2002-08-27 20:57:26 +02:00
|
|
|
/*-------------------------------------------------------------------------
|
|
|
|
*
|
|
|
|
* Utility routines for SQL dumping
|
2003-05-31 00:55:16 +02:00
|
|
|
* Basically this is stuff that is useful in both pg_dump and pg_dumpall.
|
|
|
|
*
|
2002-08-27 20:57:26 +02:00
|
|
|
*
|
|
|
|
* Portions Copyright (c) 1996-2002, PostgreSQL Global Development Group
|
|
|
|
* Portions Copyright (c) 1994, Regents of the University of California
|
|
|
|
*
|
2003-05-31 00:55:16 +02:00
|
|
|
* $Header: /cvsroot/pgsql/src/bin/pg_dump/dumputils.c,v 1.4 2003/05/30 22:55:15 tgl Exp $
|
2002-08-27 20:57:26 +02:00
|
|
|
*
|
|
|
|
*-------------------------------------------------------------------------
|
|
|
|
*/
|
|
|
|
|
|
|
|
#include "postgres_fe.h"
|
|
|
|
|
|
|
|
#include "dumputils.h"
|
|
|
|
|
|
|
|
#include "parser/keywords.h"
|
|
|
|
|
|
|
|
|
2003-05-31 00:55:16 +02:00
|
|
|
static bool parseAclItem(const char *item, const char *type, const char *name,
|
|
|
|
int remoteVersion,
|
|
|
|
PQExpBuffer grantee, PQExpBuffer grantor,
|
|
|
|
PQExpBuffer privs, PQExpBuffer privswgo);
|
|
|
|
static void AddAcl(PQExpBuffer aclbuf, const char *keyword);
|
|
|
|
|
2002-08-27 20:57:26 +02:00
|
|
|
|
|
|
|
/*
|
|
|
|
* Quotes input string if it's not a legitimate SQL identifier as-is.
|
|
|
|
*
|
|
|
|
* Note that the returned string must be used before calling fmtId again,
|
|
|
|
* since we re-use the same return buffer each time. Non-reentrant but
|
|
|
|
* avoids memory leakage.
|
|
|
|
*/
|
|
|
|
const char *
|
|
|
|
fmtId(const char *rawid)
|
|
|
|
{
|
|
|
|
static PQExpBuffer id_return = NULL;
|
|
|
|
const char *cp;
|
2002-09-04 22:31:48 +02:00
|
|
|
bool need_quotes = false;
|
2002-08-27 20:57:26 +02:00
|
|
|
|
|
|
|
if (id_return) /* first time through? */
|
|
|
|
resetPQExpBuffer(id_return);
|
|
|
|
else
|
|
|
|
id_return = createPQExpBuffer();
|
|
|
|
|
2002-09-04 22:31:48 +02:00
|
|
|
/*
|
|
|
|
* These checks need to match the identifier production in scan.l.
|
|
|
|
* Don't use islower() etc.
|
|
|
|
*/
|
2002-08-27 20:57:26 +02:00
|
|
|
|
|
|
|
if (ScanKeywordLookup(rawid))
|
|
|
|
need_quotes = true;
|
|
|
|
/* slightly different rules for first character */
|
|
|
|
else if (!((rawid[0] >= 'a' && rawid[0] <= 'z') || rawid[0] == '_'))
|
|
|
|
need_quotes = true;
|
|
|
|
else
|
|
|
|
{
|
|
|
|
/* otherwise check the entire string */
|
|
|
|
for (cp = rawid; *cp; cp++)
|
|
|
|
{
|
|
|
|
if (!((*cp >= 'a' && *cp <= 'z')
|
|
|
|
|| (*cp >= '0' && *cp <= '9')
|
|
|
|
|| (*cp == '_')))
|
|
|
|
{
|
|
|
|
need_quotes = true;
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
if (!need_quotes)
|
|
|
|
{
|
|
|
|
/* no quoting needed */
|
|
|
|
appendPQExpBufferStr(id_return, rawid);
|
|
|
|
}
|
|
|
|
else
|
|
|
|
{
|
|
|
|
appendPQExpBufferChar(id_return, '\"');
|
|
|
|
for (cp = rawid; *cp; cp++)
|
|
|
|
{
|
|
|
|
/*
|
|
|
|
* Did we find a double-quote in the string? Then make this a
|
|
|
|
* double double-quote per SQL99. Before, we put in a
|
|
|
|
* backslash/double-quote pair. - thomas 2000-08-05
|
|
|
|
*/
|
|
|
|
if (*cp == '\"')
|
|
|
|
appendPQExpBufferChar(id_return, '\"');
|
|
|
|
appendPQExpBufferChar(id_return, *cp);
|
|
|
|
}
|
|
|
|
appendPQExpBufferChar(id_return, '\"');
|
|
|
|
}
|
|
|
|
|
|
|
|
return id_return->data;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
* Convert a string value to an SQL string literal and append it to
|
|
|
|
* the given buffer.
|
|
|
|
*
|
|
|
|
* Special characters are escaped. Quote mark ' goes to '' per SQL
|
|
|
|
* standard, other stuff goes to \ sequences. If escapeAll is false,
|
|
|
|
* whitespace characters are not escaped (tabs, newlines, etc.). This
|
|
|
|
* is appropriate for dump file output.
|
|
|
|
*/
|
|
|
|
void
|
|
|
|
appendStringLiteral(PQExpBuffer buf, const char *str, bool escapeAll)
|
|
|
|
{
|
|
|
|
appendPQExpBufferChar(buf, '\'');
|
|
|
|
while (*str)
|
|
|
|
{
|
|
|
|
char ch = *str++;
|
|
|
|
|
|
|
|
if (ch == '\\' || ch == '\'')
|
|
|
|
{
|
|
|
|
appendPQExpBufferChar(buf, ch); /* double these */
|
|
|
|
appendPQExpBufferChar(buf, ch);
|
|
|
|
}
|
|
|
|
else if ((unsigned char) ch < (unsigned char) ' ' &&
|
|
|
|
(escapeAll
|
|
|
|
|| (ch != '\t' && ch != '\n' && ch != '\v' && ch != '\f' && ch != '\r')
|
|
|
|
))
|
|
|
|
{
|
|
|
|
/*
|
|
|
|
* generate octal escape for control chars other than
|
|
|
|
* whitespace
|
|
|
|
*/
|
|
|
|
appendPQExpBufferChar(buf, '\\');
|
|
|
|
appendPQExpBufferChar(buf, ((ch >> 6) & 3) + '0');
|
|
|
|
appendPQExpBufferChar(buf, ((ch >> 3) & 7) + '0');
|
|
|
|
appendPQExpBufferChar(buf, (ch & 7) + '0');
|
|
|
|
}
|
|
|
|
else
|
|
|
|
appendPQExpBufferChar(buf, ch);
|
|
|
|
}
|
|
|
|
appendPQExpBufferChar(buf, '\'');
|
|
|
|
}
|
2002-09-07 18:14:33 +02:00
|
|
|
|
|
|
|
|
2003-05-31 00:55:16 +02:00
|
|
|
/*
|
|
|
|
* Convert backend's version string into a number.
|
|
|
|
*/
|
2002-09-07 18:14:33 +02:00
|
|
|
int
|
|
|
|
parse_version(const char *versionString)
|
|
|
|
{
|
|
|
|
int cnt;
|
|
|
|
int vmaj,
|
|
|
|
vmin,
|
|
|
|
vrev;
|
|
|
|
|
|
|
|
cnt = sscanf(versionString, "%d.%d.%d", &vmaj, &vmin, &vrev);
|
|
|
|
|
|
|
|
if (cnt < 2)
|
|
|
|
return -1;
|
|
|
|
|
|
|
|
if (cnt == 2)
|
|
|
|
vrev = 0;
|
|
|
|
|
|
|
|
return (100 * vmaj + vmin) * 100 + vrev;
|
|
|
|
}
|
2003-05-31 00:55:16 +02:00
|
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
* Build GRANT/REVOKE command(s) for an object.
|
|
|
|
*
|
|
|
|
* name: the object name, in the form to use in the commands (already quoted)
|
|
|
|
* type: the object type (as seen in GRANT command: must be one of
|
|
|
|
* TABLE, FUNCTION, LANGUAGE, or SCHEMA, or DATABASE)
|
|
|
|
* acls: the ACL string fetched from the database
|
|
|
|
* owner: username of object owner (will be passed through fmtId), or NULL
|
|
|
|
* remoteVersion: version of database
|
|
|
|
*
|
|
|
|
* Returns TRUE if okay, FALSE if could not parse the acl string.
|
|
|
|
* The resulting commands (if any) are appended to the contents of 'sql'.
|
|
|
|
*
|
|
|
|
* Note: beware of passing fmtId() result as 'name', since this routine
|
|
|
|
* uses fmtId() internally.
|
|
|
|
*/
|
|
|
|
bool
|
|
|
|
buildACLCommands(const char *name, const char *type,
|
|
|
|
const char *acls, const char *owner,
|
|
|
|
int remoteVersion,
|
|
|
|
PQExpBuffer sql)
|
|
|
|
{
|
|
|
|
char *aclbuf,
|
|
|
|
*tok;
|
|
|
|
PQExpBuffer grantee, grantor, privs, privswgo;
|
|
|
|
bool found_owner_privs = false;
|
|
|
|
|
|
|
|
if (strlen(acls) == 0)
|
|
|
|
return true; /* object has default permissions */
|
|
|
|
|
|
|
|
grantee = createPQExpBuffer();
|
|
|
|
grantor = createPQExpBuffer();
|
|
|
|
privs = createPQExpBuffer();
|
|
|
|
privswgo = createPQExpBuffer();
|
|
|
|
|
|
|
|
/*
|
|
|
|
* Always start with REVOKE ALL FROM PUBLIC, so that we don't have to
|
|
|
|
* wire-in knowledge about the default public privileges for different
|
|
|
|
* kinds of objects.
|
|
|
|
*/
|
|
|
|
appendPQExpBuffer(sql, "REVOKE ALL ON %s %s FROM PUBLIC;\n",
|
|
|
|
type, name);
|
|
|
|
|
|
|
|
/* Make a working copy of acls so we can use strtok */
|
|
|
|
aclbuf = strdup(acls);
|
|
|
|
|
|
|
|
/* Scan comma-separated ACL items */
|
|
|
|
for (tok = strtok(aclbuf, ","); tok != NULL; tok = strtok(NULL, ","))
|
|
|
|
{
|
|
|
|
size_t toklen;
|
|
|
|
|
|
|
|
/*
|
|
|
|
* Token may start with '{' and/or '"'. Actually only the start
|
|
|
|
* of the string should have '{', but we don't verify that.
|
|
|
|
*/
|
|
|
|
if (*tok == '{')
|
|
|
|
tok++;
|
|
|
|
if (*tok == '"')
|
|
|
|
tok++;
|
|
|
|
toklen = strlen(tok);
|
|
|
|
while (toklen >=0 && (tok[toklen-1] == '"' || tok[toklen-1] == '}'))
|
|
|
|
tok[toklen-- - 1] = '\0';
|
|
|
|
|
|
|
|
if (!parseAclItem(tok, type, name, remoteVersion,
|
|
|
|
grantee, grantor, privs, privswgo))
|
|
|
|
return false;
|
|
|
|
|
|
|
|
if (grantor->len == 0 && owner)
|
|
|
|
printfPQExpBuffer(grantor, "%s", owner);
|
|
|
|
|
|
|
|
if (privs->len > 0 || privswgo->len > 0)
|
|
|
|
{
|
|
|
|
if (owner && strcmp(grantee->data, owner) == 0)
|
|
|
|
{
|
|
|
|
/*
|
|
|
|
* For the owner, the default privilege level is
|
|
|
|
* ALL WITH GRANT OPTION.
|
|
|
|
*/
|
|
|
|
found_owner_privs = true;
|
|
|
|
if (strcmp(privswgo->data, "ALL") != 0)
|
|
|
|
{
|
|
|
|
appendPQExpBuffer(sql, "REVOKE ALL ON %s %s FROM %s;\n",
|
|
|
|
type, name,
|
|
|
|
fmtId(grantee->data));
|
|
|
|
if (privs->len > 0)
|
|
|
|
appendPQExpBuffer(sql, "GRANT %s ON %s %s TO %s;\n",
|
|
|
|
privs->data, type, name,
|
|
|
|
fmtId(grantee->data));
|
|
|
|
if (privswgo->len > 0)
|
|
|
|
appendPQExpBuffer(sql, "GRANT %s ON %s %s TO %s WITH GRANT OPTION;\n",
|
|
|
|
privswgo->data, type, name,
|
|
|
|
fmtId(grantee->data));
|
|
|
|
}
|
|
|
|
}
|
|
|
|
else
|
|
|
|
{
|
|
|
|
/*
|
|
|
|
* Otherwise can assume we are starting from no privs.
|
|
|
|
*/
|
|
|
|
if (privs->len > 0)
|
|
|
|
{
|
|
|
|
appendPQExpBuffer(sql, "GRANT %s ON %s %s TO ",
|
|
|
|
privs->data, type, name);
|
|
|
|
if (grantee->len == 0)
|
|
|
|
appendPQExpBuffer(sql, "PUBLIC;\n");
|
|
|
|
else if (strncmp(grantee->data, "group ",
|
|
|
|
strlen("group ")) == 0)
|
|
|
|
appendPQExpBuffer(sql, "GROUP %s;\n",
|
|
|
|
fmtId(grantee->data + strlen("group ")));
|
|
|
|
else
|
|
|
|
appendPQExpBuffer(sql, "%s;\n", fmtId(grantee->data));
|
|
|
|
}
|
|
|
|
if (privswgo->len > 0)
|
|
|
|
{
|
|
|
|
appendPQExpBuffer(sql, "GRANT %s ON %s %s TO ",
|
|
|
|
privswgo->data, type, name);
|
|
|
|
if (grantee->len == 0)
|
|
|
|
appendPQExpBuffer(sql, "PUBLIC");
|
|
|
|
else if (strncmp(grantee->data, "group ",
|
|
|
|
strlen("group ")) == 0)
|
|
|
|
appendPQExpBuffer(sql, "GROUP %s",
|
|
|
|
fmtId(grantee->data + strlen("group ")));
|
|
|
|
else
|
|
|
|
appendPQExpBuffer(sql, "%s", fmtId(grantee->data));
|
|
|
|
appendPQExpBuffer(sql, " WITH GRANT OPTION;\n");
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
else
|
|
|
|
{
|
|
|
|
/* No privileges. Issue explicit REVOKE for safety. */
|
|
|
|
if (grantee->len == 0)
|
|
|
|
; /* Empty left-hand side means "PUBLIC"; already did it */
|
|
|
|
else if (strncmp(grantee->data, "group ", strlen("group ")) == 0)
|
|
|
|
appendPQExpBuffer(sql, "REVOKE ALL ON %s %s FROM GROUP %s;\n",
|
|
|
|
type, name,
|
|
|
|
fmtId(grantee->data + strlen("group ")));
|
|
|
|
else
|
|
|
|
appendPQExpBuffer(sql, "REVOKE ALL ON %s %s FROM %s;\n",
|
|
|
|
type, name, fmtId(grantee->data));
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
/*
|
|
|
|
* If we didn't find any owner privs, the owner must have revoked 'em
|
|
|
|
* all
|
|
|
|
*/
|
|
|
|
if (!found_owner_privs && owner)
|
|
|
|
{
|
|
|
|
appendPQExpBuffer(sql, "REVOKE ALL ON %s %s FROM %s;\n",
|
|
|
|
type, name, fmtId(owner));
|
|
|
|
}
|
|
|
|
|
|
|
|
free(aclbuf);
|
|
|
|
destroyPQExpBuffer(grantee);
|
|
|
|
destroyPQExpBuffer(grantor);
|
|
|
|
destroyPQExpBuffer(privs);
|
|
|
|
destroyPQExpBuffer(privswgo);
|
|
|
|
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
* This will take an aclitem string of privilege code letters and
|
|
|
|
* parse it into grantee, grantor, and privilege information. The
|
|
|
|
* privilege information is split between privileges with grant option
|
|
|
|
* (privswgo) and without (privs).
|
|
|
|
*
|
|
|
|
* Note: for cross-version compatibility, it's important to use ALL when
|
|
|
|
* appropriate.
|
|
|
|
*/
|
|
|
|
static bool
|
|
|
|
parseAclItem(const char *item, const char *type, const char *name,
|
|
|
|
int remoteVersion,
|
|
|
|
PQExpBuffer grantee, PQExpBuffer grantor,
|
|
|
|
PQExpBuffer privs, PQExpBuffer privswgo)
|
|
|
|
{
|
|
|
|
char *buf;
|
|
|
|
bool all_with_go = true;
|
|
|
|
bool all_without_go = true;
|
|
|
|
char *eqpos;
|
|
|
|
char *slpos;
|
|
|
|
char *pos;
|
|
|
|
|
|
|
|
buf = strdup(item);
|
|
|
|
|
|
|
|
/* user name is string up to = */
|
|
|
|
eqpos = strchr(buf, '=');
|
|
|
|
if (!eqpos)
|
|
|
|
return false;
|
|
|
|
*eqpos = '\0';
|
|
|
|
printfPQExpBuffer(grantee, "%s", buf);
|
|
|
|
|
|
|
|
/* grantor may be listed after / */
|
|
|
|
slpos = strchr(eqpos + 1, '/');
|
|
|
|
if (slpos)
|
|
|
|
{
|
|
|
|
*slpos = '\0';
|
|
|
|
printfPQExpBuffer(grantor, "%s", slpos + 1);
|
|
|
|
}
|
|
|
|
else
|
|
|
|
resetPQExpBuffer(grantor);
|
|
|
|
|
|
|
|
/* privilege codes */
|
|
|
|
#define CONVERT_PRIV(code, keywd) \
|
|
|
|
if ((pos = strchr(eqpos + 1, code))) \
|
|
|
|
{ \
|
|
|
|
if (*(pos + 1) == '*') \
|
|
|
|
{ \
|
|
|
|
AddAcl(privswgo, keywd); \
|
|
|
|
all_without_go = false; \
|
|
|
|
} \
|
|
|
|
else \
|
|
|
|
{ \
|
|
|
|
AddAcl(privs, keywd); \
|
|
|
|
all_with_go = false; \
|
|
|
|
} \
|
|
|
|
} \
|
|
|
|
else \
|
|
|
|
all_with_go = all_without_go = false
|
|
|
|
|
|
|
|
resetPQExpBuffer(privs);
|
|
|
|
resetPQExpBuffer(privswgo);
|
|
|
|
|
|
|
|
if (strcmp(type, "TABLE") == 0)
|
|
|
|
{
|
|
|
|
CONVERT_PRIV('a', "INSERT");
|
|
|
|
CONVERT_PRIV('r', "SELECT");
|
|
|
|
CONVERT_PRIV('R', "RULE");
|
|
|
|
|
|
|
|
if (remoteVersion >= 70200)
|
|
|
|
{
|
|
|
|
CONVERT_PRIV('w', "UPDATE");
|
|
|
|
CONVERT_PRIV('d', "DELETE");
|
|
|
|
CONVERT_PRIV('x', "REFERENCES");
|
|
|
|
CONVERT_PRIV('t', "TRIGGER");
|
|
|
|
}
|
|
|
|
else
|
|
|
|
{
|
|
|
|
/* 7.0 and 7.1 have a simpler worldview */
|
|
|
|
CONVERT_PRIV('w', "UPDATE,DELETE");
|
|
|
|
}
|
|
|
|
}
|
|
|
|
else if (strcmp(type, "FUNCTION") == 0)
|
|
|
|
CONVERT_PRIV('X', "EXECUTE");
|
|
|
|
else if (strcmp(type, "LANGUAGE") == 0)
|
|
|
|
CONVERT_PRIV('U', "USAGE");
|
|
|
|
else if (strcmp(type, "SCHEMA") == 0)
|
|
|
|
{
|
|
|
|
CONVERT_PRIV('C', "CREATE");
|
|
|
|
CONVERT_PRIV('U', "USAGE");
|
|
|
|
}
|
|
|
|
else if (strcmp(type, "DATABASE") == 0)
|
|
|
|
{
|
|
|
|
CONVERT_PRIV('C', "CREATE");
|
|
|
|
CONVERT_PRIV('T', "TEMPORARY");
|
|
|
|
}
|
|
|
|
else
|
|
|
|
abort();
|
|
|
|
|
|
|
|
#undef CONVERT_PRIV
|
|
|
|
|
|
|
|
if (all_with_go)
|
|
|
|
{
|
|
|
|
resetPQExpBuffer(privs);
|
|
|
|
printfPQExpBuffer(privswgo, "ALL");
|
|
|
|
}
|
|
|
|
else if (all_without_go)
|
|
|
|
{
|
|
|
|
resetPQExpBuffer(privswgo);
|
|
|
|
printfPQExpBuffer(privs, "ALL");
|
|
|
|
}
|
|
|
|
|
|
|
|
free(buf);
|
|
|
|
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
* Append a privilege keyword to a keyword list, inserting comma if needed.
|
|
|
|
*/
|
|
|
|
static void
|
|
|
|
AddAcl(PQExpBuffer aclbuf, const char *keyword)
|
|
|
|
{
|
|
|
|
if (aclbuf->len > 0)
|
|
|
|
appendPQExpBufferChar(aclbuf, ',');
|
|
|
|
appendPQExpBuffer(aclbuf, "%s", keyword);
|
|
|
|
}
|