful query completion, even though what actually
happened was an OOM failure.
Discussion: https://postgr.es/m/ab4288f8-be5c-57fb-2400-e3e857f53e46@enterprisedb.com
2022-02-18 21:35:15 +01:00
|
|
|
* pqSaveWriteError -
|
|
|
|
|
* report a write failure
|
|
|
|
|
*
|
In libpq, always append new error messages to conn->errorMessage.
Previously, we had an undisciplined mish-mash of printfPQExpBuffer and
appendPQExpBuffer calls to report errors within libpq. This commit
establishes a uniform rule that appendPQExpBuffer[Str] should be used.
conn->errorMessage is reset only at the start of an application request,
and then accumulates messages till we're done. We can remove no less
than three different ad-hoc mechanisms that were used to get the effect
of concatenation of error messages within a sequence of operations.
Although this makes things quite a bit cleaner conceptually, the main
reason to do it is to make the world safer for the multiple-target-host
feature that was added awhile back. Previously, there were many cases
in which an error occurring during an individual host connection attempt
would wipe out the record of what had happened during previous attempts.
(The reporting is still inadequate, in that it can be hard to tell which
host got the failure, but that seems like a matter for a separate commit.)
Currently, lo_import and lo_export contain exceptions to the "never
use printfPQExpBuffer" rule. If we changed them, we'd risk reporting
an incidental lo_close failure before the actual read or write
failure, which would be confusing, not least because lo_close happened
after the main failure. We could improve this by inventing an
internal version of lo_close that doesn't reset the errorMessage; but
we'd also need a version of PQfn() that does that, and it didn't quite
seem worth the trouble for now.
Discussion: https://postgr.es/m/BN6PR05MB3492948E4FD76C156E747E8BC9160@BN6PR05MB3492.namprd05.prod.outlook.com
2021-01-11 19:12:09 +01:00
|
|
|
* As above, after appending conn->write_err_msg to whatever other error we
|
|
|
|
|
* have. This is used when we've detected a write failure and have exhausted
|
|
|
|
|
* our chances of reporting something else instead.
|
Restructure libpq's handling of send failures.
Originally, if libpq got a failure (e.g., ECONNRESET) while trying to
send data to the server, it would just report that and wash its hands
of the matter. It was soon found that that wasn't a very pleasant way
of coping with server-initiated disconnections, so we introduced a hack
(pqHandleSendFailure) in the code that sends queries to make it peek
ahead for server error reports before reporting the send failure.
It now emerges that related cases can occur during connection setup;
in particular, as of TLS 1.3 it's unsafe to assume that SSL connection
failures will be reported by SSL_connect rather than during our first
send attempt. We could have fixed that in a hacky way by applying
pqHandleSendFailure after a startup packet send failure, but
(a) pqHandleSendFailure explicitly disclaims suitability for use in any
state except query startup, and (b) the problem still potentially exists
for other send attempts in libpq.
Instead, let's fix this in a more general fashion by eliminating
pqHandleSendFailure altogether, and instead arranging to postpone
all reports of send failures in libpq until after we've made an
attempt to read and process server messages. The send failure won't
be reported at all if we find a server message or detect input EOF.
(Note: this removes one of the reasons why libpq typically overwrites,
rather than appending to, conn->errorMessage: pqHandleSendFailure needed
that behavior so that the send failure report would be replaced if we
got a server message or read failure report. Eventually I'd like to get
rid of that overwrite behavior altogether, but today is not that day.
For the moment, pqSendSome is assuming that its callees will overwrite
not append to conn->errorMessage.)
Possibly this change should get back-patched someday; but it needs
testing first, so let's not consider that till after v12 beta.
Discussion: https://postgr.es/m/CAEepm=2n6Nv+5tFfe8YnkUm1fXgvxR0Mm1FoD+QKG-vLNGLyKg@mail.gmail.com
2019-03-19 21:20:20 +01:00
|
|
|
*/
|
|
|
|
|
static void
|
|
|
|
|
pqSaveWriteError(PGconn *conn)
|
|
|
|
|
{
|
|
|
|
|
/*
|
In libpq, always append new error messages to conn->errorMessage.
Previously, we had an undisciplined mish-mash of printfPQExpBuffer and
appendPQExpBuffer calls to report errors within libpq. This commit
establishes a uniform rule that appendPQExpBuffer[Str] should be used.
conn->errorMessage is reset only at the start of an application request,
and then accumulates messages till we're done. We can remove no less
than three different ad-hoc mechanisms that were used to get the effect
of concatenation of error messages within a sequence of operations.
Although this makes things quite a bit cleaner conceptually, the main
reason to do it is to make the world safer for the multiple-target-host
feature that was added awhile back. Previously, there were many cases
in which an error occurring during an individual host connection attempt
would wipe out the record of what had happened during previous attempts.
(The reporting is still inadequate, in that it can be hard to tell which
host got the failure, but that seems like a matter for a separate commit.)
Currently, lo_import and lo_export contain exceptions to the "never
use printfPQExpBuffer" rule. If we changed them, we'd risk reporting
an incidental lo_close failure before the actual read or write
failure, which would be confusing, not least because lo_close happened
after the main failure. We could improve this by inventing an
internal version of lo_close that doesn't reset the errorMessage; but
we'd also need a version of PQfn() that does that, and it didn't quite
seem worth the trouble for now.
Discussion: https://postgr.es/m/BN6PR05MB3492948E4FD76C156E747E8BC9160@BN6PR05MB3492.namprd05.prod.outlook.com
2021-01-11 19:12:09 +01:00
|
|
|
* If write_err_msg is null because of previous strdup failure, do what we
|
|
|
|
|
* can. (It's likely our machinations here will get OOM failures as well,
|
|
|
|
|
* but might as well try.)
|
Restructure libpq's handling of send failures.
Originally, if libpq got a failure (e.g., ECONNRESET) while trying to
send data to the server, it would just report that and wash its hands
of the matter. It was soon found that that wasn't a very pleasant way
of coping with server-initiated disconnections, so we introduced a hack
(pqHandleSendFailure) in the code that sends queries to make it peek
ahead for server error reports before reporting the send failure.
It now emerges that related cases can occur during connection setup;
in particular, as of TLS 1.3 it's unsafe to assume that SSL connection
failures will be reported by SSL_connect rather than during our first
send attempt. We could have fixed that in a hacky way by applying
pqHandleSendFailure after a startup packet send failure, but
(a) pqHandleSendFailure explicitly disclaims suitability for use in any
state except query startup, and (b) the problem still potentially exists
for other send attempts in libpq.
Instead, let's fix this in a more general fashion by eliminating
pqHandleSendFailure altogether, and instead arranging to postpone
all reports of send failures in libpq until after we've made an
attempt to read and process server messages. The send failure won't
be reported at all if we find a server message or detect input EOF.
(Note: this removes one of the reasons why libpq typically overwrites,
rather than appending to, conn->errorMessage: pqHandleSendFailure needed
that behavior so that the send failure report would be replaced if we
got a server message or read failure report. Eventually I'd like to get
rid of that overwrite behavior altogether, but today is not that day.
For the moment, pqSendSome is assuming that its callees will overwrite
not append to conn->errorMessage.)
Possibly this change should get back-patched someday; but it needs
testing first, so let's not consider that till after v12 beta.
Discussion: https://postgr.es/m/CAEepm=2n6Nv+5tFfe8YnkUm1fXgvxR0Mm1FoD+QKG-vLNGLyKg@mail.gmail.com
2019-03-19 21:20:20 +01:00
|
|
|
*/
|
In libpq, always append new error messages to conn->errorMessage.
Previously, we had an undisciplined mish-mash of printfPQExpBuffer and
appendPQExpBuffer calls to report errors within libpq. This commit
establishes a uniform rule that appendPQExpBuffer[Str] should be used.
conn->errorMessage is reset only at the start of an application request,
and then accumulates messages till we're done. We can remove no less
than three different ad-hoc mechanisms that were used to get the effect
of concatenation of error messages within a sequence of operations.
Although this makes things quite a bit cleaner conceptually, the main
reason to do it is to make the world safer for the multiple-target-host
feature that was added awhile back. Previously, there were many cases
in which an error occurring during an individual host connection attempt
would wipe out the record of what had happened during previous attempts.
(The reporting is still inadequate, in that it can be hard to tell which
host got the failure, but that seems like a matter for a separate commit.)
Currently, lo_import and lo_export contain exceptions to the "never
use printfPQExpBuffer" rule. If we changed them, we'd risk reporting
an incidental lo_close failure before the actual read or write
failure, which would be confusing, not least because lo_close happened
after the main failure. We could improve this by inventing an
internal version of lo_close that doesn't reset the errorMessage; but
we'd also need a version of PQfn() that does that, and it didn't quite
seem worth the trouble for now.
Discussion: https://postgr.es/m/BN6PR05MB3492948E4FD76C156E747E8BC9160@BN6PR05MB3492.namprd05.prod.outlook.com
2021-01-11 19:12:09 +01:00
|
|
|
if (conn->write_err_msg)
|
|
|
|
|
{
|
|
|
|
|
appendPQExpBufferStr(&conn->errorMessage, conn->write_err_msg);
|
|
|
|
|
/* Avoid possibly appending the same message twice */
|
|
|
|
|
conn->write_err_msg[0] = '\0';
|
|
|
|
|
}
|
Restructure libpq's handling of send failures.
Originally, if libpq got a failure (e.g., ECONNRESET) while trying to
send data to the server, it would just report that and wash its hands
of the matter. It was soon found that that wasn't a very pleasant way
of coping with server-initiated disconnections, so we introduced a hack
(pqHandleSendFailure) in the code that sends queries to make it peek
ahead for server error reports before reporting the send failure.
It now emerges that related cases can occur during connection setup;
in particular, as of TLS 1.3 it's unsafe to assume that SSL connection
failures will be reported by SSL_connect rather than during our first
send attempt. We could have fixed that in a hacky way by applying
pqHandleSendFailure after a startup packet send failure, but
(a) pqHandleSendFailure explicitly disclaims suitability for use in any
state except query startup, and (b) the problem still potentially exists
for other send attempts in libpq.
Instead, let's fix this in a more general fashion by eliminating
pqHandleSendFailure altogether, and instead arranging to postpone
all reports of send failures in libpq until after we've made an
attempt to read and process server messages. The send failure won't
be reported at all if we find a server message or detect input EOF.
(Note: this removes one of the reasons why libpq typically overwrites,
rather than appending to, conn->errorMessage: pqHandleSendFailure needed
that behavior so that the send failure report would be replaced if we
got a server message or read failure report. Eventually I'd like to get
rid of that overwrite behavior altogether, but today is not that day.
For the moment, pqSendSome is assuming that its callees will overwrite
not append to conn->errorMessage.)
Possibly this change should get back-patched someday; but it needs
testing first, so let's not consider that till after v12 beta.
Discussion: https://postgr.es/m/CAEepm=2n6Nv+5tFfe8YnkUm1fXgvxR0Mm1FoD+QKG-vLNGLyKg@mail.gmail.com
2019-03-19 21:20:20 +01:00
|
|
|
else
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "write to server failed");
|
In libpq, always append new error messages to conn->errorMessage.
Previously, we had an undisciplined mish-mash of printfPQExpBuffer and
appendPQExpBuffer calls to report errors within libpq. This commit
establishes a uniform rule that appendPQExpBuffer[Str] should be used.
conn->errorMessage is reset only at the start of an application request,
and then accumulates messages till we're done. We can remove no less
than three different ad-hoc mechanisms that were used to get the effect
of concatenation of error messages within a sequence of operations.
Although this makes things quite a bit cleaner conceptually, the main
reason to do it is to make the world safer for the multiple-target-host
feature that was added awhile back. Previously, there were many cases
in which an error occurring during an individual host connection attempt
would wipe out the record of what had happened during previous attempts.
(The reporting is still inadequate, in that it can be hard to tell which
host got the failure, but that seems like a matter for a separate commit.)
Currently, lo_import and lo_export contain exceptions to the "never
use printfPQExpBuffer" rule. If we changed them, we'd risk reporting
an incidental lo_close failure before the actual read or write
failure, which would be confusing, not least because lo_close happened
after the main failure. We could improve this by inventing an
internal version of lo_close that doesn't reset the errorMessage; but
we'd also need a version of PQfn() that does that, and it didn't quite
seem worth the trouble for now.
Discussion: https://postgr.es/m/BN6PR05MB3492948E4FD76C156E747E8BC9160@BN6PR05MB3492.namprd05.prod.outlook.com
2021-01-11 19:12:09 +01:00
|
|
|
|
|
|
|
|
pqSaveErrorResult(conn);
|
Restructure libpq's handling of send failures.
Originally, if libpq got a failure (e.g., ECONNRESET) while trying to
send data to the server, it would just report that and wash its hands
of the matter. It was soon found that that wasn't a very pleasant way
of coping with server-initiated disconnections, so we introduced a hack
(pqHandleSendFailure) in the code that sends queries to make it peek
ahead for server error reports before reporting the send failure.
It now emerges that related cases can occur during connection setup;
in particular, as of TLS 1.3 it's unsafe to assume that SSL connection
failures will be reported by SSL_connect rather than during our first
send attempt. We could have fixed that in a hacky way by applying
pqHandleSendFailure after a startup packet send failure, but
(a) pqHandleSendFailure explicitly disclaims suitability for use in any
state except query startup, and (b) the problem still potentially exists
for other send attempts in libpq.
Instead, let's fix this in a more general fashion by eliminating
pqHandleSendFailure altogether, and instead arranging to postpone
all reports of send failures in libpq until after we've made an
attempt to read and process server messages. The send failure won't
be reported at all if we find a server message or detect input EOF.
(Note: this removes one of the reasons why libpq typically overwrites,
rather than appending to, conn->errorMessage: pqHandleSendFailure needed
that behavior so that the send failure report would be replaced if we
got a server message or read failure report. Eventually I'd like to get
rid of that overwrite behavior altogether, but today is not that day.
For the moment, pqSendSome is assuming that its callees will overwrite
not append to conn->errorMessage.)
Possibly this change should get back-patched someday; but it needs
testing first, so let's not consider that till after v12 beta.
Discussion: https://postgr.es/m/CAEepm=2n6Nv+5tFfe8YnkUm1fXgvxR0Mm1FoD+QKG-vLNGLyKg@mail.gmail.com
2019-03-19 21:20:20 +01:00
|
|
|
}
|
|
|
|
|
|
1999-08-31 03:37:37 +02:00
|
|
|
/*
|
Rearrange libpq's error reporting to avoid duplicated error text.
Since commit ffa2e4670, libpq accumulates text in conn->errorMessage
across a whole query cycle. In some situations, we may report more
than one error event within a cycle: the easiest case to reach is
where we report a FATAL error message from the server, and then a
bit later we detect loss of connection. Since, historically, each
error PGresult bears the entire content of conn->errorMessage,
this results in duplication of the FATAL message in any output that
concatenates the contents of the PGresults.
Accumulation in errorMessage still seems like a good idea, especially
in view of the number of places that did ad-hoc error concatenation
before ffa2e4670. So to fix this, let's track how much of
conn->errorMessage has been read out into error PGresults, and only
include new text in later PGresults. The tricky part of that is
to be sure that we never discard an error PGresult once made (else
we'd risk dropping some text, a problem much worse than duplication).
While libpq formerly did that in some code paths, a little bit of
rearrangement lets us postpone making an error PGresult at all until
we are about to return it.
A side benefit of that postponement is that it now becomes practical
to return a dummy static PGresult in cases where we hit out-of-memory
while trying to manufacture an error PGresult. This eliminates the
admittedly-very-rare case where we'd return NULL from PQgetResult,
indicating successful query completion, even though what actually
happened was an OOM failure.
Discussion: https://postgr.es/m/ab4288f8-be5c-57fb-2400-e3e857f53e46@enterprisedb.com
2022-02-18 21:35:15 +01:00
|
|
|
* pqPrepareAsyncResult -
|
|
|
|
|
* prepare the current async result object for return to the caller
|
|
|
|
|
*
|
1999-08-31 03:37:37 +02:00
|
|
|
* If there is not already an async result object, build an error object
|
|
|
|
|
* using whatever is in conn->errorMessage. In any case, clear the async
|
Rearrange libpq's error reporting to avoid duplicated error text.
Since commit ffa2e4670, libpq accumulates text in conn->errorMessage
across a whole query cycle. In some situations, we may report more
than one error event within a cycle: the easiest case to reach is
where we report a FATAL error message from the server, and then a
bit later we detect loss of connection. Since, historically, each
error PGresult bears the entire content of conn->errorMessage,
this results in duplication of the FATAL message in any output that
concatenates the contents of the PGresults.
Accumulation in errorMessage still seems like a good idea, especially
in view of the number of places that did ad-hoc error concatenation
before ffa2e4670. So to fix this, let's track how much of
conn->errorMessage has been read out into error PGresults, and only
include new text in later PGresults. The tricky part of that is
to be sure that we never discard an error PGresult once made (else
we'd risk dropping some text, a problem much worse than duplication).
While libpq formerly did that in some code paths, a little bit of
rearrangement lets us postpone making an error PGresult at all until
we are about to return it.
A side benefit of that postponement is that it now becomes practical
to return a dummy static PGresult in cases where we hit out-of-memory
while trying to manufacture an error PGresult. This eliminates the
admittedly-very-rare case where we'd return NULL from PQgetResult,
indicating successful query completion, even though what actually
happened was an OOM failure.
Discussion: https://postgr.es/m/ab4288f8-be5c-57fb-2400-e3e857f53e46@enterprisedb.com
2022-02-18 21:35:15 +01:00
|
|
|
* result storage, and update our notion of how much error text has been
|
|
|
|
|
* returned to the application.
|
1999-08-31 03:37:37 +02:00
|
|
|
*/
|
2003-06-08 19:43:00 +02:00
|
|
|
PGresult *
|
|
|
|
|
pqPrepareAsyncResult(PGconn *conn)
|
1999-08-31 03:37:37 +02:00
|
|
|
{
|
|
|
|
|
PGresult *res;
|
|
|
|
|
|
|
|
|
|
res = conn->result;
|
Rearrange libpq's error reporting to avoid duplicated error text.
Since commit ffa2e4670, libpq accumulates text in conn->errorMessage
across a whole query cycle. In some situations, we may report more
than one error event within a cycle: the easiest case to reach is
where we report a FATAL error message from the server, and then a
bit later we detect loss of connection. Since, historically, each
error PGresult bears the entire content of conn->errorMessage,
this results in duplication of the FATAL message in any output that
concatenates the contents of the PGresults.
Accumulation in errorMessage still seems like a good idea, especially
in view of the number of places that did ad-hoc error concatenation
before ffa2e4670. So to fix this, let's track how much of
conn->errorMessage has been read out into error PGresults, and only
include new text in later PGresults. The tricky part of that is
to be sure that we never discard an error PGresult once made (else
we'd risk dropping some text, a problem much worse than duplication).
While libpq formerly did that in some code paths, a little bit of
rearrangement lets us postpone making an error PGresult at all until
we are about to return it.
A side benefit of that postponement is that it now becomes practical
to return a dummy static PGresult in cases where we hit out-of-memory
while trying to manufacture an error PGresult. This eliminates the
admittedly-very-rare case where we'd return NULL from PQgetResult,
indicating successful query completion, even though what actually
happened was an OOM failure.
Discussion: https://postgr.es/m/ab4288f8-be5c-57fb-2400-e3e857f53e46@enterprisedb.com
2022-02-18 21:35:15 +01:00
|
|
|
if (res)
|
|
|
|
|
{
|
|
|
|
|
/*
|
|
|
|
|
* If the pre-existing result is an ERROR (presumably something
|
|
|
|
|
* received from the server), assume that it represents whatever is in
|
|
|
|
|
* conn->errorMessage, and advance errorReported.
|
|
|
|
|
*/
|
|
|
|
|
if (res->resultStatus == PGRES_FATAL_ERROR)
|
|
|
|
|
conn->errorReported = conn->errorMessage.len;
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
/*
|
|
|
|
|
* We get here after internal-to-libpq errors. We should probably
|
|
|
|
|
* always have error_result = true, but if we don't, gin up some error
|
|
|
|
|
* text.
|
|
|
|
|
*/
|
|
|
|
|
if (!conn->error_result)
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "no error text available");
|
Rearrange libpq's error reporting to avoid duplicated error text.
Since commit ffa2e4670, libpq accumulates text in conn->errorMessage
across a whole query cycle. In some situations, we may report more
than one error event within a cycle: the easiest case to reach is
where we report a FATAL error message from the server, and then a
bit later we detect loss of connection. Since, historically, each
error PGresult bears the entire content of conn->errorMessage,
this results in duplication of the FATAL message in any output that
concatenates the contents of the PGresults.
Accumulation in errorMessage still seems like a good idea, especially
in view of the number of places that did ad-hoc error concatenation
before ffa2e4670. So to fix this, let's track how much of
conn->errorMessage has been read out into error PGresults, and only
include new text in later PGresults. The tricky part of that is
to be sure that we never discard an error PGresult once made (else
we'd risk dropping some text, a problem much worse than duplication).
While libpq formerly did that in some code paths, a little bit of
rearrangement lets us postpone making an error PGresult at all until
we are about to return it.
A side benefit of that postponement is that it now becomes practical
to return a dummy static PGresult in cases where we hit out-of-memory
while trying to manufacture an error PGresult. This eliminates the
admittedly-very-rare case where we'd return NULL from PQgetResult,
indicating successful query completion, even though what actually
happened was an OOM failure.
Discussion: https://postgr.es/m/ab4288f8-be5c-57fb-2400-e3e857f53e46@enterprisedb.com
2022-02-18 21:35:15 +01:00
|
|
|
|
|
|
|
|
/* Paranoia: be sure errorReported offset is sane */
|
|
|
|
|
if (conn->errorReported < 0 ||
|
|
|
|
|
conn->errorReported >= conn->errorMessage.len)
|
|
|
|
|
conn->errorReported = 0;
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Make a PGresult struct for the error. We temporarily lie about the
|
|
|
|
|
* result status, so that PQmakeEmptyPGresult doesn't uselessly copy
|
|
|
|
|
* all of conn->errorMessage.
|
|
|
|
|
*/
|
|
|
|
|
res = PQmakeEmptyPGresult(conn, PGRES_EMPTY_QUERY);
|
|
|
|
|
if (res)
|
|
|
|
|
{
|
|
|
|
|
/*
|
|
|
|
|
* Report whatever new error text we have, and advance
|
|
|
|
|
* errorReported.
|
|
|
|
|
*/
|
|
|
|
|
res->resultStatus = PGRES_FATAL_ERROR;
|
|
|
|
|
pqSetResultError(res, &conn->errorMessage, conn->errorReported);
|
|
|
|
|
conn->errorReported = conn->errorMessage.len;
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
/*
|
|
|
|
|
* Ouch, not enough memory for a PGresult. Fortunately, we have a
|
|
|
|
|
* card up our sleeve: we can use the static OOM_result. Casting
|
|
|
|
|
* away const here is a bit ugly, but it seems best to declare
|
|
|
|
|
* OOM_result as const, in hopes it will be allocated in read-only
|
|
|
|
|
* storage.
|
|
|
|
|
*/
|
|
|
|
|
res = unconstify(PGresult *, &OOM_result);
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Don't advance errorReported. Perhaps we'll be able to report
|
|
|
|
|
* the text later.
|
|
|
|
|
*/
|
|
|
|
|
}
|
|
|
|
|
}
|
2012-08-02 19:10:30 +02:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Replace conn->result with next_result, if any. In the normal case
|
|
|
|
|
* there isn't a next result and we're just dropping ownership of the
|
|
|
|
|
* current result. In single-row mode this restores the situation to what
|
|
|
|
|
* it was before we created the current single-row result.
|
|
|
|
|
*/
|
|
|
|
|
conn->result = conn->next_result;
|
Rearrange libpq's error reporting to avoid duplicated error text.
Since commit ffa2e4670, libpq accumulates text in conn->errorMessage
across a whole query cycle. In some situations, we may report more
than one error event within a cycle: the easiest case to reach is
where we report a FATAL error message from the server, and then a
bit later we detect loss of connection. Since, historically, each
error PGresult bears the entire content of conn->errorMessage,
this results in duplication of the FATAL message in any output that
concatenates the contents of the PGresults.
Accumulation in errorMessage still seems like a good idea, especially
in view of the number of places that did ad-hoc error concatenation
before ffa2e4670. So to fix this, let's track how much of
conn->errorMessage has been read out into error PGresults, and only
include new text in later PGresults. The tricky part of that is
to be sure that we never discard an error PGresult once made (else
we'd risk dropping some text, a problem much worse than duplication).
While libpq formerly did that in some code paths, a little bit of
rearrangement lets us postpone making an error PGresult at all until
we are about to return it.
A side benefit of that postponement is that it now becomes practical
to return a dummy static PGresult in cases where we hit out-of-memory
while trying to manufacture an error PGresult. This eliminates the
admittedly-very-rare case where we'd return NULL from PQgetResult,
indicating successful query completion, even though what actually
happened was an OOM failure.
Discussion: https://postgr.es/m/ab4288f8-be5c-57fb-2400-e3e857f53e46@enterprisedb.com
2022-02-18 21:35:15 +01:00
|
|
|
conn->error_result = false; /* next_result is never an error */
|
2012-08-02 19:10:30 +02:00
|
|
|
conn->next_result = NULL;
|
|
|
|
|
|
1999-08-31 03:37:37 +02:00
|
|
|
return res;
|
|
|
|
|
}
|
1996-07-09 08:22:35 +02:00
|
|
|
|
2003-06-21 23:51:35 +02:00
|
|
|
/*
|
2003-06-23 21:20:25 +02:00
|
|
|
* pqInternalNotice - produce an internally-generated notice message
|
|
|
|
|
*
|
|
|
|
|
* A format string and optional arguments can be passed. Note that we do
|
|
|
|
|
* libpq_gettext() here, so callers need not.
|
2003-06-21 23:51:35 +02:00
|
|
|
*
|
|
|
|
|
* The supplied text is taken as primary message (ie., it should not include
|
|
|
|
|
* a trailing newline, and should not be more than one line).
|
|
|
|
|
*/
|
|
|
|
|
void
|
2005-06-12 02:00:21 +02:00
|
|
|
pqInternalNotice(const PGNoticeHooks *hooks, const char *fmt,...)
|
2003-06-21 23:51:35 +02:00
|
|
|
{
|
2003-06-23 21:20:25 +02:00
|
|
|
char msgBuf[1024];
|
|
|
|
|
va_list args;
|
2003-06-21 23:51:35 +02:00
|
|
|
PGresult *res;
|
|
|
|
|
|
|
|
|
|
if (hooks->noticeRec == NULL)
|
2003-06-23 21:20:25 +02:00
|
|
|
return; /* nobody home to receive notice? */
|
|
|
|
|
|
|
|
|
|
/* Format the message */
|
|
|
|
|
va_start(args, fmt);
|
|
|
|
|
vsnprintf(msgBuf, sizeof(msgBuf), libpq_gettext(fmt), args);
|
|
|
|
|
va_end(args);
|
|
|
|
|
msgBuf[sizeof(msgBuf) - 1] = '\0'; /* make real sure it's terminated */
|
2003-06-21 23:51:35 +02:00
|
|
|
|
|
|
|
|
/* Make a PGresult to pass to the notice receiver */
|
|
|
|
|
res = PQmakeEmptyPGresult(NULL, PGRES_NONFATAL_ERROR);
|
2005-06-12 02:00:21 +02:00
|
|
|
if (!res)
|
|
|
|
|
return;
|
2003-06-21 23:51:35 +02:00
|
|
|
res->noticeHooks = *hooks;
|
2003-08-04 02:43:34 +02:00
|
|
|
|
2003-06-21 23:51:35 +02:00
|
|
|
/*
|
|
|
|
|
* Set up fields of notice.
|
|
|
|
|
*/
|
2003-08-27 02:33:34 +02:00
|
|
|
pqSaveMessageField(res, PG_DIAG_MESSAGE_PRIMARY, msgBuf);
|
|
|
|
|
pqSaveMessageField(res, PG_DIAG_SEVERITY, libpq_gettext("NOTICE"));
|
2016-08-26 22:20:17 +02:00
|
|
|
pqSaveMessageField(res, PG_DIAG_SEVERITY_NONLOCALIZED, "NOTICE");
|
2003-06-21 23:51:35 +02:00
|
|
|
/* XXX should provide a SQLSTATE too? */
|
2003-08-04 02:43:34 +02:00
|
|
|
|
2003-06-21 23:51:35 +02:00
|
|
|
/*
|
2021-07-29 19:33:31 +02:00
|
|
|
* Result text is always just the primary message + newline. If we can't
|
|
|
|
|
* allocate it, substitute "out of memory", as in pqSetResultError.
|
2003-06-21 23:51:35 +02:00
|
|
|
*/
|
2017-08-16 06:22:32 +02:00
|
|
|
res->errMsg = (char *) pqResultAlloc(res, strlen(msgBuf) + 2, false);
|
2005-06-12 02:00:21 +02:00
|
|
|
if (res->errMsg)
|
|
|
|
|
sprintf(res->errMsg, "%s\n", msgBuf);
|
2021-07-29 19:33:31 +02:00
|
|
|
else
|
|
|
|
|
res->errMsg = libpq_gettext("out of memory\n");
|
2003-08-04 02:43:34 +02:00
|
|
|
|
2021-07-29 19:33:31 +02:00
|
|
|
/*
|
|
|
|
|
* Pass to receiver, then free it.
|
|
|
|
|
*/
|
|
|
|
|
res->noticeHooks.noticeRec(res->noticeHooks.noticeRecArg, res);
|
2003-06-21 23:51:35 +02:00
|
|
|
PQclear(res);
|
|
|
|
|
}
|
|
|
|
|
|
1996-07-09 08:22:35 +02:00
|
|
|
/*
|
2003-06-08 19:43:00 +02:00
|
|
|
* pqAddTuple
|
1998-11-18 01:47:28 +01:00
|
|
|
* add a row pointer to the PGresult structure, growing it if necessary
|
2017-08-16 06:22:32 +02:00
|
|
|
* Returns true if OK, false if an error prevented adding the row
|
Teach libpq to detect integer overflow in the row count of a PGresult.
Adding more than 1 billion rows to a PGresult would overflow its ntups and
tupArrSize fields, leading to client crashes. It'd be desirable to use
wider fields on 64-bit machines, but because all of libpq's external APIs
use plain "int" for row counters, that's going to be hard to accomplish
without an ABI break. Given the lack of complaints so far, and the general
pain that would be involved in using such huge PGresults, let's settle for
just preventing the overflow and reporting a useful error message if it
does happen. Also, for a couple more lines of code we can increase the
threshold of trouble from INT_MAX/2 to INT_MAX rows.
To do that, refactor pqAddTuple() to allow returning an error message that
replaces the default assumption that it failed because of out-of-memory.
Along the way, fix PQsetvalue() so that it reports all failures via
pqInternalNotice(). It already did so in the case of bad field number,
but neglected to report anything for other error causes.
Because of the potential for crashes, this seems like a back-patchable
bug fix, despite the lack of field reports.
Michael Paquier, per a complaint from Igor Korot.
Discussion: https://postgr.es/m/CA+FnnTxyLWyjY1goewmJNxC==HQCCF4fKkoCTa9qR36oRAHDPw@mail.gmail.com
2017-08-29 21:18:01 +02:00
|
|
|
*
|
|
|
|
|
* On error, *errmsgp can be set to an error string to be returned.
|
|
|
|
|
* If it is left NULL, the error is presumed to be "out of memory".
|
1996-07-09 08:22:35 +02:00
|
|
|
*/
|
2012-04-05 00:27:56 +02:00
|
|
|
static bool
|
Teach libpq to detect integer overflow in the row count of a PGresult.
Adding more than 1 billion rows to a PGresult would overflow its ntups and
tupArrSize fields, leading to client crashes. It'd be desirable to use
wider fields on 64-bit machines, but because all of libpq's external APIs
use plain "int" for row counters, that's going to be hard to accomplish
without an ABI break. Given the lack of complaints so far, and the general
pain that would be involved in using such huge PGresults, let's settle for
just preventing the overflow and reporting a useful error message if it
does happen. Also, for a couple more lines of code we can increase the
threshold of trouble from INT_MAX/2 to INT_MAX rows.
To do that, refactor pqAddTuple() to allow returning an error message that
replaces the default assumption that it failed because of out-of-memory.
Along the way, fix PQsetvalue() so that it reports all failures via
pqInternalNotice(). It already did so in the case of bad field number,
but neglected to report anything for other error causes.
Because of the potential for crashes, this seems like a back-patchable
bug fix, despite the lack of field reports.
Michael Paquier, per a complaint from Igor Korot.
Discussion: https://postgr.es/m/CA+FnnTxyLWyjY1goewmJNxC==HQCCF4fKkoCTa9qR36oRAHDPw@mail.gmail.com
2017-08-29 21:18:01 +02:00
|
|
|
pqAddTuple(PGresult *res, PGresAttValue *tup, const char **errmsgp)
|
1996-07-09 08:22:35 +02:00
|
|
|
{
|
1998-05-07 01:51:16 +02:00
|
|
|
if (res->ntups >= res->tupArrSize)
|
1996-07-09 08:22:35 +02:00
|
|
|
{
|
1998-05-07 01:51:16 +02:00
|
|
|
/*
|
1998-10-01 03:40:26 +02:00
|
|
|
* Try to grow the array.
|
|
|
|
|
*
|
|
|
|
|
* We can use realloc because shallow copying of the structure is
|
1998-05-07 01:51:16 +02:00
|
|
|
* okay. Note that the first time through, res->tuples is NULL. While
|
1998-11-29 02:53:54 +01:00
|
|
|
* ANSI says that realloc() should act like malloc() in that case,
|
|
|
|
|
* some old C libraries (like SunOS 4.1.x) coredump instead. On
|
|
|
|
|
* failure realloc is supposed to return NULL without damaging the
|
1998-10-01 03:40:26 +02:00
|
|
|
* existing allocation. Note that the positions beyond res->ntups are
|
|
|
|
|
* garbage, not necessarily NULL.
|
1998-05-07 01:51:16 +02:00
|
|
|
*/
|
Teach libpq to detect integer overflow in the row count of a PGresult.
Adding more than 1 billion rows to a PGresult would overflow its ntups and
tupArrSize fields, leading to client crashes. It'd be desirable to use
wider fields on 64-bit machines, but because all of libpq's external APIs
use plain "int" for row counters, that's going to be hard to accomplish
without an ABI break. Given the lack of complaints so far, and the general
pain that would be involved in using such huge PGresults, let's settle for
just preventing the overflow and reporting a useful error message if it
does happen. Also, for a couple more lines of code we can increase the
threshold of trouble from INT_MAX/2 to INT_MAX rows.
To do that, refactor pqAddTuple() to allow returning an error message that
replaces the default assumption that it failed because of out-of-memory.
Along the way, fix PQsetvalue() so that it reports all failures via
pqInternalNotice(). It already did so in the case of bad field number,
but neglected to report anything for other error causes.
Because of the potential for crashes, this seems like a back-patchable
bug fix, despite the lack of field reports.
Michael Paquier, per a complaint from Igor Korot.
Discussion: https://postgr.es/m/CA+FnnTxyLWyjY1goewmJNxC==HQCCF4fKkoCTa9qR36oRAHDPw@mail.gmail.com
2017-08-29 21:18:01 +02:00
|
|
|
int newSize;
|
1998-11-29 02:53:54 +01:00
|
|
|
PGresAttValue **newTuples;
|
1999-05-25 18:15:34 +02:00
|
|
|
|
Teach libpq to detect integer overflow in the row count of a PGresult.
Adding more than 1 billion rows to a PGresult would overflow its ntups and
tupArrSize fields, leading to client crashes. It'd be desirable to use
wider fields on 64-bit machines, but because all of libpq's external APIs
use plain "int" for row counters, that's going to be hard to accomplish
without an ABI break. Given the lack of complaints so far, and the general
pain that would be involved in using such huge PGresults, let's settle for
just preventing the overflow and reporting a useful error message if it
does happen. Also, for a couple more lines of code we can increase the
threshold of trouble from INT_MAX/2 to INT_MAX rows.
To do that, refactor pqAddTuple() to allow returning an error message that
replaces the default assumption that it failed because of out-of-memory.
Along the way, fix PQsetvalue() so that it reports all failures via
pqInternalNotice(). It already did so in the case of bad field number,
but neglected to report anything for other error causes.
Because of the potential for crashes, this seems like a back-patchable
bug fix, despite the lack of field reports.
Michael Paquier, per a complaint from Igor Korot.
Discussion: https://postgr.es/m/CA+FnnTxyLWyjY1goewmJNxC==HQCCF4fKkoCTa9qR36oRAHDPw@mail.gmail.com
2017-08-29 21:18:01 +02:00
|
|
|
/*
|
|
|
|
|
* Since we use integers for row numbers, we can't support more than
|
|
|
|
|
* INT_MAX rows. Make sure we allow that many, though.
|
|
|
|
|
*/
|
|
|
|
|
if (res->tupArrSize <= INT_MAX / 2)
|
|
|
|
|
newSize = (res->tupArrSize > 0) ? res->tupArrSize * 2 : 128;
|
|
|
|
|
else if (res->tupArrSize < INT_MAX)
|
|
|
|
|
newSize = INT_MAX;
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
*errmsgp = libpq_gettext("PGresult cannot support more than INT_MAX tuples");
|
2017-08-16 06:22:32 +02:00
|
|
|
return false;
|
Teach libpq to detect integer overflow in the row count of a PGresult.
Adding more than 1 billion rows to a PGresult would overflow its ntups and
tupArrSize fields, leading to client crashes. It'd be desirable to use
wider fields on 64-bit machines, but because all of libpq's external APIs
use plain "int" for row counters, that's going to be hard to accomplish
without an ABI break. Given the lack of complaints so far, and the general
pain that would be involved in using such huge PGresults, let's settle for
just preventing the overflow and reporting a useful error message if it
does happen. Also, for a couple more lines of code we can increase the
threshold of trouble from INT_MAX/2 to INT_MAX rows.
To do that, refactor pqAddTuple() to allow returning an error message that
replaces the default assumption that it failed because of out-of-memory.
Along the way, fix PQsetvalue() so that it reports all failures via
pqInternalNotice(). It already did so in the case of bad field number,
but neglected to report anything for other error causes.
Because of the potential for crashes, this seems like a back-patchable
bug fix, despite the lack of field reports.
Michael Paquier, per a complaint from Igor Korot.
Discussion: https://postgr.es/m/CA+FnnTxyLWyjY1goewmJNxC==HQCCF4fKkoCTa9qR36oRAHDPw@mail.gmail.com
2017-08-29 21:18:01 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Also, on 32-bit platforms we could, in theory, overflow size_t even
|
|
|
|
|
* before newSize gets to INT_MAX. (In practice we'd doubtless hit
|
|
|
|
|
* OOM long before that, but let's check.)
|
|
|
|
|
*/
|
|
|
|
|
#if INT_MAX >= (SIZE_MAX / 2)
|
|
|
|
|
if (newSize > SIZE_MAX / sizeof(PGresAttValue *))
|
|
|
|
|
{
|
|
|
|
|
*errmsgp = libpq_gettext("size_t overflow");
|
2017-08-16 06:22:32 +02:00
|
|
|
return false;
|
Teach libpq to detect integer overflow in the row count of a PGresult.
Adding more than 1 billion rows to a PGresult would overflow its ntups and
tupArrSize fields, leading to client crashes. It'd be desirable to use
wider fields on 64-bit machines, but because all of libpq's external APIs
use plain "int" for row counters, that's going to be hard to accomplish
without an ABI break. Given the lack of complaints so far, and the general
pain that would be involved in using such huge PGresults, let's settle for
just preventing the overflow and reporting a useful error message if it
does happen. Also, for a couple more lines of code we can increase the
threshold of trouble from INT_MAX/2 to INT_MAX rows.
To do that, refactor pqAddTuple() to allow returning an error message that
replaces the default assumption that it failed because of out-of-memory.
Along the way, fix PQsetvalue() so that it reports all failures via
pqInternalNotice(). It already did so in the case of bad field number,
but neglected to report anything for other error causes.
Because of the potential for crashes, this seems like a back-patchable
bug fix, despite the lack of field reports.
Michael Paquier, per a complaint from Igor Korot.
Discussion: https://postgr.es/m/CA+FnnTxyLWyjY1goewmJNxC==HQCCF4fKkoCTa9qR36oRAHDPw@mail.gmail.com
2017-08-29 21:18:01 +02:00
|
|
|
}
|
|
|
|
|
#endif
|
|
|
|
|
|
1998-11-29 02:53:54 +01:00
|
|
|
if (res->tuples == NULL)
|
|
|
|
|
newTuples = (PGresAttValue **)
|
|
|
|
|
malloc(newSize * sizeof(PGresAttValue *));
|
|
|
|
|
else
|
|
|
|
|
newTuples = (PGresAttValue **)
|
|
|
|
|
realloc(res->tuples, newSize * sizeof(PGresAttValue *));
|
1998-10-01 03:40:26 +02:00
|
|
|
if (!newTuples)
|
2017-08-16 06:22:32 +02:00
|
|
|
return false; /* malloc or realloc failed */
|
2018-09-12 00:45:02 +02:00
|
|
|
res->memorySize +=
|
|
|
|
|
(newSize - res->tupArrSize) * sizeof(PGresAttValue *);
|
1998-10-01 03:40:26 +02:00
|
|
|
res->tupArrSize = newSize;
|
|
|
|
|
res->tuples = newTuples;
|
1996-07-09 08:22:35 +02:00
|
|
|
}
|
|
|
|
|
res->tuples[res->ntups] = tup;
|
|
|
|
|
res->ntups++;
|
2017-08-16 06:22:32 +02:00
|
|
|
return true;
|
1996-07-09 08:22:35 +02:00
|
|
|
}
|
|
|
|
|
|
2003-06-21 23:51:35 +02:00
|
|
|
/*
|
|
|
|
|
* pqSaveMessageField - save one field of an error or notice message
|
|
|
|
|
*/
|
|
|
|
|
void
|
|
|
|
|
pqSaveMessageField(PGresult *res, char code, const char *value)
|
|
|
|
|
{
|
|
|
|
|
PGMessageField *pfield;
|
|
|
|
|
|
|
|
|
|
pfield = (PGMessageField *)
|
|
|
|
|
pqResultAlloc(res,
|
2015-02-21 07:46:43 +01:00
|
|
|
offsetof(PGMessageField, contents) +
|
|
|
|
|
strlen(value) + 1,
|
2017-08-16 06:22:32 +02:00
|
|
|
true);
|
2003-06-21 23:51:35 +02:00
|
|
|
if (!pfield)
|
|
|
|
|
return; /* out of memory? */
|
|
|
|
|
pfield->code = code;
|
|
|
|
|
strcpy(pfield->contents, value);
|
|
|
|
|
pfield->next = res->errFields;
|
|
|
|
|
res->errFields = pfield;
|
|
|
|
|
}
|
1998-05-07 01:51:16 +02:00
|
|
|
|
2003-06-08 19:43:00 +02:00
|
|
|
/*
|
|
|
|
|
* pqSaveParameterStatus - remember parameter status sent by backend
|
|
|
|
|
*/
|
|
|
|
|
void
|
|
|
|
|
pqSaveParameterStatus(PGconn *conn, const char *name, const char *value)
|
|
|
|
|
{
|
|
|
|
|
pgParameterStatus *pstatus;
|
|
|
|
|
pgParameterStatus *prev;
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Forget any old information about the parameter
|
|
|
|
|
*/
|
|
|
|
|
for (pstatus = conn->pstatus, prev = NULL;
|
|
|
|
|
pstatus != NULL;
|
|
|
|
|
prev = pstatus, pstatus = pstatus->next)
|
|
|
|
|
{
|
|
|
|
|
if (strcmp(pstatus->name, name) == 0)
|
|
|
|
|
{
|
|
|
|
|
if (prev)
|
|
|
|
|
prev->next = pstatus->next;
|
|
|
|
|
else
|
|
|
|
|
conn->pstatus = pstatus->next;
|
|
|
|
|
free(pstatus); /* frees name and value strings too */
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
2003-08-04 02:43:34 +02:00
|
|
|
|
2003-06-08 19:43:00 +02:00
|
|
|
/*
|
|
|
|
|
* Store new info as a single malloc block
|
|
|
|
|
*/
|
|
|
|
|
pstatus = (pgParameterStatus *) malloc(sizeof(pgParameterStatus) +
|
|
|
|
|
strlen(name) + strlen(value) + 2);
|
|
|
|
|
if (pstatus)
|
|
|
|
|
{
|
|
|
|
|
char *ptr;
|
|
|
|
|
|
|
|
|
|
ptr = ((char *) pstatus) + sizeof(pgParameterStatus);
|
|
|
|
|
pstatus->name = ptr;
|
|
|
|
|
strcpy(ptr, name);
|
|
|
|
|
ptr += strlen(name) + 1;
|
|
|
|
|
pstatus->value = ptr;
|
|
|
|
|
strcpy(ptr, value);
|
|
|
|
|
pstatus->next = conn->pstatus;
|
|
|
|
|
conn->pstatus = pstatus;
|
|
|
|
|
}
|
2003-08-04 02:43:34 +02:00
|
|
|
|
2003-06-08 19:43:00 +02:00
|
|
|
/*
|
Extend the abilities of libpq's target_session_attrs parameter.
In addition to the existing options of "any" and "read-write", we
now support "read-only", "primary", "standby", and "prefer-standby".
"read-write" retains its previous meaning of "transactions are
read-write by default", and "read-only" inverts that. The other
three modes test specifically for hot-standby status, which is not
quite the same thing. (Setting default_transaction_read_only on
a primary server renders it read-only to this logic, but not a
standby.)
Furthermore, if talking to a v14 or later server, no extra network
round trip is needed to detect the session's status; the GUC_REPORT
variables delivered by the server are enough. When talking to an
older server, a SHOW or SELECT query is issued to detect session
read-only-ness or server hot-standby state, as needed.
Haribabu Kommi, Greg Nancarrow, Vignesh C, Tom Lane; reviewed at
various times by Laurenz Albe, Takayuki Tsunakawa, Peter Smith.
Discussion: https://postgr.es/m/CAF3+xM+8-ztOkaV9gHiJ3wfgENTq97QcjXQt+rbFQ6F7oNzt9A@mail.gmail.com
2021-03-03 02:17:45 +01:00
|
|
|
* Save values of settings that are of interest to libpq in fields of the
|
|
|
|
|
* PGconn object. We keep client_encoding and standard_conforming_strings
|
|
|
|
|
* in static variables as well, so that PQescapeString and PQescapeBytea
|
|
|
|
|
* can behave somewhat sanely (at least in single-connection-using
|
|
|
|
|
* programs).
|
2003-06-08 19:43:00 +02:00
|
|
|
*/
|
|
|
|
|
if (strcmp(name, "client_encoding") == 0)
|
Modify libpq's string-escaping routines to be aware of encoding considerations
and standard_conforming_strings. The encoding changes are needed for proper
escaping in multibyte encodings, as per the SQL-injection vulnerabilities
noted in CVE-2006-2313 and CVE-2006-2314. Concurrent fixes are being applied
to the server to ensure that it rejects queries that may have been corrupted
by attempted SQL injection, but this merely guarantees that unpatched clients
will fail rather than allow injection. An actual fix requires changing the
client-side code. While at it we have also fixed these routines to understand
about standard_conforming_strings, so that the upcoming changeover to SQL-spec
string syntax can be somewhat transparent to client code.
Since the existing API of PQescapeString and PQescapeBytea provides no way to
inform them which settings are in use, these functions are now deprecated in
favor of new functions PQescapeStringConn and PQescapeByteaConn. The new
functions take the PGconn to which the string will be sent as an additional
parameter, and look inside the connection structure to determine what to do.
So as to provide some functionality for clients using the old functions,
libpq stores the latest encoding and standard_conforming_strings values
received from the backend in static variables, and the old functions consult
these variables. This will work reliably in clients using only one Postgres
connection at a time, or even multiple connections if they all use the same
encoding and string syntax settings; which should cover many practical
scenarios.
Clients that use homebrew escaping methods, such as PHP's addslashes()
function or even hardwired regexp substitution, will require extra effort
to fix :-(. It is strongly recommended that such code be replaced by use of
PQescapeStringConn/PQescapeByteaConn if at all feasible.
2006-05-21 22:19:23 +02:00
|
|
|
{
|
2003-06-08 19:43:00 +02:00
|
|
|
conn->client_encoding = pg_char_to_encoding(value);
|
2007-10-13 22:18:42 +02:00
|
|
|
/* if we don't recognize the encoding name, fall back to SQL_ASCII */
|
|
|
|
|
if (conn->client_encoding < 0)
|
|
|
|
|
conn->client_encoding = PG_SQL_ASCII;
|
Modify libpq's string-escaping routines to be aware of encoding considerations
and standard_conforming_strings. The encoding changes are needed for proper
escaping in multibyte encodings, as per the SQL-injection vulnerabilities
noted in CVE-2006-2313 and CVE-2006-2314. Concurrent fixes are being applied
to the server to ensure that it rejects queries that may have been corrupted
by attempted SQL injection, but this merely guarantees that unpatched clients
will fail rather than allow injection. An actual fix requires changing the
client-side code. While at it we have also fixed these routines to understand
about standard_conforming_strings, so that the upcoming changeover to SQL-spec
string syntax can be somewhat transparent to client code.
Since the existing API of PQescapeString and PQescapeBytea provides no way to
inform them which settings are in use, these functions are now deprecated in
favor of new functions PQescapeStringConn and PQescapeByteaConn. The new
functions take the PGconn to which the string will be sent as an additional
parameter, and look inside the connection structure to determine what to do.
So as to provide some functionality for clients using the old functions,
libpq stores the latest encoding and standard_conforming_strings values
received from the backend in static variables, and the old functions consult
these variables. This will work reliably in clients using only one Postgres
connection at a time, or even multiple connections if they all use the same
encoding and string syntax settings; which should cover many practical
scenarios.
Clients that use homebrew escaping methods, such as PHP's addslashes()
function or even hardwired regexp substitution, will require extra effort
to fix :-(. It is strongly recommended that such code be replaced by use of
PQescapeStringConn/PQescapeByteaConn if at all feasible.
2006-05-21 22:19:23 +02:00
|
|
|
static_client_encoding = conn->client_encoding;
|
|
|
|
|
}
|
|
|
|
|
else if (strcmp(name, "standard_conforming_strings") == 0)
|
|
|
|
|
{
|
|
|
|
|
conn->std_strings = (strcmp(value, "on") == 0);
|
|
|
|
|
static_std_strings = conn->std_strings;
|
|
|
|
|
}
|
2004-03-05 02:53:59 +01:00
|
|
|
else if (strcmp(name, "server_version") == 0)
|
|
|
|
|
{
|
Extend the abilities of libpq's target_session_attrs parameter.
In addition to the existing options of "any" and "read-write", we
now support "read-only", "primary", "standby", and "prefer-standby".
"read-write" retains its previous meaning of "transactions are
read-write by default", and "read-only" inverts that. The other
three modes test specifically for hot-standby status, which is not
quite the same thing. (Setting default_transaction_read_only on
a primary server renders it read-only to this logic, but not a
standby.)
Furthermore, if talking to a v14 or later server, no extra network
round trip is needed to detect the session's status; the GUC_REPORT
variables delivered by the server are enough. When talking to an
older server, a SHOW or SELECT query is issued to detect session
read-only-ness or server hot-standby state, as needed.
Haribabu Kommi, Greg Nancarrow, Vignesh C, Tom Lane; reviewed at
various times by Laurenz Albe, Takayuki Tsunakawa, Peter Smith.
Discussion: https://postgr.es/m/CAF3+xM+8-ztOkaV9gHiJ3wfgENTq97QcjXQt+rbFQ6F7oNzt9A@mail.gmail.com
2021-03-03 02:17:45 +01:00
|
|
|
/* We convert the server version to numeric form. */
|
2004-03-05 02:53:59 +01:00
|
|
|
int cnt;
|
|
|
|
|
int vmaj,
|
|
|
|
|
vmin,
|
|
|
|
|
vrev;
|
|
|
|
|
|
|
|
|
|
cnt = sscanf(value, "%d.%d.%d", &vmaj, &vmin, &vrev);
|
|
|
|
|
|
2016-08-06 00:58:12 +02:00
|
|
|
if (cnt == 3)
|
2004-03-05 02:53:59 +01:00
|
|
|
{
|
2016-08-06 00:58:12 +02:00
|
|
|
/* old style, e.g. 9.6.1 */
|
2004-03-05 02:53:59 +01:00
|
|
|
conn->sversion = (100 * vmaj + vmin) * 100 + vrev;
|
|
|
|
|
}
|
2016-08-06 00:58:12 +02:00
|
|
|
else if (cnt == 2)
|
|
|
|
|
{
|
|
|
|
|
if (vmaj >= 10)
|
|
|
|
|
{
|
|
|
|
|
/* new style, e.g. 10.1 */
|
|
|
|
|
conn->sversion = 100 * 100 * vmaj + vmin;
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
/* old style without minor version, e.g. 9.6devel */
|
|
|
|
|
conn->sversion = (100 * vmaj + vmin) * 100;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
else if (cnt == 1)
|
|
|
|
|
{
|
|
|
|
|
/* new style without minor version, e.g. 10devel */
|
|
|
|
|
conn->sversion = 100 * 100 * vmaj;
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
conn->sversion = 0; /* unknown */
|
2004-03-05 02:53:59 +01:00
|
|
|
}
|
Extend the abilities of libpq's target_session_attrs parameter.
In addition to the existing options of "any" and "read-write", we
now support "read-only", "primary", "standby", and "prefer-standby".
"read-write" retains its previous meaning of "transactions are
read-write by default", and "read-only" inverts that. The other
three modes test specifically for hot-standby status, which is not
quite the same thing. (Setting default_transaction_read_only on
a primary server renders it read-only to this logic, but not a
standby.)
Furthermore, if talking to a v14 or later server, no extra network
round trip is needed to detect the session's status; the GUC_REPORT
variables delivered by the server are enough. When talking to an
older server, a SHOW or SELECT query is issued to detect session
read-only-ness or server hot-standby state, as needed.
Haribabu Kommi, Greg Nancarrow, Vignesh C, Tom Lane; reviewed at
various times by Laurenz Albe, Takayuki Tsunakawa, Peter Smith.
Discussion: https://postgr.es/m/CAF3+xM+8-ztOkaV9gHiJ3wfgENTq97QcjXQt+rbFQ6F7oNzt9A@mail.gmail.com
2021-03-03 02:17:45 +01:00
|
|
|
else if (strcmp(name, "default_transaction_read_only") == 0)
|
|
|
|
|
{
|
|
|
|
|
conn->default_transaction_read_only =
|
|
|
|
|
(strcmp(value, "on") == 0) ? PG_BOOL_YES : PG_BOOL_NO;
|
|
|
|
|
}
|
|
|
|
|
else if (strcmp(name, "in_hot_standby") == 0)
|
|
|
|
|
{
|
|
|
|
|
conn->in_hot_standby =
|
|
|
|
|
(strcmp(value, "on") == 0) ? PG_BOOL_YES : PG_BOOL_NO;
|
|
|
|
|
}
|
2023-03-27 09:46:29 +02:00
|
|
|
else if (strcmp(name, "scram_iterations") == 0)
|
|
|
|
|
{
|
|
|
|
|
conn->scram_sha_256_iterations = atoi(value);
|
|
|
|
|
}
|
2003-06-08 19:43:00 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2012-04-05 00:27:56 +02:00
|
|
|
/*
|
2012-08-02 19:10:30 +02:00
|
|
|
* pqRowProcessor
|
|
|
|
|
* Add the received row to the current async result (conn->result).
|
|
|
|
|
* Returns 1 if OK, 0 if error occurred.
|
|
|
|
|
*
|
|
|
|
|
* On error, *errmsgp can be set to an error string to be returned.
|
2022-04-21 23:12:49 +02:00
|
|
|
* (Such a string should already be translated via libpq_gettext().)
|
2012-08-02 19:10:30 +02:00
|
|
|
* If it is left NULL, the error is presumed to be "out of memory".
|
2012-04-05 00:27:56 +02:00
|
|
|
*
|
2012-08-02 19:10:30 +02:00
|
|
|
* In single-row mode, we create a new result holding just the current row,
|
|
|
|
|
* stashing the previous result in conn->next_result so that it becomes
|
|
|
|
|
* active again after pqPrepareAsyncResult(). This allows the result metadata
|
|
|
|
|
* (column descriptions) to be carried forward to each result row.
|
2012-04-05 00:27:56 +02:00
|
|
|
*/
|
2012-08-02 19:10:30 +02:00
|
|
|
int
|
|
|
|
|
pqRowProcessor(PGconn *conn, const char **errmsgp)
|
2012-04-05 00:27:56 +02:00
|
|
|
{
|
2012-08-02 19:10:30 +02:00
|
|
|
PGresult *res = conn->result;
|
2012-04-05 00:27:56 +02:00
|
|
|
int nfields = res->numAttributes;
|
2012-08-02 19:10:30 +02:00
|
|
|
const PGdataValue *columns = conn->rowBuf;
|
2012-04-05 00:27:56 +02:00
|
|
|
PGresAttValue *tup;
|
|
|
|
|
int i;
|
|
|
|
|
|
2012-08-02 19:10:30 +02:00
|
|
|
/*
|
|
|
|
|
* In single-row mode, make a new PGresult that will hold just this one
|
|
|
|
|
* row; the original conn->result is left unchanged so that it can be used
|
|
|
|
|
* again as the template for future rows.
|
|
|
|
|
*/
|
|
|
|
|
if (conn->singleRowMode)
|
2012-04-05 00:27:56 +02:00
|
|
|
{
|
2012-08-02 19:10:30 +02:00
|
|
|
/* Copy everything that should be in the result at this point */
|
|
|
|
|
res = PQcopyResult(res,
|
|
|
|
|
PG_COPYRES_ATTRS | PG_COPYRES_EVENTS |
|
|
|
|
|
PG_COPYRES_NOTICEHOOKS);
|
|
|
|
|
if (!res)
|
|
|
|
|
return 0;
|
2012-04-05 00:27:56 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Basically we just allocate space in the PGresult for each field and
|
|
|
|
|
* copy the data over.
|
|
|
|
|
*
|
2012-08-02 19:10:30 +02:00
|
|
|
* Note: on malloc failure, we return 0 leaving *errmsgp still NULL, which
|
|
|
|
|
* caller will take to mean "out of memory". This is preferable to trying
|
|
|
|
|
* to set up such a message here, because evidently there's not enough
|
|
|
|
|
* memory for gettext() to do anything.
|
2012-04-05 00:27:56 +02:00
|
|
|
*/
|
|
|
|
|
tup = (PGresAttValue *)
|
2017-08-16 06:22:32 +02:00
|
|
|
pqResultAlloc(res, nfields * sizeof(PGresAttValue), true);
|
2012-04-05 00:27:56 +02:00
|
|
|
if (tup == NULL)
|
2012-08-02 19:10:30 +02:00
|
|
|
goto fail;
|
2012-04-05 00:27:56 +02:00
|
|
|
|
|
|
|
|
for (i = 0; i < nfields; i++)
|
|
|
|
|
{
|
|
|
|
|
int clen = columns[i].len;
|
|
|
|
|
|
|
|
|
|
if (clen < 0)
|
|
|
|
|
{
|
|
|
|
|
/* null field */
|
|
|
|
|
tup[i].len = NULL_LEN;
|
|
|
|
|
tup[i].value = res->null_field;
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
bool isbinary = (res->attDescs[i].format != 0);
|
|
|
|
|
char *val;
|
|
|
|
|
|
|
|
|
|
val = (char *) pqResultAlloc(res, clen + 1, isbinary);
|
|
|
|
|
if (val == NULL)
|
2012-08-02 19:10:30 +02:00
|
|
|
goto fail;
|
2012-04-05 00:27:56 +02:00
|
|
|
|
|
|
|
|
/* copy and zero-terminate the data (even if it's binary) */
|
|
|
|
|
memcpy(val, columns[i].value, clen);
|
|
|
|
|
val[clen] = '\0';
|
|
|
|
|
|
|
|
|
|
tup[i].len = clen;
|
|
|
|
|
tup[i].value = val;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* And add the tuple to the PGresult's tuple array */
|
Teach libpq to detect integer overflow in the row count of a PGresult.
Adding more than 1 billion rows to a PGresult would overflow its ntups and
tupArrSize fields, leading to client crashes. It'd be desirable to use
wider fields on 64-bit machines, but because all of libpq's external APIs
use plain "int" for row counters, that's going to be hard to accomplish
without an ABI break. Given the lack of complaints so far, and the general
pain that would be involved in using such huge PGresults, let's settle for
just preventing the overflow and reporting a useful error message if it
does happen. Also, for a couple more lines of code we can increase the
threshold of trouble from INT_MAX/2 to INT_MAX rows.
To do that, refactor pqAddTuple() to allow returning an error message that
replaces the default assumption that it failed because of out-of-memory.
Along the way, fix PQsetvalue() so that it reports all failures via
pqInternalNotice(). It already did so in the case of bad field number,
but neglected to report anything for other error causes.
Because of the potential for crashes, this seems like a back-patchable
bug fix, despite the lack of field reports.
Michael Paquier, per a complaint from Igor Korot.
Discussion: https://postgr.es/m/CA+FnnTxyLWyjY1goewmJNxC==HQCCF4fKkoCTa9qR36oRAHDPw@mail.gmail.com
2017-08-29 21:18:01 +02:00
|
|
|
if (!pqAddTuple(res, tup, errmsgp))
|
2012-08-02 19:10:30 +02:00
|
|
|
goto fail;
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Success. In single-row mode, make the result available to the client
|
|
|
|
|
* immediately.
|
|
|
|
|
*/
|
|
|
|
|
if (conn->singleRowMode)
|
|
|
|
|
{
|
|
|
|
|
/* Change result status to special single-row value */
|
|
|
|
|
res->resultStatus = PGRES_SINGLE_TUPLE;
|
|
|
|
|
/* Stash old result for re-use later */
|
|
|
|
|
conn->next_result = conn->result;
|
|
|
|
|
conn->result = res;
|
|
|
|
|
/* And mark the result ready to return */
|
2021-03-15 22:13:42 +01:00
|
|
|
conn->asyncStatus = PGASYNC_READY_MORE;
|
2012-08-02 19:10:30 +02:00
|
|
|
}
|
2012-04-05 00:27:56 +02:00
|
|
|
|
|
|
|
|
return 1;
|
2012-08-02 19:10:30 +02:00
|
|
|
|
|
|
|
|
fail:
|
|
|
|
|
/* release locally allocated PGresult, if we made one */
|
|
|
|
|
if (res != conn->result)
|
|
|
|
|
PQclear(res);
|
|
|
|
|
return 0;
|
2012-04-05 00:27:56 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2021-03-15 22:13:42 +01:00
|
|
|
/*
|
|
|
|
|
* pqAllocCmdQueueEntry
|
|
|
|
|
* Get a command queue entry for caller to fill.
|
|
|
|
|
*
|
|
|
|
|
* If the recycle queue has a free element, that is returned; if not, a
|
|
|
|
|
* fresh one is allocated. Caller is responsible for adding it to the
|
|
|
|
|
* command queue (pqAppendCmdQueueEntry) once the struct is filled in, or
|
|
|
|
|
* releasing the memory (pqRecycleCmdQueueEntry) if an error occurs.
|
|
|
|
|
*
|
|
|
|
|
* If allocation fails, sets the error message and returns NULL.
|
|
|
|
|
*/
|
|
|
|
|
static PGcmdQueueEntry *
|
|
|
|
|
pqAllocCmdQueueEntry(PGconn *conn)
|
|
|
|
|
{
|
|
|
|
|
PGcmdQueueEntry *entry;
|
|
|
|
|
|
|
|
|
|
if (conn->cmd_queue_recycle == NULL)
|
|
|
|
|
{
|
|
|
|
|
entry = (PGcmdQueueEntry *) malloc(sizeof(PGcmdQueueEntry));
|
|
|
|
|
if (entry == NULL)
|
|
|
|
|
{
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "out of memory");
|
2021-03-15 22:13:42 +01:00
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
entry = conn->cmd_queue_recycle;
|
|
|
|
|
conn->cmd_queue_recycle = entry->next;
|
|
|
|
|
}
|
|
|
|
|
entry->next = NULL;
|
|
|
|
|
entry->query = NULL;
|
|
|
|
|
|
|
|
|
|
return entry;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* pqAppendCmdQueueEntry
|
2021-07-09 21:57:59 +02:00
|
|
|
* Append a caller-allocated entry to the command queue, and update
|
|
|
|
|
* conn->asyncStatus to account for it.
|
2021-03-15 22:13:42 +01:00
|
|
|
*
|
|
|
|
|
* The query itself must already have been put in the output buffer by the
|
|
|
|
|
* caller.
|
|
|
|
|
*/
|
|
|
|
|
static void
|
|
|
|
|
pqAppendCmdQueueEntry(PGconn *conn, PGcmdQueueEntry *entry)
|
|
|
|
|
{
|
|
|
|
|
Assert(entry->next == NULL);
|
|
|
|
|
|
|
|
|
|
if (conn->cmd_queue_head == NULL)
|
|
|
|
|
conn->cmd_queue_head = entry;
|
|
|
|
|
else
|
|
|
|
|
conn->cmd_queue_tail->next = entry;
|
|
|
|
|
|
|
|
|
|
conn->cmd_queue_tail = entry;
|
2021-07-09 21:57:59 +02:00
|
|
|
|
|
|
|
|
switch (conn->pipelineStatus)
|
|
|
|
|
{
|
|
|
|
|
case PQ_PIPELINE_OFF:
|
|
|
|
|
case PQ_PIPELINE_ON:
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* When not in pipeline aborted state, if there's a result ready
|
|
|
|
|
* to be consumed, let it be so (that is, don't change away from
|
|
|
|
|
* READY or READY_MORE); otherwise set us busy to wait for
|
|
|
|
|
* something to arrive from the server.
|
|
|
|
|
*/
|
|
|
|
|
if (conn->asyncStatus == PGASYNC_IDLE)
|
|
|
|
|
conn->asyncStatus = PGASYNC_BUSY;
|
|
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
case PQ_PIPELINE_ABORTED:
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* In aborted pipeline state, we don't expect anything from the
|
|
|
|
|
* server (since we don't send any queries that are queued).
|
|
|
|
|
* Therefore, if IDLE then do what PQgetResult would do to let
|
|
|
|
|
* itself consume commands from the queue; if we're in any other
|
|
|
|
|
* state, we don't have to do anything.
|
|
|
|
|
*/
|
libpq: Improve idle state handling in pipeline mode
We were going into IDLE state too soon when executing queries via
PQsendQuery in pipeline mode, causing several scenarios to misbehave in
different ways -- most notably, as reported by Daniele Varrazzo, that a
warning message is produced by libpq:
message type 0x33 arrived from server while idle
But it is also possible, if queries are sent and results consumed not in
lockstep, for the expected mediating NULL result values from PQgetResult
to be lost (a problem which has not been reported, but which is more
serious).
Fix this by introducing two new concepts: one is a command queue element
PGQUERY_CLOSE to tell libpq to wait for the CloseComplete server
response to the Close message that is sent by PQsendQuery. Because the
application is not expecting any PGresult from this, the mechanism to
consume it is a bit hackish.
The other concept, authored by Horiguchi-san, is a PGASYNC_PIPELINE_IDLE
state for libpq's state machine to differentiate "really idle" from
merely "the idle state that occurs in between reading results from the
server for elements in the pipeline". This makes libpq not go fully
IDLE when the libpq command queue contains entries; in normal cases, we
only go IDLE once at the end of the pipeline, when the server response
to the final SYNC message is received. (However, there are corner cases
it doesn't fix, such as terminating the query sequence by
PQsendFlushRequest instead of PQpipelineSync; this sort of scenario is
what requires PGQUERY_CLOSE bit above.)
This last bit helps make the libpq state machine clearer; in particular
we can get rid of an ugly hack in pqParseInput3 to avoid considering
IDLE as such when the command queue contains entries.
A new test mode is added to libpq_pipeline.c to tickle some related
problematic cases.
Reported-by: Daniele Varrazzo <daniele.varrazzo@gmail.com>
Co-authored-by: Kyotaro Horiguchi <horikyota.ntt@gmail.com>
Discussion: https://postgr.es/m/CA+mi_8bvD0_CW3sumgwPvWdNzXY32itoG_16tDYRu_1S2gV2iw@mail.gmail.com
2022-07-05 14:21:20 +02:00
|
|
|
if (conn->asyncStatus == PGASYNC_IDLE ||
|
|
|
|
|
conn->asyncStatus == PGASYNC_PIPELINE_IDLE)
|
2021-07-09 21:57:59 +02:00
|
|
|
pqPipelineProcessQueue(conn);
|
|
|
|
|
break;
|
|
|
|
|
}
|
2021-03-15 22:13:42 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* pqRecycleCmdQueueEntry
|
|
|
|
|
* Push a command queue entry onto the freelist.
|
|
|
|
|
*/
|
|
|
|
|
static void
|
|
|
|
|
pqRecycleCmdQueueEntry(PGconn *conn, PGcmdQueueEntry *entry)
|
|
|
|
|
{
|
|
|
|
|
if (entry == NULL)
|
|
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
/* recyclable entries should not have a follow-on command */
|
|
|
|
|
Assert(entry->next == NULL);
|
|
|
|
|
|
|
|
|
|
if (entry->query)
|
|
|
|
|
{
|
|
|
|
|
free(entry->query);
|
|
|
|
|
entry->query = NULL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
entry->next = conn->cmd_queue_recycle;
|
|
|
|
|
conn->cmd_queue_recycle = entry;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
1996-07-09 08:22:35 +02:00
|
|
|
/*
|
1998-05-07 01:51:16 +02:00
|
|
|
* PQsendQuery
|
|
|
|
|
* Submit a query, but don't wait for it to finish
|
1996-07-09 08:22:35 +02:00
|
|
|
*
|
1998-05-07 01:51:16 +02:00
|
|
|
* Returns: 1 if successfully submitted
|
|
|
|
|
* 0 if error (conn->errorMessage is set)
|
In libpq, always append new error messages to conn->errorMessage.
Previously, we had an undisciplined mish-mash of printfPQExpBuffer and
appendPQExpBuffer calls to report errors within libpq. This commit
establishes a uniform rule that appendPQExpBuffer[Str] should be used.
conn->errorMessage is reset only at the start of an application request,
and then accumulates messages till we're done. We can remove no less
than three different ad-hoc mechanisms that were used to get the effect
of concatenation of error messages within a sequence of operations.
Although this makes things quite a bit cleaner conceptually, the main
reason to do it is to make the world safer for the multiple-target-host
feature that was added awhile back. Previously, there were many cases
in which an error occurring during an individual host connection attempt
would wipe out the record of what had happened during previous attempts.
(The reporting is still inadequate, in that it can be hard to tell which
host got the failure, but that seems like a matter for a separate commit.)
Currently, lo_import and lo_export contain exceptions to the "never
use printfPQExpBuffer" rule. If we changed them, we'd risk reporting
an incidental lo_close failure before the actual read or write
failure, which would be confusing, not least because lo_close happened
after the main failure. We could improve this by inventing an
internal version of lo_close that doesn't reset the errorMessage; but
we'd also need a version of PQfn() that does that, and it didn't quite
seem worth the trouble for now.
Discussion: https://postgr.es/m/BN6PR05MB3492948E4FD76C156E747E8BC9160@BN6PR05MB3492.namprd05.prod.outlook.com
2021-01-11 19:12:09 +01:00
|
|
|
*
|
|
|
|
|
* PQsendQueryContinue is a non-exported version that behaves identically
|
|
|
|
|
* except that it doesn't reset conn->errorMessage.
|
1996-07-09 08:22:35 +02:00
|
|
|
*/
|
1998-05-07 01:51:16 +02:00
|
|
|
int
|
|
|
|
|
PQsendQuery(PGconn *conn, const char *query)
|
1996-07-09 08:22:35 +02:00
|
|
|
{
|
In libpq, always append new error messages to conn->errorMessage.
Previously, we had an undisciplined mish-mash of printfPQExpBuffer and
appendPQExpBuffer calls to report errors within libpq. This commit
establishes a uniform rule that appendPQExpBuffer[Str] should be used.
conn->errorMessage is reset only at the start of an application request,
and then accumulates messages till we're done. We can remove no less
than three different ad-hoc mechanisms that were used to get the effect
of concatenation of error messages within a sequence of operations.
Although this makes things quite a bit cleaner conceptually, the main
reason to do it is to make the world safer for the multiple-target-host
feature that was added awhile back. Previously, there were many cases
in which an error occurring during an individual host connection attempt
would wipe out the record of what had happened during previous attempts.
(The reporting is still inadequate, in that it can be hard to tell which
host got the failure, but that seems like a matter for a separate commit.)
Currently, lo_import and lo_export contain exceptions to the "never
use printfPQExpBuffer" rule. If we changed them, we'd risk reporting
an incidental lo_close failure before the actual read or write
failure, which would be confusing, not least because lo_close happened
after the main failure. We could improve this by inventing an
internal version of lo_close that doesn't reset the errorMessage; but
we'd also need a version of PQfn() that does that, and it didn't quite
seem worth the trouble for now.
Discussion: https://postgr.es/m/BN6PR05MB3492948E4FD76C156E747E8BC9160@BN6PR05MB3492.namprd05.prod.outlook.com
2021-01-11 19:12:09 +01:00
|
|
|
return PQsendQueryInternal(conn, query, true);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
int
|
|
|
|
|
PQsendQueryContinue(PGconn *conn, const char *query)
|
|
|
|
|
{
|
|
|
|
|
return PQsendQueryInternal(conn, query, false);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int
|
|
|
|
|
PQsendQueryInternal(PGconn *conn, const char *query, bool newQuery)
|
|
|
|
|
{
|
2021-03-15 22:13:42 +01:00
|
|
|
PGcmdQueueEntry *entry = NULL;
|
|
|
|
|
|
In libpq, always append new error messages to conn->errorMessage.
Previously, we had an undisciplined mish-mash of printfPQExpBuffer and
appendPQExpBuffer calls to report errors within libpq. This commit
establishes a uniform rule that appendPQExpBuffer[Str] should be used.
conn->errorMessage is reset only at the start of an application request,
and then accumulates messages till we're done. We can remove no less
than three different ad-hoc mechanisms that were used to get the effect
of concatenation of error messages within a sequence of operations.
Although this makes things quite a bit cleaner conceptually, the main
reason to do it is to make the world safer for the multiple-target-host
feature that was added awhile back. Previously, there were many cases
in which an error occurring during an individual host connection attempt
would wipe out the record of what had happened during previous attempts.
(The reporting is still inadequate, in that it can be hard to tell which
host got the failure, but that seems like a matter for a separate commit.)
Currently, lo_import and lo_export contain exceptions to the "never
use printfPQExpBuffer" rule. If we changed them, we'd risk reporting
an incidental lo_close failure before the actual read or write
failure, which would be confusing, not least because lo_close happened
after the main failure. We could improve this by inventing an
internal version of lo_close that doesn't reset the errorMessage; but
we'd also need a version of PQfn() that does that, and it didn't quite
seem worth the trouble for now.
Discussion: https://postgr.es/m/BN6PR05MB3492948E4FD76C156E747E8BC9160@BN6PR05MB3492.namprd05.prod.outlook.com
2021-01-11 19:12:09 +01:00
|
|
|
if (!PQsendQueryStart(conn, newQuery))
|
1998-05-07 01:51:16 +02:00
|
|
|
return 0;
|
1999-08-31 03:37:37 +02:00
|
|
|
|
2012-08-13 15:24:18 +02:00
|
|
|
/* check the argument */
|
1998-05-07 01:51:16 +02:00
|
|
|
if (!query)
|
1996-08-10 02:22:48 +02:00
|
|
|
{
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "command string is a null pointer");
|
1998-08-09 04:59:33 +02:00
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
libpq: Improve idle state handling in pipeline mode
We were going into IDLE state too soon when executing queries via
PQsendQuery in pipeline mode, causing several scenarios to misbehave in
different ways -- most notably, as reported by Daniele Varrazzo, that a
warning message is produced by libpq:
message type 0x33 arrived from server while idle
But it is also possible, if queries are sent and results consumed not in
lockstep, for the expected mediating NULL result values from PQgetResult
to be lost (a problem which has not been reported, but which is more
serious).
Fix this by introducing two new concepts: one is a command queue element
PGQUERY_CLOSE to tell libpq to wait for the CloseComplete server
response to the Close message that is sent by PQsendQuery. Because the
application is not expecting any PGresult from this, the mechanism to
consume it is a bit hackish.
The other concept, authored by Horiguchi-san, is a PGASYNC_PIPELINE_IDLE
state for libpq's state machine to differentiate "really idle" from
merely "the idle state that occurs in between reading results from the
server for elements in the pipeline". This makes libpq not go fully
IDLE when the libpq command queue contains entries; in normal cases, we
only go IDLE once at the end of the pipeline, when the server response
to the final SYNC message is received. (However, there are corner cases
it doesn't fix, such as terminating the query sequence by
PQsendFlushRequest instead of PQpipelineSync; this sort of scenario is
what requires PGQUERY_CLOSE bit above.)
This last bit helps make the libpq state machine clearer; in particular
we can get rid of an ugly hack in pqParseInput3 to avoid considering
IDLE as such when the command queue contains entries.
A new test mode is added to libpq_pipeline.c to tickle some related
problematic cases.
Reported-by: Daniele Varrazzo <daniele.varrazzo@gmail.com>
Co-authored-by: Kyotaro Horiguchi <horikyota.ntt@gmail.com>
Discussion: https://postgr.es/m/CA+mi_8bvD0_CW3sumgwPvWdNzXY32itoG_16tDYRu_1S2gV2iw@mail.gmail.com
2022-07-05 14:21:20 +02:00
|
|
|
if (conn->pipelineStatus != PQ_PIPELINE_OFF)
|
|
|
|
|
{
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "%s not allowed in pipeline mode",
|
2023-05-19 23:24:48 +02:00
|
|
|
"PQsendQuery");
|
2022-09-23 18:21:22 +02:00
|
|
|
return 0;
|
libpq: Improve idle state handling in pipeline mode
We were going into IDLE state too soon when executing queries via
PQsendQuery in pipeline mode, causing several scenarios to misbehave in
different ways -- most notably, as reported by Daniele Varrazzo, that a
warning message is produced by libpq:
message type 0x33 arrived from server while idle
But it is also possible, if queries are sent and results consumed not in
lockstep, for the expected mediating NULL result values from PQgetResult
to be lost (a problem which has not been reported, but which is more
serious).
Fix this by introducing two new concepts: one is a command queue element
PGQUERY_CLOSE to tell libpq to wait for the CloseComplete server
response to the Close message that is sent by PQsendQuery. Because the
application is not expecting any PGresult from this, the mechanism to
consume it is a bit hackish.
The other concept, authored by Horiguchi-san, is a PGASYNC_PIPELINE_IDLE
state for libpq's state machine to differentiate "really idle" from
merely "the idle state that occurs in between reading results from the
server for elements in the pipeline". This makes libpq not go fully
IDLE when the libpq command queue contains entries; in normal cases, we
only go IDLE once at the end of the pipeline, when the server response
to the final SYNC message is received. (However, there are corner cases
it doesn't fix, such as terminating the query sequence by
PQsendFlushRequest instead of PQpipelineSync; this sort of scenario is
what requires PGQUERY_CLOSE bit above.)
This last bit helps make the libpq state machine clearer; in particular
we can get rid of an ugly hack in pqParseInput3 to avoid considering
IDLE as such when the command queue contains entries.
A new test mode is added to libpq_pipeline.c to tickle some related
problematic cases.
Reported-by: Daniele Varrazzo <daniele.varrazzo@gmail.com>
Co-authored-by: Kyotaro Horiguchi <horikyota.ntt@gmail.com>
Discussion: https://postgr.es/m/CA+mi_8bvD0_CW3sumgwPvWdNzXY32itoG_16tDYRu_1S2gV2iw@mail.gmail.com
2022-07-05 14:21:20 +02:00
|
|
|
}
|
2021-03-21 18:55:27 +01:00
|
|
|
|
2022-09-23 18:21:22 +02:00
|
|
|
entry = pqAllocCmdQueueEntry(conn);
|
|
|
|
|
if (entry == NULL)
|
|
|
|
|
return 0; /* error msg already set */
|
|
|
|
|
|
2021-03-15 22:13:42 +01:00
|
|
|
/* Send the query message(s) */
|
2022-09-23 18:21:22 +02:00
|
|
|
/* construct the outgoing Query message */
|
|
|
|
|
if (pqPutMsgStart('Q', conn) < 0 ||
|
|
|
|
|
pqPuts(query, conn) < 0 ||
|
|
|
|
|
pqPutMsgEnd(conn) < 0)
|
2003-04-19 02:02:30 +02:00
|
|
|
{
|
2022-09-23 18:21:22 +02:00
|
|
|
/* error message should be set up already */
|
|
|
|
|
pqRecycleCmdQueueEntry(conn, entry);
|
|
|
|
|
return 0;
|
2021-03-15 22:13:42 +01:00
|
|
|
}
|
2003-08-13 20:56:21 +02:00
|
|
|
|
2022-09-23 18:21:22 +02:00
|
|
|
/* remember we are using simple query protocol */
|
|
|
|
|
entry->queryclass = PGQUERY_SIMPLE;
|
|
|
|
|
/* and remember the query text too, if possible */
|
|
|
|
|
entry->query = strdup(query);
|
2006-03-14 23:48:25 +01:00
|
|
|
|
2000-01-18 07:09:24 +01:00
|
|
|
/*
|
2003-04-19 02:02:30 +02:00
|
|
|
* Give the data a push. In nonblock mode, don't complain if we're unable
|
2003-06-21 23:51:35 +02:00
|
|
|
* to send it all; PQgetResult() will do any additional flushing needed.
|
2000-01-18 07:09:24 +01:00
|
|
|
*/
|
2022-09-23 18:21:22 +02:00
|
|
|
if (pqFlush(conn) < 0)
|
2021-03-15 22:13:42 +01:00
|
|
|
goto sendFailed;
|
1996-07-09 08:22:35 +02:00
|
|
|
|
1998-05-07 01:51:16 +02:00
|
|
|
/* OK, it's launched! */
|
2021-03-15 22:13:42 +01:00
|
|
|
pqAppendCmdQueueEntry(conn, entry);
|
libpq: Improve idle state handling in pipeline mode
We were going into IDLE state too soon when executing queries via
PQsendQuery in pipeline mode, causing several scenarios to misbehave in
different ways -- most notably, as reported by Daniele Varrazzo, that a
warning message is produced by libpq:
message type 0x33 arrived from server while idle
But it is also possible, if queries are sent and results consumed not in
lockstep, for the expected mediating NULL result values from PQgetResult
to be lost (a problem which has not been reported, but which is more
serious).
Fix this by introducing two new concepts: one is a command queue element
PGQUERY_CLOSE to tell libpq to wait for the CloseComplete server
response to the Close message that is sent by PQsendQuery. Because the
application is not expecting any PGresult from this, the mechanism to
consume it is a bit hackish.
The other concept, authored by Horiguchi-san, is a PGASYNC_PIPELINE_IDLE
state for libpq's state machine to differentiate "really idle" from
merely "the idle state that occurs in between reading results from the
server for elements in the pipeline". This makes libpq not go fully
IDLE when the libpq command queue contains entries; in normal cases, we
only go IDLE once at the end of the pipeline, when the server response
to the final SYNC message is received. (However, there are corner cases
it doesn't fix, such as terminating the query sequence by
PQsendFlushRequest instead of PQpipelineSync; this sort of scenario is
what requires PGQUERY_CLOSE bit above.)
This last bit helps make the libpq state machine clearer; in particular
we can get rid of an ugly hack in pqParseInput3 to avoid considering
IDLE as such when the command queue contains entries.
A new test mode is added to libpq_pipeline.c to tickle some related
problematic cases.
Reported-by: Daniele Varrazzo <daniele.varrazzo@gmail.com>
Co-authored-by: Kyotaro Horiguchi <horikyota.ntt@gmail.com>
Discussion: https://postgr.es/m/CA+mi_8bvD0_CW3sumgwPvWdNzXY32itoG_16tDYRu_1S2gV2iw@mail.gmail.com
2022-07-05 14:21:20 +02:00
|
|
|
|
1998-05-07 01:51:16 +02:00
|
|
|
return 1;
|
2021-03-15 22:13:42 +01:00
|
|
|
|
|
|
|
|
sendFailed:
|
|
|
|
|
pqRecycleCmdQueueEntry(conn, entry);
|
|
|
|
|
/* error message should be set up already */
|
|
|
|
|
return 0;
|
1996-07-09 08:22:35 +02:00
|
|
|
}
|
|
|
|
|
|
2003-06-21 23:51:35 +02:00
|
|
|
/*
|
|
|
|
|
* PQsendQueryParams
|
2021-03-04 09:45:55 +01:00
|
|
|
* Like PQsendQuery, but use extended query protocol so we can pass parameters
|
2003-06-21 23:51:35 +02:00
|
|
|
*/
|
|
|
|
|
int
|
|
|
|
|
PQsendQueryParams(PGconn *conn,
|
|
|
|
|
const char *command,
|
|
|
|
|
int nParams,
|
|
|
|
|
const Oid *paramTypes,
|
|
|
|
|
const char *const *paramValues,
|
|
|
|
|
const int *paramLengths,
|
|
|
|
|
const int *paramFormats,
|
|
|
|
|
int resultFormat)
|
|
|
|
|
{
|
In libpq, always append new error messages to conn->errorMessage.
Previously, we had an undisciplined mish-mash of printfPQExpBuffer and
appendPQExpBuffer calls to report errors within libpq. This commit
establishes a uniform rule that appendPQExpBuffer[Str] should be used.
conn->errorMessage is reset only at the start of an application request,
and then accumulates messages till we're done. We can remove no less
than three different ad-hoc mechanisms that were used to get the effect
of concatenation of error messages within a sequence of operations.
Although this makes things quite a bit cleaner conceptually, the main
reason to do it is to make the world safer for the multiple-target-host
feature that was added awhile back. Previously, there were many cases
in which an error occurring during an individual host connection attempt
would wipe out the record of what had happened during previous attempts.
(The reporting is still inadequate, in that it can be hard to tell which
host got the failure, but that seems like a matter for a separate commit.)
Currently, lo_import and lo_export contain exceptions to the "never
use printfPQExpBuffer" rule. If we changed them, we'd risk reporting
an incidental lo_close failure before the actual read or write
failure, which would be confusing, not least because lo_close happened
after the main failure. We could improve this by inventing an
internal version of lo_close that doesn't reset the errorMessage; but
we'd also need a version of PQfn() that does that, and it didn't quite
seem worth the trouble for now.
Discussion: https://postgr.es/m/BN6PR05MB3492948E4FD76C156E747E8BC9160@BN6PR05MB3492.namprd05.prod.outlook.com
2021-01-11 19:12:09 +01:00
|
|
|
if (!PQsendQueryStart(conn, true))
|
2003-08-13 18:29:03 +02:00
|
|
|
return 0;
|
|
|
|
|
|
2012-08-13 15:24:18 +02:00
|
|
|
/* check the arguments */
|
2003-08-13 18:29:03 +02:00
|
|
|
if (!command)
|
|
|
|
|
{
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "command string is a null pointer");
|
2003-08-13 18:29:03 +02:00
|
|
|
return 0;
|
|
|
|
|
}
|
2021-06-08 20:22:18 +02:00
|
|
|
if (nParams < 0 || nParams > PQ_QUERY_PARAM_MAX_LIMIT)
|
2012-08-13 15:24:18 +02:00
|
|
|
{
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "number of parameters must be between 0 and %d",
|
2023-05-19 23:24:48 +02:00
|
|
|
PQ_QUERY_PARAM_MAX_LIMIT);
|
2012-08-13 15:24:18 +02:00
|
|
|
return 0;
|
|
|
|
|
}
|
2003-08-13 18:29:03 +02:00
|
|
|
|
|
|
|
|
return PQsendQueryGuts(conn,
|
|
|
|
|
command,
|
|
|
|
|
"", /* use unnamed statement */
|
|
|
|
|
nParams,
|
|
|
|
|
paramTypes,
|
|
|
|
|
paramValues,
|
|
|
|
|
paramLengths,
|
|
|
|
|
paramFormats,
|
|
|
|
|
resultFormat);
|
|
|
|
|
}
|
2003-06-21 23:51:35 +02:00
|
|
|
|
2004-10-19 00:00:42 +02:00
|
|
|
/*
|
|
|
|
|
* PQsendPrepare
|
|
|
|
|
* Submit a Parse message, but don't wait for it to finish
|
|
|
|
|
*
|
|
|
|
|
* Returns: 1 if successfully submitted
|
|
|
|
|
* 0 if error (conn->errorMessage is set)
|
|
|
|
|
*/
|
|
|
|
|
int
|
|
|
|
|
PQsendPrepare(PGconn *conn,
|
|
|
|
|
const char *stmtName, const char *query,
|
|
|
|
|
int nParams, const Oid *paramTypes)
|
|
|
|
|
{
|
2021-03-15 22:13:42 +01:00
|
|
|
PGcmdQueueEntry *entry = NULL;
|
|
|
|
|
|
In libpq, always append new error messages to conn->errorMessage.
Previously, we had an undisciplined mish-mash of printfPQExpBuffer and
appendPQExpBuffer calls to report errors within libpq. This commit
establishes a uniform rule that appendPQExpBuffer[Str] should be used.
conn->errorMessage is reset only at the start of an application request,
and then accumulates messages till we're done. We can remove no less
than three different ad-hoc mechanisms that were used to get the effect
of concatenation of error messages within a sequence of operations.
Although this makes things quite a bit cleaner conceptually, the main
reason to do it is to make the world safer for the multiple-target-host
feature that was added awhile back. Previously, there were many cases
in which an error occurring during an individual host connection attempt
would wipe out the record of what had happened during previous attempts.
(The reporting is still inadequate, in that it can be hard to tell which
host got the failure, but that seems like a matter for a separate commit.)
Currently, lo_import and lo_export contain exceptions to the "never
use printfPQExpBuffer" rule. If we changed them, we'd risk reporting
an incidental lo_close failure before the actual read or write
failure, which would be confusing, not least because lo_close happened
after the main failure. We could improve this by inventing an
internal version of lo_close that doesn't reset the errorMessage; but
we'd also need a version of PQfn() that does that, and it didn't quite
seem worth the trouble for now.
Discussion: https://postgr.es/m/BN6PR05MB3492948E4FD76C156E747E8BC9160@BN6PR05MB3492.namprd05.prod.outlook.com
2021-01-11 19:12:09 +01:00
|
|
|
if (!PQsendQueryStart(conn, true))
|
2004-10-19 00:00:42 +02:00
|
|
|
return 0;
|
|
|
|
|
|
2012-08-13 15:24:18 +02:00
|
|
|
/* check the arguments */
|
2004-10-19 00:00:42 +02:00
|
|
|
if (!stmtName)
|
|
|
|
|
{
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "statement name is a null pointer");
|
2004-10-19 00:00:42 +02:00
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
if (!query)
|
|
|
|
|
{
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "command string is a null pointer");
|
2004-10-19 00:00:42 +02:00
|
|
|
return 0;
|
|
|
|
|
}
|
2021-06-08 20:22:18 +02:00
|
|
|
if (nParams < 0 || nParams > PQ_QUERY_PARAM_MAX_LIMIT)
|
2012-08-13 15:24:18 +02:00
|
|
|
{
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "number of parameters must be between 0 and %d",
|
2023-05-19 23:24:48 +02:00
|
|
|
PQ_QUERY_PARAM_MAX_LIMIT);
|
2012-08-13 15:24:18 +02:00
|
|
|
return 0;
|
|
|
|
|
}
|
2004-10-19 00:00:42 +02:00
|
|
|
|
2021-03-15 22:13:42 +01:00
|
|
|
entry = pqAllocCmdQueueEntry(conn);
|
|
|
|
|
if (entry == NULL)
|
|
|
|
|
return 0; /* error msg already set */
|
|
|
|
|
|
2004-10-19 00:00:42 +02:00
|
|
|
/* construct the Parse message */
|
2021-03-04 09:45:55 +01:00
|
|
|
if (pqPutMsgStart('P', conn) < 0 ||
|
2004-10-19 00:00:42 +02:00
|
|
|
pqPuts(stmtName, conn) < 0 ||
|
|
|
|
|
pqPuts(query, conn) < 0)
|
|
|
|
|
goto sendFailed;
|
|
|
|
|
|
|
|
|
|
if (nParams > 0 && paramTypes)
|
|
|
|
|
{
|
|
|
|
|
int i;
|
|
|
|
|
|
|
|
|
|
if (pqPutInt(nParams, 2, conn) < 0)
|
|
|
|
|
goto sendFailed;
|
|
|
|
|
for (i = 0; i < nParams; i++)
|
|
|
|
|
{
|
|
|
|
|
if (pqPutInt(paramTypes[i], 4, conn) < 0)
|
|
|
|
|
goto sendFailed;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
if (pqPutInt(0, 2, conn) < 0)
|
|
|
|
|
goto sendFailed;
|
|
|
|
|
}
|
|
|
|
|
if (pqPutMsgEnd(conn) < 0)
|
|
|
|
|
goto sendFailed;
|
|
|
|
|
|
2021-03-15 22:13:42 +01:00
|
|
|
/* Add a Sync, unless in pipeline mode. */
|
|
|
|
|
if (conn->pipelineStatus == PQ_PIPELINE_OFF)
|
|
|
|
|
{
|
|
|
|
|
if (pqPutMsgStart('S', conn) < 0 ||
|
|
|
|
|
pqPutMsgEnd(conn) < 0)
|
|
|
|
|
goto sendFailed;
|
|
|
|
|
}
|
2004-10-19 00:00:42 +02:00
|
|
|
|
|
|
|
|
/* remember we are doing just a Parse */
|
2021-03-15 22:13:42 +01:00
|
|
|
entry->queryclass = PGQUERY_PREPARE;
|
2004-10-19 00:00:42 +02:00
|
|
|
|
2006-03-14 23:48:25 +01:00
|
|
|
/* and remember the query text too, if possible */
|
2021-03-15 22:13:42 +01:00
|
|
|
/* if insufficient memory, query just winds up NULL */
|
|
|
|
|
entry->query = strdup(query);
|
|
|
|
|
|
2004-10-19 00:00:42 +02:00
|
|
|
/*
|
2021-03-15 22:13:42 +01:00
|
|
|
* Give the data a push (in pipeline mode, only if we're past the size
|
|
|
|
|
* threshold). In nonblock mode, don't complain if we're unable to send
|
|
|
|
|
* it all; PQgetResult() will do any additional flushing needed.
|
2004-10-19 00:00:42 +02:00
|
|
|
*/
|
2021-03-15 22:13:42 +01:00
|
|
|
if (pqPipelineFlush(conn) < 0)
|
2004-10-19 00:00:42 +02:00
|
|
|
goto sendFailed;
|
|
|
|
|
|
2021-07-09 21:57:59 +02:00
|
|
|
/* OK, it's launched! */
|
|
|
|
|
pqAppendCmdQueueEntry(conn, entry);
|
|
|
|
|
|
2004-10-19 00:00:42 +02:00
|
|
|
return 1;
|
|
|
|
|
|
|
|
|
|
sendFailed:
|
2021-03-15 22:13:42 +01:00
|
|
|
pqRecycleCmdQueueEntry(conn, entry);
|
Restructure libpq's handling of send failures.
Originally, if libpq got a failure (e.g., ECONNRESET) while trying to
send data to the server, it would just report that and wash its hands
of the matter. It was soon found that that wasn't a very pleasant way
of coping with server-initiated disconnections, so we introduced a hack
(pqHandleSendFailure) in the code that sends queries to make it peek
ahead for server error reports before reporting the send failure.
It now emerges that related cases can occur during connection setup;
in particular, as of TLS 1.3 it's unsafe to assume that SSL connection
failures will be reported by SSL_connect rather than during our first
send attempt. We could have fixed that in a hacky way by applying
pqHandleSendFailure after a startup packet send failure, but
(a) pqHandleSendFailure explicitly disclaims suitability for use in any
state except query startup, and (b) the problem still potentially exists
for other send attempts in libpq.
Instead, let's fix this in a more general fashion by eliminating
pqHandleSendFailure altogether, and instead arranging to postpone
all reports of send failures in libpq until after we've made an
attempt to read and process server messages. The send failure won't
be reported at all if we find a server message or detect input EOF.
(Note: this removes one of the reasons why libpq typically overwrites,
rather than appending to, conn->errorMessage: pqHandleSendFailure needed
that behavior so that the send failure report would be replaced if we
got a server message or read failure report. Eventually I'd like to get
rid of that overwrite behavior altogether, but today is not that day.
For the moment, pqSendSome is assuming that its callees will overwrite
not append to conn->errorMessage.)
Possibly this change should get back-patched someday; but it needs
testing first, so let's not consider that till after v12 beta.
Discussion: https://postgr.es/m/CAEepm=2n6Nv+5tFfe8YnkUm1fXgvxR0Mm1FoD+QKG-vLNGLyKg@mail.gmail.com
2019-03-19 21:20:20 +01:00
|
|
|
/* error message should be set up already */
|
2004-10-19 00:00:42 +02:00
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
2003-08-13 18:29:03 +02:00
|
|
|
/*
|
|
|
|
|
* PQsendQueryPrepared
|
|
|
|
|
* Like PQsendQuery, but execute a previously prepared statement,
|
2021-03-04 09:45:55 +01:00
|
|
|
* using extended query protocol so we can pass parameters
|
2003-08-13 18:29:03 +02:00
|
|
|
*/
|
|
|
|
|
int
|
|
|
|
|
PQsendQueryPrepared(PGconn *conn,
|
|
|
|
|
const char *stmtName,
|
|
|
|
|
int nParams,
|
|
|
|
|
const char *const *paramValues,
|
|
|
|
|
const int *paramLengths,
|
|
|
|
|
const int *paramFormats,
|
|
|
|
|
int resultFormat)
|
|
|
|
|
{
|
In libpq, always append new error messages to conn->errorMessage.
Previously, we had an undisciplined mish-mash of printfPQExpBuffer and
appendPQExpBuffer calls to report errors within libpq. This commit
establishes a uniform rule that appendPQExpBuffer[Str] should be used.
conn->errorMessage is reset only at the start of an application request,
and then accumulates messages till we're done. We can remove no less
than three different ad-hoc mechanisms that were used to get the effect
of concatenation of error messages within a sequence of operations.
Although this makes things quite a bit cleaner conceptually, the main
reason to do it is to make the world safer for the multiple-target-host
feature that was added awhile back. Previously, there were many cases
in which an error occurring during an individual host connection attempt
would wipe out the record of what had happened during previous attempts.
(The reporting is still inadequate, in that it can be hard to tell which
host got the failure, but that seems like a matter for a separate commit.)
Currently, lo_import and lo_export contain exceptions to the "never
use printfPQExpBuffer" rule. If we changed them, we'd risk reporting
an incidental lo_close failure before the actual read or write
failure, which would be confusing, not least because lo_close happened
after the main failure. We could improve this by inventing an
internal version of lo_close that doesn't reset the errorMessage; but
we'd also need a version of PQfn() that does that, and it didn't quite
seem worth the trouble for now.
Discussion: https://postgr.es/m/BN6PR05MB3492948E4FD76C156E747E8BC9160@BN6PR05MB3492.namprd05.prod.outlook.com
2021-01-11 19:12:09 +01:00
|
|
|
if (!PQsendQueryStart(conn, true))
|
2003-06-21 23:51:35 +02:00
|
|
|
return 0;
|
|
|
|
|
|
2012-08-13 15:24:18 +02:00
|
|
|
/* check the arguments */
|
2003-08-13 18:29:03 +02:00
|
|
|
if (!stmtName)
|
2003-06-21 23:51:35 +02:00
|
|
|
{
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "statement name is a null pointer");
|
2003-06-21 23:51:35 +02:00
|
|
|
return 0;
|
|
|
|
|
}
|
2021-06-08 20:22:18 +02:00
|
|
|
if (nParams < 0 || nParams > PQ_QUERY_PARAM_MAX_LIMIT)
|
2012-08-13 15:24:18 +02:00
|
|
|
{
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "number of parameters must be between 0 and %d",
|
2023-05-19 23:24:48 +02:00
|
|
|
PQ_QUERY_PARAM_MAX_LIMIT);
|
2012-08-13 15:24:18 +02:00
|
|
|
return 0;
|
|
|
|
|
}
|
2003-06-21 23:51:35 +02:00
|
|
|
|
2003-08-13 18:29:03 +02:00
|
|
|
return PQsendQueryGuts(conn,
|
|
|
|
|
NULL, /* no command to parse */
|
|
|
|
|
stmtName,
|
|
|
|
|
nParams,
|
|
|
|
|
NULL, /* no param types */
|
|
|
|
|
paramValues,
|
|
|
|
|
paramLengths,
|
|
|
|
|
paramFormats,
|
|
|
|
|
resultFormat);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
2021-03-15 22:13:42 +01:00
|
|
|
* PQsendQueryStart
|
|
|
|
|
* Common startup code for PQsendQuery and sibling routines
|
2003-08-13 18:29:03 +02:00
|
|
|
*/
|
|
|
|
|
static bool
|
In libpq, always append new error messages to conn->errorMessage.
Previously, we had an undisciplined mish-mash of printfPQExpBuffer and
appendPQExpBuffer calls to report errors within libpq. This commit
establishes a uniform rule that appendPQExpBuffer[Str] should be used.
conn->errorMessage is reset only at the start of an application request,
and then accumulates messages till we're done. We can remove no less
than three different ad-hoc mechanisms that were used to get the effect
of concatenation of error messages within a sequence of operations.
Although this makes things quite a bit cleaner conceptually, the main
reason to do it is to make the world safer for the multiple-target-host
feature that was added awhile back. Previously, there were many cases
in which an error occurring during an individual host connection attempt
would wipe out the record of what had happened during previous attempts.
(The reporting is still inadequate, in that it can be hard to tell which
host got the failure, but that seems like a matter for a separate commit.)
Currently, lo_import and lo_export contain exceptions to the "never
use printfPQExpBuffer" rule. If we changed them, we'd risk reporting
an incidental lo_close failure before the actual read or write
failure, which would be confusing, not least because lo_close happened
after the main failure. We could improve this by inventing an
internal version of lo_close that doesn't reset the errorMessage; but
we'd also need a version of PQfn() that does that, and it didn't quite
seem worth the trouble for now.
Discussion: https://postgr.es/m/BN6PR05MB3492948E4FD76C156E747E8BC9160@BN6PR05MB3492.namprd05.prod.outlook.com
2021-01-11 19:12:09 +01:00
|
|
|
PQsendQueryStart(PGconn *conn, bool newQuery)
|
2003-08-13 18:29:03 +02:00
|
|
|
{
|
|
|
|
|
if (!conn)
|
|
|
|
|
return false;
|
|
|
|
|
|
In libpq, always append new error messages to conn->errorMessage.
Previously, we had an undisciplined mish-mash of printfPQExpBuffer and
appendPQExpBuffer calls to report errors within libpq. This commit
establishes a uniform rule that appendPQExpBuffer[Str] should be used.
conn->errorMessage is reset only at the start of an application request,
and then accumulates messages till we're done. We can remove no less
than three different ad-hoc mechanisms that were used to get the effect
of concatenation of error messages within a sequence of operations.
Although this makes things quite a bit cleaner conceptually, the main
reason to do it is to make the world safer for the multiple-target-host
feature that was added awhile back. Previously, there were many cases
in which an error occurring during an individual host connection attempt
would wipe out the record of what had happened during previous attempts.
(The reporting is still inadequate, in that it can be hard to tell which
host got the failure, but that seems like a matter for a separate commit.)
Currently, lo_import and lo_export contain exceptions to the "never
use printfPQExpBuffer" rule. If we changed them, we'd risk reporting
an incidental lo_close failure before the actual read or write
failure, which would be confusing, not least because lo_close happened
after the main failure. We could improve this by inventing an
internal version of lo_close that doesn't reset the errorMessage; but
we'd also need a version of PQfn() that does that, and it didn't quite
seem worth the trouble for now.
Discussion: https://postgr.es/m/BN6PR05MB3492948E4FD76C156E747E8BC9160@BN6PR05MB3492.namprd05.prod.outlook.com
2021-01-11 19:12:09 +01:00
|
|
|
/*
|
Rearrange libpq's error reporting to avoid duplicated error text.
Since commit ffa2e4670, libpq accumulates text in conn->errorMessage
across a whole query cycle. In some situations, we may report more
than one error event within a cycle: the easiest case to reach is
where we report a FATAL error message from the server, and then a
bit later we detect loss of connection. Since, historically, each
error PGresult bears the entire content of conn->errorMessage,
this results in duplication of the FATAL message in any output that
concatenates the contents of the PGresults.
Accumulation in errorMessage still seems like a good idea, especially
in view of the number of places that did ad-hoc error concatenation
before ffa2e4670. So to fix this, let's track how much of
conn->errorMessage has been read out into error PGresults, and only
include new text in later PGresults. The tricky part of that is
to be sure that we never discard an error PGresult once made (else
we'd risk dropping some text, a problem much worse than duplication).
While libpq formerly did that in some code paths, a little bit of
rearrangement lets us postpone making an error PGresult at all until
we are about to return it.
A side benefit of that postponement is that it now becomes practical
to return a dummy static PGresult in cases where we hit out-of-memory
while trying to manufacture an error PGresult. This eliminates the
admittedly-very-rare case where we'd return NULL from PQgetResult,
indicating successful query completion, even though what actually
happened was an OOM failure.
Discussion: https://postgr.es/m/ab4288f8-be5c-57fb-2400-e3e857f53e46@enterprisedb.com
2022-02-18 21:35:15 +01:00
|
|
|
* If this is the beginning of a query cycle, reset the error state.
|
2022-02-28 17:31:30 +01:00
|
|
|
* However, in pipeline mode with something already queued, the error
|
|
|
|
|
* buffer belongs to that command and we shouldn't clear it.
|
In libpq, always append new error messages to conn->errorMessage.
Previously, we had an undisciplined mish-mash of printfPQExpBuffer and
appendPQExpBuffer calls to report errors within libpq. This commit
establishes a uniform rule that appendPQExpBuffer[Str] should be used.
conn->errorMessage is reset only at the start of an application request,
and then accumulates messages till we're done. We can remove no less
than three different ad-hoc mechanisms that were used to get the effect
of concatenation of error messages within a sequence of operations.
Although this makes things quite a bit cleaner conceptually, the main
reason to do it is to make the world safer for the multiple-target-host
feature that was added awhile back. Previously, there were many cases
in which an error occurring during an individual host connection attempt
would wipe out the record of what had happened during previous attempts.
(The reporting is still inadequate, in that it can be hard to tell which
host got the failure, but that seems like a matter for a separate commit.)
Currently, lo_import and lo_export contain exceptions to the "never
use printfPQExpBuffer" rule. If we changed them, we'd risk reporting
an incidental lo_close failure before the actual read or write
failure, which would be confusing, not least because lo_close happened
after the main failure. We could improve this by inventing an
internal version of lo_close that doesn't reset the errorMessage; but
we'd also need a version of PQfn() that does that, and it didn't quite
seem worth the trouble for now.
Discussion: https://postgr.es/m/BN6PR05MB3492948E4FD76C156E747E8BC9160@BN6PR05MB3492.namprd05.prod.outlook.com
2021-01-11 19:12:09 +01:00
|
|
|
*/
|
2022-02-28 17:31:30 +01:00
|
|
|
if (newQuery && conn->cmd_queue_head == NULL)
|
Rearrange libpq's error reporting to avoid duplicated error text.
Since commit ffa2e4670, libpq accumulates text in conn->errorMessage
across a whole query cycle. In some situations, we may report more
than one error event within a cycle: the easiest case to reach is
where we report a FATAL error message from the server, and then a
bit later we detect loss of connection. Since, historically, each
error PGresult bears the entire content of conn->errorMessage,
this results in duplication of the FATAL message in any output that
concatenates the contents of the PGresults.
Accumulation in errorMessage still seems like a good idea, especially
in view of the number of places that did ad-hoc error concatenation
before ffa2e4670. So to fix this, let's track how much of
conn->errorMessage has been read out into error PGresults, and only
include new text in later PGresults. The tricky part of that is
to be sure that we never discard an error PGresult once made (else
we'd risk dropping some text, a problem much worse than duplication).
While libpq formerly did that in some code paths, a little bit of
rearrangement lets us postpone making an error PGresult at all until
we are about to return it.
A side benefit of that postponement is that it now becomes practical
to return a dummy static PGresult in cases where we hit out-of-memory
while trying to manufacture an error PGresult. This eliminates the
admittedly-very-rare case where we'd return NULL from PQgetResult,
indicating successful query completion, even though what actually
happened was an OOM failure.
Discussion: https://postgr.es/m/ab4288f8-be5c-57fb-2400-e3e857f53e46@enterprisedb.com
2022-02-18 21:35:15 +01:00
|
|
|
pqClearConnErrorState(conn);
|
2003-08-13 18:29:03 +02:00
|
|
|
|
|
|
|
|
/* Don't try to send if we know there's no live connection. */
|
|
|
|
|
if (conn->status != CONNECTION_OK)
|
2003-06-21 23:51:35 +02:00
|
|
|
{
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "no connection to the server");
|
2003-08-13 18:29:03 +02:00
|
|
|
return false;
|
|
|
|
|
}
|
2021-03-15 22:13:42 +01:00
|
|
|
|
|
|
|
|
/* Can't send while already busy, either, unless enqueuing for later */
|
|
|
|
|
if (conn->asyncStatus != PGASYNC_IDLE &&
|
|
|
|
|
conn->pipelineStatus == PQ_PIPELINE_OFF)
|
2003-08-13 18:29:03 +02:00
|
|
|
{
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "another command is already in progress");
|
2003-08-13 18:29:03 +02:00
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2021-03-15 22:13:42 +01:00
|
|
|
if (conn->pipelineStatus != PQ_PIPELINE_OFF)
|
|
|
|
|
{
|
|
|
|
|
/*
|
|
|
|
|
* When enqueuing commands we don't change much of the connection
|
|
|
|
|
* state since it's already in use for the current command. The
|
|
|
|
|
* connection state will get updated when pqPipelineProcessQueue()
|
|
|
|
|
* advances to start processing the queued message.
|
|
|
|
|
*
|
|
|
|
|
* Just make sure we can safely enqueue given the current connection
|
|
|
|
|
* state. We can enqueue behind another queue item, or behind a
|
|
|
|
|
* non-queue command (one that sends its own sync), but we can't
|
|
|
|
|
* enqueue if the connection is in a copy state.
|
|
|
|
|
*/
|
|
|
|
|
switch (conn->asyncStatus)
|
|
|
|
|
{
|
|
|
|
|
case PGASYNC_IDLE:
|
libpq: Improve idle state handling in pipeline mode
We were going into IDLE state too soon when executing queries via
PQsendQuery in pipeline mode, causing several scenarios to misbehave in
different ways -- most notably, as reported by Daniele Varrazzo, that a
warning message is produced by libpq:
message type 0x33 arrived from server while idle
But it is also possible, if queries are sent and results consumed not in
lockstep, for the expected mediating NULL result values from PQgetResult
to be lost (a problem which has not been reported, but which is more
serious).
Fix this by introducing two new concepts: one is a command queue element
PGQUERY_CLOSE to tell libpq to wait for the CloseComplete server
response to the Close message that is sent by PQsendQuery. Because the
application is not expecting any PGresult from this, the mechanism to
consume it is a bit hackish.
The other concept, authored by Horiguchi-san, is a PGASYNC_PIPELINE_IDLE
state for libpq's state machine to differentiate "really idle" from
merely "the idle state that occurs in between reading results from the
server for elements in the pipeline". This makes libpq not go fully
IDLE when the libpq command queue contains entries; in normal cases, we
only go IDLE once at the end of the pipeline, when the server response
to the final SYNC message is received. (However, there are corner cases
it doesn't fix, such as terminating the query sequence by
PQsendFlushRequest instead of PQpipelineSync; this sort of scenario is
what requires PGQUERY_CLOSE bit above.)
This last bit helps make the libpq state machine clearer; in particular
we can get rid of an ugly hack in pqParseInput3 to avoid considering
IDLE as such when the command queue contains entries.
A new test mode is added to libpq_pipeline.c to tickle some related
problematic cases.
Reported-by: Daniele Varrazzo <daniele.varrazzo@gmail.com>
Co-authored-by: Kyotaro Horiguchi <horikyota.ntt@gmail.com>
Discussion: https://postgr.es/m/CA+mi_8bvD0_CW3sumgwPvWdNzXY32itoG_16tDYRu_1S2gV2iw@mail.gmail.com
2022-07-05 14:21:20 +02:00
|
|
|
case PGASYNC_PIPELINE_IDLE:
|
2021-03-15 22:13:42 +01:00
|
|
|
case PGASYNC_READY:
|
|
|
|
|
case PGASYNC_READY_MORE:
|
|
|
|
|
case PGASYNC_BUSY:
|
|
|
|
|
/* ok to queue */
|
|
|
|
|
break;
|
libpq: Improve idle state handling in pipeline mode
We were going into IDLE state too soon when executing queries via
PQsendQuery in pipeline mode, causing several scenarios to misbehave in
different ways -- most notably, as reported by Daniele Varrazzo, that a
warning message is produced by libpq:
message type 0x33 arrived from server while idle
But it is also possible, if queries are sent and results consumed not in
lockstep, for the expected mediating NULL result values from PQgetResult
to be lost (a problem which has not been reported, but which is more
serious).
Fix this by introducing two new concepts: one is a command queue element
PGQUERY_CLOSE to tell libpq to wait for the CloseComplete server
response to the Close message that is sent by PQsendQuery. Because the
application is not expecting any PGresult from this, the mechanism to
consume it is a bit hackish.
The other concept, authored by Horiguchi-san, is a PGASYNC_PIPELINE_IDLE
state for libpq's state machine to differentiate "really idle" from
merely "the idle state that occurs in between reading results from the
server for elements in the pipeline". This makes libpq not go fully
IDLE when the libpq command queue contains entries; in normal cases, we
only go IDLE once at the end of the pipeline, when the server response
to the final SYNC message is received. (However, there are corner cases
it doesn't fix, such as terminating the query sequence by
PQsendFlushRequest instead of PQpipelineSync; this sort of scenario is
what requires PGQUERY_CLOSE bit above.)
This last bit helps make the libpq state machine clearer; in particular
we can get rid of an ugly hack in pqParseInput3 to avoid considering
IDLE as such when the command queue contains entries.
A new test mode is added to libpq_pipeline.c to tickle some related
problematic cases.
Reported-by: Daniele Varrazzo <daniele.varrazzo@gmail.com>
Co-authored-by: Kyotaro Horiguchi <horikyota.ntt@gmail.com>
Discussion: https://postgr.es/m/CA+mi_8bvD0_CW3sumgwPvWdNzXY32itoG_16tDYRu_1S2gV2iw@mail.gmail.com
2022-07-05 14:21:20 +02:00
|
|
|
|
2021-03-15 22:13:42 +01:00
|
|
|
case PGASYNC_COPY_IN:
|
|
|
|
|
case PGASYNC_COPY_OUT:
|
|
|
|
|
case PGASYNC_COPY_BOTH:
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "cannot queue commands during COPY");
|
2021-03-15 22:13:42 +01:00
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
/*
|
|
|
|
|
* This command's results will come in immediately. Initialize async
|
|
|
|
|
* result-accumulation state
|
|
|
|
|
*/
|
|
|
|
|
pqClearAsyncResult(conn);
|
2012-08-02 19:10:30 +02:00
|
|
|
|
2021-03-15 22:13:42 +01:00
|
|
|
/* reset single-row processing mode */
|
|
|
|
|
conn->singleRowMode = false;
|
|
|
|
|
}
|
Rearrange libpq's error reporting to avoid duplicated error text.
Since commit ffa2e4670, libpq accumulates text in conn->errorMessage
across a whole query cycle. In some situations, we may report more
than one error event within a cycle: the easiest case to reach is
where we report a FATAL error message from the server, and then a
bit later we detect loss of connection. Since, historically, each
error PGresult bears the entire content of conn->errorMessage,
this results in duplication of the FATAL message in any output that
concatenates the contents of the PGresults.
Accumulation in errorMessage still seems like a good idea, especially
in view of the number of places that did ad-hoc error concatenation
before ffa2e4670. So to fix this, let's track how much of
conn->errorMessage has been read out into error PGresults, and only
include new text in later PGresults. The tricky part of that is
to be sure that we never discard an error PGresult once made (else
we'd risk dropping some text, a problem much worse than duplication).
While libpq formerly did that in some code paths, a little bit of
rearrangement lets us postpone making an error PGresult at all until
we are about to return it.
A side benefit of that postponement is that it now becomes practical
to return a dummy static PGresult in cases where we hit out-of-memory
while trying to manufacture an error PGresult. This eliminates the
admittedly-very-rare case where we'd return NULL from PQgetResult,
indicating successful query completion, even though what actually
happened was an OOM failure.
Discussion: https://postgr.es/m/ab4288f8-be5c-57fb-2400-e3e857f53e46@enterprisedb.com
2022-02-18 21:35:15 +01:00
|
|
|
|
2003-08-13 18:29:03 +02:00
|
|
|
/* ready to send command message */
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* PQsendQueryGuts
|
2021-03-04 09:45:55 +01:00
|
|
|
* Common code for sending a query with extended query protocol
|
2003-08-13 18:29:03 +02:00
|
|
|
* PQsendQueryStart should be done already
|
|
|
|
|
*
|
|
|
|
|
* command may be NULL to indicate we use an already-prepared statement
|
|
|
|
|
*/
|
|
|
|
|
static int
|
|
|
|
|
PQsendQueryGuts(PGconn *conn,
|
|
|
|
|
const char *command,
|
|
|
|
|
const char *stmtName,
|
|
|
|
|
int nParams,
|
|
|
|
|
const Oid *paramTypes,
|
|
|
|
|
const char *const *paramValues,
|
|
|
|
|
const int *paramLengths,
|
|
|
|
|
const int *paramFormats,
|
|
|
|
|
int resultFormat)
|
|
|
|
|
{
|
|
|
|
|
int i;
|
2021-03-15 22:13:42 +01:00
|
|
|
PGcmdQueueEntry *entry;
|
|
|
|
|
|
|
|
|
|
entry = pqAllocCmdQueueEntry(conn);
|
|
|
|
|
if (entry == NULL)
|
|
|
|
|
return 0; /* error msg already set */
|
2003-08-13 18:29:03 +02:00
|
|
|
|
2003-06-21 23:51:35 +02:00
|
|
|
/*
|
2021-03-15 22:13:42 +01:00
|
|
|
* We will send Parse (if needed), Bind, Describe Portal, Execute, Sync
|
|
|
|
|
* (if not in pipeline mode), using specified statement name and the
|
|
|
|
|
* unnamed portal.
|
2003-06-21 23:51:35 +02:00
|
|
|
*/
|
|
|
|
|
|
2003-08-13 18:29:03 +02:00
|
|
|
if (command)
|
2003-06-21 23:51:35 +02:00
|
|
|
{
|
2003-08-13 18:29:03 +02:00
|
|
|
/* construct the Parse message */
|
2021-03-04 09:45:55 +01:00
|
|
|
if (pqPutMsgStart('P', conn) < 0 ||
|
2003-08-13 18:29:03 +02:00
|
|
|
pqPuts(stmtName, conn) < 0 ||
|
|
|
|
|
pqPuts(command, conn) < 0)
|
2003-06-21 23:51:35 +02:00
|
|
|
goto sendFailed;
|
2003-08-13 18:29:03 +02:00
|
|
|
if (nParams > 0 && paramTypes)
|
2003-06-21 23:51:35 +02:00
|
|
|
{
|
2003-08-13 18:29:03 +02:00
|
|
|
if (pqPutInt(nParams, 2, conn) < 0)
|
2003-06-21 23:51:35 +02:00
|
|
|
goto sendFailed;
|
2003-08-13 18:29:03 +02:00
|
|
|
for (i = 0; i < nParams; i++)
|
|
|
|
|
{
|
|
|
|
|
if (pqPutInt(paramTypes[i], 4, conn) < 0)
|
|
|
|
|
goto sendFailed;
|
|
|
|
|
}
|
2003-06-21 23:51:35 +02:00
|
|
|
}
|
2003-08-13 18:29:03 +02:00
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
if (pqPutInt(0, 2, conn) < 0)
|
|
|
|
|
goto sendFailed;
|
|
|
|
|
}
|
|
|
|
|
if (pqPutMsgEnd(conn) < 0)
|
2003-06-21 23:51:35 +02:00
|
|
|
goto sendFailed;
|
|
|
|
|
}
|
|
|
|
|
|
2008-06-23 23:10:49 +02:00
|
|
|
/* Construct the Bind message */
|
2021-03-04 09:45:55 +01:00
|
|
|
if (pqPutMsgStart('B', conn) < 0 ||
|
2003-06-21 23:51:35 +02:00
|
|
|
pqPuts("", conn) < 0 ||
|
2003-08-13 18:29:03 +02:00
|
|
|
pqPuts(stmtName, conn) < 0)
|
2003-06-21 23:51:35 +02:00
|
|
|
goto sendFailed;
|
2006-08-05 00:20:06 +02:00
|
|
|
|
2008-06-23 23:10:49 +02:00
|
|
|
/* Send parameter formats */
|
2003-06-21 23:51:35 +02:00
|
|
|
if (nParams > 0 && paramFormats)
|
|
|
|
|
{
|
|
|
|
|
if (pqPutInt(nParams, 2, conn) < 0)
|
|
|
|
|
goto sendFailed;
|
|
|
|
|
for (i = 0; i < nParams; i++)
|
|
|
|
|
{
|
|
|
|
|
if (pqPutInt(paramFormats[i], 2, conn) < 0)
|
|
|
|
|
goto sendFailed;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
if (pqPutInt(0, 2, conn) < 0)
|
|
|
|
|
goto sendFailed;
|
|
|
|
|
}
|
2006-08-05 00:20:06 +02:00
|
|
|
|
2003-06-21 23:51:35 +02:00
|
|
|
if (pqPutInt(nParams, 2, conn) < 0)
|
|
|
|
|
goto sendFailed;
|
2006-08-05 00:20:06 +02:00
|
|
|
|
2008-06-23 23:10:49 +02:00
|
|
|
/* Send parameters */
|
2003-06-21 23:51:35 +02:00
|
|
|
for (i = 0; i < nParams; i++)
|
|
|
|
|
{
|
|
|
|
|
if (paramValues && paramValues[i])
|
|
|
|
|
{
|
|
|
|
|
int nbytes;
|
|
|
|
|
|
|
|
|
|
if (paramFormats && paramFormats[i] != 0)
|
|
|
|
|
{
|
|
|
|
|
/* binary parameter */
|
2005-06-09 22:01:16 +02:00
|
|
|
if (paramLengths)
|
|
|
|
|
nbytes = paramLengths[i];
|
|
|
|
|
else
|
|
|
|
|
{
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "length must be given for binary parameter");
|
2005-06-09 22:01:16 +02:00
|
|
|
goto sendFailed;
|
|
|
|
|
}
|
2003-06-21 23:51:35 +02:00
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
/* text parameter, do not use paramLengths */
|
|
|
|
|
nbytes = strlen(paramValues[i]);
|
|
|
|
|
}
|
|
|
|
|
if (pqPutInt(nbytes, 4, conn) < 0 ||
|
|
|
|
|
pqPutnchar(paramValues[i], nbytes, conn) < 0)
|
|
|
|
|
goto sendFailed;
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
/* take the param as NULL */
|
|
|
|
|
if (pqPutInt(-1, 4, conn) < 0)
|
|
|
|
|
goto sendFailed;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if (pqPutInt(1, 2, conn) < 0 ||
|
|
|
|
|
pqPutInt(resultFormat, 2, conn))
|
|
|
|
|
goto sendFailed;
|
|
|
|
|
if (pqPutMsgEnd(conn) < 0)
|
|
|
|
|
goto sendFailed;
|
|
|
|
|
|
|
|
|
|
/* construct the Describe Portal message */
|
2021-03-04 09:45:55 +01:00
|
|
|
if (pqPutMsgStart('D', conn) < 0 ||
|
2003-06-21 23:51:35 +02:00
|
|
|
pqPutc('P', conn) < 0 ||
|
|
|
|
|
pqPuts("", conn) < 0 ||
|
|
|
|
|
pqPutMsgEnd(conn) < 0)
|
|
|
|
|
goto sendFailed;
|
|
|
|
|
|
|
|
|
|
/* construct the Execute message */
|
2021-03-04 09:45:55 +01:00
|
|
|
if (pqPutMsgStart('E', conn) < 0 ||
|
2003-06-21 23:51:35 +02:00
|
|
|
pqPuts("", conn) < 0 ||
|
|
|
|
|
pqPutInt(0, 4, conn) < 0 ||
|
|
|
|
|
pqPutMsgEnd(conn) < 0)
|
|
|
|
|
goto sendFailed;
|
|
|
|
|
|
2021-03-15 22:13:42 +01:00
|
|
|
/* construct the Sync message if not in pipeline mode */
|
|
|
|
|
if (conn->pipelineStatus == PQ_PIPELINE_OFF)
|
|
|
|
|
{
|
|
|
|
|
if (pqPutMsgStart('S', conn) < 0 ||
|
|
|
|
|
pqPutMsgEnd(conn) < 0)
|
|
|
|
|
goto sendFailed;
|
|
|
|
|
}
|
2003-06-21 23:51:35 +02:00
|
|
|
|
2003-08-13 20:56:21 +02:00
|
|
|
/* remember we are using extended query protocol */
|
2021-03-15 22:13:42 +01:00
|
|
|
entry->queryclass = PGQUERY_EXTENDED;
|
2003-08-13 20:56:21 +02:00
|
|
|
|
2006-03-14 23:48:25 +01:00
|
|
|
/* and remember the query text too, if possible */
|
2021-03-15 22:13:42 +01:00
|
|
|
/* if insufficient memory, query just winds up NULL */
|
2006-03-14 23:48:25 +01:00
|
|
|
if (command)
|
2021-03-15 22:13:42 +01:00
|
|
|
entry->query = strdup(command);
|
2006-03-14 23:48:25 +01:00
|
|
|
|
2003-06-21 23:51:35 +02:00
|
|
|
/*
|
2021-03-15 22:13:42 +01:00
|
|
|
* Give the data a push (in pipeline mode, only if we're past the size
|
|
|
|
|
* threshold). In nonblock mode, don't complain if we're unable to send
|
|
|
|
|
* it all; PQgetResult() will do any additional flushing needed.
|
2003-06-21 23:51:35 +02:00
|
|
|
*/
|
2021-03-15 22:13:42 +01:00
|
|
|
if (pqPipelineFlush(conn) < 0)
|
2003-06-21 23:51:35 +02:00
|
|
|
goto sendFailed;
|
|
|
|
|
|
|
|
|
|
/* OK, it's launched! */
|
2021-03-15 22:13:42 +01:00
|
|
|
pqAppendCmdQueueEntry(conn, entry);
|
2021-07-09 21:57:59 +02:00
|
|
|
|
2003-06-21 23:51:35 +02:00
|
|
|
return 1;
|
|
|
|
|
|
|
|
|
|
sendFailed:
|
2021-03-15 22:13:42 +01:00
|
|
|
pqRecycleCmdQueueEntry(conn, entry);
|
Restructure libpq's handling of send failures.
Originally, if libpq got a failure (e.g., ECONNRESET) while trying to
send data to the server, it would just report that and wash its hands
of the matter. It was soon found that that wasn't a very pleasant way
of coping with server-initiated disconnections, so we introduced a hack
(pqHandleSendFailure) in the code that sends queries to make it peek
ahead for server error reports before reporting the send failure.
It now emerges that related cases can occur during connection setup;
in particular, as of TLS 1.3 it's unsafe to assume that SSL connection
failures will be reported by SSL_connect rather than during our first
send attempt. We could have fixed that in a hacky way by applying
pqHandleSendFailure after a startup packet send failure, but
(a) pqHandleSendFailure explicitly disclaims suitability for use in any
state except query startup, and (b) the problem still potentially exists
for other send attempts in libpq.
Instead, let's fix this in a more general fashion by eliminating
pqHandleSendFailure altogether, and instead arranging to postpone
all reports of send failures in libpq until after we've made an
attempt to read and process server messages. The send failure won't
be reported at all if we find a server message or detect input EOF.
(Note: this removes one of the reasons why libpq typically overwrites,
rather than appending to, conn->errorMessage: pqHandleSendFailure needed
that behavior so that the send failure report would be replaced if we
got a server message or read failure report. Eventually I'd like to get
rid of that overwrite behavior altogether, but today is not that day.
For the moment, pqSendSome is assuming that its callees will overwrite
not append to conn->errorMessage.)
Possibly this change should get back-patched someday; but it needs
testing first, so let's not consider that till after v12 beta.
Discussion: https://postgr.es/m/CAEepm=2n6Nv+5tFfe8YnkUm1fXgvxR0Mm1FoD+QKG-vLNGLyKg@mail.gmail.com
2019-03-19 21:20:20 +01:00
|
|
|
/* error message should be set up already */
|
2003-06-21 23:51:35 +02:00
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
2012-08-02 19:10:30 +02:00
|
|
|
/*
|
|
|
|
|
* Select row-by-row processing mode
|
|
|
|
|
*/
|
|
|
|
|
int
|
|
|
|
|
PQsetSingleRowMode(PGconn *conn)
|
|
|
|
|
{
|
|
|
|
|
/*
|
|
|
|
|
* Only allow setting the flag when we have launched a query and not yet
|
|
|
|
|
* received any results.
|
|
|
|
|
*/
|
|
|
|
|
if (!conn)
|
|
|
|
|
return 0;
|
|
|
|
|
if (conn->asyncStatus != PGASYNC_BUSY)
|
|
|
|
|
return 0;
|
2021-03-15 22:13:42 +01:00
|
|
|
if (!conn->cmd_queue_head ||
|
|
|
|
|
(conn->cmd_queue_head->queryclass != PGQUERY_SIMPLE &&
|
|
|
|
|
conn->cmd_queue_head->queryclass != PGQUERY_EXTENDED))
|
2012-08-02 19:10:30 +02:00
|
|
|
return 0;
|
2022-04-21 23:12:49 +02:00
|
|
|
if (pgHavePendingResult(conn))
|
2012-08-02 19:10:30 +02:00
|
|
|
return 0;
|
|
|
|
|
|
|
|
|
|
/* OK, set flag */
|
|
|
|
|
conn->singleRowMode = true;
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
|
|
|
|
|
1996-12-31 08:29:17 +01:00
|
|
|
/*
|
1998-05-07 01:51:16 +02:00
|
|
|
* Consume any available input from the backend
|
1998-09-03 04:10:56 +02:00
|
|
|
* 0 return: some kind of trouble
|
|
|
|
|
* 1 return: no problem
|
1996-12-31 08:29:17 +01:00
|
|
|
*/
|
1998-09-03 04:10:56 +02:00
|
|
|
int
|
1998-05-07 01:51:16 +02:00
|
|
|
PQconsumeInput(PGconn *conn)
|
1996-12-31 08:29:17 +01:00
|
|
|
{
|
1998-05-07 01:51:16 +02:00
|
|
|
if (!conn)
|
1998-09-03 04:10:56 +02:00
|
|
|
return 0;
|
1997-09-07 07:04:48 +02:00
|
|
|
|
2003-04-19 02:02:30 +02:00
|
|
|
/*
|
|
|
|
|
* for non-blocking connections try to flush the send-queue, otherwise we
|
|
|
|
|
* may never get a response for something that may not have already been
|
|
|
|
|
* sent because it's in our write buffer!
|
|
|
|
|
*/
|
|
|
|
|
if (pqIsnonblocking(conn))
|
|
|
|
|
{
|
|
|
|
|
if (pqFlush(conn) < 0)
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
1998-05-07 01:51:16 +02:00
|
|
|
/*
|
|
|
|
|
* Load more data, if available. We do this no matter what state we are
|
|
|
|
|
* in, since we are probably getting called because the application wants
|
|
|
|
|
* to get rid of a read-select condition. Note that we will NOT block
|
|
|
|
|
* waiting for more input.
|
1996-12-31 08:29:17 +01:00
|
|
|
*/
|
1998-10-01 03:40:26 +02:00
|
|
|
if (pqReadData(conn) < 0)
|
1998-09-03 04:10:56 +02:00
|
|
|
return 0;
|
2003-04-19 02:02:30 +02:00
|
|
|
|
1998-05-07 01:51:16 +02:00
|
|
|
/* Parsing of the data waits till later. */
|
1998-09-03 04:10:56 +02:00
|
|
|
return 1;
|
1998-05-07 01:51:16 +02:00
|
|
|
}
|
1997-09-07 07:04:48 +02:00
|
|
|
|
|
|
|
|
|
1998-05-07 01:51:16 +02:00
|
|
|
/*
|
|
|
|
|
* parseInput: if appropriate, parse input data from backend
|
|
|
|
|
* until input is exhausted or a stopping state is reached.
|
|
|
|
|
* Note that this function will NOT attempt to read more data from the backend.
|
|
|
|
|
*/
|
|
|
|
|
static void
|
|
|
|
|
parseInput(PGconn *conn)
|
|
|
|
|
{
|
2021-03-04 09:45:55 +01:00
|
|
|
pqParseInput3(conn);
|
1996-07-09 08:22:35 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
1998-05-07 01:51:16 +02:00
|
|
|
* PQisBusy
|
2017-08-16 06:22:32 +02:00
|
|
|
* Return true if PQgetResult would block waiting for input.
|
1996-07-09 08:22:35 +02:00
|
|
|
*/
|
1998-05-07 01:51:16 +02:00
|
|
|
|
1996-07-09 08:22:35 +02:00
|
|
|
int
|
1998-05-07 01:51:16 +02:00
|
|
|
PQisBusy(PGconn *conn)
|
1996-07-09 08:22:35 +02:00
|
|
|
{
|
1996-07-12 06:53:59 +02:00
|
|
|
if (!conn)
|
2017-08-16 06:22:32 +02:00
|
|
|
return false;
|
1997-09-07 07:04:48 +02:00
|
|
|
|
1998-05-07 01:51:16 +02:00
|
|
|
/* Parse any available data, if our state permits. */
|
|
|
|
|
parseInput(conn);
|
1997-09-07 07:04:48 +02:00
|
|
|
|
Restructure libpq's handling of send failures.
Originally, if libpq got a failure (e.g., ECONNRESET) while trying to
send data to the server, it would just report that and wash its hands
of the matter. It was soon found that that wasn't a very pleasant way
of coping with server-initiated disconnections, so we introduced a hack
(pqHandleSendFailure) in the code that sends queries to make it peek
ahead for server error reports before reporting the send failure.
It now emerges that related cases can occur during connection setup;
in particular, as of TLS 1.3 it's unsafe to assume that SSL connection
failures will be reported by SSL_connect rather than during our first
send attempt. We could have fixed that in a hacky way by applying
pqHandleSendFailure after a startup packet send failure, but
(a) pqHandleSendFailure explicitly disclaims suitability for use in any
state except query startup, and (b) the problem still potentially exists
for other send attempts in libpq.
Instead, let's fix this in a more general fashion by eliminating
pqHandleSendFailure altogether, and instead arranging to postpone
all reports of send failures in libpq until after we've made an
attempt to read and process server messages. The send failure won't
be reported at all if we find a server message or detect input EOF.
(Note: this removes one of the reasons why libpq typically overwrites,
rather than appending to, conn->errorMessage: pqHandleSendFailure needed
that behavior so that the send failure report would be replaced if we
got a server message or read failure report. Eventually I'd like to get
rid of that overwrite behavior altogether, but today is not that day.
For the moment, pqSendSome is assuming that its callees will overwrite
not append to conn->errorMessage.)
Possibly this change should get back-patched someday; but it needs
testing first, so let's not consider that till after v12 beta.
Discussion: https://postgr.es/m/CAEepm=2n6Nv+5tFfe8YnkUm1fXgvxR0Mm1FoD+QKG-vLNGLyKg@mail.gmail.com
2019-03-19 21:20:20 +01:00
|
|
|
/*
|
Fix thinko in PQisBusy().
In commit 1f39a1c06 I made PQisBusy consider conn->write_failed, but
that is now looking like complete brain fade. In the first place, the
logic is quite wrong: it ought to be like "and not" rather than "or".
This meant that once we'd gotten into a write_failed state, PQisBusy
would always return true, probably causing the calling application to
iterate its loop until PQconsumeInput returns a hard failure thanks
to connection loss. That's not what we want: the intended behavior
is to return an error PGresult, which the application probably has
much cleaner support for.
But in the second place, checking write_failed here seems like the
wrong thing anyway. The idea of the write_failed mechanism is to
postpone handling of a write failure until we've read all we can from
the server; so that flag should not interfere with input-processing
behavior. (Compare 7247e243a.) What we *should* check for is
status = CONNECTION_BAD, ie, socket already closed. (Most places that
close the socket don't touch asyncStatus, but they do reset status.)
This primarily ensures that if PQisBusy() returns true then there is
an open socket, which is assumed by several call sites in our own
code, and probably other applications too.
While at it, fix a nearby thinko in libpq's my_sock_write: we should
only consult errno for res < 0, not res == 0. This is harmless since
pqsecure_raw_write would force errno to zero in such a case, but it
still could confuse readers.
Noted by Andres Freund. Backpatch to v12 where 1f39a1c06 came in.
Discussion: https://postgr.es/m/20220211011025.ek7exh6owpzjyudn@alap3.anarazel.de
2022-02-12 19:23:20 +01:00
|
|
|
* PQgetResult will return immediately in all states except BUSY. Also,
|
|
|
|
|
* if we've detected read EOF and dropped the connection, we can expect
|
|
|
|
|
* that PQgetResult will fail immediately. Note that we do *not* check
|
|
|
|
|
* conn->write_failed here --- once that's become set, we know we have
|
|
|
|
|
* trouble, but we need to keep trying to read until we have a complete
|
|
|
|
|
* server message or detect read EOF.
|
Restructure libpq's handling of send failures.
Originally, if libpq got a failure (e.g., ECONNRESET) while trying to
send data to the server, it would just report that and wash its hands
of the matter. It was soon found that that wasn't a very pleasant way
of coping with server-initiated disconnections, so we introduced a hack
(pqHandleSendFailure) in the code that sends queries to make it peek
ahead for server error reports before reporting the send failure.
It now emerges that related cases can occur during connection setup;
in particular, as of TLS 1.3 it's unsafe to assume that SSL connection
failures will be reported by SSL_connect rather than during our first
send attempt. We could have fixed that in a hacky way by applying
pqHandleSendFailure after a startup packet send failure, but
(a) pqHandleSendFailure explicitly disclaims suitability for use in any
state except query startup, and (b) the problem still potentially exists
for other send attempts in libpq.
Instead, let's fix this in a more general fashion by eliminating
pqHandleSendFailure altogether, and instead arranging to postpone
all reports of send failures in libpq until after we've made an
attempt to read and process server messages. The send failure won't
be reported at all if we find a server message or detect input EOF.
(Note: this removes one of the reasons why libpq typically overwrites,
rather than appending to, conn->errorMessage: pqHandleSendFailure needed
that behavior so that the send failure report would be replaced if we
got a server message or read failure report. Eventually I'd like to get
rid of that overwrite behavior altogether, but today is not that day.
For the moment, pqSendSome is assuming that its callees will overwrite
not append to conn->errorMessage.)
Possibly this change should get back-patched someday; but it needs
testing first, so let's not consider that till after v12 beta.
Discussion: https://postgr.es/m/CAEepm=2n6Nv+5tFfe8YnkUm1fXgvxR0Mm1FoD+QKG-vLNGLyKg@mail.gmail.com
2019-03-19 21:20:20 +01:00
|
|
|
*/
|
Fix thinko in PQisBusy().
In commit 1f39a1c06 I made PQisBusy consider conn->write_failed, but
that is now looking like complete brain fade. In the first place, the
logic is quite wrong: it ought to be like "and not" rather than "or".
This meant that once we'd gotten into a write_failed state, PQisBusy
would always return true, probably causing the calling application to
iterate its loop until PQconsumeInput returns a hard failure thanks
to connection loss. That's not what we want: the intended behavior
is to return an error PGresult, which the application probably has
much cleaner support for.
But in the second place, checking write_failed here seems like the
wrong thing anyway. The idea of the write_failed mechanism is to
postpone handling of a write failure until we've read all we can from
the server; so that flag should not interfere with input-processing
behavior. (Compare 7247e243a.) What we *should* check for is
status = CONNECTION_BAD, ie, socket already closed. (Most places that
close the socket don't touch asyncStatus, but they do reset status.)
This primarily ensures that if PQisBusy() returns true then there is
an open socket, which is assumed by several call sites in our own
code, and probably other applications too.
While at it, fix a nearby thinko in libpq's my_sock_write: we should
only consult errno for res < 0, not res == 0. This is harmless since
pqsecure_raw_write would force errno to zero in such a case, but it
still could confuse readers.
Noted by Andres Freund. Backpatch to v12 where 1f39a1c06 came in.
Discussion: https://postgr.es/m/20220211011025.ek7exh6owpzjyudn@alap3.anarazel.de
2022-02-12 19:23:20 +01:00
|
|
|
return conn->asyncStatus == PGASYNC_BUSY && conn->status != CONNECTION_BAD;
|
1996-07-09 08:22:35 +02:00
|
|
|
}
|
|
|
|
|
|
1996-07-23 05:35:14 +02:00
|
|
|
/*
|
1998-05-07 01:51:16 +02:00
|
|
|
* PQgetResult
|
2005-06-12 02:00:21 +02:00
|
|
|
* Get the next PGresult produced by a query. Returns NULL if no
|
|
|
|
|
* query work remains or an error has occurred (e.g. out of
|
|
|
|
|
* memory).
|
2021-03-15 22:13:42 +01:00
|
|
|
*
|
|
|
|
|
* In pipeline mode, once all the result of a query have been returned,
|
|
|
|
|
* PQgetResult returns NULL to let the user know that the next
|
|
|
|
|
* query is being processed. At the end of the pipeline, returns a
|
|
|
|
|
* result with PQresultStatus(result) == PGRES_PIPELINE_SYNC.
|
1996-07-23 05:35:14 +02:00
|
|
|
*/
|
1998-05-07 01:51:16 +02:00
|
|
|
PGresult *
|
|
|
|
|
PQgetResult(PGconn *conn)
|
|
|
|
|
{
|
|
|
|
|
PGresult *res;
|
1997-09-07 07:04:48 +02:00
|
|
|
|
1998-05-07 01:51:16 +02:00
|
|
|
if (!conn)
|
|
|
|
|
return NULL;
|
1997-09-07 07:04:48 +02:00
|
|
|
|
1998-05-07 01:51:16 +02:00
|
|
|
/* Parse any available data, if our state permits. */
|
|
|
|
|
parseInput(conn);
|
1997-09-07 07:04:48 +02:00
|
|
|
|
1998-05-07 01:51:16 +02:00
|
|
|
/* If not ready to return something, block until we are. */
|
|
|
|
|
while (conn->asyncStatus == PGASYNC_BUSY)
|
1996-07-23 05:35:14 +02:00
|
|
|
{
|
2003-06-21 23:51:35 +02:00
|
|
|
int flushResult;
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* If data remains unsent, send it. Else we might be waiting for the
|
|
|
|
|
* result of a command the backend hasn't even got yet.
|
|
|
|
|
*/
|
|
|
|
|
while ((flushResult = pqFlush(conn)) > 0)
|
|
|
|
|
{
|
2017-08-16 06:22:32 +02:00
|
|
|
if (pqWait(false, true, conn))
|
2003-06-21 23:51:35 +02:00
|
|
|
{
|
|
|
|
|
flushResult = -1;
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
Restructure libpq's handling of send failures.
Originally, if libpq got a failure (e.g., ECONNRESET) while trying to
send data to the server, it would just report that and wash its hands
of the matter. It was soon found that that wasn't a very pleasant way
of coping with server-initiated disconnections, so we introduced a hack
(pqHandleSendFailure) in the code that sends queries to make it peek
ahead for server error reports before reporting the send failure.
It now emerges that related cases can occur during connection setup;
in particular, as of TLS 1.3 it's unsafe to assume that SSL connection
failures will be reported by SSL_connect rather than during our first
send attempt. We could have fixed that in a hacky way by applying
pqHandleSendFailure after a startup packet send failure, but
(a) pqHandleSendFailure explicitly disclaims suitability for use in any
state except query startup, and (b) the problem still potentially exists
for other send attempts in libpq.
Instead, let's fix this in a more general fashion by eliminating
pqHandleSendFailure altogether, and instead arranging to postpone
all reports of send failures in libpq until after we've made an
attempt to read and process server messages. The send failure won't
be reported at all if we find a server message or detect input EOF.
(Note: this removes one of the reasons why libpq typically overwrites,
rather than appending to, conn->errorMessage: pqHandleSendFailure needed
that behavior so that the send failure report would be replaced if we
got a server message or read failure report. Eventually I'd like to get
rid of that overwrite behavior altogether, but today is not that day.
For the moment, pqSendSome is assuming that its callees will overwrite
not append to conn->errorMessage.)
Possibly this change should get back-patched someday; but it needs
testing first, so let's not consider that till after v12 beta.
Discussion: https://postgr.es/m/CAEepm=2n6Nv+5tFfe8YnkUm1fXgvxR0Mm1FoD+QKG-vLNGLyKg@mail.gmail.com
2019-03-19 21:20:20 +01:00
|
|
|
/*
|
|
|
|
|
* Wait for some more data, and load it. (Note: if the connection has
|
|
|
|
|
* been lost, pqWait should return immediately because the socket
|
|
|
|
|
* should be read-ready, either with the last server data or with an
|
|
|
|
|
* EOF indication. We expect therefore that this won't result in any
|
|
|
|
|
* undue delay in reporting a previous write failure.)
|
|
|
|
|
*/
|
2003-06-21 23:51:35 +02:00
|
|
|
if (flushResult ||
|
2017-08-16 06:22:32 +02:00
|
|
|
pqWait(true, false, conn) ||
|
1998-05-07 01:51:16 +02:00
|
|
|
pqReadData(conn) < 0)
|
1996-12-13 10:25:08 +01:00
|
|
|
{
|
Rearrange libpq's error reporting to avoid duplicated error text.
Since commit ffa2e4670, libpq accumulates text in conn->errorMessage
across a whole query cycle. In some situations, we may report more
than one error event within a cycle: the easiest case to reach is
where we report a FATAL error message from the server, and then a
bit later we detect loss of connection. Since, historically, each
error PGresult bears the entire content of conn->errorMessage,
this results in duplication of the FATAL message in any output that
concatenates the contents of the PGresults.
Accumulation in errorMessage still seems like a good idea, especially
in view of the number of places that did ad-hoc error concatenation
before ffa2e4670. So to fix this, let's track how much of
conn->errorMessage has been read out into error PGresults, and only
include new text in later PGresults. The tricky part of that is
to be sure that we never discard an error PGresult once made (else
we'd risk dropping some text, a problem much worse than duplication).
While libpq formerly did that in some code paths, a little bit of
rearrangement lets us postpone making an error PGresult at all until
we are about to return it.
A side benefit of that postponement is that it now becomes practical
to return a dummy static PGresult in cases where we hit out-of-memory
while trying to manufacture an error PGresult. This eliminates the
admittedly-very-rare case where we'd return NULL from PQgetResult,
indicating successful query completion, even though what actually
happened was an OOM failure.
Discussion: https://postgr.es/m/ab4288f8-be5c-57fb-2400-e3e857f53e46@enterprisedb.com
2022-02-18 21:35:15 +01:00
|
|
|
/* Report the error saved by pqWait or pqReadData */
|
2003-06-08 19:43:00 +02:00
|
|
|
pqSaveErrorResult(conn);
|
1998-05-07 01:51:16 +02:00
|
|
|
conn->asyncStatus = PGASYNC_IDLE;
|
2003-06-08 19:43:00 +02:00
|
|
|
return pqPrepareAsyncResult(conn);
|
1996-07-23 05:35:14 +02:00
|
|
|
}
|
2003-06-21 23:51:35 +02:00
|
|
|
|
1998-05-07 01:51:16 +02:00
|
|
|
/* Parse it. */
|
|
|
|
|
parseInput(conn);
|
Restructure libpq's handling of send failures.
Originally, if libpq got a failure (e.g., ECONNRESET) while trying to
send data to the server, it would just report that and wash its hands
of the matter. It was soon found that that wasn't a very pleasant way
of coping with server-initiated disconnections, so we introduced a hack
(pqHandleSendFailure) in the code that sends queries to make it peek
ahead for server error reports before reporting the send failure.
It now emerges that related cases can occur during connection setup;
in particular, as of TLS 1.3 it's unsafe to assume that SSL connection
failures will be reported by SSL_connect rather than during our first
send attempt. We could have fixed that in a hacky way by applying
pqHandleSendFailure after a startup packet send failure, but
(a) pqHandleSendFailure explicitly disclaims suitability for use in any
state except query startup, and (b) the problem still potentially exists
for other send attempts in libpq.
Instead, let's fix this in a more general fashion by eliminating
pqHandleSendFailure altogether, and instead arranging to postpone
all reports of send failures in libpq until after we've made an
attempt to read and process server messages. The send failure won't
be reported at all if we find a server message or detect input EOF.
(Note: this removes one of the reasons why libpq typically overwrites,
rather than appending to, conn->errorMessage: pqHandleSendFailure needed
that behavior so that the send failure report would be replaced if we
got a server message or read failure report. Eventually I'd like to get
rid of that overwrite behavior altogether, but today is not that day.
For the moment, pqSendSome is assuming that its callees will overwrite
not append to conn->errorMessage.)
Possibly this change should get back-patched someday; but it needs
testing first, so let's not consider that till after v12 beta.
Discussion: https://postgr.es/m/CAEepm=2n6Nv+5tFfe8YnkUm1fXgvxR0Mm1FoD+QKG-vLNGLyKg@mail.gmail.com
2019-03-19 21:20:20 +01:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* If we had a write error, but nothing above obtained a query result
|
|
|
|
|
* or detected a read error, report the write error.
|
|
|
|
|
*/
|
|
|
|
|
if (conn->write_failed && conn->asyncStatus == PGASYNC_BUSY)
|
|
|
|
|
{
|
|
|
|
|
pqSaveWriteError(conn);
|
|
|
|
|
conn->asyncStatus = PGASYNC_IDLE;
|
|
|
|
|
return pqPrepareAsyncResult(conn);
|
|
|
|
|
}
|
1997-09-07 07:04:48 +02:00
|
|
|
}
|
|
|
|
|
|
1998-05-07 01:51:16 +02:00
|
|
|
/* Return the appropriate thing. */
|
|
|
|
|
switch (conn->asyncStatus)
|
1996-07-23 05:35:14 +02:00
|
|
|
{
|
1998-05-07 01:51:16 +02:00
|
|
|
case PGASYNC_IDLE:
|
|
|
|
|
res = NULL; /* query is complete */
|
|
|
|
|
break;
|
libpq: Improve idle state handling in pipeline mode
We were going into IDLE state too soon when executing queries via
PQsendQuery in pipeline mode, causing several scenarios to misbehave in
different ways -- most notably, as reported by Daniele Varrazzo, that a
warning message is produced by libpq:
message type 0x33 arrived from server while idle
But it is also possible, if queries are sent and results consumed not in
lockstep, for the expected mediating NULL result values from PQgetResult
to be lost (a problem which has not been reported, but which is more
serious).
Fix this by introducing two new concepts: one is a command queue element
PGQUERY_CLOSE to tell libpq to wait for the CloseComplete server
response to the Close message that is sent by PQsendQuery. Because the
application is not expecting any PGresult from this, the mechanism to
consume it is a bit hackish.
The other concept, authored by Horiguchi-san, is a PGASYNC_PIPELINE_IDLE
state for libpq's state machine to differentiate "really idle" from
merely "the idle state that occurs in between reading results from the
server for elements in the pipeline". This makes libpq not go fully
IDLE when the libpq command queue contains entries; in normal cases, we
only go IDLE once at the end of the pipeline, when the server response
to the final SYNC message is received. (However, there are corner cases
it doesn't fix, such as terminating the query sequence by
PQsendFlushRequest instead of PQpipelineSync; this sort of scenario is
what requires PGQUERY_CLOSE bit above.)
This last bit helps make the libpq state machine clearer; in particular
we can get rid of an ugly hack in pqParseInput3 to avoid considering
IDLE as such when the command queue contains entries.
A new test mode is added to libpq_pipeline.c to tickle some related
problematic cases.
Reported-by: Daniele Varrazzo <daniele.varrazzo@gmail.com>
Co-authored-by: Kyotaro Horiguchi <horikyota.ntt@gmail.com>
Discussion: https://postgr.es/m/CA+mi_8bvD0_CW3sumgwPvWdNzXY32itoG_16tDYRu_1S2gV2iw@mail.gmail.com
2022-07-05 14:21:20 +02:00
|
|
|
case PGASYNC_PIPELINE_IDLE:
|
|
|
|
|
Assert(conn->pipelineStatus != PQ_PIPELINE_OFF);
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* We're about to return the NULL that terminates the round of
|
2023-05-19 23:24:48 +02:00
|
|
|
* results from the current query; prepare to send the results of
|
|
|
|
|
* the next query, if any, when we're called next. If there's no
|
|
|
|
|
* next element in the command queue, this gets us in IDLE state.
|
libpq: Improve idle state handling in pipeline mode
We were going into IDLE state too soon when executing queries via
PQsendQuery in pipeline mode, causing several scenarios to misbehave in
different ways -- most notably, as reported by Daniele Varrazzo, that a
warning message is produced by libpq:
message type 0x33 arrived from server while idle
But it is also possible, if queries are sent and results consumed not in
lockstep, for the expected mediating NULL result values from PQgetResult
to be lost (a problem which has not been reported, but which is more
serious).
Fix this by introducing two new concepts: one is a command queue element
PGQUERY_CLOSE to tell libpq to wait for the CloseComplete server
response to the Close message that is sent by PQsendQuery. Because the
application is not expecting any PGresult from this, the mechanism to
consume it is a bit hackish.
The other concept, authored by Horiguchi-san, is a PGASYNC_PIPELINE_IDLE
state for libpq's state machine to differentiate "really idle" from
merely "the idle state that occurs in between reading results from the
server for elements in the pipeline". This makes libpq not go fully
IDLE when the libpq command queue contains entries; in normal cases, we
only go IDLE once at the end of the pipeline, when the server response
to the final SYNC message is received. (However, there are corner cases
it doesn't fix, such as terminating the query sequence by
PQsendFlushRequest instead of PQpipelineSync; this sort of scenario is
what requires PGQUERY_CLOSE bit above.)
This last bit helps make the libpq state machine clearer; in particular
we can get rid of an ugly hack in pqParseInput3 to avoid considering
IDLE as such when the command queue contains entries.
A new test mode is added to libpq_pipeline.c to tickle some related
problematic cases.
Reported-by: Daniele Varrazzo <daniele.varrazzo@gmail.com>
Co-authored-by: Kyotaro Horiguchi <horikyota.ntt@gmail.com>
Discussion: https://postgr.es/m/CA+mi_8bvD0_CW3sumgwPvWdNzXY32itoG_16tDYRu_1S2gV2iw@mail.gmail.com
2022-07-05 14:21:20 +02:00
|
|
|
*/
|
|
|
|
|
pqPipelineProcessQueue(conn);
|
|
|
|
|
res = NULL; /* query is complete */
|
|
|
|
|
break;
|
|
|
|
|
|
1998-05-07 01:51:16 +02:00
|
|
|
case PGASYNC_READY:
|
2021-03-15 22:13:42 +01:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* For any query type other than simple query protocol, we advance
|
|
|
|
|
* the command queue here. This is because for simple query
|
|
|
|
|
* protocol we can get the READY state multiple times before the
|
|
|
|
|
* command is actually complete, since the command string can
|
|
|
|
|
* contain many queries. In simple query protocol, the queue
|
|
|
|
|
* advance is done by fe-protocol3 when it receives ReadyForQuery.
|
|
|
|
|
*/
|
|
|
|
|
if (conn->cmd_queue_head &&
|
|
|
|
|
conn->cmd_queue_head->queryclass != PGQUERY_SIMPLE)
|
|
|
|
|
pqCommandQueueAdvance(conn);
|
|
|
|
|
res = pqPrepareAsyncResult(conn);
|
|
|
|
|
if (conn->pipelineStatus != PQ_PIPELINE_OFF)
|
|
|
|
|
{
|
|
|
|
|
/*
|
|
|
|
|
* We're about to send the results of the current query. Set
|
|
|
|
|
* us idle now, and ...
|
|
|
|
|
*/
|
libpq: Improve idle state handling in pipeline mode
We were going into IDLE state too soon when executing queries via
PQsendQuery in pipeline mode, causing several scenarios to misbehave in
different ways -- most notably, as reported by Daniele Varrazzo, that a
warning message is produced by libpq:
message type 0x33 arrived from server while idle
But it is also possible, if queries are sent and results consumed not in
lockstep, for the expected mediating NULL result values from PQgetResult
to be lost (a problem which has not been reported, but which is more
serious).
Fix this by introducing two new concepts: one is a command queue element
PGQUERY_CLOSE to tell libpq to wait for the CloseComplete server
response to the Close message that is sent by PQsendQuery. Because the
application is not expecting any PGresult from this, the mechanism to
consume it is a bit hackish.
The other concept, authored by Horiguchi-san, is a PGASYNC_PIPELINE_IDLE
state for libpq's state machine to differentiate "really idle" from
merely "the idle state that occurs in between reading results from the
server for elements in the pipeline". This makes libpq not go fully
IDLE when the libpq command queue contains entries; in normal cases, we
only go IDLE once at the end of the pipeline, when the server response
to the final SYNC message is received. (However, there are corner cases
it doesn't fix, such as terminating the query sequence by
PQsendFlushRequest instead of PQpipelineSync; this sort of scenario is
what requires PGQUERY_CLOSE bit above.)
This last bit helps make the libpq state machine clearer; in particular
we can get rid of an ugly hack in pqParseInput3 to avoid considering
IDLE as such when the command queue contains entries.
A new test mode is added to libpq_pipeline.c to tickle some related
problematic cases.
Reported-by: Daniele Varrazzo <daniele.varrazzo@gmail.com>
Co-authored-by: Kyotaro Horiguchi <horikyota.ntt@gmail.com>
Discussion: https://postgr.es/m/CA+mi_8bvD0_CW3sumgwPvWdNzXY32itoG_16tDYRu_1S2gV2iw@mail.gmail.com
2022-07-05 14:21:20 +02:00
|
|
|
conn->asyncStatus = PGASYNC_PIPELINE_IDLE;
|
2021-03-15 22:13:42 +01:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* ... in cases when we're sending a pipeline-sync result,
|
|
|
|
|
* move queue processing forwards immediately, so that next
|
|
|
|
|
* time we're called, we're prepared to return the next result
|
|
|
|
|
* received from the server. In all other cases, leave the
|
|
|
|
|
* queue state change for next time, so that a terminating
|
|
|
|
|
* NULL result is sent.
|
|
|
|
|
*
|
|
|
|
|
* (In other words: we don't return a NULL after a pipeline
|
|
|
|
|
* sync.)
|
|
|
|
|
*/
|
|
|
|
|
if (res && res->resultStatus == PGRES_PIPELINE_SYNC)
|
|
|
|
|
pqPipelineProcessQueue(conn);
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
/* Set the state back to BUSY, allowing parsing to proceed. */
|
|
|
|
|
conn->asyncStatus = PGASYNC_BUSY;
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
case PGASYNC_READY_MORE:
|
2003-06-08 19:43:00 +02:00
|
|
|
res = pqPrepareAsyncResult(conn);
|
1998-05-07 01:51:16 +02:00
|
|
|
/* Set the state back to BUSY, allowing parsing to proceed. */
|
|
|
|
|
conn->asyncStatus = PGASYNC_BUSY;
|
|
|
|
|
break;
|
|
|
|
|
case PGASYNC_COPY_IN:
|
2014-02-12 23:50:07 +01:00
|
|
|
res = getCopyResult(conn, PGRES_COPY_IN);
|
1998-05-07 01:51:16 +02:00
|
|
|
break;
|
|
|
|
|
case PGASYNC_COPY_OUT:
|
2014-02-12 23:50:07 +01:00
|
|
|
res = getCopyResult(conn, PGRES_COPY_OUT);
|
1998-05-07 01:51:16 +02:00
|
|
|
break;
|
2010-12-11 15:27:37 +01:00
|
|
|
case PGASYNC_COPY_BOTH:
|
2014-02-12 23:50:07 +01:00
|
|
|
res = getCopyResult(conn, PGRES_COPY_BOTH);
|
2010-12-11 15:27:37 +01:00
|
|
|
break;
|
1998-05-07 01:51:16 +02:00
|
|
|
default:
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "unexpected asyncStatus: %d", (int) conn->asyncStatus);
|
Rearrange libpq's error reporting to avoid duplicated error text.
Since commit ffa2e4670, libpq accumulates text in conn->errorMessage
across a whole query cycle. In some situations, we may report more
than one error event within a cycle: the easiest case to reach is
where we report a FATAL error message from the server, and then a
bit later we detect loss of connection. Since, historically, each
error PGresult bears the entire content of conn->errorMessage,
this results in duplication of the FATAL message in any output that
concatenates the contents of the PGresults.
Accumulation in errorMessage still seems like a good idea, especially
in view of the number of places that did ad-hoc error concatenation
before ffa2e4670. So to fix this, let's track how much of
conn->errorMessage has been read out into error PGresults, and only
include new text in later PGresults. The tricky part of that is
to be sure that we never discard an error PGresult once made (else
we'd risk dropping some text, a problem much worse than duplication).
While libpq formerly did that in some code paths, a little bit of
rearrangement lets us postpone making an error PGresult at all until
we are about to return it.
A side benefit of that postponement is that it now becomes practical
to return a dummy static PGresult in cases where we hit out-of-memory
while trying to manufacture an error PGresult. This eliminates the
admittedly-very-rare case where we'd return NULL from PQgetResult,
indicating successful query completion, even though what actually
happened was an OOM failure.
Discussion: https://postgr.es/m/ab4288f8-be5c-57fb-2400-e3e857f53e46@enterprisedb.com
2022-02-18 21:35:15 +01:00
|
|
|
pqSaveErrorResult(conn);
|
|
|
|
|
conn->asyncStatus = PGASYNC_IDLE; /* try to restore valid state */
|
|
|
|
|
res = pqPrepareAsyncResult(conn);
|
1998-05-07 01:51:16 +02:00
|
|
|
break;
|
1996-07-23 05:35:14 +02:00
|
|
|
}
|
1997-09-07 07:04:48 +02:00
|
|
|
|
2022-02-18 17:37:27 +01:00
|
|
|
/* Time to fire PGEVT_RESULTCREATE events, if there are any */
|
|
|
|
|
if (res && res->nEvents > 0)
|
|
|
|
|
(void) PQfireResultCreateEvents(conn, res);
|
2008-09-17 06:31:08 +02:00
|
|
|
|
1998-05-07 01:51:16 +02:00
|
|
|
return res;
|
1996-07-23 05:35:14 +02:00
|
|
|
}
|
|
|
|
|
|
2014-02-12 23:50:07 +01:00
|
|
|
/*
|
|
|
|
|
* getCopyResult
|
|
|
|
|
* Helper for PQgetResult: generate result for COPY-in-progress cases
|
|
|
|
|
*/
|
|
|
|
|
static PGresult *
|
|
|
|
|
getCopyResult(PGconn *conn, ExecStatusType copytype)
|
|
|
|
|
{
|
|
|
|
|
/*
|
|
|
|
|
* If the server connection has been lost, don't pretend everything is
|
|
|
|
|
* hunky-dory; instead return a PGRES_FATAL_ERROR result, and reset the
|
|
|
|
|
* asyncStatus to idle (corresponding to what we'd do if we'd detected I/O
|
|
|
|
|
* error in the earlier steps in PQgetResult). The text returned in the
|
|
|
|
|
* result is whatever is in conn->errorMessage; we hope that was filled
|
|
|
|
|
* with something relevant when the lost connection was detected.
|
|
|
|
|
*/
|
|
|
|
|
if (conn->status != CONNECTION_OK)
|
|
|
|
|
{
|
|
|
|
|
pqSaveErrorResult(conn);
|
|
|
|
|
conn->asyncStatus = PGASYNC_IDLE;
|
|
|
|
|
return pqPrepareAsyncResult(conn);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* If we have an async result for the COPY, return that */
|
|
|
|
|
if (conn->result && conn->result->resultStatus == copytype)
|
|
|
|
|
return pqPrepareAsyncResult(conn);
|
|
|
|
|
|
|
|
|
|
/* Otherwise, invent a suitable PGresult */
|
|
|
|
|
return PQmakeEmptyPGresult(conn, copytype);
|
|
|
|
|
}
|
|
|
|
|
|
1996-07-09 08:22:35 +02:00
|
|
|
|
|
|
|
|
/*
|
1998-05-07 01:51:16 +02:00
|
|
|
* PQexec
|
|
|
|
|
* send a query to the backend and package up the result in a PGresult
|
1996-07-09 08:22:35 +02:00
|
|
|
*
|
1998-10-01 03:40:26 +02:00
|
|
|
* If the query was not even sent, return NULL; conn->errorMessage is set to
|
|
|
|
|
* a relevant message.
|
|
|
|
|
* If the query was sent, a new PGresult is returned (which could indicate
|
|
|
|
|
* either success or failure).
|
|
|
|
|
* The user is responsible for freeing the PGresult via PQclear()
|
|
|
|
|
* when done with it.
|
1996-07-09 08:22:35 +02:00
|
|
|
*/
|
1998-05-07 01:51:16 +02:00
|
|
|
PGresult *
|
|
|
|
|
PQexec(PGconn *conn, const char *query)
|
1996-12-13 10:25:08 +01:00
|
|
|
{
|
2003-06-21 23:51:35 +02:00
|
|
|
if (!PQexecStart(conn))
|
|
|
|
|
return NULL;
|
|
|
|
|
if (!PQsendQuery(conn, query))
|
|
|
|
|
return NULL;
|
|
|
|
|
return PQexecFinish(conn);
|
|
|
|
|
}
|
2000-01-18 07:09:24 +01:00
|
|
|
|
2003-06-21 23:51:35 +02:00
|
|
|
/*
|
|
|
|
|
* PQexecParams
|
2021-03-04 09:45:55 +01:00
|
|
|
* Like PQexec, but use extended query protocol so we can pass parameters
|
2003-06-21 23:51:35 +02:00
|
|
|
*/
|
|
|
|
|
PGresult *
|
|
|
|
|
PQexecParams(PGconn *conn,
|
|
|
|
|
const char *command,
|
|
|
|
|
int nParams,
|
|
|
|
|
const Oid *paramTypes,
|
|
|
|
|
const char *const *paramValues,
|
|
|
|
|
const int *paramLengths,
|
|
|
|
|
const int *paramFormats,
|
|
|
|
|
int resultFormat)
|
|
|
|
|
{
|
|
|
|
|
if (!PQexecStart(conn))
|
|
|
|
|
return NULL;
|
|
|
|
|
if (!PQsendQueryParams(conn, command,
|
|
|
|
|
nParams, paramTypes, paramValues, paramLengths,
|
|
|
|
|
paramFormats, resultFormat))
|
2000-01-18 07:09:24 +01:00
|
|
|
return NULL;
|
2003-06-21 23:51:35 +02:00
|
|
|
return PQexecFinish(conn);
|
|
|
|
|
}
|
|
|
|
|
|
2004-10-19 00:00:42 +02:00
|
|
|
/*
|
|
|
|
|
* PQprepare
|
2021-03-04 09:45:55 +01:00
|
|
|
* Creates a prepared statement by issuing a Parse message.
|
2004-10-19 00:00:42 +02:00
|
|
|
*
|
|
|
|
|
* If the query was not even sent, return NULL; conn->errorMessage is set to
|
|
|
|
|
* a relevant message.
|
|
|
|
|
* If the query was sent, a new PGresult is returned (which could indicate
|
|
|
|
|
* either success or failure).
|
|
|
|
|
* The user is responsible for freeing the PGresult via PQclear()
|
|
|
|
|
* when done with it.
|
|
|
|
|
*/
|
|
|
|
|
PGresult *
|
|
|
|
|
PQprepare(PGconn *conn,
|
|
|
|
|
const char *stmtName, const char *query,
|
|
|
|
|
int nParams, const Oid *paramTypes)
|
|
|
|
|
{
|
|
|
|
|
if (!PQexecStart(conn))
|
|
|
|
|
return NULL;
|
|
|
|
|
if (!PQsendPrepare(conn, stmtName, query, nParams, paramTypes))
|
|
|
|
|
return NULL;
|
|
|
|
|
return PQexecFinish(conn);
|
|
|
|
|
}
|
|
|
|
|
|
2003-06-21 23:51:35 +02:00
|
|
|
/*
|
2003-08-13 18:29:03 +02:00
|
|
|
* PQexecPrepared
|
|
|
|
|
* Like PQexec, but execute a previously prepared statement,
|
2021-03-04 09:45:55 +01:00
|
|
|
* using extended query protocol so we can pass parameters
|
2003-08-13 18:29:03 +02:00
|
|
|
*/
|
|
|
|
|
PGresult *
|
|
|
|
|
PQexecPrepared(PGconn *conn,
|
|
|
|
|
const char *stmtName,
|
|
|
|
|
int nParams,
|
|
|
|
|
const char *const *paramValues,
|
|
|
|
|
const int *paramLengths,
|
|
|
|
|
const int *paramFormats,
|
|
|
|
|
int resultFormat)
|
|
|
|
|
{
|
|
|
|
|
if (!PQexecStart(conn))
|
|
|
|
|
return NULL;
|
|
|
|
|
if (!PQsendQueryPrepared(conn, stmtName,
|
|
|
|
|
nParams, paramValues, paramLengths,
|
|
|
|
|
paramFormats, resultFormat))
|
|
|
|
|
return NULL;
|
|
|
|
|
return PQexecFinish(conn);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Common code for PQexec and sibling routines: prepare to send command
|
2003-06-21 23:51:35 +02:00
|
|
|
*/
|
|
|
|
|
static bool
|
|
|
|
|
PQexecStart(PGconn *conn)
|
|
|
|
|
{
|
|
|
|
|
PGresult *result;
|
|
|
|
|
|
|
|
|
|
if (!conn)
|
|
|
|
|
return false;
|
1997-09-07 07:04:48 +02:00
|
|
|
|
2022-02-28 17:31:30 +01:00
|
|
|
/*
|
|
|
|
|
* Since this is the beginning of a query cycle, reset the error state.
|
|
|
|
|
* However, in pipeline mode with something already queued, the error
|
|
|
|
|
* buffer belongs to that command and we shouldn't clear it.
|
|
|
|
|
*/
|
|
|
|
|
if (conn->cmd_queue_head == NULL)
|
|
|
|
|
pqClearConnErrorState(conn);
|
|
|
|
|
|
2021-03-15 22:13:42 +01:00
|
|
|
if (conn->pipelineStatus != PQ_PIPELINE_OFF)
|
|
|
|
|
{
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "synchronous command execution functions are not allowed in pipeline mode");
|
2021-03-15 22:13:42 +01:00
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
1998-05-07 01:51:16 +02:00
|
|
|
/*
|
|
|
|
|
* Silently discard any prior query result that application didn't eat.
|
|
|
|
|
* This is probably poor design, but it's here for backward compatibility.
|
|
|
|
|
*/
|
2012-08-02 19:10:30 +02:00
|
|
|
while ((result = PQgetResult(conn)) != NULL)
|
1996-12-13 10:25:08 +01:00
|
|
|
{
|
2003-08-13 20:56:21 +02:00
|
|
|
ExecStatusType resultStatus = result->resultStatus;
|
|
|
|
|
|
|
|
|
|
PQclear(result); /* only need its status */
|
|
|
|
|
if (resultStatus == PGRES_COPY_IN)
|
1996-12-13 10:25:08 +01:00
|
|
|
{
|
2021-03-04 09:45:55 +01:00
|
|
|
/* get out of a COPY IN state */
|
|
|
|
|
if (PQputCopyEnd(conn,
|
|
|
|
|
libpq_gettext("COPY terminated by new PQexec")) < 0)
|
2003-06-28 02:06:01 +02:00
|
|
|
return false;
|
2021-03-04 09:45:55 +01:00
|
|
|
/* keep waiting to swallow the copy's failure message */
|
2003-06-28 02:06:01 +02:00
|
|
|
}
|
2003-08-13 20:56:21 +02:00
|
|
|
else if (resultStatus == PGRES_COPY_OUT)
|
2003-06-28 02:06:01 +02:00
|
|
|
{
|
2021-03-04 09:45:55 +01:00
|
|
|
/*
|
|
|
|
|
* Get out of a COPY OUT state: we just switch back to BUSY and
|
|
|
|
|
* allow the remaining COPY data to be dropped on the floor.
|
|
|
|
|
*/
|
|
|
|
|
conn->asyncStatus = PGASYNC_BUSY;
|
|
|
|
|
/* keep waiting to swallow the copy's completion message */
|
1996-12-13 10:25:08 +01:00
|
|
|
}
|
2010-12-11 15:27:37 +01:00
|
|
|
else if (resultStatus == PGRES_COPY_BOTH)
|
|
|
|
|
{
|
|
|
|
|
/* We don't allow PQexec during COPY BOTH */
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "PQexec not allowed during COPY BOTH");
|
2010-12-11 15:27:37 +01:00
|
|
|
return false;
|
|
|
|
|
}
|
2003-12-28 18:29:41 +01:00
|
|
|
/* check for loss of connection, too */
|
|
|
|
|
if (conn->status == CONNECTION_BAD)
|
|
|
|
|
return false;
|
1996-12-13 10:25:08 +01:00
|
|
|
}
|
1997-09-07 07:04:48 +02:00
|
|
|
|
2003-06-21 23:51:35 +02:00
|
|
|
/* OK to send a command */
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
2003-08-13 18:29:03 +02:00
|
|
|
* Common code for PQexec and sibling routines: wait for command result
|
2003-06-21 23:51:35 +02:00
|
|
|
*/
|
|
|
|
|
static PGresult *
|
|
|
|
|
PQexecFinish(PGconn *conn)
|
|
|
|
|
{
|
|
|
|
|
PGresult *result;
|
|
|
|
|
PGresult *lastResult;
|
1997-09-07 07:04:48 +02:00
|
|
|
|
1998-05-07 01:51:16 +02:00
|
|
|
/*
|
|
|
|
|
* For backwards compatibility, return the last result if there are more
|
In libpq, always append new error messages to conn->errorMessage.
Previously, we had an undisciplined mish-mash of printfPQExpBuffer and
appendPQExpBuffer calls to report errors within libpq. This commit
establishes a uniform rule that appendPQExpBuffer[Str] should be used.
conn->errorMessage is reset only at the start of an application request,
and then accumulates messages till we're done. We can remove no less
than three different ad-hoc mechanisms that were used to get the effect
of concatenation of error messages within a sequence of operations.
Although this makes things quite a bit cleaner conceptually, the main
reason to do it is to make the world safer for the multiple-target-host
feature that was added awhile back. Previously, there were many cases
in which an error occurring during an individual host connection attempt
would wipe out the record of what had happened during previous attempts.
(The reporting is still inadequate, in that it can be hard to tell which
host got the failure, but that seems like a matter for a separate commit.)
Currently, lo_import and lo_export contain exceptions to the "never
use printfPQExpBuffer" rule. If we changed them, we'd risk reporting
an incidental lo_close failure before the actual read or write
failure, which would be confusing, not least because lo_close happened
after the main failure. We could improve this by inventing an
internal version of lo_close that doesn't reset the errorMessage; but
we'd also need a version of PQfn() that does that, and it didn't quite
seem worth the trouble for now.
Discussion: https://postgr.es/m/BN6PR05MB3492948E4FD76C156E747E8BC9160@BN6PR05MB3492.namprd05.prod.outlook.com
2021-01-11 19:12:09 +01:00
|
|
|
* than one. (We used to have logic here to concatenate successive error
|
|
|
|
|
* messages, but now that happens automatically, since conn->errorMessage
|
|
|
|
|
* will continue to accumulate errors throughout this loop.)
|
1999-08-31 03:37:37 +02:00
|
|
|
*
|
2010-12-11 15:27:37 +01:00
|
|
|
* We have to stop if we see copy in/out/both, however. We will resume
|
2003-06-21 23:51:35 +02:00
|
|
|
* parsing after application performs the data transfer.
|
2003-12-28 18:29:41 +01:00
|
|
|
*
|
|
|
|
|
* Also stop if the connection is lost (else we'll loop infinitely).
|
1998-05-07 01:51:16 +02:00
|
|
|
*/
|
|
|
|
|
lastResult = NULL;
|
|
|
|
|
while ((result = PQgetResult(conn)) != NULL)
|
|
|
|
|
{
|
2022-07-03 20:11:05 +02:00
|
|
|
PQclear(lastResult);
|
1998-05-07 01:51:16 +02:00
|
|
|
lastResult = result;
|
1998-05-07 01:53:48 +02:00
|
|
|
if (result->resultStatus == PGRES_COPY_IN ||
|
2003-12-28 18:29:41 +01:00
|
|
|
result->resultStatus == PGRES_COPY_OUT ||
|
2010-12-11 15:27:37 +01:00
|
|
|
result->resultStatus == PGRES_COPY_BOTH ||
|
2003-12-28 18:29:41 +01:00
|
|
|
conn->status == CONNECTION_BAD)
|
1998-05-07 01:53:48 +02:00
|
|
|
break;
|
1996-07-09 08:22:35 +02:00
|
|
|
}
|
2000-01-18 07:09:24 +01:00
|
|
|
|
1998-05-07 01:51:16 +02:00
|
|
|
return lastResult;
|
1996-07-09 08:22:35 +02:00
|
|
|
}
|
|
|
|
|
|
2006-08-18 21:52:39 +02:00
|
|
|
/*
|
|
|
|
|
* PQdescribePrepared
|
|
|
|
|
* Obtain information about a previously prepared statement
|
|
|
|
|
*
|
|
|
|
|
* If the query was not even sent, return NULL; conn->errorMessage is set to
|
|
|
|
|
* a relevant message.
|
|
|
|
|
* If the query was sent, a new PGresult is returned (which could indicate
|
|
|
|
|
* either success or failure). On success, the PGresult contains status
|
|
|
|
|
* PGRES_COMMAND_OK, and its parameter and column-heading fields describe
|
|
|
|
|
* the statement's inputs and outputs respectively.
|
|
|
|
|
* The user is responsible for freeing the PGresult via PQclear()
|
|
|
|
|
* when done with it.
|
|
|
|
|
*/
|
|
|
|
|
PGresult *
|
|
|
|
|
PQdescribePrepared(PGconn *conn, const char *stmt)
|
|
|
|
|
{
|
|
|
|
|
if (!PQexecStart(conn))
|
|
|
|
|
return NULL;
|
|
|
|
|
if (!PQsendDescribe(conn, 'S', stmt))
|
|
|
|
|
return NULL;
|
|
|
|
|
return PQexecFinish(conn);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* PQdescribePortal
|
|
|
|
|
* Obtain information about a previously created portal
|
|
|
|
|
*
|
|
|
|
|
* This is much like PQdescribePrepared, except that no parameter info is
|
|
|
|
|
* returned. Note that at the moment, libpq doesn't really expose portals
|
|
|
|
|
* to the client; but this can be used with a portal created by a SQL
|
|
|
|
|
* DECLARE CURSOR command.
|
|
|
|
|
*/
|
|
|
|
|
PGresult *
|
|
|
|
|
PQdescribePortal(PGconn *conn, const char *portal)
|
|
|
|
|
{
|
|
|
|
|
if (!PQexecStart(conn))
|
|
|
|
|
return NULL;
|
|
|
|
|
if (!PQsendDescribe(conn, 'P', portal))
|
|
|
|
|
return NULL;
|
|
|
|
|
return PQexecFinish(conn);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* PQsendDescribePrepared
|
|
|
|
|
* Submit a Describe Statement command, but don't wait for it to finish
|
|
|
|
|
*
|
|
|
|
|
* Returns: 1 if successfully submitted
|
|
|
|
|
* 0 if error (conn->errorMessage is set)
|
|
|
|
|
*/
|
|
|
|
|
int
|
|
|
|
|
PQsendDescribePrepared(PGconn *conn, const char *stmt)
|
|
|
|
|
{
|
|
|
|
|
return PQsendDescribe(conn, 'S', stmt);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* PQsendDescribePortal
|
|
|
|
|
* Submit a Describe Portal command, but don't wait for it to finish
|
|
|
|
|
*
|
|
|
|
|
* Returns: 1 if successfully submitted
|
|
|
|
|
* 0 if error (conn->errorMessage is set)
|
|
|
|
|
*/
|
|
|
|
|
int
|
|
|
|
|
PQsendDescribePortal(PGconn *conn, const char *portal)
|
|
|
|
|
{
|
|
|
|
|
return PQsendDescribe(conn, 'P', portal);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* PQsendDescribe
|
|
|
|
|
* Common code to send a Describe command
|
|
|
|
|
*
|
|
|
|
|
* Available options for desc_type are
|
|
|
|
|
* 'S' to describe a prepared statement; or
|
|
|
|
|
* 'P' to describe a portal.
|
|
|
|
|
* Returns 1 on success and 0 on failure.
|
|
|
|
|
*/
|
|
|
|
|
static int
|
|
|
|
|
PQsendDescribe(PGconn *conn, char desc_type, const char *desc_target)
|
|
|
|
|
{
|
2021-03-15 22:13:42 +01:00
|
|
|
PGcmdQueueEntry *entry = NULL;
|
|
|
|
|
|
2006-08-18 21:52:39 +02:00
|
|
|
/* Treat null desc_target as empty string */
|
|
|
|
|
if (!desc_target)
|
|
|
|
|
desc_target = "";
|
|
|
|
|
|
In libpq, always append new error messages to conn->errorMessage.
Previously, we had an undisciplined mish-mash of printfPQExpBuffer and
appendPQExpBuffer calls to report errors within libpq. This commit
establishes a uniform rule that appendPQExpBuffer[Str] should be used.
conn->errorMessage is reset only at the start of an application request,
and then accumulates messages till we're done. We can remove no less
than three different ad-hoc mechanisms that were used to get the effect
of concatenation of error messages within a sequence of operations.
Although this makes things quite a bit cleaner conceptually, the main
reason to do it is to make the world safer for the multiple-target-host
feature that was added awhile back. Previously, there were many cases
in which an error occurring during an individual host connection attempt
would wipe out the record of what had happened during previous attempts.
(The reporting is still inadequate, in that it can be hard to tell which
host got the failure, but that seems like a matter for a separate commit.)
Currently, lo_import and lo_export contain exceptions to the "never
use printfPQExpBuffer" rule. If we changed them, we'd risk reporting
an incidental lo_close failure before the actual read or write
failure, which would be confusing, not least because lo_close happened
after the main failure. We could improve this by inventing an
internal version of lo_close that doesn't reset the errorMessage; but
we'd also need a version of PQfn() that does that, and it didn't quite
seem worth the trouble for now.
Discussion: https://postgr.es/m/BN6PR05MB3492948E4FD76C156E747E8BC9160@BN6PR05MB3492.namprd05.prod.outlook.com
2021-01-11 19:12:09 +01:00
|
|
|
if (!PQsendQueryStart(conn, true))
|
2006-08-18 21:52:39 +02:00
|
|
|
return 0;
|
|
|
|
|
|
2021-03-15 22:13:42 +01:00
|
|
|
entry = pqAllocCmdQueueEntry(conn);
|
|
|
|
|
if (entry == NULL)
|
|
|
|
|
return 0; /* error msg already set */
|
|
|
|
|
|
2006-08-18 21:52:39 +02:00
|
|
|
/* construct the Describe message */
|
2021-03-04 09:45:55 +01:00
|
|
|
if (pqPutMsgStart('D', conn) < 0 ||
|
2006-08-18 21:52:39 +02:00
|
|
|
pqPutc(desc_type, conn) < 0 ||
|
|
|
|
|
pqPuts(desc_target, conn) < 0 ||
|
|
|
|
|
pqPutMsgEnd(conn) < 0)
|
|
|
|
|
goto sendFailed;
|
|
|
|
|
|
|
|
|
|
/* construct the Sync message */
|
2021-03-15 22:13:42 +01:00
|
|
|
if (conn->pipelineStatus == PQ_PIPELINE_OFF)
|
2006-08-18 21:52:39 +02:00
|
|
|
{
|
2021-03-15 22:13:42 +01:00
|
|
|
if (pqPutMsgStart('S', conn) < 0 ||
|
|
|
|
|
pqPutMsgEnd(conn) < 0)
|
|
|
|
|
goto sendFailed;
|
2006-08-18 21:52:39 +02:00
|
|
|
}
|
|
|
|
|
|
2021-03-15 22:13:42 +01:00
|
|
|
/* remember we are doing a Describe */
|
|
|
|
|
entry->queryclass = PGQUERY_DESCRIBE;
|
|
|
|
|
|
2006-08-18 21:52:39 +02:00
|
|
|
/*
|
2021-03-15 22:13:42 +01:00
|
|
|
* Give the data a push (in pipeline mode, only if we're past the size
|
|
|
|
|
* threshold). In nonblock mode, don't complain if we're unable to send
|
|
|
|
|
* it all; PQgetResult() will do any additional flushing needed.
|
2006-08-18 21:52:39 +02:00
|
|
|
*/
|
2021-03-15 22:13:42 +01:00
|
|
|
if (pqPipelineFlush(conn) < 0)
|
2006-08-18 21:52:39 +02:00
|
|
|
goto sendFailed;
|
|
|
|
|
|
|
|
|
|
/* OK, it's launched! */
|
2021-03-15 22:13:42 +01:00
|
|
|
pqAppendCmdQueueEntry(conn, entry);
|
2021-07-09 21:57:59 +02:00
|
|
|
|
2006-08-18 21:52:39 +02:00
|
|
|
return 1;
|
|
|
|
|
|
|
|
|
|
sendFailed:
|
2021-03-15 22:13:42 +01:00
|
|
|
pqRecycleCmdQueueEntry(conn, entry);
|
Restructure libpq's handling of send failures.
Originally, if libpq got a failure (e.g., ECONNRESET) while trying to
send data to the server, it would just report that and wash its hands
of the matter. It was soon found that that wasn't a very pleasant way
of coping with server-initiated disconnections, so we introduced a hack
(pqHandleSendFailure) in the code that sends queries to make it peek
ahead for server error reports before reporting the send failure.
It now emerges that related cases can occur during connection setup;
in particular, as of TLS 1.3 it's unsafe to assume that SSL connection
failures will be reported by SSL_connect rather than during our first
send attempt. We could have fixed that in a hacky way by applying
pqHandleSendFailure after a startup packet send failure, but
(a) pqHandleSendFailure explicitly disclaims suitability for use in any
state except query startup, and (b) the problem still potentially exists
for other send attempts in libpq.
Instead, let's fix this in a more general fashion by eliminating
pqHandleSendFailure altogether, and instead arranging to postpone
all reports of send failures in libpq until after we've made an
attempt to read and process server messages. The send failure won't
be reported at all if we find a server message or detect input EOF.
(Note: this removes one of the reasons why libpq typically overwrites,
rather than appending to, conn->errorMessage: pqHandleSendFailure needed
that behavior so that the send failure report would be replaced if we
got a server message or read failure report. Eventually I'd like to get
rid of that overwrite behavior altogether, but today is not that day.
For the moment, pqSendSome is assuming that its callees will overwrite
not append to conn->errorMessage.)
Possibly this change should get back-patched someday; but it needs
testing first, so let's not consider that till after v12 beta.
Discussion: https://postgr.es/m/CAEepm=2n6Nv+5tFfe8YnkUm1fXgvxR0Mm1FoD+QKG-vLNGLyKg@mail.gmail.com
2019-03-19 21:20:20 +01:00
|
|
|
/* error message should be set up already */
|
2006-08-18 21:52:39 +02:00
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
1998-05-07 01:51:16 +02:00
|
|
|
/*
|
|
|
|
|
* PQnotifies
|
|
|
|
|
* returns a PGnotify* structure of the latest async notification
|
|
|
|
|
* that has not yet been handled
|
|
|
|
|
*
|
|
|
|
|
* returns NULL, if there is currently
|
|
|
|
|
* no unhandled async notification from the backend
|
|
|
|
|
*
|
|
|
|
|
* the CALLER is responsible for FREE'ing the structure returned
|
2018-10-20 04:22:57 +02:00
|
|
|
*
|
|
|
|
|
* Note that this function does not read any new data from the socket;
|
|
|
|
|
* so usually, caller should call PQconsumeInput() first.
|
1998-05-07 01:51:16 +02:00
|
|
|
*/
|
|
|
|
|
PGnotify *
|
|
|
|
|
PQnotifies(PGconn *conn)
|
|
|
|
|
{
|
|
|
|
|
PGnotify *event;
|
|
|
|
|
|
|
|
|
|
if (!conn)
|
|
|
|
|
return NULL;
|
1996-12-13 10:25:08 +01:00
|
|
|
|
1998-05-07 01:51:16 +02:00
|
|
|
/* Parse any available data to see if we can extract NOTIFY messages. */
|
|
|
|
|
parseInput(conn);
|
1996-12-13 10:25:08 +01:00
|
|
|
|
2004-10-17 00:52:55 +02:00
|
|
|
event = conn->notifyHead;
|
|
|
|
|
if (event)
|
|
|
|
|
{
|
|
|
|
|
conn->notifyHead = event->next;
|
|
|
|
|
if (!conn->notifyHead)
|
|
|
|
|
conn->notifyTail = NULL;
|
|
|
|
|
event->next = NULL; /* don't let app see the internal state */
|
|
|
|
|
}
|
1998-05-07 01:51:16 +02:00
|
|
|
return event;
|
|
|
|
|
}
|
1996-12-13 10:25:08 +01:00
|
|
|
|
2003-06-21 23:51:35 +02:00
|
|
|
/*
|
2010-12-11 15:27:37 +01:00
|
|
|
* PQputCopyData - send some data to the backend during COPY IN or COPY BOTH
|
2003-06-21 23:51:35 +02:00
|
|
|
*
|
|
|
|
|
* Returns 1 if successful, 0 if data could not be sent (only possible
|
|
|
|
|
* in nonblock mode), or -1 if an error occurs.
|
|
|
|
|
*/
|
|
|
|
|
int
|
|
|
|
|
PQputCopyData(PGconn *conn, const char *buffer, int nbytes)
|
|
|
|
|
{
|
|
|
|
|
if (!conn)
|
|
|
|
|
return -1;
|
2010-12-11 15:27:37 +01:00
|
|
|
if (conn->asyncStatus != PGASYNC_COPY_IN &&
|
|
|
|
|
conn->asyncStatus != PGASYNC_COPY_BOTH)
|
2003-06-21 23:51:35 +02:00
|
|
|
{
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "no COPY in progress");
|
2003-06-21 23:51:35 +02:00
|
|
|
return -1;
|
|
|
|
|
}
|
2003-10-19 23:36:41 +02:00
|
|
|
|
|
|
|
|
/*
|
2006-01-25 21:44:32 +01:00
|
|
|
* Process any NOTICE or NOTIFY messages that might be pending in the
|
|
|
|
|
* input buffer. Since the server might generate many notices during the
|
|
|
|
|
* COPY, we want to clean those out reasonably promptly to prevent
|
|
|
|
|
* indefinite expansion of the input buffer. (Note: the actual read of
|
|
|
|
|
* input data into the input buffer happens down inside pqSendSome, but
|
|
|
|
|
* it's not authorized to get rid of the data again.)
|
2003-10-19 23:36:41 +02:00
|
|
|
*/
|
|
|
|
|
parseInput(conn);
|
|
|
|
|
|
2003-06-21 23:51:35 +02:00
|
|
|
if (nbytes > 0)
|
|
|
|
|
{
|
|
|
|
|
/*
|
|
|
|
|
* Try to flush any previously sent data in preference to growing the
|
|
|
|
|
* output buffer. If we can't enlarge the buffer enough to hold the
|
|
|
|
|
* data, return 0 in the nonblock case, else hard error. (For
|
2021-03-04 09:45:55 +01:00
|
|
|
* simplicity, always assume 5 bytes of overhead.)
|
2003-06-21 23:51:35 +02:00
|
|
|
*/
|
|
|
|
|
if ((conn->outBufSize - conn->outCount - 5) < nbytes)
|
|
|
|
|
{
|
|
|
|
|
if (pqFlush(conn) < 0)
|
|
|
|
|
return -1;
|
2008-05-30 00:02:44 +02:00
|
|
|
if (pqCheckOutBufferSpace(conn->outCount + 5 + (size_t) nbytes,
|
|
|
|
|
conn))
|
2003-06-21 23:51:35 +02:00
|
|
|
return pqIsnonblocking(conn) ? 0 : -1;
|
|
|
|
|
}
|
|
|
|
|
/* Send the data (too simple to delegate to fe-protocol files) */
|
2021-03-04 09:45:55 +01:00
|
|
|
if (pqPutMsgStart('d', conn) < 0 ||
|
|
|
|
|
pqPutnchar(buffer, nbytes, conn) < 0 ||
|
|
|
|
|
pqPutMsgEnd(conn) < 0)
|
|
|
|
|
return -1;
|
2003-06-21 23:51:35 +02:00
|
|
|
}
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* PQputCopyEnd - send EOF indication to the backend during COPY IN
|
|
|
|
|
*
|
|
|
|
|
* After calling this, use PQgetResult() to check command completion status.
|
|
|
|
|
*
|
|
|
|
|
* Returns 1 if successful, 0 if data could not be sent (only possible
|
|
|
|
|
* in nonblock mode), or -1 if an error occurs.
|
|
|
|
|
*/
|
|
|
|
|
int
|
|
|
|
|
PQputCopyEnd(PGconn *conn, const char *errormsg)
|
|
|
|
|
{
|
|
|
|
|
if (!conn)
|
|
|
|
|
return -1;
|
Allow a streaming replication standby to follow a timeline switch.
Before this patch, streaming replication would refuse to start replicating
if the timeline in the primary doesn't exactly match the standby. The
situation where it doesn't match is when you have a master, and two
standbys, and you promote one of the standbys to become new master.
Promoting bumps up the timeline ID, and after that bump, the other standby
would refuse to continue.
There's significantly more timeline related logic in streaming replication
now. First of all, when a standby connects to primary, it will ask the
primary for any timeline history files that are missing from the standby.
The missing files are sent using a new replication command TIMELINE_HISTORY,
and stored in standby's pg_xlog directory. Using the timeline history files,
the standby can follow the latest timeline present in the primary
(recovery_target_timeline='latest'), just as it can follow new timelines
appearing in an archive directory.
START_REPLICATION now takes a TIMELINE parameter, to specify exactly which
timeline to stream WAL from. This allows the standby to request the primary
to send over WAL that precedes the promotion. The replication protocol is
changed slightly (in a backwards-compatible way although there's little hope
of streaming replication working across major versions anyway), to allow
replication to stop when the end of timeline reached, putting the walsender
back into accepting a replication command.
Many thanks to Amit Kapila for testing and reviewing various versions of
this patch.
2012-12-13 18:00:00 +01:00
|
|
|
if (conn->asyncStatus != PGASYNC_COPY_IN &&
|
|
|
|
|
conn->asyncStatus != PGASYNC_COPY_BOTH)
|
2003-06-21 23:51:35 +02:00
|
|
|
{
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "no COPY in progress");
|
2003-06-21 23:51:35 +02:00
|
|
|
return -1;
|
|
|
|
|
}
|
2003-08-04 02:43:34 +02:00
|
|
|
|
2003-06-21 23:51:35 +02:00
|
|
|
/*
|
|
|
|
|
* Send the COPY END indicator. This is simple enough that we don't
|
|
|
|
|
* bother delegating it to the fe-protocol files.
|
|
|
|
|
*/
|
2021-03-04 09:45:55 +01:00
|
|
|
if (errormsg)
|
2003-06-21 23:51:35 +02:00
|
|
|
{
|
2021-03-04 09:45:55 +01:00
|
|
|
/* Send COPY FAIL */
|
|
|
|
|
if (pqPutMsgStart('f', conn) < 0 ||
|
|
|
|
|
pqPuts(errormsg, conn) < 0 ||
|
|
|
|
|
pqPutMsgEnd(conn) < 0)
|
|
|
|
|
return -1;
|
2003-06-21 23:51:35 +02:00
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
2021-03-04 09:45:55 +01:00
|
|
|
/* Send COPY DONE */
|
|
|
|
|
if (pqPutMsgStart('c', conn) < 0 ||
|
|
|
|
|
pqPutMsgEnd(conn) < 0)
|
|
|
|
|
return -1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* If we sent the COPY command in extended-query mode, we must issue a
|
|
|
|
|
* Sync as well.
|
|
|
|
|
*/
|
2021-03-15 22:13:42 +01:00
|
|
|
if (conn->cmd_queue_head &&
|
|
|
|
|
conn->cmd_queue_head->queryclass != PGQUERY_SIMPLE)
|
2021-03-04 09:45:55 +01:00
|
|
|
{
|
|
|
|
|
if (pqPutMsgStart('S', conn) < 0 ||
|
|
|
|
|
pqPutMsgEnd(conn) < 0)
|
2003-06-21 23:51:35 +02:00
|
|
|
return -1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Return to active duty */
|
Allow a streaming replication standby to follow a timeline switch.
Before this patch, streaming replication would refuse to start replicating
if the timeline in the primary doesn't exactly match the standby. The
situation where it doesn't match is when you have a master, and two
standbys, and you promote one of the standbys to become new master.
Promoting bumps up the timeline ID, and after that bump, the other standby
would refuse to continue.
There's significantly more timeline related logic in streaming replication
now. First of all, when a standby connects to primary, it will ask the
primary for any timeline history files that are missing from the standby.
The missing files are sent using a new replication command TIMELINE_HISTORY,
and stored in standby's pg_xlog directory. Using the timeline history files,
the standby can follow the latest timeline present in the primary
(recovery_target_timeline='latest'), just as it can follow new timelines
appearing in an archive directory.
START_REPLICATION now takes a TIMELINE parameter, to specify exactly which
timeline to stream WAL from. This allows the standby to request the primary
to send over WAL that precedes the promotion. The replication protocol is
changed slightly (in a backwards-compatible way although there's little hope
of streaming replication working across major versions anyway), to allow
replication to stop when the end of timeline reached, putting the walsender
back into accepting a replication command.
Many thanks to Amit Kapila for testing and reviewing various versions of
this patch.
2012-12-13 18:00:00 +01:00
|
|
|
if (conn->asyncStatus == PGASYNC_COPY_BOTH)
|
|
|
|
|
conn->asyncStatus = PGASYNC_COPY_OUT;
|
|
|
|
|
else
|
|
|
|
|
conn->asyncStatus = PGASYNC_BUSY;
|
2003-06-21 23:51:35 +02:00
|
|
|
|
|
|
|
|
/* Try to flush data */
|
|
|
|
|
if (pqFlush(conn) < 0)
|
|
|
|
|
return -1;
|
|
|
|
|
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* PQgetCopyData - read a row of data from the backend during COPY OUT
|
2010-12-11 15:27:37 +01:00
|
|
|
* or COPY BOTH
|
2003-06-21 23:51:35 +02:00
|
|
|
*
|
|
|
|
|
* If successful, sets *buffer to point to a malloc'd row of data, and
|
|
|
|
|
* returns row length (always > 0) as result.
|
|
|
|
|
* Returns 0 if no row available yet (only possible if async is true),
|
|
|
|
|
* -1 if end of copy (consult PQgetResult), or -2 if error (consult
|
|
|
|
|
* PQerrorMessage).
|
|
|
|
|
*/
|
|
|
|
|
int
|
|
|
|
|
PQgetCopyData(PGconn *conn, char **buffer, int async)
|
|
|
|
|
{
|
|
|
|
|
*buffer = NULL; /* for all failure cases */
|
|
|
|
|
if (!conn)
|
|
|
|
|
return -2;
|
2010-12-11 15:27:37 +01:00
|
|
|
if (conn->asyncStatus != PGASYNC_COPY_OUT &&
|
|
|
|
|
conn->asyncStatus != PGASYNC_COPY_BOTH)
|
2003-06-21 23:51:35 +02:00
|
|
|
{
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "no COPY in progress");
|
2003-06-21 23:51:35 +02:00
|
|
|
return -2;
|
|
|
|
|
}
|
2021-03-04 09:45:55 +01:00
|
|
|
return pqGetCopyData3(conn, buffer, async);
|
2003-06-21 23:51:35 +02:00
|
|
|
}
|
|
|
|
|
|
1996-07-18 07:48:57 +02:00
|
|
|
/*
|
1998-05-07 01:51:16 +02:00
|
|
|
* PQgetline - gets a newline-terminated string from the backend.
|
1996-07-27 04:55:23 +02:00
|
|
|
*
|
1998-05-07 01:51:16 +02:00
|
|
|
* Chiefly here so that applications can use "COPY <rel> to stdout"
|
2022-09-20 22:09:30 +02:00
|
|
|
* and read the output string. Returns a null-terminated string in `buffer`.
|
1996-12-13 10:25:08 +01:00
|
|
|
*
|
2003-04-22 02:08:07 +02:00
|
|
|
* XXX this routine is now deprecated, because it can't handle binary data.
|
|
|
|
|
* If called during a COPY BINARY we return EOF.
|
|
|
|
|
*
|
2022-09-20 22:09:30 +02:00
|
|
|
* PQgetline reads up to `length`-1 characters (like fgets(3)) but strips
|
1998-05-07 01:51:16 +02:00
|
|
|
* the terminating \n (like gets(3)).
|
1996-12-13 10:25:08 +01:00
|
|
|
*
|
1998-09-03 04:10:56 +02:00
|
|
|
* CAUTION: the caller is responsible for detecting the end-of-copy signal
|
|
|
|
|
* (a line containing just "\.") when using this routine.
|
|
|
|
|
*
|
1998-05-07 01:51:16 +02:00
|
|
|
* RETURNS:
|
2003-04-22 02:08:07 +02:00
|
|
|
* EOF if error (eg, invalid arguments are given)
|
1998-05-07 01:51:16 +02:00
|
|
|
* 0 if EOL is reached (i.e., \n has been read)
|
|
|
|
|
* (this is required for backward-compatibility -- this
|
|
|
|
|
* routine used to always return EOF or 0, assuming that
|
2022-09-20 22:09:30 +02:00
|
|
|
* the line ended within `length` bytes.)
|
1998-05-07 01:51:16 +02:00
|
|
|
* 1 in other cases (i.e., the buffer was filled before \n is reached)
|
1996-07-18 07:48:57 +02:00
|
|
|
*/
|
1998-05-07 01:51:16 +02:00
|
|
|
int
|
2022-09-20 22:09:30 +02:00
|
|
|
PQgetline(PGconn *conn, char *buffer, int length)
|
1996-07-18 07:48:57 +02:00
|
|
|
{
|
2022-09-20 22:09:30 +02:00
|
|
|
if (!buffer || length <= 0)
|
2003-06-08 19:43:00 +02:00
|
|
|
return EOF;
|
2022-09-20 22:09:30 +02:00
|
|
|
*buffer = '\0';
|
|
|
|
|
/* length must be at least 3 to hold the \. terminator! */
|
|
|
|
|
if (length < 3)
|
1998-05-07 01:51:16 +02:00
|
|
|
return EOF;
|
1997-09-07 07:04:48 +02:00
|
|
|
|
2003-06-08 19:43:00 +02:00
|
|
|
if (!conn)
|
1998-05-07 01:51:16 +02:00
|
|
|
return EOF;
|
1997-09-07 07:04:48 +02:00
|
|
|
|
2022-09-20 22:09:30 +02:00
|
|
|
return pqGetline3(conn, buffer, length);
|
1998-05-07 01:51:16 +02:00
|
|
|
}
|
1997-09-07 07:04:48 +02:00
|
|
|
|
1998-09-03 04:10:56 +02:00
|
|
|
/*
|
2003-04-22 02:08:07 +02:00
|
|
|
* PQgetlineAsync - gets a COPY data row without blocking.
|
1998-09-03 04:10:56 +02:00
|
|
|
*
|
|
|
|
|
* This routine is for applications that want to do "COPY <rel> to stdout"
|
|
|
|
|
* asynchronously, that is without blocking. Having issued the COPY command
|
|
|
|
|
* and gotten a PGRES_COPY_OUT response, the app should call PQconsumeInput
|
|
|
|
|
* and this routine until the end-of-data signal is detected. Unlike
|
|
|
|
|
* PQgetline, this routine takes responsibility for detecting end-of-data.
|
|
|
|
|
*
|
2003-04-22 02:08:07 +02:00
|
|
|
* On each call, PQgetlineAsync will return data if a complete data row
|
|
|
|
|
* is available in libpq's input buffer. Otherwise, no data is returned
|
|
|
|
|
* until the rest of the row arrives.
|
1998-09-03 04:10:56 +02:00
|
|
|
*
|
|
|
|
|
* If -1 is returned, the end-of-data signal has been recognized (and removed
|
|
|
|
|
* from libpq's input buffer). The caller *must* next call PQendcopy and
|
|
|
|
|
* then return to normal processing.
|
|
|
|
|
*
|
|
|
|
|
* RETURNS:
|
|
|
|
|
* -1 if the end-of-copy-data marker has been recognized
|
|
|
|
|
* 0 if no data is available
|
|
|
|
|
* >0 the number of bytes returned.
|
2003-04-22 02:08:07 +02:00
|
|
|
*
|
|
|
|
|
* The data returned will not extend beyond a data-row boundary. If possible
|
|
|
|
|
* a whole row will be returned at one time. But if the buffer offered by
|
|
|
|
|
* the caller is too small to hold a row sent by the backend, then a partial
|
|
|
|
|
* data row will be returned. In text mode this can be detected by testing
|
|
|
|
|
* whether the last returned byte is '\n' or not.
|
|
|
|
|
*
|
|
|
|
|
* The returned data is *not* null-terminated.
|
1998-09-03 04:10:56 +02:00
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
int
|
|
|
|
|
PQgetlineAsync(PGconn *conn, char *buffer, int bufsize)
|
|
|
|
|
{
|
2003-06-08 19:43:00 +02:00
|
|
|
if (!conn)
|
2003-04-22 02:08:07 +02:00
|
|
|
return -1;
|
1998-09-03 04:10:56 +02:00
|
|
|
|
2021-03-04 09:45:55 +01:00
|
|
|
return pqGetlineAsync3(conn, buffer, bufsize);
|
1998-09-03 04:10:56 +02:00
|
|
|
}
|
|
|
|
|
|
1998-05-07 01:51:16 +02:00
|
|
|
/*
|
2003-06-21 23:51:35 +02:00
|
|
|
* PQputline -- sends a string to the backend during COPY IN.
|
1998-09-03 04:10:56 +02:00
|
|
|
* Returns 0 if OK, EOF if not.
|
1998-05-07 01:51:16 +02:00
|
|
|
*
|
2003-06-21 23:51:35 +02:00
|
|
|
* This is deprecated primarily because the return convention doesn't allow
|
|
|
|
|
* caller to tell the difference between a hard error and a nonblock-mode
|
|
|
|
|
* send failure.
|
1998-05-07 01:51:16 +02:00
|
|
|
*/
|
1998-09-03 04:10:56 +02:00
|
|
|
int
|
2022-09-20 22:09:30 +02:00
|
|
|
PQputline(PGconn *conn, const char *string)
|
1998-05-07 01:51:16 +02:00
|
|
|
{
|
2022-09-20 22:09:30 +02:00
|
|
|
return PQputnbytes(conn, string, strlen(string));
|
1998-05-07 01:51:16 +02:00
|
|
|
}
|
|
|
|
|
|
1998-08-17 05:50:43 +02:00
|
|
|
/*
|
|
|
|
|
* PQputnbytes -- like PQputline, but buffer need not be null-terminated.
|
1998-09-03 04:10:56 +02:00
|
|
|
* Returns 0 if OK, EOF if not.
|
1998-08-17 05:50:43 +02:00
|
|
|
*/
|
1998-09-03 04:10:56 +02:00
|
|
|
int
|
1998-08-17 05:50:43 +02:00
|
|
|
PQputnbytes(PGconn *conn, const char *buffer, int nbytes)
|
|
|
|
|
{
|
2003-06-21 23:51:35 +02:00
|
|
|
if (PQputCopyData(conn, buffer, nbytes) > 0)
|
|
|
|
|
return 0;
|
|
|
|
|
else
|
1998-09-03 04:10:56 +02:00
|
|
|
return EOF;
|
1998-08-17 05:50:43 +02:00
|
|
|
}
|
|
|
|
|
|
1998-05-07 01:51:16 +02:00
|
|
|
/*
|
|
|
|
|
* PQendcopy
|
|
|
|
|
* After completing the data transfer portion of a copy in/out,
|
|
|
|
|
* the application must call this routine to finish the command protocol.
|
|
|
|
|
*
|
2021-03-04 09:45:55 +01:00
|
|
|
* This is deprecated; it's cleaner to use PQgetResult to get the transfer
|
|
|
|
|
* status.
|
2003-06-21 23:51:35 +02:00
|
|
|
*
|
1998-05-07 01:51:16 +02:00
|
|
|
* RETURNS:
|
|
|
|
|
* 0 on success
|
|
|
|
|
* 1 on failure
|
|
|
|
|
*/
|
|
|
|
|
int
|
|
|
|
|
PQendcopy(PGconn *conn)
|
|
|
|
|
{
|
|
|
|
|
if (!conn)
|
|
|
|
|
return 0;
|
|
|
|
|
|
2021-03-04 09:45:55 +01:00
|
|
|
return pqEndcopy3(conn);
|
1996-07-18 07:48:57 +02:00
|
|
|
}
|
|
|
|
|
|
1996-07-09 08:22:35 +02:00
|
|
|
|
|
|
|
|
/* ----------------
|
1996-12-13 10:25:08 +01:00
|
|
|
* PQfn - Send a function call to the POSTGRES backend.
|
1996-07-09 08:22:35 +02:00
|
|
|
*
|
|
|
|
|
* conn : backend connection
|
2015-03-08 18:35:28 +01:00
|
|
|
* fnid : OID of function to be called
|
|
|
|
|
* result_buf : pointer to result buffer
|
|
|
|
|
* result_len : actual length of result is returned here
|
|
|
|
|
* result_is_int : If the result is an integer, this must be 1,
|
1996-07-09 08:22:35 +02:00
|
|
|
* otherwise this should be 0
|
2015-03-08 18:35:28 +01:00
|
|
|
* args : pointer to an array of function arguments
|
1998-05-07 01:51:16 +02:00
|
|
|
* (each has length, if integer, and value/pointer)
|
1996-12-13 10:25:08 +01:00
|
|
|
* nargs : # of arguments in args array.
|
1996-07-09 08:22:35 +02:00
|
|
|
*
|
|
|
|
|
* RETURNS
|
1998-05-07 01:51:16 +02:00
|
|
|
* PGresult with status = PGRES_COMMAND_OK if successful.
|
2015-03-08 18:35:28 +01:00
|
|
|
* *result_len is > 0 if there is a return value, 0 if not.
|
1998-05-07 01:51:16 +02:00
|
|
|
* PGresult with status = PGRES_FATAL_ERROR if backend returns an error.
|
|
|
|
|
* NULL on communications failure. conn->errorMessage will be set.
|
1996-07-09 08:22:35 +02:00
|
|
|
* ----------------
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
PGresult *
|
|
|
|
|
PQfn(PGconn *conn,
|
|
|
|
|
int fnid,
|
|
|
|
|
int *result_buf,
|
2015-03-08 18:35:28 +01:00
|
|
|
int *result_len,
|
1996-07-09 08:22:35 +02:00
|
|
|
int result_is_int,
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
const PQArgBlock *args,
|
1996-07-09 08:22:35 +02:00
|
|
|
int nargs)
|
|
|
|
|
{
|
2015-03-08 18:35:28 +01:00
|
|
|
*result_len = 0;
|
1998-05-07 01:51:16 +02:00
|
|
|
|
1996-07-12 06:53:59 +02:00
|
|
|
if (!conn)
|
|
|
|
|
return NULL;
|
1997-09-07 07:04:48 +02:00
|
|
|
|
In libpq, always append new error messages to conn->errorMessage.
Previously, we had an undisciplined mish-mash of printfPQExpBuffer and
appendPQExpBuffer calls to report errors within libpq. This commit
establishes a uniform rule that appendPQExpBuffer[Str] should be used.
conn->errorMessage is reset only at the start of an application request,
and then accumulates messages till we're done. We can remove no less
than three different ad-hoc mechanisms that were used to get the effect
of concatenation of error messages within a sequence of operations.
Although this makes things quite a bit cleaner conceptually, the main
reason to do it is to make the world safer for the multiple-target-host
feature that was added awhile back. Previously, there were many cases
in which an error occurring during an individual host connection attempt
would wipe out the record of what had happened during previous attempts.
(The reporting is still inadequate, in that it can be hard to tell which
host got the failure, but that seems like a matter for a separate commit.)
Currently, lo_import and lo_export contain exceptions to the "never
use printfPQExpBuffer" rule. If we changed them, we'd risk reporting
an incidental lo_close failure before the actual read or write
failure, which would be confusing, not least because lo_close happened
after the main failure. We could improve this by inventing an
internal version of lo_close that doesn't reset the errorMessage; but
we'd also need a version of PQfn() that does that, and it didn't quite
seem worth the trouble for now.
Discussion: https://postgr.es/m/BN6PR05MB3492948E4FD76C156E747E8BC9160@BN6PR05MB3492.namprd05.prod.outlook.com
2021-01-11 19:12:09 +01:00
|
|
|
/*
|
Rearrange libpq's error reporting to avoid duplicated error text.
Since commit ffa2e4670, libpq accumulates text in conn->errorMessage
across a whole query cycle. In some situations, we may report more
than one error event within a cycle: the easiest case to reach is
where we report a FATAL error message from the server, and then a
bit later we detect loss of connection. Since, historically, each
error PGresult bears the entire content of conn->errorMessage,
this results in duplication of the FATAL message in any output that
concatenates the contents of the PGresults.
Accumulation in errorMessage still seems like a good idea, especially
in view of the number of places that did ad-hoc error concatenation
before ffa2e4670. So to fix this, let's track how much of
conn->errorMessage has been read out into error PGresults, and only
include new text in later PGresults. The tricky part of that is
to be sure that we never discard an error PGresult once made (else
we'd risk dropping some text, a problem much worse than duplication).
While libpq formerly did that in some code paths, a little bit of
rearrangement lets us postpone making an error PGresult at all until
we are about to return it.
A side benefit of that postponement is that it now becomes practical
to return a dummy static PGresult in cases where we hit out-of-memory
while trying to manufacture an error PGresult. This eliminates the
admittedly-very-rare case where we'd return NULL from PQgetResult,
indicating successful query completion, even though what actually
happened was an OOM failure.
Discussion: https://postgr.es/m/ab4288f8-be5c-57fb-2400-e3e857f53e46@enterprisedb.com
2022-02-18 21:35:15 +01:00
|
|
|
* Since this is the beginning of a query cycle, reset the error state.
|
2022-02-28 17:31:30 +01:00
|
|
|
* However, in pipeline mode with something already queued, the error
|
|
|
|
|
* buffer belongs to that command and we shouldn't clear it.
|
In libpq, always append new error messages to conn->errorMessage.
Previously, we had an undisciplined mish-mash of printfPQExpBuffer and
appendPQExpBuffer calls to report errors within libpq. This commit
establishes a uniform rule that appendPQExpBuffer[Str] should be used.
conn->errorMessage is reset only at the start of an application request,
and then accumulates messages till we're done. We can remove no less
than three different ad-hoc mechanisms that were used to get the effect
of concatenation of error messages within a sequence of operations.
Although this makes things quite a bit cleaner conceptually, the main
reason to do it is to make the world safer for the multiple-target-host
feature that was added awhile back. Previously, there were many cases
in which an error occurring during an individual host connection attempt
would wipe out the record of what had happened during previous attempts.
(The reporting is still inadequate, in that it can be hard to tell which
host got the failure, but that seems like a matter for a separate commit.)
Currently, lo_import and lo_export contain exceptions to the "never
use printfPQExpBuffer" rule. If we changed them, we'd risk reporting
an incidental lo_close failure before the actual read or write
failure, which would be confusing, not least because lo_close happened
after the main failure. We could improve this by inventing an
internal version of lo_close that doesn't reset the errorMessage; but
we'd also need a version of PQfn() that does that, and it didn't quite
seem worth the trouble for now.
Discussion: https://postgr.es/m/BN6PR05MB3492948E4FD76C156E747E8BC9160@BN6PR05MB3492.namprd05.prod.outlook.com
2021-01-11 19:12:09 +01:00
|
|
|
*/
|
2022-02-28 17:31:30 +01:00
|
|
|
if (conn->cmd_queue_head == NULL)
|
|
|
|
|
pqClearConnErrorState(conn);
|
1999-08-31 03:37:37 +02:00
|
|
|
|
2021-03-15 22:13:42 +01:00
|
|
|
if (conn->pipelineStatus != PQ_PIPELINE_OFF)
|
|
|
|
|
{
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "%s not allowed in pipeline mode", "PQfn");
|
2021-03-15 22:13:42 +01:00
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
2014-04-17 01:46:51 +02:00
|
|
|
if (conn->sock == PGINVALID_SOCKET || conn->asyncStatus != PGASYNC_IDLE ||
|
2022-04-21 23:12:49 +02:00
|
|
|
pgHavePendingResult(conn))
|
1998-05-07 01:51:16 +02:00
|
|
|
{
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "connection in wrong state");
|
1998-05-07 01:51:16 +02:00
|
|
|
return NULL;
|
|
|
|
|
}
|
1997-09-07 07:04:48 +02:00
|
|
|
|
2021-03-04 09:45:55 +01:00
|
|
|
return pqFunctionCall3(conn, fnid,
|
|
|
|
|
result_buf, result_len,
|
|
|
|
|
result_is_int,
|
|
|
|
|
args, nargs);
|
1996-07-09 08:22:35 +02:00
|
|
|
}
|
|
|
|
|
|
2021-03-15 22:13:42 +01:00
|
|
|
/* ====== Pipeline mode support ======== */
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* PQenterPipelineMode
|
|
|
|
|
* Put an idle connection in pipeline mode.
|
|
|
|
|
*
|
|
|
|
|
* Returns 1 on success. On failure, errorMessage is set and 0 is returned.
|
|
|
|
|
*
|
|
|
|
|
* Commands submitted after this can be pipelined on the connection;
|
|
|
|
|
* there's no requirement to wait for one to finish before the next is
|
|
|
|
|
* dispatched.
|
|
|
|
|
*
|
|
|
|
|
* Queuing of a new query or syncing during COPY is not allowed.
|
|
|
|
|
*
|
|
|
|
|
* A set of commands is terminated by a PQpipelineSync. Multiple sync
|
|
|
|
|
* points can be established while in pipeline mode. Pipeline mode can
|
|
|
|
|
* be exited by calling PQexitPipelineMode() once all results are processed.
|
|
|
|
|
*
|
|
|
|
|
* This doesn't actually send anything on the wire, it just puts libpq
|
|
|
|
|
* into a state where it can pipeline work.
|
|
|
|
|
*/
|
|
|
|
|
int
|
|
|
|
|
PQenterPipelineMode(PGconn *conn)
|
|
|
|
|
{
|
|
|
|
|
if (!conn)
|
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
|
|
/* succeed with no action if already in pipeline mode */
|
|
|
|
|
if (conn->pipelineStatus != PQ_PIPELINE_OFF)
|
|
|
|
|
return 1;
|
|
|
|
|
|
|
|
|
|
if (conn->asyncStatus != PGASYNC_IDLE)
|
|
|
|
|
{
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "cannot enter pipeline mode, connection not idle");
|
2021-03-15 22:13:42 +01:00
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
conn->pipelineStatus = PQ_PIPELINE_ON;
|
|
|
|
|
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* PQexitPipelineMode
|
|
|
|
|
* End pipeline mode and return to normal command mode.
|
|
|
|
|
*
|
|
|
|
|
* Returns 1 in success (pipeline mode successfully ended, or not in pipeline
|
|
|
|
|
* mode).
|
|
|
|
|
*
|
|
|
|
|
* Returns 0 if in pipeline mode and cannot be ended yet. Error message will
|
|
|
|
|
* be set.
|
|
|
|
|
*/
|
|
|
|
|
int
|
|
|
|
|
PQexitPipelineMode(PGconn *conn)
|
|
|
|
|
{
|
|
|
|
|
if (!conn)
|
|
|
|
|
return 0;
|
|
|
|
|
|
libpq: Improve idle state handling in pipeline mode
We were going into IDLE state too soon when executing queries via
PQsendQuery in pipeline mode, causing several scenarios to misbehave in
different ways -- most notably, as reported by Daniele Varrazzo, that a
warning message is produced by libpq:
message type 0x33 arrived from server while idle
But it is also possible, if queries are sent and results consumed not in
lockstep, for the expected mediating NULL result values from PQgetResult
to be lost (a problem which has not been reported, but which is more
serious).
Fix this by introducing two new concepts: one is a command queue element
PGQUERY_CLOSE to tell libpq to wait for the CloseComplete server
response to the Close message that is sent by PQsendQuery. Because the
application is not expecting any PGresult from this, the mechanism to
consume it is a bit hackish.
The other concept, authored by Horiguchi-san, is a PGASYNC_PIPELINE_IDLE
state for libpq's state machine to differentiate "really idle" from
merely "the idle state that occurs in between reading results from the
server for elements in the pipeline". This makes libpq not go fully
IDLE when the libpq command queue contains entries; in normal cases, we
only go IDLE once at the end of the pipeline, when the server response
to the final SYNC message is received. (However, there are corner cases
it doesn't fix, such as terminating the query sequence by
PQsendFlushRequest instead of PQpipelineSync; this sort of scenario is
what requires PGQUERY_CLOSE bit above.)
This last bit helps make the libpq state machine clearer; in particular
we can get rid of an ugly hack in pqParseInput3 to avoid considering
IDLE as such when the command queue contains entries.
A new test mode is added to libpq_pipeline.c to tickle some related
problematic cases.
Reported-by: Daniele Varrazzo <daniele.varrazzo@gmail.com>
Co-authored-by: Kyotaro Horiguchi <horikyota.ntt@gmail.com>
Discussion: https://postgr.es/m/CA+mi_8bvD0_CW3sumgwPvWdNzXY32itoG_16tDYRu_1S2gV2iw@mail.gmail.com
2022-07-05 14:21:20 +02:00
|
|
|
if (conn->pipelineStatus == PQ_PIPELINE_OFF &&
|
|
|
|
|
(conn->asyncStatus == PGASYNC_IDLE ||
|
|
|
|
|
conn->asyncStatus == PGASYNC_PIPELINE_IDLE) &&
|
|
|
|
|
conn->cmd_queue_head == NULL)
|
2021-03-15 22:13:42 +01:00
|
|
|
return 1;
|
|
|
|
|
|
|
|
|
|
switch (conn->asyncStatus)
|
|
|
|
|
{
|
|
|
|
|
case PGASYNC_READY:
|
|
|
|
|
case PGASYNC_READY_MORE:
|
|
|
|
|
/* there are some uncollected results */
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "cannot exit pipeline mode with uncollected results");
|
2021-03-15 22:13:42 +01:00
|
|
|
return 0;
|
|
|
|
|
|
|
|
|
|
case PGASYNC_BUSY:
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "cannot exit pipeline mode while busy");
|
2021-03-15 22:13:42 +01:00
|
|
|
return 0;
|
|
|
|
|
|
libpq: Improve idle state handling in pipeline mode
We were going into IDLE state too soon when executing queries via
PQsendQuery in pipeline mode, causing several scenarios to misbehave in
different ways -- most notably, as reported by Daniele Varrazzo, that a
warning message is produced by libpq:
message type 0x33 arrived from server while idle
But it is also possible, if queries are sent and results consumed not in
lockstep, for the expected mediating NULL result values from PQgetResult
to be lost (a problem which has not been reported, but which is more
serious).
Fix this by introducing two new concepts: one is a command queue element
PGQUERY_CLOSE to tell libpq to wait for the CloseComplete server
response to the Close message that is sent by PQsendQuery. Because the
application is not expecting any PGresult from this, the mechanism to
consume it is a bit hackish.
The other concept, authored by Horiguchi-san, is a PGASYNC_PIPELINE_IDLE
state for libpq's state machine to differentiate "really idle" from
merely "the idle state that occurs in between reading results from the
server for elements in the pipeline". This makes libpq not go fully
IDLE when the libpq command queue contains entries; in normal cases, we
only go IDLE once at the end of the pipeline, when the server response
to the final SYNC message is received. (However, there are corner cases
it doesn't fix, such as terminating the query sequence by
PQsendFlushRequest instead of PQpipelineSync; this sort of scenario is
what requires PGQUERY_CLOSE bit above.)
This last bit helps make the libpq state machine clearer; in particular
we can get rid of an ugly hack in pqParseInput3 to avoid considering
IDLE as such when the command queue contains entries.
A new test mode is added to libpq_pipeline.c to tickle some related
problematic cases.
Reported-by: Daniele Varrazzo <daniele.varrazzo@gmail.com>
Co-authored-by: Kyotaro Horiguchi <horikyota.ntt@gmail.com>
Discussion: https://postgr.es/m/CA+mi_8bvD0_CW3sumgwPvWdNzXY32itoG_16tDYRu_1S2gV2iw@mail.gmail.com
2022-07-05 14:21:20 +02:00
|
|
|
case PGASYNC_IDLE:
|
|
|
|
|
case PGASYNC_PIPELINE_IDLE:
|
2021-03-15 22:13:42 +01:00
|
|
|
/* OK */
|
|
|
|
|
break;
|
libpq: Improve idle state handling in pipeline mode
We were going into IDLE state too soon when executing queries via
PQsendQuery in pipeline mode, causing several scenarios to misbehave in
different ways -- most notably, as reported by Daniele Varrazzo, that a
warning message is produced by libpq:
message type 0x33 arrived from server while idle
But it is also possible, if queries are sent and results consumed not in
lockstep, for the expected mediating NULL result values from PQgetResult
to be lost (a problem which has not been reported, but which is more
serious).
Fix this by introducing two new concepts: one is a command queue element
PGQUERY_CLOSE to tell libpq to wait for the CloseComplete server
response to the Close message that is sent by PQsendQuery. Because the
application is not expecting any PGresult from this, the mechanism to
consume it is a bit hackish.
The other concept, authored by Horiguchi-san, is a PGASYNC_PIPELINE_IDLE
state for libpq's state machine to differentiate "really idle" from
merely "the idle state that occurs in between reading results from the
server for elements in the pipeline". This makes libpq not go fully
IDLE when the libpq command queue contains entries; in normal cases, we
only go IDLE once at the end of the pipeline, when the server response
to the final SYNC message is received. (However, there are corner cases
it doesn't fix, such as terminating the query sequence by
PQsendFlushRequest instead of PQpipelineSync; this sort of scenario is
what requires PGQUERY_CLOSE bit above.)
This last bit helps make the libpq state machine clearer; in particular
we can get rid of an ugly hack in pqParseInput3 to avoid considering
IDLE as such when the command queue contains entries.
A new test mode is added to libpq_pipeline.c to tickle some related
problematic cases.
Reported-by: Daniele Varrazzo <daniele.varrazzo@gmail.com>
Co-authored-by: Kyotaro Horiguchi <horikyota.ntt@gmail.com>
Discussion: https://postgr.es/m/CA+mi_8bvD0_CW3sumgwPvWdNzXY32itoG_16tDYRu_1S2gV2iw@mail.gmail.com
2022-07-05 14:21:20 +02:00
|
|
|
|
|
|
|
|
case PGASYNC_COPY_IN:
|
|
|
|
|
case PGASYNC_COPY_OUT:
|
|
|
|
|
case PGASYNC_COPY_BOTH:
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "cannot exit pipeline mode while in COPY");
|
2021-03-15 22:13:42 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* still work to process */
|
|
|
|
|
if (conn->cmd_queue_head != NULL)
|
|
|
|
|
{
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "cannot exit pipeline mode with uncollected results");
|
2021-03-15 22:13:42 +01:00
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
conn->pipelineStatus = PQ_PIPELINE_OFF;
|
|
|
|
|
conn->asyncStatus = PGASYNC_IDLE;
|
|
|
|
|
|
|
|
|
|
/* Flush any pending data in out buffer */
|
|
|
|
|
if (pqFlush(conn) < 0)
|
|
|
|
|
return 0; /* error message is setup already */
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* pqCommandQueueAdvance
|
|
|
|
|
* Remove one query from the command queue, when we receive
|
|
|
|
|
* all results from the server that pertain to it.
|
|
|
|
|
*/
|
|
|
|
|
void
|
|
|
|
|
pqCommandQueueAdvance(PGconn *conn)
|
|
|
|
|
{
|
|
|
|
|
PGcmdQueueEntry *prevquery;
|
|
|
|
|
|
|
|
|
|
if (conn->cmd_queue_head == NULL)
|
|
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
/* delink from queue */
|
|
|
|
|
prevquery = conn->cmd_queue_head;
|
|
|
|
|
conn->cmd_queue_head = conn->cmd_queue_head->next;
|
|
|
|
|
|
libpq: Improve idle state handling in pipeline mode
We were going into IDLE state too soon when executing queries via
PQsendQuery in pipeline mode, causing several scenarios to misbehave in
different ways -- most notably, as reported by Daniele Varrazzo, that a
warning message is produced by libpq:
message type 0x33 arrived from server while idle
But it is also possible, if queries are sent and results consumed not in
lockstep, for the expected mediating NULL result values from PQgetResult
to be lost (a problem which has not been reported, but which is more
serious).
Fix this by introducing two new concepts: one is a command queue element
PGQUERY_CLOSE to tell libpq to wait for the CloseComplete server
response to the Close message that is sent by PQsendQuery. Because the
application is not expecting any PGresult from this, the mechanism to
consume it is a bit hackish.
The other concept, authored by Horiguchi-san, is a PGASYNC_PIPELINE_IDLE
state for libpq's state machine to differentiate "really idle" from
merely "the idle state that occurs in between reading results from the
server for elements in the pipeline". This makes libpq not go fully
IDLE when the libpq command queue contains entries; in normal cases, we
only go IDLE once at the end of the pipeline, when the server response
to the final SYNC message is received. (However, there are corner cases
it doesn't fix, such as terminating the query sequence by
PQsendFlushRequest instead of PQpipelineSync; this sort of scenario is
what requires PGQUERY_CLOSE bit above.)
This last bit helps make the libpq state machine clearer; in particular
we can get rid of an ugly hack in pqParseInput3 to avoid considering
IDLE as such when the command queue contains entries.
A new test mode is added to libpq_pipeline.c to tickle some related
problematic cases.
Reported-by: Daniele Varrazzo <daniele.varrazzo@gmail.com>
Co-authored-by: Kyotaro Horiguchi <horikyota.ntt@gmail.com>
Discussion: https://postgr.es/m/CA+mi_8bvD0_CW3sumgwPvWdNzXY32itoG_16tDYRu_1S2gV2iw@mail.gmail.com
2022-07-05 14:21:20 +02:00
|
|
|
/* If the queue is now empty, reset the tail too */
|
|
|
|
|
if (conn->cmd_queue_head == NULL)
|
|
|
|
|
conn->cmd_queue_tail = NULL;
|
|
|
|
|
|
2021-03-15 22:13:42 +01:00
|
|
|
/* and make it recyclable */
|
|
|
|
|
prevquery->next = NULL;
|
|
|
|
|
pqRecycleCmdQueueEntry(conn, prevquery);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* pqPipelineProcessQueue: subroutine for PQgetResult
|
|
|
|
|
* In pipeline mode, start processing the results of the next query in the queue.
|
|
|
|
|
*/
|
2021-07-09 21:57:59 +02:00
|
|
|
static void
|
2021-03-15 22:13:42 +01:00
|
|
|
pqPipelineProcessQueue(PGconn *conn)
|
|
|
|
|
{
|
|
|
|
|
switch (conn->asyncStatus)
|
|
|
|
|
{
|
|
|
|
|
case PGASYNC_COPY_IN:
|
|
|
|
|
case PGASYNC_COPY_OUT:
|
|
|
|
|
case PGASYNC_COPY_BOTH:
|
|
|
|
|
case PGASYNC_READY:
|
|
|
|
|
case PGASYNC_READY_MORE:
|
|
|
|
|
case PGASYNC_BUSY:
|
|
|
|
|
/* client still has to process current query or results */
|
|
|
|
|
return;
|
libpq: Improve idle state handling in pipeline mode
We were going into IDLE state too soon when executing queries via
PQsendQuery in pipeline mode, causing several scenarios to misbehave in
different ways -- most notably, as reported by Daniele Varrazzo, that a
warning message is produced by libpq:
message type 0x33 arrived from server while idle
But it is also possible, if queries are sent and results consumed not in
lockstep, for the expected mediating NULL result values from PQgetResult
to be lost (a problem which has not been reported, but which is more
serious).
Fix this by introducing two new concepts: one is a command queue element
PGQUERY_CLOSE to tell libpq to wait for the CloseComplete server
response to the Close message that is sent by PQsendQuery. Because the
application is not expecting any PGresult from this, the mechanism to
consume it is a bit hackish.
The other concept, authored by Horiguchi-san, is a PGASYNC_PIPELINE_IDLE
state for libpq's state machine to differentiate "really idle" from
merely "the idle state that occurs in between reading results from the
server for elements in the pipeline". This makes libpq not go fully
IDLE when the libpq command queue contains entries; in normal cases, we
only go IDLE once at the end of the pipeline, when the server response
to the final SYNC message is received. (However, there are corner cases
it doesn't fix, such as terminating the query sequence by
PQsendFlushRequest instead of PQpipelineSync; this sort of scenario is
what requires PGQUERY_CLOSE bit above.)
This last bit helps make the libpq state machine clearer; in particular
we can get rid of an ugly hack in pqParseInput3 to avoid considering
IDLE as such when the command queue contains entries.
A new test mode is added to libpq_pipeline.c to tickle some related
problematic cases.
Reported-by: Daniele Varrazzo <daniele.varrazzo@gmail.com>
Co-authored-by: Kyotaro Horiguchi <horikyota.ntt@gmail.com>
Discussion: https://postgr.es/m/CA+mi_8bvD0_CW3sumgwPvWdNzXY32itoG_16tDYRu_1S2gV2iw@mail.gmail.com
2022-07-05 14:21:20 +02:00
|
|
|
|
2021-03-15 22:13:42 +01:00
|
|
|
case PGASYNC_IDLE:
|
2023-05-19 23:24:48 +02:00
|
|
|
|
libpq: Improve idle state handling in pipeline mode
We were going into IDLE state too soon when executing queries via
PQsendQuery in pipeline mode, causing several scenarios to misbehave in
different ways -- most notably, as reported by Daniele Varrazzo, that a
warning message is produced by libpq:
message type 0x33 arrived from server while idle
But it is also possible, if queries are sent and results consumed not in
lockstep, for the expected mediating NULL result values from PQgetResult
to be lost (a problem which has not been reported, but which is more
serious).
Fix this by introducing two new concepts: one is a command queue element
PGQUERY_CLOSE to tell libpq to wait for the CloseComplete server
response to the Close message that is sent by PQsendQuery. Because the
application is not expecting any PGresult from this, the mechanism to
consume it is a bit hackish.
The other concept, authored by Horiguchi-san, is a PGASYNC_PIPELINE_IDLE
state for libpq's state machine to differentiate "really idle" from
merely "the idle state that occurs in between reading results from the
server for elements in the pipeline". This makes libpq not go fully
IDLE when the libpq command queue contains entries; in normal cases, we
only go IDLE once at the end of the pipeline, when the server response
to the final SYNC message is received. (However, there are corner cases
it doesn't fix, such as terminating the query sequence by
PQsendFlushRequest instead of PQpipelineSync; this sort of scenario is
what requires PGQUERY_CLOSE bit above.)
This last bit helps make the libpq state machine clearer; in particular
we can get rid of an ugly hack in pqParseInput3 to avoid considering
IDLE as such when the command queue contains entries.
A new test mode is added to libpq_pipeline.c to tickle some related
problematic cases.
Reported-by: Daniele Varrazzo <daniele.varrazzo@gmail.com>
Co-authored-by: Kyotaro Horiguchi <horikyota.ntt@gmail.com>
Discussion: https://postgr.es/m/CA+mi_8bvD0_CW3sumgwPvWdNzXY32itoG_16tDYRu_1S2gV2iw@mail.gmail.com
2022-07-05 14:21:20 +02:00
|
|
|
/*
|
|
|
|
|
* If we're in IDLE mode and there's some command in the queue,
|
|
|
|
|
* get us into PIPELINE_IDLE mode and process normally. Otherwise
|
|
|
|
|
* there's nothing for us to do.
|
|
|
|
|
*/
|
|
|
|
|
if (conn->cmd_queue_head != NULL)
|
|
|
|
|
{
|
|
|
|
|
conn->asyncStatus = PGASYNC_PIPELINE_IDLE;
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
case PGASYNC_PIPELINE_IDLE:
|
|
|
|
|
Assert(conn->pipelineStatus != PQ_PIPELINE_OFF);
|
2021-03-15 22:13:42 +01:00
|
|
|
/* next query please */
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
2022-10-14 19:06:26 +02:00
|
|
|
/*
|
|
|
|
|
* Reset single-row processing mode. (Client has to set it up for each
|
|
|
|
|
* query, if desired.)
|
|
|
|
|
*/
|
|
|
|
|
conn->singleRowMode = false;
|
|
|
|
|
|
libpq: Improve idle state handling in pipeline mode
We were going into IDLE state too soon when executing queries via
PQsendQuery in pipeline mode, causing several scenarios to misbehave in
different ways -- most notably, as reported by Daniele Varrazzo, that a
warning message is produced by libpq:
message type 0x33 arrived from server while idle
But it is also possible, if queries are sent and results consumed not in
lockstep, for the expected mediating NULL result values from PQgetResult
to be lost (a problem which has not been reported, but which is more
serious).
Fix this by introducing two new concepts: one is a command queue element
PGQUERY_CLOSE to tell libpq to wait for the CloseComplete server
response to the Close message that is sent by PQsendQuery. Because the
application is not expecting any PGresult from this, the mechanism to
consume it is a bit hackish.
The other concept, authored by Horiguchi-san, is a PGASYNC_PIPELINE_IDLE
state for libpq's state machine to differentiate "really idle" from
merely "the idle state that occurs in between reading results from the
server for elements in the pipeline". This makes libpq not go fully
IDLE when the libpq command queue contains entries; in normal cases, we
only go IDLE once at the end of the pipeline, when the server response
to the final SYNC message is received. (However, there are corner cases
it doesn't fix, such as terminating the query sequence by
PQsendFlushRequest instead of PQpipelineSync; this sort of scenario is
what requires PGQUERY_CLOSE bit above.)
This last bit helps make the libpq state machine clearer; in particular
we can get rid of an ugly hack in pqParseInput3 to avoid considering
IDLE as such when the command queue contains entries.
A new test mode is added to libpq_pipeline.c to tickle some related
problematic cases.
Reported-by: Daniele Varrazzo <daniele.varrazzo@gmail.com>
Co-authored-by: Kyotaro Horiguchi <horikyota.ntt@gmail.com>
Discussion: https://postgr.es/m/CA+mi_8bvD0_CW3sumgwPvWdNzXY32itoG_16tDYRu_1S2gV2iw@mail.gmail.com
2022-07-05 14:21:20 +02:00
|
|
|
/*
|
|
|
|
|
* If there are no further commands to process in the queue, get us in
|
|
|
|
|
* "real idle" mode now.
|
|
|
|
|
*/
|
|
|
|
|
if (conn->cmd_queue_head == NULL)
|
|
|
|
|
{
|
|
|
|
|
conn->asyncStatus = PGASYNC_IDLE;
|
2021-03-15 22:13:42 +01:00
|
|
|
return;
|
libpq: Improve idle state handling in pipeline mode
We were going into IDLE state too soon when executing queries via
PQsendQuery in pipeline mode, causing several scenarios to misbehave in
different ways -- most notably, as reported by Daniele Varrazzo, that a
warning message is produced by libpq:
message type 0x33 arrived from server while idle
But it is also possible, if queries are sent and results consumed not in
lockstep, for the expected mediating NULL result values from PQgetResult
to be lost (a problem which has not been reported, but which is more
serious).
Fix this by introducing two new concepts: one is a command queue element
PGQUERY_CLOSE to tell libpq to wait for the CloseComplete server
response to the Close message that is sent by PQsendQuery. Because the
application is not expecting any PGresult from this, the mechanism to
consume it is a bit hackish.
The other concept, authored by Horiguchi-san, is a PGASYNC_PIPELINE_IDLE
state for libpq's state machine to differentiate "really idle" from
merely "the idle state that occurs in between reading results from the
server for elements in the pipeline". This makes libpq not go fully
IDLE when the libpq command queue contains entries; in normal cases, we
only go IDLE once at the end of the pipeline, when the server response
to the final SYNC message is received. (However, there are corner cases
it doesn't fix, such as terminating the query sequence by
PQsendFlushRequest instead of PQpipelineSync; this sort of scenario is
what requires PGQUERY_CLOSE bit above.)
This last bit helps make the libpq state machine clearer; in particular
we can get rid of an ugly hack in pqParseInput3 to avoid considering
IDLE as such when the command queue contains entries.
A new test mode is added to libpq_pipeline.c to tickle some related
problematic cases.
Reported-by: Daniele Varrazzo <daniele.varrazzo@gmail.com>
Co-authored-by: Kyotaro Horiguchi <horikyota.ntt@gmail.com>
Discussion: https://postgr.es/m/CA+mi_8bvD0_CW3sumgwPvWdNzXY32itoG_16tDYRu_1S2gV2iw@mail.gmail.com
2022-07-05 14:21:20 +02:00
|
|
|
}
|
2021-03-15 22:13:42 +01:00
|
|
|
|
2022-02-28 17:31:30 +01:00
|
|
|
/*
|
|
|
|
|
* Reset the error state. This and the next couple of steps correspond to
|
|
|
|
|
* what PQsendQueryStart didn't do for this query.
|
|
|
|
|
*/
|
|
|
|
|
pqClearConnErrorState(conn);
|
|
|
|
|
|
2021-03-15 22:13:42 +01:00
|
|
|
/* Initialize async result-accumulation state */
|
|
|
|
|
pqClearAsyncResult(conn);
|
|
|
|
|
|
|
|
|
|
if (conn->pipelineStatus == PQ_PIPELINE_ABORTED &&
|
|
|
|
|
conn->cmd_queue_head->queryclass != PGQUERY_SYNC)
|
|
|
|
|
{
|
|
|
|
|
/*
|
|
|
|
|
* In an aborted pipeline we don't get anything from the server for
|
|
|
|
|
* each result; we're just discarding commands from the queue until we
|
|
|
|
|
* get to the next sync from the server.
|
|
|
|
|
*
|
|
|
|
|
* The PGRES_PIPELINE_ABORTED results tell the client that its queries
|
|
|
|
|
* got aborted.
|
|
|
|
|
*/
|
|
|
|
|
conn->result = PQmakeEmptyPGresult(conn, PGRES_PIPELINE_ABORTED);
|
|
|
|
|
if (!conn->result)
|
|
|
|
|
{
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "out of memory");
|
2021-03-15 22:13:42 +01:00
|
|
|
pqSaveErrorResult(conn);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
conn->asyncStatus = PGASYNC_READY;
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
/* allow parsing to continue */
|
|
|
|
|
conn->asyncStatus = PGASYNC_BUSY;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* PQpipelineSync
|
|
|
|
|
* Send a Sync message as part of a pipeline, and flush to server
|
|
|
|
|
*
|
|
|
|
|
* It's legal to start submitting more commands in the pipeline immediately,
|
|
|
|
|
* without waiting for the results of the current pipeline. There's no need to
|
|
|
|
|
* end pipeline mode and start it again.
|
|
|
|
|
*
|
|
|
|
|
* If a command in a pipeline fails, every subsequent command up to and including
|
|
|
|
|
* the result to the Sync message sent by PQpipelineSync gets set to
|
|
|
|
|
* PGRES_PIPELINE_ABORTED state. If the whole pipeline is processed without
|
|
|
|
|
* error, a PGresult with PGRES_PIPELINE_SYNC is produced.
|
|
|
|
|
*
|
|
|
|
|
* Queries can already have been sent before PQpipelineSync is called, but
|
|
|
|
|
* PQpipelineSync need to be called before retrieving command results.
|
|
|
|
|
*
|
|
|
|
|
* The connection will remain in pipeline mode and unavailable for new
|
|
|
|
|
* synchronous command execution functions until all results from the pipeline
|
|
|
|
|
* are processed by the client.
|
|
|
|
|
*/
|
|
|
|
|
int
|
|
|
|
|
PQpipelineSync(PGconn *conn)
|
|
|
|
|
{
|
|
|
|
|
PGcmdQueueEntry *entry;
|
|
|
|
|
|
|
|
|
|
if (!conn)
|
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
|
|
if (conn->pipelineStatus == PQ_PIPELINE_OFF)
|
|
|
|
|
{
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "cannot send pipeline when not in pipeline mode");
|
2021-03-15 22:13:42 +01:00
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
switch (conn->asyncStatus)
|
|
|
|
|
{
|
|
|
|
|
case PGASYNC_COPY_IN:
|
|
|
|
|
case PGASYNC_COPY_OUT:
|
|
|
|
|
case PGASYNC_COPY_BOTH:
|
|
|
|
|
/* should be unreachable */
|
|
|
|
|
appendPQExpBufferStr(&conn->errorMessage,
|
|
|
|
|
"internal error: cannot send pipeline while in COPY\n");
|
|
|
|
|
return 0;
|
|
|
|
|
case PGASYNC_READY:
|
|
|
|
|
case PGASYNC_READY_MORE:
|
|
|
|
|
case PGASYNC_BUSY:
|
|
|
|
|
case PGASYNC_IDLE:
|
libpq: Improve idle state handling in pipeline mode
We were going into IDLE state too soon when executing queries via
PQsendQuery in pipeline mode, causing several scenarios to misbehave in
different ways -- most notably, as reported by Daniele Varrazzo, that a
warning message is produced by libpq:
message type 0x33 arrived from server while idle
But it is also possible, if queries are sent and results consumed not in
lockstep, for the expected mediating NULL result values from PQgetResult
to be lost (a problem which has not been reported, but which is more
serious).
Fix this by introducing two new concepts: one is a command queue element
PGQUERY_CLOSE to tell libpq to wait for the CloseComplete server
response to the Close message that is sent by PQsendQuery. Because the
application is not expecting any PGresult from this, the mechanism to
consume it is a bit hackish.
The other concept, authored by Horiguchi-san, is a PGASYNC_PIPELINE_IDLE
state for libpq's state machine to differentiate "really idle" from
merely "the idle state that occurs in between reading results from the
server for elements in the pipeline". This makes libpq not go fully
IDLE when the libpq command queue contains entries; in normal cases, we
only go IDLE once at the end of the pipeline, when the server response
to the final SYNC message is received. (However, there are corner cases
it doesn't fix, such as terminating the query sequence by
PQsendFlushRequest instead of PQpipelineSync; this sort of scenario is
what requires PGQUERY_CLOSE bit above.)
This last bit helps make the libpq state machine clearer; in particular
we can get rid of an ugly hack in pqParseInput3 to avoid considering
IDLE as such when the command queue contains entries.
A new test mode is added to libpq_pipeline.c to tickle some related
problematic cases.
Reported-by: Daniele Varrazzo <daniele.varrazzo@gmail.com>
Co-authored-by: Kyotaro Horiguchi <horikyota.ntt@gmail.com>
Discussion: https://postgr.es/m/CA+mi_8bvD0_CW3sumgwPvWdNzXY32itoG_16tDYRu_1S2gV2iw@mail.gmail.com
2022-07-05 14:21:20 +02:00
|
|
|
case PGASYNC_PIPELINE_IDLE:
|
2021-03-15 22:13:42 +01:00
|
|
|
/* OK to send sync */
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
entry = pqAllocCmdQueueEntry(conn);
|
|
|
|
|
if (entry == NULL)
|
|
|
|
|
return 0; /* error msg already set */
|
|
|
|
|
|
|
|
|
|
entry->queryclass = PGQUERY_SYNC;
|
|
|
|
|
entry->query = NULL;
|
|
|
|
|
|
|
|
|
|
/* construct the Sync message */
|
|
|
|
|
if (pqPutMsgStart('S', conn) < 0 ||
|
|
|
|
|
pqPutMsgEnd(conn) < 0)
|
|
|
|
|
goto sendFailed;
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Give the data a push. In nonblock mode, don't complain if we're unable
|
|
|
|
|
* to send it all; PQgetResult() will do any additional flushing needed.
|
|
|
|
|
*/
|
|
|
|
|
if (PQflush(conn) < 0)
|
|
|
|
|
goto sendFailed;
|
2021-07-09 21:57:59 +02:00
|
|
|
|
|
|
|
|
/* OK, it's launched! */
|
|
|
|
|
pqAppendCmdQueueEntry(conn, entry);
|
2021-03-15 22:13:42 +01:00
|
|
|
|
|
|
|
|
return 1;
|
|
|
|
|
|
|
|
|
|
sendFailed:
|
|
|
|
|
pqRecycleCmdQueueEntry(conn, entry);
|
|
|
|
|
/* error message should be set up already */
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
2021-06-29 20:37:39 +02:00
|
|
|
/*
|
|
|
|
|
* PQsendFlushRequest
|
|
|
|
|
* Send request for server to flush its buffer. Useful in pipeline
|
|
|
|
|
* mode when a sync point is not desired.
|
|
|
|
|
*/
|
|
|
|
|
int
|
|
|
|
|
PQsendFlushRequest(PGconn *conn)
|
|
|
|
|
{
|
|
|
|
|
if (!conn)
|
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
|
|
/* Don't try to send if we know there's no live connection. */
|
|
|
|
|
if (conn->status != CONNECTION_OK)
|
|
|
|
|
{
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "no connection to the server");
|
2021-06-29 20:37:39 +02:00
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Can't send while already busy, either, unless enqueuing for later */
|
|
|
|
|
if (conn->asyncStatus != PGASYNC_IDLE &&
|
|
|
|
|
conn->pipelineStatus == PQ_PIPELINE_OFF)
|
|
|
|
|
{
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "another command is already in progress");
|
2021-07-09 21:57:59 +02:00
|
|
|
return 0;
|
2021-06-29 20:37:39 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (pqPutMsgStart('H', conn) < 0 ||
|
|
|
|
|
pqPutMsgEnd(conn) < 0)
|
|
|
|
|
{
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
1998-05-07 01:51:16 +02:00
|
|
|
|
1996-07-09 08:22:35 +02:00
|
|
|
/* ====== accessor funcs for PGresult ======== */
|
|
|
|
|
|
|
|
|
|
ExecStatusType
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
PQresultStatus(const PGresult *res)
|
1996-07-09 08:22:35 +02:00
|
|
|
{
|
1996-07-23 05:35:14 +02:00
|
|
|
if (!res)
|
2003-06-21 23:51:35 +02:00
|
|
|
return PGRES_FATAL_ERROR;
|
1996-07-09 08:22:35 +02:00
|
|
|
return res->resultStatus;
|
|
|
|
|
}
|
|
|
|
|
|
2000-02-08 00:10:11 +01:00
|
|
|
char *
|
1999-02-07 23:08:54 +01:00
|
|
|
PQresStatus(ExecStatusType status)
|
|
|
|
|
{
|
2021-03-15 22:13:42 +01:00
|
|
|
if ((unsigned int) status >= lengthof(pgresStatus))
|
2001-07-15 15:45:04 +02:00
|
|
|
return libpq_gettext("invalid ExecStatusType code");
|
1999-02-07 23:08:54 +01:00
|
|
|
return pgresStatus[status];
|
|
|
|
|
}
|
|
|
|
|
|
2000-02-08 00:10:11 +01:00
|
|
|
char *
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
PQresultErrorMessage(const PGresult *res)
|
1998-10-01 03:40:26 +02:00
|
|
|
{
|
|
|
|
|
if (!res || !res->errMsg)
|
|
|
|
|
return "";
|
|
|
|
|
return res->errMsg;
|
|
|
|
|
}
|
|
|
|
|
|
2016-04-03 18:24:54 +02:00
|
|
|
char *
|
|
|
|
|
PQresultVerboseErrorMessage(const PGresult *res,
|
|
|
|
|
PGVerbosity verbosity,
|
|
|
|
|
PGContextVisibility show_context)
|
|
|
|
|
{
|
|
|
|
|
PQExpBufferData workBuf;
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Because the caller is expected to free the result string, we must
|
|
|
|
|
* strdup any constant result. We use plain strdup and document that
|
|
|
|
|
* callers should expect NULL if out-of-memory.
|
|
|
|
|
*/
|
|
|
|
|
if (!res ||
|
|
|
|
|
(res->resultStatus != PGRES_FATAL_ERROR &&
|
|
|
|
|
res->resultStatus != PGRES_NONFATAL_ERROR))
|
|
|
|
|
return strdup(libpq_gettext("PGresult is not an error result\n"));
|
|
|
|
|
|
|
|
|
|
initPQExpBuffer(&workBuf);
|
|
|
|
|
|
|
|
|
|
pqBuildErrorMessage3(&workBuf, res, verbosity, show_context);
|
|
|
|
|
|
|
|
|
|
/* If insufficient memory to format the message, fail cleanly */
|
|
|
|
|
if (PQExpBufferDataBroken(workBuf))
|
|
|
|
|
{
|
|
|
|
|
termPQExpBuffer(&workBuf);
|
|
|
|
|
return strdup(libpq_gettext("out of memory\n"));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return workBuf.data;
|
|
|
|
|
}
|
|
|
|
|
|
2003-06-21 23:51:35 +02:00
|
|
|
char *
|
|
|
|
|
PQresultErrorField(const PGresult *res, int fieldcode)
|
|
|
|
|
{
|
|
|
|
|
PGMessageField *pfield;
|
|
|
|
|
|
|
|
|
|
if (!res)
|
|
|
|
|
return NULL;
|
|
|
|
|
for (pfield = res->errFields; pfield != NULL; pfield = pfield->next)
|
|
|
|
|
{
|
|
|
|
|
if (pfield->code == fieldcode)
|
|
|
|
|
return pfield->contents;
|
|
|
|
|
}
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
1996-07-09 08:22:35 +02:00
|
|
|
int
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
PQntuples(const PGresult *res)
|
1996-07-09 08:22:35 +02:00
|
|
|
{
|
1996-07-23 05:35:14 +02:00
|
|
|
if (!res)
|
1998-05-07 01:51:16 +02:00
|
|
|
return 0;
|
1996-07-09 08:22:35 +02:00
|
|
|
return res->ntups;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
int
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
PQnfields(const PGresult *res)
|
1996-07-09 08:22:35 +02:00
|
|
|
{
|
1996-07-23 05:35:14 +02:00
|
|
|
if (!res)
|
1998-05-07 01:51:16 +02:00
|
|
|
return 0;
|
1996-07-09 08:22:35 +02:00
|
|
|
return res->numAttributes;
|
|
|
|
|
}
|
|
|
|
|
|
1998-09-03 04:10:56 +02:00
|
|
|
int
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
PQbinaryTuples(const PGresult *res)
|
1998-09-03 04:10:56 +02:00
|
|
|
{
|
|
|
|
|
if (!res)
|
|
|
|
|
return 0;
|
|
|
|
|
return res->binary;
|
|
|
|
|
}
|
|
|
|
|
|
1996-07-09 08:22:35 +02:00
|
|
|
/*
|
1998-08-09 04:59:33 +02:00
|
|
|
* Helper routines to range-check field numbers and tuple numbers.
|
2017-08-16 06:22:32 +02:00
|
|
|
* Return true if OK, false if not
|
1998-08-09 04:59:33 +02:00
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
static int
|
2001-07-15 15:45:04 +02:00
|
|
|
check_field_number(const PGresult *res, int field_num)
|
1996-07-09 08:22:35 +02:00
|
|
|
{
|
1996-07-23 05:35:14 +02:00
|
|
|
if (!res)
|
2017-08-16 06:22:32 +02:00
|
|
|
return false; /* no way to display error message... */
|
1998-08-09 04:59:33 +02:00
|
|
|
if (field_num < 0 || field_num >= res->numAttributes)
|
1996-07-23 05:35:14 +02:00
|
|
|
{
|
2003-06-23 21:20:25 +02:00
|
|
|
pqInternalNotice(&res->noticeHooks,
|
|
|
|
|
"column number %d is out of range 0..%d",
|
|
|
|
|
field_num, res->numAttributes - 1);
|
2017-08-16 06:22:32 +02:00
|
|
|
return false;
|
1996-07-12 06:53:59 +02:00
|
|
|
}
|
2017-08-16 06:22:32 +02:00
|
|
|
return true;
|
1998-08-09 04:59:33 +02:00
|
|
|
}
|
1997-09-07 07:04:48 +02:00
|
|
|
|
1998-08-09 04:59:33 +02:00
|
|
|
static int
|
2001-07-15 15:45:04 +02:00
|
|
|
check_tuple_field_number(const PGresult *res,
|
1998-08-09 04:59:33 +02:00
|
|
|
int tup_num, int field_num)
|
|
|
|
|
{
|
|
|
|
|
if (!res)
|
2017-08-16 06:22:32 +02:00
|
|
|
return false; /* no way to display error message... */
|
1998-08-09 04:59:33 +02:00
|
|
|
if (tup_num < 0 || tup_num >= res->ntups)
|
|
|
|
|
{
|
2003-06-23 21:20:25 +02:00
|
|
|
pqInternalNotice(&res->noticeHooks,
|
|
|
|
|
"row number %d is out of range 0..%d",
|
|
|
|
|
tup_num, res->ntups - 1);
|
2017-08-16 06:22:32 +02:00
|
|
|
return false;
|
1998-08-09 04:59:33 +02:00
|
|
|
}
|
1998-05-07 01:51:16 +02:00
|
|
|
if (field_num < 0 || field_num >= res->numAttributes)
|
1996-07-09 08:22:35 +02:00
|
|
|
{
|
2003-06-23 21:20:25 +02:00
|
|
|
pqInternalNotice(&res->noticeHooks,
|
|
|
|
|
"column number %d is out of range 0..%d",
|
|
|
|
|
field_num, res->numAttributes - 1);
|
2017-08-16 06:22:32 +02:00
|
|
|
return false;
|
1996-07-09 08:22:35 +02:00
|
|
|
}
|
2017-08-16 06:22:32 +02:00
|
|
|
return true;
|
1998-08-09 04:59:33 +02:00
|
|
|
}
|
|
|
|
|
|
2006-08-18 21:52:39 +02:00
|
|
|
static int
|
|
|
|
|
check_param_number(const PGresult *res, int param_num)
|
|
|
|
|
{
|
|
|
|
|
if (!res)
|
2017-08-16 06:22:32 +02:00
|
|
|
return false; /* no way to display error message... */
|
2006-08-18 21:52:39 +02:00
|
|
|
if (param_num < 0 || param_num >= res->numParameters)
|
|
|
|
|
{
|
|
|
|
|
pqInternalNotice(&res->noticeHooks,
|
|
|
|
|
"parameter number %d is out of range 0..%d",
|
|
|
|
|
param_num, res->numParameters - 1);
|
2017-08-16 06:22:32 +02:00
|
|
|
return false;
|
2006-08-18 21:52:39 +02:00
|
|
|
}
|
2006-10-04 02:30:14 +02:00
|
|
|
|
2017-08-16 06:22:32 +02:00
|
|
|
return true;
|
2006-08-18 21:52:39 +02:00
|
|
|
}
|
|
|
|
|
|
1998-08-09 04:59:33 +02:00
|
|
|
/*
|
2003-06-21 23:51:35 +02:00
|
|
|
* returns NULL if the field_num is invalid
|
|
|
|
|
*/
|
2000-02-08 00:10:11 +01:00
|
|
|
char *
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
PQfname(const PGresult *res, int field_num)
|
1998-08-09 04:59:33 +02:00
|
|
|
{
|
2001-07-15 15:45:04 +02:00
|
|
|
if (!check_field_number(res, field_num))
|
1998-08-09 04:59:33 +02:00
|
|
|
return NULL;
|
1996-07-09 08:22:35 +02:00
|
|
|
if (res->attDescs)
|
1996-12-13 10:25:08 +01:00
|
|
|
return res->attDescs[field_num].name;
|
1996-07-09 08:22:35 +02:00
|
|
|
else
|
1996-12-13 10:25:08 +01:00
|
|
|
return NULL;
|
1996-07-09 08:22:35 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
2003-10-04 23:05:21 +02:00
|
|
|
* PQfnumber: find column number given column name
|
|
|
|
|
*
|
|
|
|
|
* The column name is parsed as if it were in a SQL statement, including
|
|
|
|
|
* case-folding and double-quote processing. But note a possible gotcha:
|
|
|
|
|
* downcasing in the frontend might follow different locale rules than
|
|
|
|
|
* downcasing in the backend...
|
|
|
|
|
*
|
|
|
|
|
* Returns -1 if no match. In the present backend it is also possible
|
|
|
|
|
* to have multiple matches, in which case the first one is found.
|
2003-06-21 23:51:35 +02:00
|
|
|
*/
|
1996-07-09 08:22:35 +02:00
|
|
|
int
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
PQfnumber(const PGresult *res, const char *field_name)
|
1996-07-09 08:22:35 +02:00
|
|
|
{
|
1997-11-10 06:10:50 +01:00
|
|
|
char *field_case;
|
2003-10-04 23:05:21 +02:00
|
|
|
bool in_quotes;
|
2014-03-02 04:14:14 +01:00
|
|
|
bool all_lower = true;
|
|
|
|
|
const char *iptr;
|
2003-10-04 23:05:21 +02:00
|
|
|
char *optr;
|
|
|
|
|
int i;
|
1996-07-09 08:22:35 +02:00
|
|
|
|
1996-07-23 05:35:14 +02:00
|
|
|
if (!res)
|
1996-07-12 06:53:59 +02:00
|
|
|
return -1;
|
|
|
|
|
|
2003-10-04 23:05:21 +02:00
|
|
|
/*
|
|
|
|
|
* Note: it is correct to reject a zero-length input string; the proper
|
|
|
|
|
* input to match a zero-length field name would be "".
|
|
|
|
|
*/
|
1996-07-09 08:22:35 +02:00
|
|
|
if (field_name == NULL ||
|
|
|
|
|
field_name[0] == '\0' ||
|
|
|
|
|
res->attDescs == NULL)
|
|
|
|
|
return -1;
|
|
|
|
|
|
2014-03-02 04:14:14 +01:00
|
|
|
/*
|
|
|
|
|
* Check if we can avoid the strdup() and related work because the
|
|
|
|
|
* passed-in string wouldn't be changed before we do the check anyway.
|
|
|
|
|
*/
|
|
|
|
|
for (iptr = field_name; *iptr; iptr++)
|
|
|
|
|
{
|
|
|
|
|
char c = *iptr;
|
|
|
|
|
|
|
|
|
|
if (c == '"' || c != pg_tolower((unsigned char) c))
|
|
|
|
|
{
|
|
|
|
|
all_lower = false;
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (all_lower)
|
|
|
|
|
for (i = 0; i < res->numAttributes; i++)
|
|
|
|
|
if (strcmp(field_name, res->attDescs[i].name) == 0)
|
|
|
|
|
return i;
|
2014-03-03 20:05:33 +01:00
|
|
|
|
2014-03-02 04:14:14 +01:00
|
|
|
/* Fall through to the normal check if that didn't work out. */
|
|
|
|
|
|
2003-10-04 23:05:21 +02:00
|
|
|
/*
|
|
|
|
|
* Note: this code will not reject partially quoted strings, eg
|
|
|
|
|
* foo"BAR"foo will become fooBARfoo when it probably ought to be an error
|
|
|
|
|
* condition.
|
|
|
|
|
*/
|
1997-11-10 06:10:50 +01:00
|
|
|
field_case = strdup(field_name);
|
2003-10-04 23:05:21 +02:00
|
|
|
if (field_case == NULL)
|
|
|
|
|
return -1; /* grotty */
|
|
|
|
|
|
|
|
|
|
in_quotes = false;
|
|
|
|
|
optr = field_case;
|
|
|
|
|
for (iptr = field_case; *iptr; iptr++)
|
1997-11-10 06:10:50 +01:00
|
|
|
{
|
2003-10-04 23:05:21 +02:00
|
|
|
char c = *iptr;
|
|
|
|
|
|
|
|
|
|
if (in_quotes)
|
|
|
|
|
{
|
|
|
|
|
if (c == '"')
|
|
|
|
|
{
|
|
|
|
|
if (iptr[1] == '"')
|
|
|
|
|
{
|
|
|
|
|
/* doubled quotes become a single quote */
|
|
|
|
|
*optr++ = '"';
|
|
|
|
|
iptr++;
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
in_quotes = false;
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
*optr++ = c;
|
|
|
|
|
}
|
|
|
|
|
else if (c == '"')
|
|
|
|
|
in_quotes = true;
|
|
|
|
|
else
|
|
|
|
|
{
|
2004-05-07 02:24:59 +02:00
|
|
|
c = pg_tolower((unsigned char) c);
|
2003-10-04 23:05:21 +02:00
|
|
|
*optr++ = c;
|
|
|
|
|
}
|
1997-11-10 06:10:50 +01:00
|
|
|
}
|
2003-10-04 23:05:21 +02:00
|
|
|
*optr = '\0';
|
1997-11-10 06:10:50 +01:00
|
|
|
|
1996-07-09 08:22:35 +02:00
|
|
|
for (i = 0; i < res->numAttributes; i++)
|
|
|
|
|
{
|
1999-02-03 21:19:10 +01:00
|
|
|
if (strcmp(field_case, res->attDescs[i].name) == 0)
|
1997-11-10 06:10:50 +01:00
|
|
|
{
|
|
|
|
|
free(field_case);
|
1996-07-09 08:22:35 +02:00
|
|
|
return i;
|
1997-11-10 06:10:50 +01:00
|
|
|
}
|
1996-07-09 08:22:35 +02:00
|
|
|
}
|
1997-11-10 06:10:50 +01:00
|
|
|
free(field_case);
|
1996-07-09 08:22:35 +02:00
|
|
|
return -1;
|
|
|
|
|
}
|
|
|
|
|
|
2003-06-21 23:51:35 +02:00
|
|
|
Oid
|
|
|
|
|
PQftable(const PGresult *res, int field_num)
|
|
|
|
|
{
|
|
|
|
|
if (!check_field_number(res, field_num))
|
|
|
|
|
return InvalidOid;
|
|
|
|
|
if (res->attDescs)
|
|
|
|
|
return res->attDescs[field_num].tableid;
|
|
|
|
|
else
|
|
|
|
|
return InvalidOid;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
int
|
|
|
|
|
PQftablecol(const PGresult *res, int field_num)
|
|
|
|
|
{
|
|
|
|
|
if (!check_field_number(res, field_num))
|
|
|
|
|
return 0;
|
|
|
|
|
if (res->attDescs)
|
|
|
|
|
return res->attDescs[field_num].columnid;
|
|
|
|
|
else
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
int
|
|
|
|
|
PQfformat(const PGresult *res, int field_num)
|
|
|
|
|
{
|
|
|
|
|
if (!check_field_number(res, field_num))
|
|
|
|
|
return 0;
|
|
|
|
|
if (res->attDescs)
|
|
|
|
|
return res->attDescs[field_num].format;
|
|
|
|
|
else
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
1996-07-09 08:22:35 +02:00
|
|
|
Oid
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
PQftype(const PGresult *res, int field_num)
|
1996-07-09 08:22:35 +02:00
|
|
|
{
|
2001-07-15 15:45:04 +02:00
|
|
|
if (!check_field_number(res, field_num))
|
1996-07-23 05:35:14 +02:00
|
|
|
return InvalidOid;
|
1996-07-09 08:22:35 +02:00
|
|
|
if (res->attDescs)
|
1998-07-13 18:35:04 +02:00
|
|
|
return res->attDescs[field_num].typid;
|
1996-07-09 08:22:35 +02:00
|
|
|
else
|
1996-12-13 10:25:08 +01:00
|
|
|
return InvalidOid;
|
1996-07-09 08:22:35 +02:00
|
|
|
}
|
|
|
|
|
|
1998-09-03 04:10:56 +02:00
|
|
|
int
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
PQfsize(const PGresult *res, int field_num)
|
1996-07-09 08:22:35 +02:00
|
|
|
{
|
2001-07-15 15:45:04 +02:00
|
|
|
if (!check_field_number(res, field_num))
|
1998-05-07 01:51:16 +02:00
|
|
|
return 0;
|
1996-07-09 08:22:35 +02:00
|
|
|
if (res->attDescs)
|
1998-07-13 04:41:59 +02:00
|
|
|
return res->attDescs[field_num].typlen;
|
1996-07-09 08:22:35 +02:00
|
|
|
else
|
1996-12-13 10:25:08 +01:00
|
|
|
return 0;
|
1996-07-09 08:22:35 +02:00
|
|
|
}
|
|
|
|
|
|
1998-07-14 04:41:26 +02:00
|
|
|
int
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
PQfmod(const PGresult *res, int field_num)
|
1998-05-07 01:51:16 +02:00
|
|
|
{
|
2001-07-15 15:45:04 +02:00
|
|
|
if (!check_field_number(res, field_num))
|
1998-05-07 01:51:16 +02:00
|
|
|
return 0;
|
|
|
|
|
if (res->attDescs)
|
1998-07-13 04:41:59 +02:00
|
|
|
return res->attDescs[field_num].atttypmod;
|
1998-05-07 01:51:16 +02:00
|
|
|
else
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
2000-02-08 00:10:11 +01:00
|
|
|
char *
|
|
|
|
|
PQcmdStatus(PGresult *res)
|
1996-07-23 05:35:14 +02:00
|
|
|
{
|
|
|
|
|
if (!res)
|
1996-07-12 06:53:59 +02:00
|
|
|
return NULL;
|
1996-07-09 08:22:35 +02:00
|
|
|
return res->cmdStatus;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
2003-06-21 23:51:35 +02:00
|
|
|
* PQoidStatus -
|
|
|
|
|
* if the last command was an INSERT, return the oid string
|
|
|
|
|
* if not, return ""
|
|
|
|
|
*/
|
2000-02-08 00:10:11 +01:00
|
|
|
char *
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
PQoidStatus(const PGresult *res)
|
1997-08-27 11:05:24 +02:00
|
|
|
{
|
2000-03-11 04:08:37 +01:00
|
|
|
/*
|
|
|
|
|
* This must be enough to hold the result. Don't laugh, this is better
|
|
|
|
|
* than what this function used to do.
|
|
|
|
|
*/
|
|
|
|
|
static char buf[24];
|
1998-05-07 01:51:16 +02:00
|
|
|
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
size_t len;
|
1997-09-07 07:04:48 +02:00
|
|
|
|
2014-03-02 04:14:14 +01:00
|
|
|
if (!res || strncmp(res->cmdStatus, "INSERT ", 7) != 0)
|
1998-08-17 05:50:43 +02:00
|
|
|
return "";
|
1997-09-07 07:04:48 +02:00
|
|
|
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
len = strspn(res->cmdStatus + 7, "0123456789");
|
Replace a bunch more uses of strncpy() with safer coding.
strncpy() has a well-deserved reputation for being unsafe, so make an
effort to get rid of nearly all occurrences in HEAD.
A large fraction of the remaining uses were passing length less than or
equal to the known strlen() of the source, in which case no null-padding
can occur and the behavior is equivalent to memcpy(), though doubtless
slower and certainly harder to reason about. So just use memcpy() in
these cases.
In other cases, use either StrNCpy() or strlcpy() as appropriate (depending
on whether padding to the full length of the destination buffer seems
useful).
I left a few strncpy() calls alone in the src/timezone/ code, to keep it
in sync with upstream (the IANA tzcode distribution). There are also a
few such calls in ecpg that could possibly do with more analysis.
AFAICT, none of these changes are more than cosmetic, except for the four
occurrences in fe-secure-openssl.c, which are in fact buggy: an overlength
source leads to a non-null-terminated destination buffer and ensuing
misbehavior. These don't seem like security issues, first because no stack
clobber is possible and second because if your values of sslcert etc are
coming from untrusted sources then you've got problems way worse than this.
Still, it's undesirable to have unpredictable behavior for overlength
inputs, so back-patch those four changes to all active branches.
2015-01-24 19:05:42 +01:00
|
|
|
if (len > sizeof(buf) - 1)
|
|
|
|
|
len = sizeof(buf) - 1;
|
|
|
|
|
memcpy(buf, res->cmdStatus + 7, len);
|
2001-02-06 03:00:09 +01:00
|
|
|
buf[len] = '\0';
|
1997-09-07 07:04:48 +02:00
|
|
|
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
return buf;
|
|
|
|
|
}
|
1998-08-17 05:50:43 +02:00
|
|
|
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
/*
|
2003-06-21 23:51:35 +02:00
|
|
|
* PQoidValue -
|
|
|
|
|
* a perhaps preferable form of the above which just returns
|
|
|
|
|
* an Oid type
|
|
|
|
|
*/
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
Oid
|
|
|
|
|
PQoidValue(const PGresult *res)
|
|
|
|
|
{
|
|
|
|
|
char *endptr = NULL;
|
2001-02-06 03:02:27 +01:00
|
|
|
unsigned long result;
|
1998-08-17 05:50:43 +02:00
|
|
|
|
2005-08-23 23:02:05 +02:00
|
|
|
if (!res ||
|
|
|
|
|
strncmp(res->cmdStatus, "INSERT ", 7) != 0 ||
|
|
|
|
|
res->cmdStatus[7] < '0' ||
|
|
|
|
|
res->cmdStatus[7] > '9')
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
return InvalidOid;
|
1998-08-17 05:50:43 +02:00
|
|
|
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
result = strtoul(res->cmdStatus + 7, &endptr, 10);
|
|
|
|
|
|
2005-08-23 23:02:05 +02:00
|
|
|
if (!endptr || (*endptr != ' ' && *endptr != '\0'))
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
return InvalidOid;
|
|
|
|
|
else
|
|
|
|
|
return (Oid) result;
|
1997-08-27 11:05:24 +02:00
|
|
|
}
|
1996-07-09 08:22:35 +02:00
|
|
|
|
2001-08-04 00:11:39 +02:00
|
|
|
|
1997-08-27 11:05:24 +02:00
|
|
|
/*
|
2003-06-21 23:51:35 +02:00
|
|
|
* PQcmdTuples -
|
2022-03-28 16:45:58 +02:00
|
|
|
* If the last command was INSERT/UPDATE/DELETE/MERGE/MOVE/FETCH/COPY,
|
|
|
|
|
* return a string containing the number of inserted/affected tuples.
|
|
|
|
|
* If not, return "".
|
2003-06-21 23:51:35 +02:00
|
|
|
*
|
|
|
|
|
* XXX: this should probably return an int
|
|
|
|
|
*/
|
2000-02-08 00:10:11 +01:00
|
|
|
char *
|
|
|
|
|
PQcmdTuples(PGresult *res)
|
1997-08-27 11:05:24 +02:00
|
|
|
{
|
2006-03-03 21:57:32 +01:00
|
|
|
char *p,
|
|
|
|
|
*c;
|
1999-08-31 03:37:37 +02:00
|
|
|
|
1997-08-27 11:05:24 +02:00
|
|
|
if (!res)
|
1998-08-09 04:59:33 +02:00
|
|
|
return "";
|
1997-09-07 07:04:48 +02:00
|
|
|
|
2003-02-19 04:59:02 +01:00
|
|
|
if (strncmp(res->cmdStatus, "INSERT ", 7) == 0)
|
1997-08-27 11:05:24 +02:00
|
|
|
{
|
2006-03-03 21:57:32 +01:00
|
|
|
p = res->cmdStatus + 7;
|
|
|
|
|
/* INSERT: skip oid and space */
|
|
|
|
|
while (*p && *p != ' ')
|
2003-02-19 04:59:02 +01:00
|
|
|
p++;
|
2006-03-03 21:57:32 +01:00
|
|
|
if (*p == 0)
|
|
|
|
|
goto interpret_error; /* no space? */
|
|
|
|
|
p++;
|
2003-02-19 04:59:02 +01:00
|
|
|
}
|
2010-02-16 21:58:14 +01:00
|
|
|
else if (strncmp(res->cmdStatus, "SELECT ", 7) == 0 ||
|
|
|
|
|
strncmp(res->cmdStatus, "DELETE ", 7) == 0 ||
|
2003-02-19 04:59:02 +01:00
|
|
|
strncmp(res->cmdStatus, "UPDATE ", 7) == 0)
|
2006-03-03 21:57:32 +01:00
|
|
|
p = res->cmdStatus + 7;
|
2022-03-28 16:45:58 +02:00
|
|
|
else if (strncmp(res->cmdStatus, "FETCH ", 6) == 0 ||
|
|
|
|
|
strncmp(res->cmdStatus, "MERGE ", 6) == 0)
|
2006-03-03 21:57:32 +01:00
|
|
|
p = res->cmdStatus + 6;
|
|
|
|
|
else if (strncmp(res->cmdStatus, "MOVE ", 5) == 0 ||
|
|
|
|
|
strncmp(res->cmdStatus, "COPY ", 5) == 0)
|
2003-02-19 04:59:02 +01:00
|
|
|
p = res->cmdStatus + 5;
|
|
|
|
|
else
|
|
|
|
|
return "";
|
|
|
|
|
|
2006-03-03 21:57:32 +01:00
|
|
|
/* check that we have an integer (at least one digit, nothing else) */
|
|
|
|
|
for (c = p; *c; c++)
|
2003-02-19 04:59:02 +01:00
|
|
|
{
|
2006-03-03 21:57:32 +01:00
|
|
|
if (!isdigit((unsigned char) *c))
|
|
|
|
|
goto interpret_error;
|
1997-08-27 11:05:24 +02:00
|
|
|
}
|
2006-03-03 21:57:32 +01:00
|
|
|
if (c == p)
|
|
|
|
|
goto interpret_error;
|
2003-02-19 04:59:02 +01:00
|
|
|
|
|
|
|
|
return p;
|
2006-10-04 02:30:14 +02:00
|
|
|
|
2006-03-03 21:57:32 +01:00
|
|
|
interpret_error:
|
|
|
|
|
pqInternalNotice(&res->noticeHooks,
|
|
|
|
|
"could not interpret result from server: %s",
|
|
|
|
|
res->cmdStatus);
|
|
|
|
|
return "";
|
1996-07-09 08:22:35 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
2003-06-21 23:51:35 +02:00
|
|
|
* PQgetvalue:
|
|
|
|
|
* return the value of field 'field_num' of row 'tup_num'
|
|
|
|
|
*/
|
2000-02-08 00:10:11 +01:00
|
|
|
char *
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
PQgetvalue(const PGresult *res, int tup_num, int field_num)
|
1996-07-09 08:22:35 +02:00
|
|
|
{
|
2001-07-15 15:45:04 +02:00
|
|
|
if (!check_tuple_field_number(res, tup_num, field_num))
|
1996-12-24 10:03:16 +01:00
|
|
|
return NULL;
|
1996-07-09 08:22:35 +02:00
|
|
|
return res->tuples[tup_num][field_num].value;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* PQgetlength:
|
2003-06-21 23:51:35 +02:00
|
|
|
* returns the actual length of a field value in bytes.
|
|
|
|
|
*/
|
1996-07-09 08:22:35 +02:00
|
|
|
int
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
PQgetlength(const PGresult *res, int tup_num, int field_num)
|
1996-07-09 08:22:35 +02:00
|
|
|
{
|
2001-07-15 15:45:04 +02:00
|
|
|
if (!check_tuple_field_number(res, tup_num, field_num))
|
1998-05-07 01:51:16 +02:00
|
|
|
return 0;
|
1996-08-13 03:34:29 +02:00
|
|
|
if (res->tuples[tup_num][field_num].len != NULL_LEN)
|
1996-12-13 10:25:08 +01:00
|
|
|
return res->tuples[tup_num][field_num].len;
|
1996-08-13 03:34:29 +02:00
|
|
|
else
|
1996-12-13 10:25:08 +01:00
|
|
|
return 0;
|
1996-07-09 08:22:35 +02:00
|
|
|
}
|
1996-08-13 03:34:29 +02:00
|
|
|
|
|
|
|
|
/* PQgetisnull:
|
2003-06-21 23:51:35 +02:00
|
|
|
* returns the null status of a field value.
|
|
|
|
|
*/
|
1996-08-13 03:34:29 +02:00
|
|
|
int
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
PQgetisnull(const PGresult *res, int tup_num, int field_num)
|
1996-08-13 03:34:29 +02:00
|
|
|
{
|
2001-07-15 15:45:04 +02:00
|
|
|
if (!check_tuple_field_number(res, tup_num, field_num))
|
1998-05-07 01:51:16 +02:00
|
|
|
return 1; /* pretend it is null */
|
1996-08-13 03:34:29 +02:00
|
|
|
if (res->tuples[tup_num][field_num].len == NULL_LEN)
|
1996-12-13 10:25:08 +01:00
|
|
|
return 1;
|
1996-08-13 03:34:29 +02:00
|
|
|
else
|
1996-12-13 10:25:08 +01:00
|
|
|
return 0;
|
1997-05-20 05:39:02 +02:00
|
|
|
}
|
2000-01-18 07:09:24 +01:00
|
|
|
|
2006-08-18 21:52:39 +02:00
|
|
|
/* PQnparams:
|
|
|
|
|
* returns the number of input parameters of a prepared statement.
|
|
|
|
|
*/
|
|
|
|
|
int
|
|
|
|
|
PQnparams(const PGresult *res)
|
|
|
|
|
{
|
|
|
|
|
if (!res)
|
|
|
|
|
return 0;
|
|
|
|
|
return res->numParameters;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* PQparamtype:
|
|
|
|
|
* returns type Oid of the specified statement parameter.
|
|
|
|
|
*/
|
|
|
|
|
Oid
|
|
|
|
|
PQparamtype(const PGresult *res, int param_num)
|
|
|
|
|
{
|
|
|
|
|
if (!check_param_number(res, param_num))
|
|
|
|
|
return InvalidOid;
|
|
|
|
|
if (res->paramDescs)
|
|
|
|
|
return res->paramDescs[param_num].typid;
|
|
|
|
|
else
|
|
|
|
|
return InvalidOid;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2000-01-18 07:09:24 +01:00
|
|
|
/* PQsetnonblocking:
|
2017-08-16 06:22:32 +02:00
|
|
|
* sets the PGconn's database connection non-blocking if the arg is true
|
|
|
|
|
* or makes it blocking if the arg is false, this will not protect
|
2003-06-21 23:51:35 +02:00
|
|
|
* you from PQexec(), you'll only be safe when using the non-blocking API.
|
|
|
|
|
* Needs to be called only on a connected database connection.
|
|
|
|
|
*/
|
2000-01-18 07:09:24 +01:00
|
|
|
int
|
|
|
|
|
PQsetnonblocking(PGconn *conn, int arg)
|
|
|
|
|
{
|
2003-08-13 20:56:21 +02:00
|
|
|
bool barg;
|
|
|
|
|
|
2003-06-21 23:51:35 +02:00
|
|
|
if (!conn || conn->status == CONNECTION_BAD)
|
|
|
|
|
return -1;
|
|
|
|
|
|
2017-08-16 06:22:32 +02:00
|
|
|
barg = (arg ? true : false);
|
2003-08-13 20:56:21 +02:00
|
|
|
|
2000-01-18 07:09:24 +01:00
|
|
|
/* early out if the socket is already in the state requested */
|
2003-08-13 20:56:21 +02:00
|
|
|
if (barg == conn->nonblocking)
|
2006-01-11 09:43:13 +01:00
|
|
|
return 0;
|
2000-01-18 07:09:24 +01:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* to guarantee constancy for flushing/query/result-polling behavior we
|
|
|
|
|
* need to flush the send queue at this point in order to guarantee proper
|
|
|
|
|
* behavior. this is ok because either they are making a transition _from_
|
|
|
|
|
* or _to_ blocking mode, either way we can block them.
|
In libpq, always append new error messages to conn->errorMessage.
Previously, we had an undisciplined mish-mash of printfPQExpBuffer and
appendPQExpBuffer calls to report errors within libpq. This commit
establishes a uniform rule that appendPQExpBuffer[Str] should be used.
conn->errorMessage is reset only at the start of an application request,
and then accumulates messages till we're done. We can remove no less
than three different ad-hoc mechanisms that were used to get the effect
of concatenation of error messages within a sequence of operations.
Although this makes things quite a bit cleaner conceptually, the main
reason to do it is to make the world safer for the multiple-target-host
feature that was added awhile back. Previously, there were many cases
in which an error occurring during an individual host connection attempt
would wipe out the record of what had happened during previous attempts.
(The reporting is still inadequate, in that it can be hard to tell which
host got the failure, but that seems like a matter for a separate commit.)
Currently, lo_import and lo_export contain exceptions to the "never
use printfPQExpBuffer" rule. If we changed them, we'd risk reporting
an incidental lo_close failure before the actual read or write
failure, which would be confusing, not least because lo_close happened
after the main failure. We could improve this by inventing an
internal version of lo_close that doesn't reset the errorMessage; but
we'd also need a version of PQfn() that does that, and it didn't quite
seem worth the trouble for now.
Discussion: https://postgr.es/m/BN6PR05MB3492948E4FD76C156E747E8BC9160@BN6PR05MB3492.namprd05.prod.outlook.com
2021-01-11 19:12:09 +01:00
|
|
|
*
|
2022-02-28 17:31:30 +01:00
|
|
|
* Clear error state in case pqFlush adds to it, unless we're actively
|
|
|
|
|
* pipelining, in which case it seems best not to.
|
2000-01-18 07:09:24 +01:00
|
|
|
*/
|
2022-02-28 17:31:30 +01:00
|
|
|
if (conn->cmd_queue_head == NULL)
|
|
|
|
|
pqClearConnErrorState(conn);
|
In libpq, always append new error messages to conn->errorMessage.
Previously, we had an undisciplined mish-mash of printfPQExpBuffer and
appendPQExpBuffer calls to report errors within libpq. This commit
establishes a uniform rule that appendPQExpBuffer[Str] should be used.
conn->errorMessage is reset only at the start of an application request,
and then accumulates messages till we're done. We can remove no less
than three different ad-hoc mechanisms that were used to get the effect
of concatenation of error messages within a sequence of operations.
Although this makes things quite a bit cleaner conceptually, the main
reason to do it is to make the world safer for the multiple-target-host
feature that was added awhile back. Previously, there were many cases
in which an error occurring during an individual host connection attempt
would wipe out the record of what had happened during previous attempts.
(The reporting is still inadequate, in that it can be hard to tell which
host got the failure, but that seems like a matter for a separate commit.)
Currently, lo_import and lo_export contain exceptions to the "never
use printfPQExpBuffer" rule. If we changed them, we'd risk reporting
an incidental lo_close failure before the actual read or write
failure, which would be confusing, not least because lo_close happened
after the main failure. We could improve this by inventing an
internal version of lo_close that doesn't reset the errorMessage; but
we'd also need a version of PQfn() that does that, and it didn't quite
seem worth the trouble for now.
Discussion: https://postgr.es/m/BN6PR05MB3492948E4FD76C156E747E8BC9160@BN6PR05MB3492.namprd05.prod.outlook.com
2021-01-11 19:12:09 +01:00
|
|
|
|
2000-01-18 07:09:24 +01:00
|
|
|
/* if we are going from blocking to non-blocking flush here */
|
2000-01-24 03:12:58 +01:00
|
|
|
if (pqFlush(conn))
|
2006-01-11 09:43:13 +01:00
|
|
|
return -1;
|
2000-01-18 07:09:24 +01:00
|
|
|
|
2003-08-13 20:56:21 +02:00
|
|
|
conn->nonblocking = barg;
|
2000-01-18 07:09:24 +01:00
|
|
|
|
2006-01-11 09:43:13 +01:00
|
|
|
return 0;
|
2000-01-18 07:09:24 +01:00
|
|
|
}
|
|
|
|
|
|
2003-06-21 23:51:35 +02:00
|
|
|
/*
|
|
|
|
|
* return the blocking status of the database connection
|
2017-08-16 06:22:32 +02:00
|
|
|
* true == nonblocking, false == blocking
|
2003-06-21 23:51:35 +02:00
|
|
|
*/
|
2000-01-18 07:09:24 +01:00
|
|
|
int
|
|
|
|
|
PQisnonblocking(const PGconn *conn)
|
|
|
|
|
{
|
2022-08-15 21:40:07 +02:00
|
|
|
if (!conn || conn->status == CONNECTION_BAD)
|
|
|
|
|
return false;
|
2006-01-11 09:43:13 +01:00
|
|
|
return pqIsnonblocking(conn);
|
2000-01-18 07:09:24 +01:00
|
|
|
}
|
|
|
|
|
|
2006-05-24 00:13:19 +02:00
|
|
|
/* libpq is thread-safe? */
|
|
|
|
|
int
|
|
|
|
|
PQisthreadsafe(void)
|
|
|
|
|
{
|
|
|
|
|
#ifdef ENABLE_THREAD_SAFETY
|
|
|
|
|
return true;
|
|
|
|
|
#else
|
|
|
|
|
return false;
|
|
|
|
|
#endif
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2000-01-18 07:09:24 +01:00
|
|
|
/* try to force data out, really only useful for non-blocking users */
|
|
|
|
|
int
|
|
|
|
|
PQflush(PGconn *conn)
|
|
|
|
|
{
|
2022-08-15 21:40:07 +02:00
|
|
|
if (!conn || conn->status == CONNECTION_BAD)
|
|
|
|
|
return -1;
|
2005-04-29 15:42:21 +02:00
|
|
|
return pqFlush(conn);
|
2000-01-18 07:09:24 +01:00
|
|
|
}
|
2002-03-05 06:20:12 +01:00
|
|
|
|
2021-03-15 22:13:42 +01:00
|
|
|
/*
|
|
|
|
|
* pqPipelineFlush
|
|
|
|
|
*
|
|
|
|
|
* In pipeline mode, data will be flushed only when the out buffer reaches the
|
|
|
|
|
* threshold value. In non-pipeline mode, it behaves as stock pqFlush.
|
|
|
|
|
*
|
|
|
|
|
* Returns 0 on success.
|
|
|
|
|
*/
|
|
|
|
|
static int
|
|
|
|
|
pqPipelineFlush(PGconn *conn)
|
|
|
|
|
{
|
|
|
|
|
if ((conn->pipelineStatus != PQ_PIPELINE_ON) ||
|
|
|
|
|
(conn->outCount >= OUTBUFFER_THRESHOLD))
|
|
|
|
|
return pqFlush(conn);
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
2003-05-08 20:16:37 +02:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* PQfreemem - safely frees memory allocated
|
|
|
|
|
*
|
|
|
|
|
* Needed mostly by Win32, unless multithreaded DLL (/MD in VC6)
|
2019-08-05 05:14:58 +02:00
|
|
|
* Used for freeing memory from PQescapeBytea()/PQunescapeBytea()
|
2003-05-08 20:16:37 +02:00
|
|
|
*/
|
|
|
|
|
void
|
|
|
|
|
PQfreemem(void *ptr)
|
|
|
|
|
{
|
|
|
|
|
free(ptr);
|
|
|
|
|
}
|
|
|
|
|
|
2003-03-25 03:44:36 +01:00
|
|
|
/*
|
|
|
|
|
* PQfreeNotify - free's the memory associated with a PGnotify
|
|
|
|
|
*
|
|
|
|
|
* This function is here only for binary backward compatibility.
|
|
|
|
|
* New code should use PQfreemem(). A macro will automatically map
|
|
|
|
|
* calls to PQfreemem. It should be removed in the future. bjm 2003-03-24
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
#undef PQfreeNotify
|
|
|
|
|
void PQfreeNotify(PGnotify *notify);
|
|
|
|
|
|
|
|
|
|
void
|
|
|
|
|
PQfreeNotify(PGnotify *notify)
|
|
|
|
|
{
|
|
|
|
|
PQfreemem(notify);
|
|
|
|
|
}
|
2003-05-08 20:16:37 +02:00
|
|
|
|
|
|
|
|
|
2003-10-03 20:26:14 +02:00
|
|
|
/*
|
|
|
|
|
* Escaping arbitrary strings to get valid SQL literal strings.
|
2003-05-08 20:16:37 +02:00
|
|
|
*
|
Modify libpq's string-escaping routines to be aware of encoding considerations
and standard_conforming_strings. The encoding changes are needed for proper
escaping in multibyte encodings, as per the SQL-injection vulnerabilities
noted in CVE-2006-2313 and CVE-2006-2314. Concurrent fixes are being applied
to the server to ensure that it rejects queries that may have been corrupted
by attempted SQL injection, but this merely guarantees that unpatched clients
will fail rather than allow injection. An actual fix requires changing the
client-side code. While at it we have also fixed these routines to understand
about standard_conforming_strings, so that the upcoming changeover to SQL-spec
string syntax can be somewhat transparent to client code.
Since the existing API of PQescapeString and PQescapeBytea provides no way to
inform them which settings are in use, these functions are now deprecated in
favor of new functions PQescapeStringConn and PQescapeByteaConn. The new
functions take the PGconn to which the string will be sent as an additional
parameter, and look inside the connection structure to determine what to do.
So as to provide some functionality for clients using the old functions,
libpq stores the latest encoding and standard_conforming_strings values
received from the backend in static variables, and the old functions consult
these variables. This will work reliably in clients using only one Postgres
connection at a time, or even multiple connections if they all use the same
encoding and string syntax settings; which should cover many practical
scenarios.
Clients that use homebrew escaping methods, such as PHP's addslashes()
function or even hardwired regexp substitution, will require extra effort
to fix :-(. It is strongly recommended that such code be replaced by use of
PQescapeStringConn/PQescapeByteaConn if at all feasible.
2006-05-21 22:19:23 +02:00
|
|
|
* Replaces "'" with "''", and if not std_strings, replaces "\" with "\\".
|
2003-10-03 20:26:14 +02:00
|
|
|
*
|
|
|
|
|
* length is the length of the source string. (Note: if a terminating NUL
|
|
|
|
|
* is encountered sooner, PQescapeString stops short of "length"; the behavior
|
|
|
|
|
* is thus rather like strncpy.)
|
|
|
|
|
*
|
|
|
|
|
* For safety the buffer at "to" must be at least 2*length + 1 bytes long.
|
|
|
|
|
* A terminating NUL character is added to the output string, whether the
|
|
|
|
|
* input is NUL-terminated or not.
|
|
|
|
|
*
|
|
|
|
|
* Returns the actual length of the output (not counting the terminating NUL).
|
2003-05-08 20:16:37 +02:00
|
|
|
*/
|
Modify libpq's string-escaping routines to be aware of encoding considerations
and standard_conforming_strings. The encoding changes are needed for proper
escaping in multibyte encodings, as per the SQL-injection vulnerabilities
noted in CVE-2006-2313 and CVE-2006-2314. Concurrent fixes are being applied
to the server to ensure that it rejects queries that may have been corrupted
by attempted SQL injection, but this merely guarantees that unpatched clients
will fail rather than allow injection. An actual fix requires changing the
client-side code. While at it we have also fixed these routines to understand
about standard_conforming_strings, so that the upcoming changeover to SQL-spec
string syntax can be somewhat transparent to client code.
Since the existing API of PQescapeString and PQescapeBytea provides no way to
inform them which settings are in use, these functions are now deprecated in
favor of new functions PQescapeStringConn and PQescapeByteaConn. The new
functions take the PGconn to which the string will be sent as an additional
parameter, and look inside the connection structure to determine what to do.
So as to provide some functionality for clients using the old functions,
libpq stores the latest encoding and standard_conforming_strings values
received from the backend in static variables, and the old functions consult
these variables. This will work reliably in clients using only one Postgres
connection at a time, or even multiple connections if they all use the same
encoding and string syntax settings; which should cover many practical
scenarios.
Clients that use homebrew escaping methods, such as PHP's addslashes()
function or even hardwired regexp substitution, will require extra effort
to fix :-(. It is strongly recommended that such code be replaced by use of
PQescapeStringConn/PQescapeByteaConn if at all feasible.
2006-05-21 22:19:23 +02:00
|
|
|
static size_t
|
|
|
|
|
PQescapeStringInternal(PGconn *conn,
|
|
|
|
|
char *to, const char *from, size_t length,
|
|
|
|
|
int *error,
|
|
|
|
|
int encoding, bool std_strings)
|
2003-05-08 20:16:37 +02:00
|
|
|
{
|
|
|
|
|
const char *source = from;
|
|
|
|
|
char *target = to;
|
2003-10-03 20:26:14 +02:00
|
|
|
size_t remaining = length;
|
2003-05-08 20:16:37 +02:00
|
|
|
|
Modify libpq's string-escaping routines to be aware of encoding considerations
and standard_conforming_strings. The encoding changes are needed for proper
escaping in multibyte encodings, as per the SQL-injection vulnerabilities
noted in CVE-2006-2313 and CVE-2006-2314. Concurrent fixes are being applied
to the server to ensure that it rejects queries that may have been corrupted
by attempted SQL injection, but this merely guarantees that unpatched clients
will fail rather than allow injection. An actual fix requires changing the
client-side code. While at it we have also fixed these routines to understand
about standard_conforming_strings, so that the upcoming changeover to SQL-spec
string syntax can be somewhat transparent to client code.
Since the existing API of PQescapeString and PQescapeBytea provides no way to
inform them which settings are in use, these functions are now deprecated in
favor of new functions PQescapeStringConn and PQescapeByteaConn. The new
functions take the PGconn to which the string will be sent as an additional
parameter, and look inside the connection structure to determine what to do.
So as to provide some functionality for clients using the old functions,
libpq stores the latest encoding and standard_conforming_strings values
received from the backend in static variables, and the old functions consult
these variables. This will work reliably in clients using only one Postgres
connection at a time, or even multiple connections if they all use the same
encoding and string syntax settings; which should cover many practical
scenarios.
Clients that use homebrew escaping methods, such as PHP's addslashes()
function or even hardwired regexp substitution, will require extra effort
to fix :-(. It is strongly recommended that such code be replaced by use of
PQescapeStringConn/PQescapeByteaConn if at all feasible.
2006-05-21 22:19:23 +02:00
|
|
|
if (error)
|
|
|
|
|
*error = 0;
|
|
|
|
|
|
2003-10-03 20:26:14 +02:00
|
|
|
while (remaining > 0 && *source != '\0')
|
2003-05-08 20:16:37 +02:00
|
|
|
{
|
Modify libpq's string-escaping routines to be aware of encoding considerations
and standard_conforming_strings. The encoding changes are needed for proper
escaping in multibyte encodings, as per the SQL-injection vulnerabilities
noted in CVE-2006-2313 and CVE-2006-2314. Concurrent fixes are being applied
to the server to ensure that it rejects queries that may have been corrupted
by attempted SQL injection, but this merely guarantees that unpatched clients
will fail rather than allow injection. An actual fix requires changing the
client-side code. While at it we have also fixed these routines to understand
about standard_conforming_strings, so that the upcoming changeover to SQL-spec
string syntax can be somewhat transparent to client code.
Since the existing API of PQescapeString and PQescapeBytea provides no way to
inform them which settings are in use, these functions are now deprecated in
favor of new functions PQescapeStringConn and PQescapeByteaConn. The new
functions take the PGconn to which the string will be sent as an additional
parameter, and look inside the connection structure to determine what to do.
So as to provide some functionality for clients using the old functions,
libpq stores the latest encoding and standard_conforming_strings values
received from the backend in static variables, and the old functions consult
these variables. This will work reliably in clients using only one Postgres
connection at a time, or even multiple connections if they all use the same
encoding and string syntax settings; which should cover many practical
scenarios.
Clients that use homebrew escaping methods, such as PHP's addslashes()
function or even hardwired regexp substitution, will require extra effort
to fix :-(. It is strongly recommended that such code be replaced by use of
PQescapeStringConn/PQescapeByteaConn if at all feasible.
2006-05-21 22:19:23 +02:00
|
|
|
char c = *source;
|
|
|
|
|
int len;
|
|
|
|
|
int i;
|
|
|
|
|
|
|
|
|
|
/* Fast path for plain ASCII */
|
|
|
|
|
if (!IS_HIGHBIT_SET(c))
|
|
|
|
|
{
|
|
|
|
|
/* Apply quoting if needed */
|
2006-05-28 23:13:54 +02:00
|
|
|
if (SQL_STR_DOUBLE(c, !std_strings))
|
Modify libpq's string-escaping routines to be aware of encoding considerations
and standard_conforming_strings. The encoding changes are needed for proper
escaping in multibyte encodings, as per the SQL-injection vulnerabilities
noted in CVE-2006-2313 and CVE-2006-2314. Concurrent fixes are being applied
to the server to ensure that it rejects queries that may have been corrupted
by attempted SQL injection, but this merely guarantees that unpatched clients
will fail rather than allow injection. An actual fix requires changing the
client-side code. While at it we have also fixed these routines to understand
about standard_conforming_strings, so that the upcoming changeover to SQL-spec
string syntax can be somewhat transparent to client code.
Since the existing API of PQescapeString and PQescapeBytea provides no way to
inform them which settings are in use, these functions are now deprecated in
favor of new functions PQescapeStringConn and PQescapeByteaConn. The new
functions take the PGconn to which the string will be sent as an additional
parameter, and look inside the connection structure to determine what to do.
So as to provide some functionality for clients using the old functions,
libpq stores the latest encoding and standard_conforming_strings values
received from the backend in static variables, and the old functions consult
these variables. This will work reliably in clients using only one Postgres
connection at a time, or even multiple connections if they all use the same
encoding and string syntax settings; which should cover many practical
scenarios.
Clients that use homebrew escaping methods, such as PHP's addslashes()
function or even hardwired regexp substitution, will require extra effort
to fix :-(. It is strongly recommended that such code be replaced by use of
PQescapeStringConn/PQescapeByteaConn if at all feasible.
2006-05-21 22:19:23 +02:00
|
|
|
*target++ = c;
|
|
|
|
|
/* Copy the character */
|
|
|
|
|
*target++ = c;
|
|
|
|
|
source++;
|
|
|
|
|
remaining--;
|
|
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Slow path for possible multibyte characters */
|
|
|
|
|
len = pg_encoding_mblen(encoding, source);
|
|
|
|
|
|
|
|
|
|
/* Copy the character */
|
|
|
|
|
for (i = 0; i < len; i++)
|
|
|
|
|
{
|
|
|
|
|
if (remaining == 0 || *source == '\0')
|
|
|
|
|
break;
|
|
|
|
|
*target++ = *source++;
|
|
|
|
|
remaining--;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* If we hit premature end of string (ie, incomplete multibyte
|
|
|
|
|
* character), try to pad out to the correct length with spaces. We
|
|
|
|
|
* may not be able to pad completely, but we will always be able to
|
|
|
|
|
* insert at least one pad space (since we'd not have quoted a
|
|
|
|
|
* multibyte character). This should be enough to make a string that
|
|
|
|
|
* the server will error out on.
|
|
|
|
|
*/
|
|
|
|
|
if (i < len)
|
|
|
|
|
{
|
|
|
|
|
if (error)
|
|
|
|
|
*error = 1;
|
|
|
|
|
if (conn)
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "incomplete multibyte character");
|
Modify libpq's string-escaping routines to be aware of encoding considerations
and standard_conforming_strings. The encoding changes are needed for proper
escaping in multibyte encodings, as per the SQL-injection vulnerabilities
noted in CVE-2006-2313 and CVE-2006-2314. Concurrent fixes are being applied
to the server to ensure that it rejects queries that may have been corrupted
by attempted SQL injection, but this merely guarantees that unpatched clients
will fail rather than allow injection. An actual fix requires changing the
client-side code. While at it we have also fixed these routines to understand
about standard_conforming_strings, so that the upcoming changeover to SQL-spec
string syntax can be somewhat transparent to client code.
Since the existing API of PQescapeString and PQescapeBytea provides no way to
inform them which settings are in use, these functions are now deprecated in
favor of new functions PQescapeStringConn and PQescapeByteaConn. The new
functions take the PGconn to which the string will be sent as an additional
parameter, and look inside the connection structure to determine what to do.
So as to provide some functionality for clients using the old functions,
libpq stores the latest encoding and standard_conforming_strings values
received from the backend in static variables, and the old functions consult
these variables. This will work reliably in clients using only one Postgres
connection at a time, or even multiple connections if they all use the same
encoding and string syntax settings; which should cover many practical
scenarios.
Clients that use homebrew escaping methods, such as PHP's addslashes()
function or even hardwired regexp substitution, will require extra effort
to fix :-(. It is strongly recommended that such code be replaced by use of
PQescapeStringConn/PQescapeByteaConn if at all feasible.
2006-05-21 22:19:23 +02:00
|
|
|
for (; i < len; i++)
|
|
|
|
|
{
|
|
|
|
|
if (((size_t) (target - to)) / 2 >= length)
|
|
|
|
|
break;
|
|
|
|
|
*target++ = ' ';
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
2003-05-08 20:16:37 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Write the terminating NUL character. */
|
|
|
|
|
*target = '\0';
|
|
|
|
|
|
|
|
|
|
return target - to;
|
|
|
|
|
}
|
|
|
|
|
|
Modify libpq's string-escaping routines to be aware of encoding considerations
and standard_conforming_strings. The encoding changes are needed for proper
escaping in multibyte encodings, as per the SQL-injection vulnerabilities
noted in CVE-2006-2313 and CVE-2006-2314. Concurrent fixes are being applied
to the server to ensure that it rejects queries that may have been corrupted
by attempted SQL injection, but this merely guarantees that unpatched clients
will fail rather than allow injection. An actual fix requires changing the
client-side code. While at it we have also fixed these routines to understand
about standard_conforming_strings, so that the upcoming changeover to SQL-spec
string syntax can be somewhat transparent to client code.
Since the existing API of PQescapeString and PQescapeBytea provides no way to
inform them which settings are in use, these functions are now deprecated in
favor of new functions PQescapeStringConn and PQescapeByteaConn. The new
functions take the PGconn to which the string will be sent as an additional
parameter, and look inside the connection structure to determine what to do.
So as to provide some functionality for clients using the old functions,
libpq stores the latest encoding and standard_conforming_strings values
received from the backend in static variables, and the old functions consult
these variables. This will work reliably in clients using only one Postgres
connection at a time, or even multiple connections if they all use the same
encoding and string syntax settings; which should cover many practical
scenarios.
Clients that use homebrew escaping methods, such as PHP's addslashes()
function or even hardwired regexp substitution, will require extra effort
to fix :-(. It is strongly recommended that such code be replaced by use of
PQescapeStringConn/PQescapeByteaConn if at all feasible.
2006-05-21 22:19:23 +02:00
|
|
|
size_t
|
|
|
|
|
PQescapeStringConn(PGconn *conn,
|
|
|
|
|
char *to, const char *from, size_t length,
|
|
|
|
|
int *error)
|
|
|
|
|
{
|
|
|
|
|
if (!conn)
|
|
|
|
|
{
|
|
|
|
|
/* force empty-string result */
|
|
|
|
|
*to = '\0';
|
|
|
|
|
if (error)
|
|
|
|
|
*error = 1;
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
In libpq, always append new error messages to conn->errorMessage.
Previously, we had an undisciplined mish-mash of printfPQExpBuffer and
appendPQExpBuffer calls to report errors within libpq. This commit
establishes a uniform rule that appendPQExpBuffer[Str] should be used.
conn->errorMessage is reset only at the start of an application request,
and then accumulates messages till we're done. We can remove no less
than three different ad-hoc mechanisms that were used to get the effect
of concatenation of error messages within a sequence of operations.
Although this makes things quite a bit cleaner conceptually, the main
reason to do it is to make the world safer for the multiple-target-host
feature that was added awhile back. Previously, there were many cases
in which an error occurring during an individual host connection attempt
would wipe out the record of what had happened during previous attempts.
(The reporting is still inadequate, in that it can be hard to tell which
host got the failure, but that seems like a matter for a separate commit.)
Currently, lo_import and lo_export contain exceptions to the "never
use printfPQExpBuffer" rule. If we changed them, we'd risk reporting
an incidental lo_close failure before the actual read or write
failure, which would be confusing, not least because lo_close happened
after the main failure. We could improve this by inventing an
internal version of lo_close that doesn't reset the errorMessage; but
we'd also need a version of PQfn() that does that, and it didn't quite
seem worth the trouble for now.
Discussion: https://postgr.es/m/BN6PR05MB3492948E4FD76C156E747E8BC9160@BN6PR05MB3492.namprd05.prod.outlook.com
2021-01-11 19:12:09 +01:00
|
|
|
|
2022-02-28 17:31:30 +01:00
|
|
|
if (conn->cmd_queue_head == NULL)
|
|
|
|
|
pqClearConnErrorState(conn);
|
In libpq, always append new error messages to conn->errorMessage.
Previously, we had an undisciplined mish-mash of printfPQExpBuffer and
appendPQExpBuffer calls to report errors within libpq. This commit
establishes a uniform rule that appendPQExpBuffer[Str] should be used.
conn->errorMessage is reset only at the start of an application request,
and then accumulates messages till we're done. We can remove no less
than three different ad-hoc mechanisms that were used to get the effect
of concatenation of error messages within a sequence of operations.
Although this makes things quite a bit cleaner conceptually, the main
reason to do it is to make the world safer for the multiple-target-host
feature that was added awhile back. Previously, there were many cases
in which an error occurring during an individual host connection attempt
would wipe out the record of what had happened during previous attempts.
(The reporting is still inadequate, in that it can be hard to tell which
host got the failure, but that seems like a matter for a separate commit.)
Currently, lo_import and lo_export contain exceptions to the "never
use printfPQExpBuffer" rule. If we changed them, we'd risk reporting
an incidental lo_close failure before the actual read or write
failure, which would be confusing, not least because lo_close happened
after the main failure. We could improve this by inventing an
internal version of lo_close that doesn't reset the errorMessage; but
we'd also need a version of PQfn() that does that, and it didn't quite
seem worth the trouble for now.
Discussion: https://postgr.es/m/BN6PR05MB3492948E4FD76C156E747E8BC9160@BN6PR05MB3492.namprd05.prod.outlook.com
2021-01-11 19:12:09 +01:00
|
|
|
|
Modify libpq's string-escaping routines to be aware of encoding considerations
and standard_conforming_strings. The encoding changes are needed for proper
escaping in multibyte encodings, as per the SQL-injection vulnerabilities
noted in CVE-2006-2313 and CVE-2006-2314. Concurrent fixes are being applied
to the server to ensure that it rejects queries that may have been corrupted
by attempted SQL injection, but this merely guarantees that unpatched clients
will fail rather than allow injection. An actual fix requires changing the
client-side code. While at it we have also fixed these routines to understand
about standard_conforming_strings, so that the upcoming changeover to SQL-spec
string syntax can be somewhat transparent to client code.
Since the existing API of PQescapeString and PQescapeBytea provides no way to
inform them which settings are in use, these functions are now deprecated in
favor of new functions PQescapeStringConn and PQescapeByteaConn. The new
functions take the PGconn to which the string will be sent as an additional
parameter, and look inside the connection structure to determine what to do.
So as to provide some functionality for clients using the old functions,
libpq stores the latest encoding and standard_conforming_strings values
received from the backend in static variables, and the old functions consult
these variables. This will work reliably in clients using only one Postgres
connection at a time, or even multiple connections if they all use the same
encoding and string syntax settings; which should cover many practical
scenarios.
Clients that use homebrew escaping methods, such as PHP's addslashes()
function or even hardwired regexp substitution, will require extra effort
to fix :-(. It is strongly recommended that such code be replaced by use of
PQescapeStringConn/PQescapeByteaConn if at all feasible.
2006-05-21 22:19:23 +02:00
|
|
|
return PQescapeStringInternal(conn, to, from, length, error,
|
|
|
|
|
conn->client_encoding,
|
|
|
|
|
conn->std_strings);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
size_t
|
|
|
|
|
PQescapeString(char *to, const char *from, size_t length)
|
|
|
|
|
{
|
|
|
|
|
return PQescapeStringInternal(NULL, to, from, length, NULL,
|
|
|
|
|
static_client_encoding,
|
|
|
|
|
static_std_strings);
|
|
|
|
|
}
|
|
|
|
|
|
2009-08-04 20:05:42 +02:00
|
|
|
|
2010-01-21 15:58:53 +01:00
|
|
|
/*
|
|
|
|
|
* Escape arbitrary strings. If as_ident is true, we escape the result
|
|
|
|
|
* as an identifier; if false, as a literal. The result is returned in
|
|
|
|
|
* a newly allocated buffer. If we fail due to an encoding violation or out
|
|
|
|
|
* of memory condition, we return NULL, storing an error message into conn.
|
|
|
|
|
*/
|
|
|
|
|
static char *
|
2010-01-21 19:43:25 +01:00
|
|
|
PQescapeInternal(PGconn *conn, const char *str, size_t len, bool as_ident)
|
2010-01-21 15:58:53 +01:00
|
|
|
{
|
|
|
|
|
const char *s;
|
|
|
|
|
char *result;
|
|
|
|
|
char *rp;
|
|
|
|
|
int num_quotes = 0; /* single or double, depending on as_ident */
|
|
|
|
|
int num_backslashes = 0;
|
|
|
|
|
int input_len;
|
|
|
|
|
int result_size;
|
|
|
|
|
char quote_char = as_ident ? '"' : '\'';
|
|
|
|
|
|
|
|
|
|
/* We must have a connection, else fail immediately. */
|
|
|
|
|
if (!conn)
|
|
|
|
|
return NULL;
|
|
|
|
|
|
2022-02-28 17:31:30 +01:00
|
|
|
if (conn->cmd_queue_head == NULL)
|
|
|
|
|
pqClearConnErrorState(conn);
|
In libpq, always append new error messages to conn->errorMessage.
Previously, we had an undisciplined mish-mash of printfPQExpBuffer and
appendPQExpBuffer calls to report errors within libpq. This commit
establishes a uniform rule that appendPQExpBuffer[Str] should be used.
conn->errorMessage is reset only at the start of an application request,
and then accumulates messages till we're done. We can remove no less
than three different ad-hoc mechanisms that were used to get the effect
of concatenation of error messages within a sequence of operations.
Although this makes things quite a bit cleaner conceptually, the main
reason to do it is to make the world safer for the multiple-target-host
feature that was added awhile back. Previously, there were many cases
in which an error occurring during an individual host connection attempt
would wipe out the record of what had happened during previous attempts.
(The reporting is still inadequate, in that it can be hard to tell which
host got the failure, but that seems like a matter for a separate commit.)
Currently, lo_import and lo_export contain exceptions to the "never
use printfPQExpBuffer" rule. If we changed them, we'd risk reporting
an incidental lo_close failure before the actual read or write
failure, which would be confusing, not least because lo_close happened
after the main failure. We could improve this by inventing an
internal version of lo_close that doesn't reset the errorMessage; but
we'd also need a version of PQfn() that does that, and it didn't quite
seem worth the trouble for now.
Discussion: https://postgr.es/m/BN6PR05MB3492948E4FD76C156E747E8BC9160@BN6PR05MB3492.namprd05.prod.outlook.com
2021-01-11 19:12:09 +01:00
|
|
|
|
2010-01-21 15:58:53 +01:00
|
|
|
/* Scan the string for characters that must be escaped. */
|
2010-01-21 19:43:25 +01:00
|
|
|
for (s = str; (s - str) < len && *s != '\0'; ++s)
|
2010-01-21 15:58:53 +01:00
|
|
|
{
|
|
|
|
|
if (*s == quote_char)
|
|
|
|
|
++num_quotes;
|
|
|
|
|
else if (*s == '\\')
|
|
|
|
|
++num_backslashes;
|
|
|
|
|
else if (IS_HIGHBIT_SET(*s))
|
|
|
|
|
{
|
|
|
|
|
int charlen;
|
|
|
|
|
|
|
|
|
|
/* Slow path for possible multibyte characters */
|
|
|
|
|
charlen = pg_encoding_mblen(conn->client_encoding, s);
|
|
|
|
|
|
|
|
|
|
/* Multibyte character overruns allowable length. */
|
|
|
|
|
if ((s - str) + charlen > len || memchr(s, 0, charlen) != NULL)
|
|
|
|
|
{
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "incomplete multibyte character");
|
2010-01-21 15:58:53 +01:00
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Adjust s, bearing in mind that for loop will increment it. */
|
|
|
|
|
s += charlen - 1;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Allocate output buffer. */
|
|
|
|
|
input_len = s - str;
|
|
|
|
|
result_size = input_len + num_quotes + 3; /* two quotes, plus a NUL */
|
|
|
|
|
if (!as_ident && num_backslashes > 0)
|
|
|
|
|
result_size += num_backslashes + 2;
|
|
|
|
|
result = rp = (char *) malloc(result_size);
|
|
|
|
|
if (rp == NULL)
|
|
|
|
|
{
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "out of memory");
|
2010-01-21 15:58:53 +01:00
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* If we are escaping a literal that contains backslashes, we use the
|
|
|
|
|
* escape string syntax so that the result is correct under either value
|
|
|
|
|
* of standard_conforming_strings. We also emit a leading space in this
|
|
|
|
|
* case, to guard against the possibility that the result might be
|
|
|
|
|
* interpolated immediately following an identifier.
|
|
|
|
|
*/
|
|
|
|
|
if (!as_ident && num_backslashes > 0)
|
|
|
|
|
{
|
|
|
|
|
*rp++ = ' ';
|
|
|
|
|
*rp++ = 'E';
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Opening quote. */
|
|
|
|
|
*rp++ = quote_char;
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Use fast path if possible.
|
|
|
|
|
*
|
|
|
|
|
* We've already verified that the input string is well-formed in the
|
|
|
|
|
* current encoding. If it contains no quotes and, in the case of
|
|
|
|
|
* literal-escaping, no backslashes, then we can just copy it directly to
|
|
|
|
|
* the output buffer, adding the necessary quotes.
|
|
|
|
|
*
|
|
|
|
|
* If not, we must rescan the input and process each character
|
|
|
|
|
* individually.
|
|
|
|
|
*/
|
|
|
|
|
if (num_quotes == 0 && (num_backslashes == 0 || as_ident))
|
|
|
|
|
{
|
|
|
|
|
memcpy(rp, str, input_len);
|
|
|
|
|
rp += input_len;
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
for (s = str; s - str < input_len; ++s)
|
|
|
|
|
{
|
|
|
|
|
if (*s == quote_char || (!as_ident && *s == '\\'))
|
|
|
|
|
{
|
|
|
|
|
*rp++ = *s;
|
|
|
|
|
*rp++ = *s;
|
|
|
|
|
}
|
|
|
|
|
else if (!IS_HIGHBIT_SET(*s))
|
|
|
|
|
*rp++ = *s;
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
int i = pg_encoding_mblen(conn->client_encoding, s);
|
2010-02-26 03:01:40 +01:00
|
|
|
|
2010-01-21 15:58:53 +01:00
|
|
|
while (1)
|
|
|
|
|
{
|
|
|
|
|
*rp++ = *s;
|
|
|
|
|
if (--i == 0)
|
|
|
|
|
break;
|
|
|
|
|
++s; /* for loop will provide the final increment */
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Closing quote and terminating NUL. */
|
|
|
|
|
*rp++ = quote_char;
|
|
|
|
|
*rp = '\0';
|
|
|
|
|
|
|
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
char *
|
|
|
|
|
PQescapeLiteral(PGconn *conn, const char *str, size_t len)
|
|
|
|
|
{
|
2010-01-21 19:43:25 +01:00
|
|
|
return PQescapeInternal(conn, str, len, false);
|
2010-01-21 15:58:53 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
char *
|
|
|
|
|
PQescapeIdentifier(PGconn *conn, const char *str, size_t len)
|
|
|
|
|
{
|
2010-01-21 19:43:25 +01:00
|
|
|
return PQescapeInternal(conn, str, len, true);
|
2010-01-21 15:58:53 +01:00
|
|
|
}
|
|
|
|
|
|
2009-08-04 20:05:42 +02:00
|
|
|
/* HEX encoding support for bytea */
|
|
|
|
|
static const char hextbl[] = "0123456789abcdef";
|
|
|
|
|
|
|
|
|
|
static const int8 hexlookup[128] = {
|
|
|
|
|
-1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1,
|
|
|
|
|
-1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1,
|
|
|
|
|
-1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1,
|
|
|
|
|
0, 1, 2, 3, 4, 5, 6, 7, 8, 9, -1, -1, -1, -1, -1, -1,
|
|
|
|
|
-1, 10, 11, 12, 13, 14, 15, -1, -1, -1, -1, -1, -1, -1, -1, -1,
|
|
|
|
|
-1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1,
|
|
|
|
|
-1, 10, 11, 12, 13, 14, 15, -1, -1, -1, -1, -1, -1, -1, -1, -1,
|
|
|
|
|
-1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1,
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
static inline char
|
|
|
|
|
get_hex(char c)
|
|
|
|
|
{
|
|
|
|
|
int res = -1;
|
|
|
|
|
|
|
|
|
|
if (c > 0 && c < 127)
|
|
|
|
|
res = hexlookup[(unsigned char) c];
|
|
|
|
|
|
|
|
|
|
return (char) res;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2003-05-08 20:16:37 +02:00
|
|
|
/*
|
|
|
|
|
* PQescapeBytea - converts from binary string to the
|
|
|
|
|
* minimal encoding necessary to include the string in an SQL
|
|
|
|
|
* INSERT statement with a bytea type column as the target.
|
|
|
|
|
*
|
2009-08-04 20:05:42 +02:00
|
|
|
* We can use either hex or escape (traditional) encoding.
|
|
|
|
|
* In escape mode, the following transformations are applied:
|
Modify libpq's string-escaping routines to be aware of encoding considerations
and standard_conforming_strings. The encoding changes are needed for proper
escaping in multibyte encodings, as per the SQL-injection vulnerabilities
noted in CVE-2006-2313 and CVE-2006-2314. Concurrent fixes are being applied
to the server to ensure that it rejects queries that may have been corrupted
by attempted SQL injection, but this merely guarantees that unpatched clients
will fail rather than allow injection. An actual fix requires changing the
client-side code. While at it we have also fixed these routines to understand
about standard_conforming_strings, so that the upcoming changeover to SQL-spec
string syntax can be somewhat transparent to client code.
Since the existing API of PQescapeString and PQescapeBytea provides no way to
inform them which settings are in use, these functions are now deprecated in
favor of new functions PQescapeStringConn and PQescapeByteaConn. The new
functions take the PGconn to which the string will be sent as an additional
parameter, and look inside the connection structure to determine what to do.
So as to provide some functionality for clients using the old functions,
libpq stores the latest encoding and standard_conforming_strings values
received from the backend in static variables, and the old functions consult
these variables. This will work reliably in clients using only one Postgres
connection at a time, or even multiple connections if they all use the same
encoding and string syntax settings; which should cover many practical
scenarios.
Clients that use homebrew escaping methods, such as PHP's addslashes()
function or even hardwired regexp substitution, will require extra effort
to fix :-(. It is strongly recommended that such code be replaced by use of
PQescapeStringConn/PQescapeByteaConn if at all feasible.
2006-05-21 22:19:23 +02:00
|
|
|
* '\0' == ASCII 0 == \000
|
|
|
|
|
* '\'' == ASCII 39 == ''
|
|
|
|
|
* '\\' == ASCII 92 == \\
|
|
|
|
|
* anything < 0x20, or > 0x7e ---> \ooo
|
2003-11-30 21:55:09 +01:00
|
|
|
* (where ooo is an octal expression)
|
2009-08-04 20:05:42 +02:00
|
|
|
*
|
Modify libpq's string-escaping routines to be aware of encoding considerations
and standard_conforming_strings. The encoding changes are needed for proper
escaping in multibyte encodings, as per the SQL-injection vulnerabilities
noted in CVE-2006-2313 and CVE-2006-2314. Concurrent fixes are being applied
to the server to ensure that it rejects queries that may have been corrupted
by attempted SQL injection, but this merely guarantees that unpatched clients
will fail rather than allow injection. An actual fix requires changing the
client-side code. While at it we have also fixed these routines to understand
about standard_conforming_strings, so that the upcoming changeover to SQL-spec
string syntax can be somewhat transparent to client code.
Since the existing API of PQescapeString and PQescapeBytea provides no way to
inform them which settings are in use, these functions are now deprecated in
favor of new functions PQescapeStringConn and PQescapeByteaConn. The new
functions take the PGconn to which the string will be sent as an additional
parameter, and look inside the connection structure to determine what to do.
So as to provide some functionality for clients using the old functions,
libpq stores the latest encoding and standard_conforming_strings values
received from the backend in static variables, and the old functions consult
these variables. This will work reliably in clients using only one Postgres
connection at a time, or even multiple connections if they all use the same
encoding and string syntax settings; which should cover many practical
scenarios.
Clients that use homebrew escaping methods, such as PHP's addslashes()
function or even hardwired regexp substitution, will require extra effort
to fix :-(. It is strongly recommended that such code be replaced by use of
PQescapeStringConn/PQescapeByteaConn if at all feasible.
2006-05-21 22:19:23 +02:00
|
|
|
* If not std_strings, all backslashes sent to the output are doubled.
|
2003-05-08 20:16:37 +02:00
|
|
|
*/
|
Modify libpq's string-escaping routines to be aware of encoding considerations
and standard_conforming_strings. The encoding changes are needed for proper
escaping in multibyte encodings, as per the SQL-injection vulnerabilities
noted in CVE-2006-2313 and CVE-2006-2314. Concurrent fixes are being applied
to the server to ensure that it rejects queries that may have been corrupted
by attempted SQL injection, but this merely guarantees that unpatched clients
will fail rather than allow injection. An actual fix requires changing the
client-side code. While at it we have also fixed these routines to understand
about standard_conforming_strings, so that the upcoming changeover to SQL-spec
string syntax can be somewhat transparent to client code.
Since the existing API of PQescapeString and PQescapeBytea provides no way to
inform them which settings are in use, these functions are now deprecated in
favor of new functions PQescapeStringConn and PQescapeByteaConn. The new
functions take the PGconn to which the string will be sent as an additional
parameter, and look inside the connection structure to determine what to do.
So as to provide some functionality for clients using the old functions,
libpq stores the latest encoding and standard_conforming_strings values
received from the backend in static variables, and the old functions consult
these variables. This will work reliably in clients using only one Postgres
connection at a time, or even multiple connections if they all use the same
encoding and string syntax settings; which should cover many practical
scenarios.
Clients that use homebrew escaping methods, such as PHP's addslashes()
function or even hardwired regexp substitution, will require extra effort
to fix :-(. It is strongly recommended that such code be replaced by use of
PQescapeStringConn/PQescapeByteaConn if at all feasible.
2006-05-21 22:19:23 +02:00
|
|
|
static unsigned char *
|
|
|
|
|
PQescapeByteaInternal(PGconn *conn,
|
|
|
|
|
const unsigned char *from, size_t from_length,
|
2009-08-04 20:05:42 +02:00
|
|
|
size_t *to_length, bool std_strings, bool use_hex)
|
2003-05-08 20:16:37 +02:00
|
|
|
{
|
|
|
|
|
const unsigned char *vp;
|
|
|
|
|
unsigned char *rp;
|
|
|
|
|
unsigned char *result;
|
|
|
|
|
size_t i;
|
|
|
|
|
size_t len;
|
Modify libpq's string-escaping routines to be aware of encoding considerations
and standard_conforming_strings. The encoding changes are needed for proper
escaping in multibyte encodings, as per the SQL-injection vulnerabilities
noted in CVE-2006-2313 and CVE-2006-2314. Concurrent fixes are being applied
to the server to ensure that it rejects queries that may have been corrupted
by attempted SQL injection, but this merely guarantees that unpatched clients
will fail rather than allow injection. An actual fix requires changing the
client-side code. While at it we have also fixed these routines to understand
about standard_conforming_strings, so that the upcoming changeover to SQL-spec
string syntax can be somewhat transparent to client code.
Since the existing API of PQescapeString and PQescapeBytea provides no way to
inform them which settings are in use, these functions are now deprecated in
favor of new functions PQescapeStringConn and PQescapeByteaConn. The new
functions take the PGconn to which the string will be sent as an additional
parameter, and look inside the connection structure to determine what to do.
So as to provide some functionality for clients using the old functions,
libpq stores the latest encoding and standard_conforming_strings values
received from the backend in static variables, and the old functions consult
these variables. This will work reliably in clients using only one Postgres
connection at a time, or even multiple connections if they all use the same
encoding and string syntax settings; which should cover many practical
scenarios.
Clients that use homebrew escaping methods, such as PHP's addslashes()
function or even hardwired regexp substitution, will require extra effort
to fix :-(. It is strongly recommended that such code be replaced by use of
PQescapeStringConn/PQescapeByteaConn if at all feasible.
2006-05-21 22:19:23 +02:00
|
|
|
size_t bslash_len = (std_strings ? 1 : 2);
|
2003-05-08 20:16:37 +02:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* empty string has 1 char ('\0')
|
|
|
|
|
*/
|
|
|
|
|
len = 1;
|
|
|
|
|
|
2009-08-04 20:05:42 +02:00
|
|
|
if (use_hex)
|
2003-05-08 20:16:37 +02:00
|
|
|
{
|
2009-08-04 20:05:42 +02:00
|
|
|
len += bslash_len + 1 + 2 * from_length;
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
vp = from;
|
|
|
|
|
for (i = from_length; i > 0; i--, vp++)
|
|
|
|
|
{
|
|
|
|
|
if (*vp < 0x20 || *vp > 0x7e)
|
|
|
|
|
len += bslash_len + 3;
|
|
|
|
|
else if (*vp == '\'')
|
|
|
|
|
len += 2;
|
|
|
|
|
else if (*vp == '\\')
|
|
|
|
|
len += bslash_len + bslash_len;
|
|
|
|
|
else
|
|
|
|
|
len++;
|
|
|
|
|
}
|
2003-05-08 20:16:37 +02:00
|
|
|
}
|
|
|
|
|
|
Modify libpq's string-escaping routines to be aware of encoding considerations
and standard_conforming_strings. The encoding changes are needed for proper
escaping in multibyte encodings, as per the SQL-injection vulnerabilities
noted in CVE-2006-2313 and CVE-2006-2314. Concurrent fixes are being applied
to the server to ensure that it rejects queries that may have been corrupted
by attempted SQL injection, but this merely guarantees that unpatched clients
will fail rather than allow injection. An actual fix requires changing the
client-side code. While at it we have also fixed these routines to understand
about standard_conforming_strings, so that the upcoming changeover to SQL-spec
string syntax can be somewhat transparent to client code.
Since the existing API of PQescapeString and PQescapeBytea provides no way to
inform them which settings are in use, these functions are now deprecated in
favor of new functions PQescapeStringConn and PQescapeByteaConn. The new
functions take the PGconn to which the string will be sent as an additional
parameter, and look inside the connection structure to determine what to do.
So as to provide some functionality for clients using the old functions,
libpq stores the latest encoding and standard_conforming_strings values
received from the backend in static variables, and the old functions consult
these variables. This will work reliably in clients using only one Postgres
connection at a time, or even multiple connections if they all use the same
encoding and string syntax settings; which should cover many practical
scenarios.
Clients that use homebrew escaping methods, such as PHP's addslashes()
function or even hardwired regexp substitution, will require extra effort
to fix :-(. It is strongly recommended that such code be replaced by use of
PQescapeStringConn/PQescapeByteaConn if at all feasible.
2006-05-21 22:19:23 +02:00
|
|
|
*to_length = len;
|
2003-05-08 20:16:37 +02:00
|
|
|
rp = result = (unsigned char *) malloc(len);
|
|
|
|
|
if (rp == NULL)
|
Modify libpq's string-escaping routines to be aware of encoding considerations
and standard_conforming_strings. The encoding changes are needed for proper
escaping in multibyte encodings, as per the SQL-injection vulnerabilities
noted in CVE-2006-2313 and CVE-2006-2314. Concurrent fixes are being applied
to the server to ensure that it rejects queries that may have been corrupted
by attempted SQL injection, but this merely guarantees that unpatched clients
will fail rather than allow injection. An actual fix requires changing the
client-side code. While at it we have also fixed these routines to understand
about standard_conforming_strings, so that the upcoming changeover to SQL-spec
string syntax can be somewhat transparent to client code.
Since the existing API of PQescapeString and PQescapeBytea provides no way to
inform them which settings are in use, these functions are now deprecated in
favor of new functions PQescapeStringConn and PQescapeByteaConn. The new
functions take the PGconn to which the string will be sent as an additional
parameter, and look inside the connection structure to determine what to do.
So as to provide some functionality for clients using the old functions,
libpq stores the latest encoding and standard_conforming_strings values
received from the backend in static variables, and the old functions consult
these variables. This will work reliably in clients using only one Postgres
connection at a time, or even multiple connections if they all use the same
encoding and string syntax settings; which should cover many practical
scenarios.
Clients that use homebrew escaping methods, such as PHP's addslashes()
function or even hardwired regexp substitution, will require extra effort
to fix :-(. It is strongly recommended that such code be replaced by use of
PQescapeStringConn/PQescapeByteaConn if at all feasible.
2006-05-21 22:19:23 +02:00
|
|
|
{
|
|
|
|
|
if (conn)
|
2022-11-15 11:50:04 +01:00
|
|
|
libpq_append_conn_error(conn, "out of memory");
|
2003-05-08 20:16:37 +02:00
|
|
|
return NULL;
|
Modify libpq's string-escaping routines to be aware of encoding considerations
and standard_conforming_strings. The encoding changes are needed for proper
escaping in multibyte encodings, as per the SQL-injection vulnerabilities
noted in CVE-2006-2313 and CVE-2006-2314. Concurrent fixes are being applied
to the server to ensure that it rejects queries that may have been corrupted
by attempted SQL injection, but this merely guarantees that unpatched clients
will fail rather than allow injection. An actual fix requires changing the
client-side code. While at it we have also fixed these routines to understand
about standard_conforming_strings, so that the upcoming changeover to SQL-spec
string syntax can be somewhat transparent to client code.
Since the existing API of PQescapeString and PQescapeBytea provides no way to
inform them which settings are in use, these functions are now deprecated in
favor of new functions PQescapeStringConn and PQescapeByteaConn. The new
functions take the PGconn to which the string will be sent as an additional
parameter, and look inside the connection structure to determine what to do.
So as to provide some functionality for clients using the old functions,
libpq stores the latest encoding and standard_conforming_strings values
received from the backend in static variables, and the old functions consult
these variables. This will work reliably in clients using only one Postgres
connection at a time, or even multiple connections if they all use the same
encoding and string syntax settings; which should cover many practical
scenarios.
Clients that use homebrew escaping methods, such as PHP's addslashes()
function or even hardwired regexp substitution, will require extra effort
to fix :-(. It is strongly recommended that such code be replaced by use of
PQescapeStringConn/PQescapeByteaConn if at all feasible.
2006-05-21 22:19:23 +02:00
|
|
|
}
|
2003-05-08 20:16:37 +02:00
|
|
|
|
2009-08-04 20:05:42 +02:00
|
|
|
if (use_hex)
|
|
|
|
|
{
|
|
|
|
|
if (!std_strings)
|
|
|
|
|
*rp++ = '\\';
|
|
|
|
|
*rp++ = '\\';
|
|
|
|
|
*rp++ = 'x';
|
|
|
|
|
}
|
|
|
|
|
|
Modify libpq's string-escaping routines to be aware of encoding considerations
and standard_conforming_strings. The encoding changes are needed for proper
escaping in multibyte encodings, as per the SQL-injection vulnerabilities
noted in CVE-2006-2313 and CVE-2006-2314. Concurrent fixes are being applied
to the server to ensure that it rejects queries that may have been corrupted
by attempted SQL injection, but this merely guarantees that unpatched clients
will fail rather than allow injection. An actual fix requires changing the
client-side code. While at it we have also fixed these routines to understand
about standard_conforming_strings, so that the upcoming changeover to SQL-spec
string syntax can be somewhat transparent to client code.
Since the existing API of PQescapeString and PQescapeBytea provides no way to
inform them which settings are in use, these functions are now deprecated in
favor of new functions PQescapeStringConn and PQescapeByteaConn. The new
functions take the PGconn to which the string will be sent as an additional
parameter, and look inside the connection structure to determine what to do.
So as to provide some functionality for clients using the old functions,
libpq stores the latest encoding and standard_conforming_strings values
received from the backend in static variables, and the old functions consult
these variables. This will work reliably in clients using only one Postgres
connection at a time, or even multiple connections if they all use the same
encoding and string syntax settings; which should cover many practical
scenarios.
Clients that use homebrew escaping methods, such as PHP's addslashes()
function or even hardwired regexp substitution, will require extra effort
to fix :-(. It is strongly recommended that such code be replaced by use of
PQescapeStringConn/PQescapeByteaConn if at all feasible.
2006-05-21 22:19:23 +02:00
|
|
|
vp = from;
|
|
|
|
|
for (i = from_length; i > 0; i--, vp++)
|
2003-05-08 20:16:37 +02:00
|
|
|
{
|
2009-08-04 20:05:42 +02:00
|
|
|
unsigned char c = *vp;
|
2008-09-10 19:01:07 +02:00
|
|
|
|
2009-08-04 20:05:42 +02:00
|
|
|
if (use_hex)
|
|
|
|
|
{
|
|
|
|
|
*rp++ = hextbl[(c >> 4) & 0xF];
|
|
|
|
|
*rp++ = hextbl[c & 0xF];
|
|
|
|
|
}
|
|
|
|
|
else if (c < 0x20 || c > 0x7e)
|
|
|
|
|
{
|
Modify libpq's string-escaping routines to be aware of encoding considerations
and standard_conforming_strings. The encoding changes are needed for proper
escaping in multibyte encodings, as per the SQL-injection vulnerabilities
noted in CVE-2006-2313 and CVE-2006-2314. Concurrent fixes are being applied
to the server to ensure that it rejects queries that may have been corrupted
by attempted SQL injection, but this merely guarantees that unpatched clients
will fail rather than allow injection. An actual fix requires changing the
client-side code. While at it we have also fixed these routines to understand
about standard_conforming_strings, so that the upcoming changeover to SQL-spec
string syntax can be somewhat transparent to client code.
Since the existing API of PQescapeString and PQescapeBytea provides no way to
inform them which settings are in use, these functions are now deprecated in
favor of new functions PQescapeStringConn and PQescapeByteaConn. The new
functions take the PGconn to which the string will be sent as an additional
parameter, and look inside the connection structure to determine what to do.
So as to provide some functionality for clients using the old functions,
libpq stores the latest encoding and standard_conforming_strings values
received from the backend in static variables, and the old functions consult
these variables. This will work reliably in clients using only one Postgres
connection at a time, or even multiple connections if they all use the same
encoding and string syntax settings; which should cover many practical
scenarios.
Clients that use homebrew escaping methods, such as PHP's addslashes()
function or even hardwired regexp substitution, will require extra effort
to fix :-(. It is strongly recommended that such code be replaced by use of
PQescapeStringConn/PQescapeByteaConn if at all feasible.
2006-05-21 22:19:23 +02:00
|
|
|
if (!std_strings)
|
|
|
|
|
*rp++ = '\\';
|
2008-09-10 19:01:07 +02:00
|
|
|
*rp++ = '\\';
|
2009-08-04 20:05:42 +02:00
|
|
|
*rp++ = (c >> 6) + '0';
|
|
|
|
|
*rp++ = ((c >> 3) & 07) + '0';
|
|
|
|
|
*rp++ = (c & 07) + '0';
|
2003-05-08 20:16:37 +02:00
|
|
|
}
|
2009-08-04 20:05:42 +02:00
|
|
|
else if (c == '\'')
|
2003-05-08 20:16:37 +02:00
|
|
|
{
|
Modify libpq's string-escaping routines to be aware of encoding considerations
and standard_conforming_strings. The encoding changes are needed for proper
escaping in multibyte encodings, as per the SQL-injection vulnerabilities
noted in CVE-2006-2313 and CVE-2006-2314. Concurrent fixes are being applied
to the server to ensure that it rejects queries that may have been corrupted
by attempted SQL injection, but this merely guarantees that unpatched clients
will fail rather than allow injection. An actual fix requires changing the
client-side code. While at it we have also fixed these routines to understand
about standard_conforming_strings, so that the upcoming changeover to SQL-spec
string syntax can be somewhat transparent to client code.
Since the existing API of PQescapeString and PQescapeBytea provides no way to
inform them which settings are in use, these functions are now deprecated in
favor of new functions PQescapeStringConn and PQescapeByteaConn. The new
functions take the PGconn to which the string will be sent as an additional
parameter, and look inside the connection structure to determine what to do.
So as to provide some functionality for clients using the old functions,
libpq stores the latest encoding and standard_conforming_strings values
received from the backend in static variables, and the old functions consult
these variables. This will work reliably in clients using only one Postgres
connection at a time, or even multiple connections if they all use the same
encoding and string syntax settings; which should cover many practical
scenarios.
Clients that use homebrew escaping methods, such as PHP's addslashes()
function or even hardwired regexp substitution, will require extra effort
to fix :-(. It is strongly recommended that such code be replaced by use of
PQescapeStringConn/PQescapeByteaConn if at all feasible.
2006-05-21 22:19:23 +02:00
|
|
|
*rp++ = '\'';
|
|
|
|
|
*rp++ = '\'';
|
2003-05-08 20:16:37 +02:00
|
|
|
}
|
2009-08-04 20:05:42 +02:00
|
|
|
else if (c == '\\')
|
2003-05-08 20:16:37 +02:00
|
|
|
{
|
Modify libpq's string-escaping routines to be aware of encoding considerations
and standard_conforming_strings. The encoding changes are needed for proper
escaping in multibyte encodings, as per the SQL-injection vulnerabilities
noted in CVE-2006-2313 and CVE-2006-2314. Concurrent fixes are being applied
to the server to ensure that it rejects queries that may have been corrupted
by attempted SQL injection, but this merely guarantees that unpatched clients
will fail rather than allow injection. An actual fix requires changing the
client-side code. While at it we have also fixed these routines to understand
about standard_conforming_strings, so that the upcoming changeover to SQL-spec
string syntax can be somewhat transparent to client code.
Since the existing API of PQescapeString and PQescapeBytea provides no way to
inform them which settings are in use, these functions are now deprecated in
favor of new functions PQescapeStringConn and PQescapeByteaConn. The new
functions take the PGconn to which the string will be sent as an additional
parameter, and look inside the connection structure to determine what to do.
So as to provide some functionality for clients using the old functions,
libpq stores the latest encoding and standard_conforming_strings values
received from the backend in static variables, and the old functions consult
these variables. This will work reliably in clients using only one Postgres
connection at a time, or even multiple connections if they all use the same
encoding and string syntax settings; which should cover many practical
scenarios.
Clients that use homebrew escaping methods, such as PHP's addslashes()
function or even hardwired regexp substitution, will require extra effort
to fix :-(. It is strongly recommended that such code be replaced by use of
PQescapeStringConn/PQescapeByteaConn if at all feasible.
2006-05-21 22:19:23 +02:00
|
|
|
if (!std_strings)
|
|
|
|
|
{
|
|
|
|
|
*rp++ = '\\';
|
|
|
|
|
*rp++ = '\\';
|
|
|
|
|
}
|
|
|
|
|
*rp++ = '\\';
|
|
|
|
|
*rp++ = '\\';
|
2003-05-08 20:16:37 +02:00
|
|
|
}
|
|
|
|
|
else
|
2009-08-04 20:05:42 +02:00
|
|
|
*rp++ = c;
|
2003-05-08 20:16:37 +02:00
|
|
|
}
|
|
|
|
|
*rp = '\0';
|
|
|
|
|
|
|
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
|
Modify libpq's string-escaping routines to be aware of encoding considerations
and standard_conforming_strings. The encoding changes are needed for proper
escaping in multibyte encodings, as per the SQL-injection vulnerabilities
noted in CVE-2006-2313 and CVE-2006-2314. Concurrent fixes are being applied
to the server to ensure that it rejects queries that may have been corrupted
by attempted SQL injection, but this merely guarantees that unpatched clients
will fail rather than allow injection. An actual fix requires changing the
client-side code. While at it we have also fixed these routines to understand
about standard_conforming_strings, so that the upcoming changeover to SQL-spec
string syntax can be somewhat transparent to client code.
Since the existing API of PQescapeString and PQescapeBytea provides no way to
inform them which settings are in use, these functions are now deprecated in
favor of new functions PQescapeStringConn and PQescapeByteaConn. The new
functions take the PGconn to which the string will be sent as an additional
parameter, and look inside the connection structure to determine what to do.
So as to provide some functionality for clients using the old functions,
libpq stores the latest encoding and standard_conforming_strings values
received from the backend in static variables, and the old functions consult
these variables. This will work reliably in clients using only one Postgres
connection at a time, or even multiple connections if they all use the same
encoding and string syntax settings; which should cover many practical
scenarios.
Clients that use homebrew escaping methods, such as PHP's addslashes()
function or even hardwired regexp substitution, will require extra effort
to fix :-(. It is strongly recommended that such code be replaced by use of
PQescapeStringConn/PQescapeByteaConn if at all feasible.
2006-05-21 22:19:23 +02:00
|
|
|
unsigned char *
|
|
|
|
|
PQescapeByteaConn(PGconn *conn,
|
|
|
|
|
const unsigned char *from, size_t from_length,
|
|
|
|
|
size_t *to_length)
|
|
|
|
|
{
|
|
|
|
|
if (!conn)
|
|
|
|
|
return NULL;
|
In libpq, always append new error messages to conn->errorMessage.
Previously, we had an undisciplined mish-mash of printfPQExpBuffer and
appendPQExpBuffer calls to report errors within libpq. This commit
establishes a uniform rule that appendPQExpBuffer[Str] should be used.
conn->errorMessage is reset only at the start of an application request,
and then accumulates messages till we're done. We can remove no less
than three different ad-hoc mechanisms that were used to get the effect
of concatenation of error messages within a sequence of operations.
Although this makes things quite a bit cleaner conceptually, the main
reason to do it is to make the world safer for the multiple-target-host
feature that was added awhile back. Previously, there were many cases
in which an error occurring during an individual host connection attempt
would wipe out the record of what had happened during previous attempts.
(The reporting is still inadequate, in that it can be hard to tell which
host got the failure, but that seems like a matter for a separate commit.)
Currently, lo_import and lo_export contain exceptions to the "never
use printfPQExpBuffer" rule. If we changed them, we'd risk reporting
an incidental lo_close failure before the actual read or write
failure, which would be confusing, not least because lo_close happened
after the main failure. We could improve this by inventing an
internal version of lo_close that doesn't reset the errorMessage; but
we'd also need a version of PQfn() that does that, and it didn't quite
seem worth the trouble for now.
Discussion: https://postgr.es/m/BN6PR05MB3492948E4FD76C156E747E8BC9160@BN6PR05MB3492.namprd05.prod.outlook.com
2021-01-11 19:12:09 +01:00
|
|
|
|
2022-02-28 17:31:30 +01:00
|
|
|
if (conn->cmd_queue_head == NULL)
|
|
|
|
|
pqClearConnErrorState(conn);
|
In libpq, always append new error messages to conn->errorMessage.
Previously, we had an undisciplined mish-mash of printfPQExpBuffer and
appendPQExpBuffer calls to report errors within libpq. This commit
establishes a uniform rule that appendPQExpBuffer[Str] should be used.
conn->errorMessage is reset only at the start of an application request,
and then accumulates messages till we're done. We can remove no less
than three different ad-hoc mechanisms that were used to get the effect
of concatenation of error messages within a sequence of operations.
Although this makes things quite a bit cleaner conceptually, the main
reason to do it is to make the world safer for the multiple-target-host
feature that was added awhile back. Previously, there were many cases
in which an error occurring during an individual host connection attempt
would wipe out the record of what had happened during previous attempts.
(The reporting is still inadequate, in that it can be hard to tell which
host got the failure, but that seems like a matter for a separate commit.)
Currently, lo_import and lo_export contain exceptions to the "never
use printfPQExpBuffer" rule. If we changed them, we'd risk reporting
an incidental lo_close failure before the actual read or write
failure, which would be confusing, not least because lo_close happened
after the main failure. We could improve this by inventing an
internal version of lo_close that doesn't reset the errorMessage; but
we'd also need a version of PQfn() that does that, and it didn't quite
seem worth the trouble for now.
Discussion: https://postgr.es/m/BN6PR05MB3492948E4FD76C156E747E8BC9160@BN6PR05MB3492.namprd05.prod.outlook.com
2021-01-11 19:12:09 +01:00
|
|
|
|
Modify libpq's string-escaping routines to be aware of encoding considerations
and standard_conforming_strings. The encoding changes are needed for proper
escaping in multibyte encodings, as per the SQL-injection vulnerabilities
noted in CVE-2006-2313 and CVE-2006-2314. Concurrent fixes are being applied
to the server to ensure that it rejects queries that may have been corrupted
by attempted SQL injection, but this merely guarantees that unpatched clients
will fail rather than allow injection. An actual fix requires changing the
client-side code. While at it we have also fixed these routines to understand
about standard_conforming_strings, so that the upcoming changeover to SQL-spec
string syntax can be somewhat transparent to client code.
Since the existing API of PQescapeString and PQescapeBytea provides no way to
inform them which settings are in use, these functions are now deprecated in
favor of new functions PQescapeStringConn and PQescapeByteaConn. The new
functions take the PGconn to which the string will be sent as an additional
parameter, and look inside the connection structure to determine what to do.
So as to provide some functionality for clients using the old functions,
libpq stores the latest encoding and standard_conforming_strings values
received from the backend in static variables, and the old functions consult
these variables. This will work reliably in clients using only one Postgres
connection at a time, or even multiple connections if they all use the same
encoding and string syntax settings; which should cover many practical
scenarios.
Clients that use homebrew escaping methods, such as PHP's addslashes()
function or even hardwired regexp substitution, will require extra effort
to fix :-(. It is strongly recommended that such code be replaced by use of
PQescapeStringConn/PQescapeByteaConn if at all feasible.
2006-05-21 22:19:23 +02:00
|
|
|
return PQescapeByteaInternal(conn, from, from_length, to_length,
|
2009-08-04 20:05:42 +02:00
|
|
|
conn->std_strings,
|
2010-02-17 05:19:41 +01:00
|
|
|
(conn->sversion >= 90000));
|
Modify libpq's string-escaping routines to be aware of encoding considerations
and standard_conforming_strings. The encoding changes are needed for proper
escaping in multibyte encodings, as per the SQL-injection vulnerabilities
noted in CVE-2006-2313 and CVE-2006-2314. Concurrent fixes are being applied
to the server to ensure that it rejects queries that may have been corrupted
by attempted SQL injection, but this merely guarantees that unpatched clients
will fail rather than allow injection. An actual fix requires changing the
client-side code. While at it we have also fixed these routines to understand
about standard_conforming_strings, so that the upcoming changeover to SQL-spec
string syntax can be somewhat transparent to client code.
Since the existing API of PQescapeString and PQescapeBytea provides no way to
inform them which settings are in use, these functions are now deprecated in
favor of new functions PQescapeStringConn and PQescapeByteaConn. The new
functions take the PGconn to which the string will be sent as an additional
parameter, and look inside the connection structure to determine what to do.
So as to provide some functionality for clients using the old functions,
libpq stores the latest encoding and standard_conforming_strings values
received from the backend in static variables, and the old functions consult
these variables. This will work reliably in clients using only one Postgres
connection at a time, or even multiple connections if they all use the same
encoding and string syntax settings; which should cover many practical
scenarios.
Clients that use homebrew escaping methods, such as PHP's addslashes()
function or even hardwired regexp substitution, will require extra effort
to fix :-(. It is strongly recommended that such code be replaced by use of
PQescapeStringConn/PQescapeByteaConn if at all feasible.
2006-05-21 22:19:23 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
unsigned char *
|
|
|
|
|
PQescapeBytea(const unsigned char *from, size_t from_length, size_t *to_length)
|
|
|
|
|
{
|
|
|
|
|
return PQescapeByteaInternal(NULL, from, from_length, to_length,
|
2009-08-04 20:05:42 +02:00
|
|
|
static_std_strings,
|
|
|
|
|
false /* can't use hex */ );
|
2009-08-04 18:08:37 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2003-10-31 18:43:10 +01:00
|
|
|
#define ISFIRSTOCTDIGIT(CH) ((CH) >= '0' && (CH) <= '3')
|
|
|
|
|
#define ISOCTDIGIT(CH) ((CH) >= '0' && (CH) <= '7')
|
|
|
|
|
#define OCTVAL(CH) ((CH) - '0')
|
2003-06-12 03:17:19 +02:00
|
|
|
|
2003-05-08 20:16:37 +02:00
|
|
|
/*
|
|
|
|
|
* PQunescapeBytea - converts the null terminated string representation
|
|
|
|
|
* of a bytea, strtext, into binary, filling a buffer. It returns a
|
2003-10-31 18:43:10 +01:00
|
|
|
* pointer to the buffer (or NULL on error), and the size of the
|
2003-05-08 20:16:37 +02:00
|
|
|
* buffer in retbuflen. The pointer may subsequently be used as an
|
Modify libpq's string-escaping routines to be aware of encoding considerations
and standard_conforming_strings. The encoding changes are needed for proper
escaping in multibyte encodings, as per the SQL-injection vulnerabilities
noted in CVE-2006-2313 and CVE-2006-2314. Concurrent fixes are being applied
to the server to ensure that it rejects queries that may have been corrupted
by attempted SQL injection, but this merely guarantees that unpatched clients
will fail rather than allow injection. An actual fix requires changing the
client-side code. While at it we have also fixed these routines to understand
about standard_conforming_strings, so that the upcoming changeover to SQL-spec
string syntax can be somewhat transparent to client code.
Since the existing API of PQescapeString and PQescapeBytea provides no way to
inform them which settings are in use, these functions are now deprecated in
favor of new functions PQescapeStringConn and PQescapeByteaConn. The new
functions take the PGconn to which the string will be sent as an additional
parameter, and look inside the connection structure to determine what to do.
So as to provide some functionality for clients using the old functions,
libpq stores the latest encoding and standard_conforming_strings values
received from the backend in static variables, and the old functions consult
these variables. This will work reliably in clients using only one Postgres
connection at a time, or even multiple connections if they all use the same
encoding and string syntax settings; which should cover many practical
scenarios.
Clients that use homebrew escaping methods, such as PHP's addslashes()
function or even hardwired regexp substitution, will require extra effort
to fix :-(. It is strongly recommended that such code be replaced by use of
PQescapeStringConn/PQescapeByteaConn if at all feasible.
2006-05-21 22:19:23 +02:00
|
|
|
* argument to the function PQfreemem.
|
2003-05-08 20:16:37 +02:00
|
|
|
*
|
2003-06-12 03:17:19 +02:00
|
|
|
* The following transformations are made:
|
|
|
|
|
* \\ == ASCII 92 == \
|
|
|
|
|
* \ooo == a byte whose value = ooo (ooo is an octal number)
|
|
|
|
|
* \x == x (x is any character not matched by the above transformations)
|
2003-05-08 20:16:37 +02:00
|
|
|
*/
|
|
|
|
|
unsigned char *
|
|
|
|
|
PQunescapeBytea(const unsigned char *strtext, size_t *retbuflen)
|
|
|
|
|
{
|
2003-06-12 03:17:19 +02:00
|
|
|
size_t strtextlen,
|
|
|
|
|
buflen;
|
|
|
|
|
unsigned char *buffer,
|
|
|
|
|
*tmpbuf;
|
2003-10-31 18:43:10 +01:00
|
|
|
size_t i,
|
|
|
|
|
j;
|
2003-05-08 20:16:37 +02:00
|
|
|
|
2003-06-12 03:17:19 +02:00
|
|
|
if (strtext == NULL)
|
2003-05-08 20:16:37 +02:00
|
|
|
return NULL;
|
2003-06-12 03:17:19 +02:00
|
|
|
|
2005-09-24 19:53:28 +02:00
|
|
|
strtextlen = strlen((const char *) strtext);
|
2004-08-29 07:07:03 +02:00
|
|
|
|
2009-08-04 18:08:37 +02:00
|
|
|
if (strtext[0] == '\\' && strtext[1] == 'x')
|
|
|
|
|
{
|
|
|
|
|
const unsigned char *s;
|
|
|
|
|
unsigned char *p;
|
|
|
|
|
|
|
|
|
|
buflen = (strtextlen - 2) / 2;
|
|
|
|
|
/* Avoid unportable malloc(0) */
|
|
|
|
|
buffer = (unsigned char *) malloc(buflen > 0 ? buflen : 1);
|
|
|
|
|
if (buffer == NULL)
|
|
|
|
|
return NULL;
|
|
|
|
|
|
|
|
|
|
s = strtext + 2;
|
|
|
|
|
p = buffer;
|
|
|
|
|
while (*s)
|
|
|
|
|
{
|
|
|
|
|
char v1,
|
|
|
|
|
v2;
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Bad input is silently ignored. Note that this includes
|
|
|
|
|
* whitespace between hex pairs, which is allowed by byteain.
|
|
|
|
|
*/
|
|
|
|
|
v1 = get_hex(*s++);
|
|
|
|
|
if (!*s || v1 == (char) -1)
|
|
|
|
|
continue;
|
|
|
|
|
v2 = get_hex(*s++);
|
|
|
|
|
if (v2 != (char) -1)
|
|
|
|
|
*p++ = (v1 << 4) | v2;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
buflen = p - buffer;
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
2003-10-31 18:43:10 +01:00
|
|
|
/*
|
|
|
|
|
* Length of input is max length of output, but add one to avoid
|
|
|
|
|
* unportable malloc(0) if input is zero-length.
|
|
|
|
|
*/
|
|
|
|
|
buffer = (unsigned char *) malloc(strtextlen + 1);
|
2003-05-08 20:16:37 +02:00
|
|
|
if (buffer == NULL)
|
|
|
|
|
return NULL;
|
2003-06-12 03:17:19 +02:00
|
|
|
|
2003-10-31 18:43:10 +01:00
|
|
|
for (i = j = 0; i < strtextlen;)
|
2003-05-08 20:16:37 +02:00
|
|
|
{
|
2003-06-12 03:17:19 +02:00
|
|
|
switch (strtext[i])
|
2010-02-26 03:01:40 +01:00
|
|
|
{
|
2003-06-12 03:17:19 +02:00
|
|
|
case '\\':
|
|
|
|
|
i++;
|
|
|
|
|
if (strtext[i] == '\\')
|
|
|
|
|
buffer[j++] = strtext[i++];
|
2003-05-08 20:16:37 +02:00
|
|
|
else
|
2003-06-12 03:17:19 +02:00
|
|
|
{
|
2003-10-31 18:43:10 +01:00
|
|
|
if ((ISFIRSTOCTDIGIT(strtext[i])) &&
|
|
|
|
|
(ISOCTDIGIT(strtext[i + 1])) &&
|
|
|
|
|
(ISOCTDIGIT(strtext[i + 2])))
|
2010-02-26 03:01:40 +01:00
|
|
|
{
|
2003-10-31 18:43:10 +01:00
|
|
|
int byte;
|
2010-02-26 03:01:40 +01:00
|
|
|
|
2003-10-31 18:43:10 +01:00
|
|
|
byte = OCTVAL(strtext[i++]);
|
|
|
|
|
byte = (byte << 3) + OCTVAL(strtext[i++]);
|
|
|
|
|
byte = (byte << 3) + OCTVAL(strtext[i++]);
|
|
|
|
|
buffer[j++] = byte;
|
2010-02-26 03:01:40 +01:00
|
|
|
}
|
2003-06-12 03:17:19 +02:00
|
|
|
}
|
2004-08-29 07:07:03 +02:00
|
|
|
|
2003-10-31 18:43:10 +01:00
|
|
|
/*
|
|
|
|
|
* Note: if we see '\' followed by something that isn't a
|
|
|
|
|
* recognized escape sequence, we loop around having done
|
|
|
|
|
* nothing except advance i. Therefore the something will
|
|
|
|
|
* be emitted as ordinary data on the next cycle. Corner
|
|
|
|
|
* case: '\' at end of string will just be discarded.
|
|
|
|
|
*/
|
2003-05-08 20:16:37 +02:00
|
|
|
break;
|
|
|
|
|
|
2003-06-12 03:17:19 +02:00
|
|
|
default:
|
|
|
|
|
buffer[j++] = strtext[i++];
|
2003-10-31 18:43:10 +01:00
|
|
|
break;
|
2010-02-26 03:01:40 +01:00
|
|
|
}
|
2003-05-08 20:16:37 +02:00
|
|
|
}
|
2003-10-31 18:43:10 +01:00
|
|
|
buflen = j; /* buflen is the length of the dequoted data */
|
2009-08-04 18:08:37 +02:00
|
|
|
}
|
2003-10-02 16:47:44 +02:00
|
|
|
|
|
|
|
|
/* Shrink the buffer to be no larger than necessary */
|
2003-10-31 18:43:10 +01:00
|
|
|
/* +1 avoids unportable behavior when buflen==0 */
|
|
|
|
|
tmpbuf = realloc(buffer, buflen + 1);
|
2003-06-12 03:17:19 +02:00
|
|
|
|
2003-10-02 16:47:44 +02:00
|
|
|
/* It would only be a very brain-dead realloc that could fail, but... */
|
2003-06-12 03:17:19 +02:00
|
|
|
if (!tmpbuf)
|
|
|
|
|
{
|
|
|
|
|
free(buffer);
|
2003-10-02 16:47:44 +02:00
|
|
|
return NULL;
|
2003-06-12 03:17:19 +02:00
|
|
|
}
|
2003-05-08 20:16:37 +02:00
|
|
|
|
|
|
|
|
*retbuflen = buflen;
|
2003-06-12 03:17:19 +02:00
|
|
|
return tmpbuf;
|
2003-05-08 20:16:37 +02:00
|
|
|
}
|
