1996-07-09 08:22:35 +02:00
|
|
|
/*-------------------------------------------------------------------------
|
|
|
|
|
*
|
1999-02-14 00:22:53 +01:00
|
|
|
* fe-connect.c
|
1997-09-07 07:04:48 +02:00
|
|
|
* functions related to setting up a connection to the backend
|
1996-07-09 08:22:35 +02:00
|
|
|
*
|
2003-08-04 04:40:20 +02:00
|
|
|
* Portions Copyright (c) 1996-2003, PostgreSQL Global Development Group
|
2000-01-26 06:58:53 +01:00
|
|
|
* Portions Copyright (c) 1994, Regents of the University of California
|
1996-07-09 08:22:35 +02:00
|
|
|
*
|
|
|
|
|
*
|
|
|
|
|
* IDENTIFICATION
|
2003-09-22 02:23:35 +02:00
|
|
|
* $Header: /cvsroot/pgsql/src/interfaces/libpq/fe-connect.c,v 1.261 2003/09/22 00:23:35 petere Exp $
|
1996-07-09 08:22:35 +02:00
|
|
|
*
|
|
|
|
|
*-------------------------------------------------------------------------
|
|
|
|
|
*/
|
|
|
|
|
|
2001-02-10 03:31:31 +01:00
|
|
|
#include "postgres_fe.h"
|
2000-09-27 17:17:57 +02:00
|
|
|
|
1999-11-30 04:08:19 +01:00
|
|
|
#include <sys/types.h>
|
2002-08-30 01:06:32 +02:00
|
|
|
#include <sys/stat.h>
|
1999-07-19 04:27:16 +02:00
|
|
|
#include <fcntl.h>
|
|
|
|
|
#include <errno.h>
|
|
|
|
|
#include <ctype.h>
|
2002-08-18 02:06:01 +02:00
|
|
|
#include <time.h>
|
1999-07-19 04:27:16 +02:00
|
|
|
|
2003-03-17 18:58:57 +01:00
|
|
|
#ifndef HAVE_STRDUP
|
|
|
|
|
#include "strdup.h"
|
|
|
|
|
#endif
|
|
|
|
|
|
1998-08-17 05:50:43 +02:00
|
|
|
#include "libpq-fe.h"
|
|
|
|
|
#include "libpq-int.h"
|
|
|
|
|
#include "fe-auth.h"
|
|
|
|
|
|
1998-07-03 06:29:04 +02:00
|
|
|
#ifdef WIN32
|
|
|
|
|
#include "win32.h"
|
|
|
|
|
#else
|
2000-01-18 20:05:31 +01:00
|
|
|
#include <sys/socket.h>
|
1999-07-19 08:25:40 +02:00
|
|
|
#include <unistd.h>
|
1996-07-09 08:22:35 +02:00
|
|
|
#include <netdb.h>
|
2000-05-21 23:19:53 +02:00
|
|
|
#include <netinet/in.h>
|
2000-09-27 17:17:57 +02:00
|
|
|
#ifdef HAVE_NETINET_TCP_H
|
2001-03-22 05:01:46 +01:00
|
|
|
#include <netinet/tcp.h>
|
2000-09-27 17:17:57 +02:00
|
|
|
#endif
|
1999-11-30 04:08:19 +01:00
|
|
|
#include <arpa/inet.h>
|
1998-07-03 06:29:04 +02:00
|
|
|
#endif
|
1996-11-03 08:14:32 +01:00
|
|
|
|
2003-01-06 04:18:27 +01:00
|
|
|
#include "libpq/ip.h"
|
1998-07-24 05:32:46 +02:00
|
|
|
#include "mb/pg_wchar.h"
|
1996-07-09 08:22:35 +02:00
|
|
|
|
2003-06-12 10:15:29 +02:00
|
|
|
/* For FNCTL_NONBLOCK */
|
|
|
|
|
#if defined(WIN32) || defined(__BEOS__)
|
2003-09-05 04:08:36 +02:00
|
|
|
long ioctlsocket_ret=1;
|
2003-06-12 10:15:29 +02:00
|
|
|
#endif
|
2003-01-06 04:18:27 +01:00
|
|
|
|
2003-06-08 19:43:00 +02:00
|
|
|
#define PGPASSFILE ".pgpass"
|
2000-01-18 20:05:31 +01:00
|
|
|
|
2003-06-08 19:43:00 +02:00
|
|
|
/* fall back options if they are not specified by arguments or defined
|
|
|
|
|
by environment variables */
|
|
|
|
|
#define DefaultHost "localhost"
|
|
|
|
|
#define DefaultTty ""
|
|
|
|
|
#define DefaultOption ""
|
|
|
|
|
#define DefaultAuthtype ""
|
|
|
|
|
#define DefaultPassword ""
|
At long last I put together a patch to support 4 client SSL negotiation
modes (and replace the requiressl boolean). The four options were first
spelled out by Magnus Hagander <mha@sollentuna.net> on 2000-08-23 in email
to pgsql-hackers, archived here:
http://archives.postgresql.org/pgsql-hackers/2000-08/msg00639.php
My original less-flexible patch and the ensuing thread are archived at:
http://dbforums.com/t623845.html
Attached is a new patch, including documentation.
To sum up, there's a new client parameter "sslmode" and environment
variable "PGSSLMODE", with these options:
sslmode description
------- -----------
disable Unencrypted non-SSL only
allow Negotiate, prefer non-SSL
prefer Negotiate, prefer SSL (default)
require Require SSL
The only change to the server is a new pg_hba.conf line type,
"hostnossl", for specifying connections that are not allowed to use SSL
(for example, to prevent servers on a local network from accidentally
using SSL and wasting cycles). Thus the 3 pg_hba.conf line types are:
pg_hba.conf line types
----------------------
host applies to either SSL or regular connections
hostssl applies only to SSL connections
hostnossl applies only to regular connections
These client and server options, the postgresql.conf ssl = false option,
and finally the possibility of compiling with no SSL support at all,
make quite a range of combinations to test. I threw together a test
script to try many of them out. It's in a separate tarball with its
config files, a patch to psql so it'll announce SSL connections even in
absence of a tty, and the test output. The test is especially informative
when run on the same tty the postmaster was started on, so the FATAL:
errors during negotiation are interleaved with the psql client output.
I saw Tom write that new submissions for 7.4 have to be in before midnight
local time, and since I'm on the east coast in the US, this just makes it
in before the bell. :)
Jon Jensen
2003-07-26 15:50:02 +02:00
|
|
|
#ifdef USE_SSL
|
|
|
|
|
#define DefaultSSLMode "prefer"
|
|
|
|
|
#else
|
|
|
|
|
#define DefaultSSLMode "disable"
|
|
|
|
|
#endif
|
2002-06-14 06:09:37 +02:00
|
|
|
|
1996-11-09 11:39:54 +01:00
|
|
|
|
|
|
|
|
/* ----------
|
1996-11-14 11:25:54 +01:00
|
|
|
* Definition of the conninfo parameters and their fallback resources.
|
2000-03-11 04:08:37 +01:00
|
|
|
*
|
1996-11-09 11:39:54 +01:00
|
|
|
* If Environment-Var and Compiled-in are specified as NULL, no
|
|
|
|
|
* fallback is available. If after all no value can be determined
|
|
|
|
|
* for an option, an error is returned.
|
|
|
|
|
*
|
2003-06-08 19:43:00 +02:00
|
|
|
* The value for the username is treated specially in conninfo_parse.
|
1996-11-09 11:39:54 +01:00
|
|
|
* If the Compiled-in resource is specified as a NULL value, the
|
2003-06-08 19:43:00 +02:00
|
|
|
* user is determined by fe_getauthname().
|
1996-11-09 11:39:54 +01:00
|
|
|
*
|
|
|
|
|
* The Label and Disp-Char entries are provided for applications that
|
|
|
|
|
* want to use PQconndefaults() to create a generic database connection
|
|
|
|
|
* dialog. Disp-Char is defined as follows:
|
2000-03-11 04:08:37 +01:00
|
|
|
* "" Normal input field
|
|
|
|
|
* "*" Password field - hide value
|
|
|
|
|
* "D" Debug option - don't show by default
|
|
|
|
|
*
|
|
|
|
|
* PQconninfoOptions[] is a constant static array that we use to initialize
|
|
|
|
|
* a dynamically allocated working copy. All the "val" fields in
|
2000-04-12 19:17:23 +02:00
|
|
|
* PQconninfoOptions[] *must* be NULL. In a working copy, non-null "val"
|
2000-03-11 04:08:37 +01:00
|
|
|
* fields point to malloc'd strings that should be freed when the working
|
|
|
|
|
* array is freed (see PQconninfoFree).
|
1996-11-09 11:39:54 +01:00
|
|
|
* ----------
|
|
|
|
|
*/
|
2000-03-11 04:08:37 +01:00
|
|
|
static const PQconninfoOption PQconninfoOptions[] = {
|
2000-04-12 19:17:23 +02:00
|
|
|
/*
|
|
|
|
|
* "authtype" is no longer used, so mark it "don't show". We keep it
|
|
|
|
|
* in the array so as not to reject conninfo strings from old apps
|
|
|
|
|
* that might still try to set it.
|
2000-03-11 04:08:37 +01:00
|
|
|
*/
|
1997-09-07 07:04:48 +02:00
|
|
|
{"authtype", "PGAUTHTYPE", DefaultAuthtype, NULL,
|
2000-03-11 04:08:37 +01:00
|
|
|
"Database-Authtype", "D", 20},
|
1997-03-12 22:23:16 +01:00
|
|
|
|
2000-10-17 03:00:58 +02:00
|
|
|
{"service", "PGSERVICE", NULL, NULL,
|
2001-03-22 05:01:46 +01:00
|
|
|
"Database-Service", "", 20},
|
2000-10-17 03:00:58 +02:00
|
|
|
|
1997-09-07 07:04:48 +02:00
|
|
|
{"user", "PGUSER", NULL, NULL,
|
|
|
|
|
"Database-User", "", 20},
|
1996-11-09 11:39:54 +01:00
|
|
|
|
2003-04-28 06:52:13 +02:00
|
|
|
{"password", "PGPASSWORD", NULL, NULL,
|
2000-03-11 04:08:37 +01:00
|
|
|
"Database-Password", "*", 20},
|
1997-03-12 22:23:16 +01:00
|
|
|
|
2002-08-18 03:35:40 +02:00
|
|
|
{"connect_timeout", "PGCONNECT_TIMEOUT", NULL, NULL,
|
2003-01-30 20:49:54 +01:00
|
|
|
"Connect-timeout", "", 10}, /* strlen(INT32_MAX) == 10 */
|
2002-08-17 14:33:18 +02:00
|
|
|
|
1997-09-07 07:04:48 +02:00
|
|
|
{"dbname", "PGDATABASE", NULL, NULL,
|
|
|
|
|
"Database-Name", "", 20},
|
1996-11-09 11:39:54 +01:00
|
|
|
|
1997-11-07 21:52:15 +01:00
|
|
|
{"host", "PGHOST", NULL, NULL,
|
1997-09-07 07:04:48 +02:00
|
|
|
"Database-Host", "", 40},
|
1996-11-09 11:39:54 +01:00
|
|
|
|
1999-11-30 04:08:19 +01:00
|
|
|
{"hostaddr", "PGHOSTADDR", NULL, NULL,
|
2003-01-06 23:48:16 +01:00
|
|
|
"Database-Host-IP-Address", "", 45},
|
2003-01-08 17:21:53 +01:00
|
|
|
|
2000-05-31 02:28:42 +02:00
|
|
|
{"port", "PGPORT", DEF_PGPORT_STR, NULL,
|
1997-09-07 07:04:48 +02:00
|
|
|
"Database-Port", "", 6},
|
1996-11-09 11:39:54 +01:00
|
|
|
|
2003-04-18 00:26:02 +02:00
|
|
|
/*
|
|
|
|
|
* "tty" is no longer used either, but keep it present for backwards
|
|
|
|
|
* compatibility.
|
|
|
|
|
*/
|
1997-09-07 07:04:48 +02:00
|
|
|
{"tty", "PGTTY", DefaultTty, NULL,
|
|
|
|
|
"Backend-Debug-TTY", "D", 40},
|
1996-11-09 11:39:54 +01:00
|
|
|
|
1997-09-07 07:04:48 +02:00
|
|
|
{"options", "PGOPTIONS", DefaultOption, NULL,
|
|
|
|
|
"Backend-Debug-Options", "D", 40},
|
2000-03-11 04:08:37 +01:00
|
|
|
|
2000-08-30 16:54:24 +02:00
|
|
|
#ifdef USE_SSL
|
2003-08-04 02:43:34 +02:00
|
|
|
|
At long last I put together a patch to support 4 client SSL negotiation
modes (and replace the requiressl boolean). The four options were first
spelled out by Magnus Hagander <mha@sollentuna.net> on 2000-08-23 in email
to pgsql-hackers, archived here:
http://archives.postgresql.org/pgsql-hackers/2000-08/msg00639.php
My original less-flexible patch and the ensuing thread are archived at:
http://dbforums.com/t623845.html
Attached is a new patch, including documentation.
To sum up, there's a new client parameter "sslmode" and environment
variable "PGSSLMODE", with these options:
sslmode description
------- -----------
disable Unencrypted non-SSL only
allow Negotiate, prefer non-SSL
prefer Negotiate, prefer SSL (default)
require Require SSL
The only change to the server is a new pg_hba.conf line type,
"hostnossl", for specifying connections that are not allowed to use SSL
(for example, to prevent servers on a local network from accidentally
using SSL and wasting cycles). Thus the 3 pg_hba.conf line types are:
pg_hba.conf line types
----------------------
host applies to either SSL or regular connections
hostssl applies only to SSL connections
hostnossl applies only to regular connections
These client and server options, the postgresql.conf ssl = false option,
and finally the possibility of compiling with no SSL support at all,
make quite a range of combinations to test. I threw together a test
script to try many of them out. It's in a separate tarball with its
config files, a patch to psql so it'll announce SSL connections even in
absence of a tty, and the test output. The test is especially informative
when run on the same tty the postmaster was started on, so the FATAL:
errors during negotiation are interleaved with the psql client output.
I saw Tom write that new submissions for 7.4 have to be in before midnight
local time, and since I'm on the east coast in the US, this just makes it
in before the bell. :)
Jon Jensen
2003-07-26 15:50:02 +02:00
|
|
|
/*
|
2003-08-04 02:43:34 +02:00
|
|
|
* "requiressl" is deprecated, its purpose having been taken over by
|
|
|
|
|
* "sslmode". It remains for backwards compatibility.
|
At long last I put together a patch to support 4 client SSL negotiation
modes (and replace the requiressl boolean). The four options were first
spelled out by Magnus Hagander <mha@sollentuna.net> on 2000-08-23 in email
to pgsql-hackers, archived here:
http://archives.postgresql.org/pgsql-hackers/2000-08/msg00639.php
My original less-flexible patch and the ensuing thread are archived at:
http://dbforums.com/t623845.html
Attached is a new patch, including documentation.
To sum up, there's a new client parameter "sslmode" and environment
variable "PGSSLMODE", with these options:
sslmode description
------- -----------
disable Unencrypted non-SSL only
allow Negotiate, prefer non-SSL
prefer Negotiate, prefer SSL (default)
require Require SSL
The only change to the server is a new pg_hba.conf line type,
"hostnossl", for specifying connections that are not allowed to use SSL
(for example, to prevent servers on a local network from accidentally
using SSL and wasting cycles). Thus the 3 pg_hba.conf line types are:
pg_hba.conf line types
----------------------
host applies to either SSL or regular connections
hostssl applies only to SSL connections
hostnossl applies only to regular connections
These client and server options, the postgresql.conf ssl = false option,
and finally the possibility of compiling with no SSL support at all,
make quite a range of combinations to test. I threw together a test
script to try many of them out. It's in a separate tarball with its
config files, a patch to psql so it'll announce SSL connections even in
absence of a tty, and the test output. The test is especially informative
when run on the same tty the postmaster was started on, so the FATAL:
errors during negotiation are interleaved with the psql client output.
I saw Tom write that new submissions for 7.4 have to be in before midnight
local time, and since I'm on the east coast in the US, this just makes it
in before the bell. :)
Jon Jensen
2003-07-26 15:50:02 +02:00
|
|
|
*/
|
2000-08-30 16:54:24 +02:00
|
|
|
{"requiressl", "PGREQUIRESSL", "0", NULL,
|
At long last I put together a patch to support 4 client SSL negotiation
modes (and replace the requiressl boolean). The four options were first
spelled out by Magnus Hagander <mha@sollentuna.net> on 2000-08-23 in email
to pgsql-hackers, archived here:
http://archives.postgresql.org/pgsql-hackers/2000-08/msg00639.php
My original less-flexible patch and the ensuing thread are archived at:
http://dbforums.com/t623845.html
Attached is a new patch, including documentation.
To sum up, there's a new client parameter "sslmode" and environment
variable "PGSSLMODE", with these options:
sslmode description
------- -----------
disable Unencrypted non-SSL only
allow Negotiate, prefer non-SSL
prefer Negotiate, prefer SSL (default)
require Require SSL
The only change to the server is a new pg_hba.conf line type,
"hostnossl", for specifying connections that are not allowed to use SSL
(for example, to prevent servers on a local network from accidentally
using SSL and wasting cycles). Thus the 3 pg_hba.conf line types are:
pg_hba.conf line types
----------------------
host applies to either SSL or regular connections
hostssl applies only to SSL connections
hostnossl applies only to regular connections
These client and server options, the postgresql.conf ssl = false option,
and finally the possibility of compiling with no SSL support at all,
make quite a range of combinations to test. I threw together a test
script to try many of them out. It's in a separate tarball with its
config files, a patch to psql so it'll announce SSL connections even in
absence of a tty, and the test output. The test is especially informative
when run on the same tty the postmaster was started on, so the FATAL:
errors during negotiation are interleaved with the psql client output.
I saw Tom write that new submissions for 7.4 have to be in before midnight
local time, and since I'm on the east coast in the US, this just makes it
in before the bell. :)
Jon Jensen
2003-07-26 15:50:02 +02:00
|
|
|
"Require-SSL", "D", 1},
|
2000-08-30 16:54:24 +02:00
|
|
|
#endif
|
|
|
|
|
|
At long last I put together a patch to support 4 client SSL negotiation
modes (and replace the requiressl boolean). The four options were first
spelled out by Magnus Hagander <mha@sollentuna.net> on 2000-08-23 in email
to pgsql-hackers, archived here:
http://archives.postgresql.org/pgsql-hackers/2000-08/msg00639.php
My original less-flexible patch and the ensuing thread are archived at:
http://dbforums.com/t623845.html
Attached is a new patch, including documentation.
To sum up, there's a new client parameter "sslmode" and environment
variable "PGSSLMODE", with these options:
sslmode description
------- -----------
disable Unencrypted non-SSL only
allow Negotiate, prefer non-SSL
prefer Negotiate, prefer SSL (default)
require Require SSL
The only change to the server is a new pg_hba.conf line type,
"hostnossl", for specifying connections that are not allowed to use SSL
(for example, to prevent servers on a local network from accidentally
using SSL and wasting cycles). Thus the 3 pg_hba.conf line types are:
pg_hba.conf line types
----------------------
host applies to either SSL or regular connections
hostssl applies only to SSL connections
hostnossl applies only to regular connections
These client and server options, the postgresql.conf ssl = false option,
and finally the possibility of compiling with no SSL support at all,
make quite a range of combinations to test. I threw together a test
script to try many of them out. It's in a separate tarball with its
config files, a patch to psql so it'll announce SSL connections even in
absence of a tty, and the test output. The test is especially informative
when run on the same tty the postmaster was started on, so the FATAL:
errors during negotiation are interleaved with the psql client output.
I saw Tom write that new submissions for 7.4 have to be in before midnight
local time, and since I'm on the east coast in the US, this just makes it
in before the bell. :)
Jon Jensen
2003-07-26 15:50:02 +02:00
|
|
|
/*
|
2003-08-04 02:43:34 +02:00
|
|
|
* "sslmode" option is allowed even without client SSL support because
|
|
|
|
|
* the client can still handle SSL modes "disable" and "allow".
|
At long last I put together a patch to support 4 client SSL negotiation
modes (and replace the requiressl boolean). The four options were first
spelled out by Magnus Hagander <mha@sollentuna.net> on 2000-08-23 in email
to pgsql-hackers, archived here:
http://archives.postgresql.org/pgsql-hackers/2000-08/msg00639.php
My original less-flexible patch and the ensuing thread are archived at:
http://dbforums.com/t623845.html
Attached is a new patch, including documentation.
To sum up, there's a new client parameter "sslmode" and environment
variable "PGSSLMODE", with these options:
sslmode description
------- -----------
disable Unencrypted non-SSL only
allow Negotiate, prefer non-SSL
prefer Negotiate, prefer SSL (default)
require Require SSL
The only change to the server is a new pg_hba.conf line type,
"hostnossl", for specifying connections that are not allowed to use SSL
(for example, to prevent servers on a local network from accidentally
using SSL and wasting cycles). Thus the 3 pg_hba.conf line types are:
pg_hba.conf line types
----------------------
host applies to either SSL or regular connections
hostssl applies only to SSL connections
hostnossl applies only to regular connections
These client and server options, the postgresql.conf ssl = false option,
and finally the possibility of compiling with no SSL support at all,
make quite a range of combinations to test. I threw together a test
script to try many of them out. It's in a separate tarball with its
config files, a patch to psql so it'll announce SSL connections even in
absence of a tty, and the test output. The test is especially informative
when run on the same tty the postmaster was started on, so the FATAL:
errors during negotiation are interleaved with the psql client output.
I saw Tom write that new submissions for 7.4 have to be in before midnight
local time, and since I'm on the east coast in the US, this just makes it
in before the bell. :)
Jon Jensen
2003-07-26 15:50:02 +02:00
|
|
|
*/
|
|
|
|
|
{"sslmode", "PGSSLMODE", DefaultSSLMode, NULL,
|
2003-08-04 02:43:34 +02:00
|
|
|
"SSL-Mode", "", 8}, /* sizeof("disable") == 8 */
|
At long last I put together a patch to support 4 client SSL negotiation
modes (and replace the requiressl boolean). The four options were first
spelled out by Magnus Hagander <mha@sollentuna.net> on 2000-08-23 in email
to pgsql-hackers, archived here:
http://archives.postgresql.org/pgsql-hackers/2000-08/msg00639.php
My original less-flexible patch and the ensuing thread are archived at:
http://dbforums.com/t623845.html
Attached is a new patch, including documentation.
To sum up, there's a new client parameter "sslmode" and environment
variable "PGSSLMODE", with these options:
sslmode description
------- -----------
disable Unencrypted non-SSL only
allow Negotiate, prefer non-SSL
prefer Negotiate, prefer SSL (default)
require Require SSL
The only change to the server is a new pg_hba.conf line type,
"hostnossl", for specifying connections that are not allowed to use SSL
(for example, to prevent servers on a local network from accidentally
using SSL and wasting cycles). Thus the 3 pg_hba.conf line types are:
pg_hba.conf line types
----------------------
host applies to either SSL or regular connections
hostssl applies only to SSL connections
hostnossl applies only to regular connections
These client and server options, the postgresql.conf ssl = false option,
and finally the possibility of compiling with no SSL support at all,
make quite a range of combinations to test. I threw together a test
script to try many of them out. It's in a separate tarball with its
config files, a patch to psql so it'll announce SSL connections even in
absence of a tty, and the test output. The test is especially informative
when run on the same tty the postmaster was started on, so the FATAL:
errors during negotiation are interleaved with the psql client output.
I saw Tom write that new submissions for 7.4 have to be in before midnight
local time, and since I'm on the east coast in the US, this just makes it
in before the bell. :)
Jon Jensen
2003-07-26 15:50:02 +02:00
|
|
|
|
2000-03-11 04:08:37 +01:00
|
|
|
/* Terminating entry --- MUST BE LAST */
|
1997-09-07 07:04:48 +02:00
|
|
|
{NULL, NULL, NULL, NULL,
|
|
|
|
|
NULL, NULL, 0}
|
1996-11-09 11:39:54 +01:00
|
|
|
};
|
|
|
|
|
|
2003-06-08 19:43:00 +02:00
|
|
|
static const PQEnvironmentOption EnvironmentOptions[] =
|
1997-09-07 07:04:48 +02:00
|
|
|
{
|
1997-11-14 16:38:31 +01:00
|
|
|
/* common user-interface settings */
|
1998-02-26 05:46:47 +01:00
|
|
|
{
|
|
|
|
|
"PGDATESTYLE", "datestyle"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"PGTZ", "timezone"
|
|
|
|
|
},
|
1998-06-16 09:29:54 +02:00
|
|
|
{
|
|
|
|
|
"PGCLIENTENCODING", "client_encoding"
|
|
|
|
|
},
|
1997-11-14 16:38:31 +01:00
|
|
|
/* internal performance-related settings */
|
1998-02-26 05:46:47 +01:00
|
|
|
{
|
|
|
|
|
"PGGEQO", "geqo"
|
|
|
|
|
},
|
|
|
|
|
{
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
NULL, NULL
|
1998-02-26 05:46:47 +01:00
|
|
|
}
|
1997-09-07 07:04:48 +02:00
|
|
|
};
|
|
|
|
|
|
1999-11-30 04:08:19 +01:00
|
|
|
|
2003-04-28 06:29:12 +02:00
|
|
|
static bool connectOptions1(PGconn *conn, const char *conninfo);
|
|
|
|
|
static bool connectOptions2(PGconn *conn);
|
2000-04-12 19:17:23 +02:00
|
|
|
static int connectDBStart(PGconn *conn);
|
|
|
|
|
static int connectDBComplete(PGconn *conn);
|
2000-03-11 04:08:37 +01:00
|
|
|
static PGconn *makeEmptyPGconn(void);
|
|
|
|
|
static void freePGconn(PGconn *conn);
|
|
|
|
|
static void closePGconn(PGconn *conn);
|
|
|
|
|
static PQconninfoOption *conninfo_parse(const char *conninfo,
|
2000-04-12 19:17:23 +02:00
|
|
|
PQExpBuffer errorMessage);
|
2000-03-11 04:08:37 +01:00
|
|
|
static char *conninfo_getval(PQconninfoOption *connOptions,
|
2000-04-12 19:17:23 +02:00
|
|
|
const char *keyword);
|
2003-06-21 23:51:35 +02:00
|
|
|
static void defaultNoticeReceiver(void *arg, const PGresult *res);
|
2000-03-11 04:08:37 +01:00
|
|
|
static void defaultNoticeProcessor(void *arg, const char *message);
|
2001-03-22 05:01:46 +01:00
|
|
|
static int parseServiceInfo(PQconninfoOption *options,
|
|
|
|
|
PQExpBuffer errorMessage);
|
2003-04-18 00:26:02 +02:00
|
|
|
static char *pwdfMatchesString(char *buf, char *token);
|
|
|
|
|
static char *PasswordFromFile(char *hostname, char *port, char *dbname,
|
2003-08-04 02:43:34 +02:00
|
|
|
char *username);
|
2000-03-11 04:08:37 +01:00
|
|
|
|
2001-10-25 07:50:21 +02:00
|
|
|
/*
|
2000-04-12 19:17:23 +02:00
|
|
|
* Connecting to a Database
|
1999-11-30 04:08:19 +01:00
|
|
|
*
|
|
|
|
|
* There are now four different ways a user of this API can connect to the
|
|
|
|
|
* database. Two are not recommended for use in new code, because of their
|
|
|
|
|
* lack of extensibility with respect to the passing of options to the
|
|
|
|
|
* backend. These are PQsetdb and PQsetdbLogin (the former now being a macro
|
|
|
|
|
* to the latter).
|
|
|
|
|
*
|
|
|
|
|
* If it is desired to connect in a synchronous (blocking) manner, use the
|
|
|
|
|
* function PQconnectdb.
|
|
|
|
|
*
|
2003-03-10 23:28:22 +01:00
|
|
|
* To connect in an asynchronous (non-blocking) manner, use the functions
|
1999-11-30 04:08:19 +01:00
|
|
|
* PQconnectStart, and PQconnectPoll.
|
|
|
|
|
*
|
|
|
|
|
* Internally, the static functions connectDBStart, connectDBComplete
|
|
|
|
|
* are part of the connection procedure.
|
|
|
|
|
*/
|
|
|
|
|
|
2001-08-17 17:11:15 +02:00
|
|
|
/*
|
1997-09-07 07:04:48 +02:00
|
|
|
* PQconnectdb
|
|
|
|
|
*
|
1997-11-10 16:41:58 +01:00
|
|
|
* establishes a connection to a postgres backend through the postmaster
|
1996-11-09 11:39:54 +01:00
|
|
|
* using connection information in a string.
|
|
|
|
|
*
|
1999-11-30 04:08:19 +01:00
|
|
|
* The conninfo string is a white-separated list of
|
1996-11-09 11:39:54 +01:00
|
|
|
*
|
1997-09-07 07:04:48 +02:00
|
|
|
* option = value
|
1996-11-09 11:39:54 +01:00
|
|
|
*
|
1999-11-30 04:08:19 +01:00
|
|
|
* definitions. Value might be a single value containing no whitespaces or
|
|
|
|
|
* a single quoted string. If a single quote should appear anywhere in
|
|
|
|
|
* the value, it must be escaped with a backslash like \'
|
1996-11-09 11:39:54 +01:00
|
|
|
*
|
1999-11-30 04:08:19 +01:00
|
|
|
* Returns a PGconn* which is needed for all subsequent libpq calls, or NULL
|
|
|
|
|
* if a memory allocation failed.
|
|
|
|
|
* If the status field of the connection returned is CONNECTION_BAD,
|
|
|
|
|
* then some fields may be null'ed out instead of having valid values.
|
|
|
|
|
*
|
|
|
|
|
* You should call PQfinish (if conn is not NULL) regardless of whether this
|
|
|
|
|
* call succeeded.
|
2000-01-14 06:33:15 +01:00
|
|
|
*/
|
1997-11-10 16:41:58 +01:00
|
|
|
PGconn *
|
1996-11-09 11:39:54 +01:00
|
|
|
PQconnectdb(const char *conninfo)
|
1999-11-30 04:08:19 +01:00
|
|
|
{
|
2000-04-12 19:17:23 +02:00
|
|
|
PGconn *conn = PQconnectStart(conninfo);
|
2000-01-14 06:33:15 +01:00
|
|
|
|
|
|
|
|
if (conn && conn->status != CONNECTION_BAD)
|
|
|
|
|
(void) connectDBComplete(conn);
|
1999-11-30 04:08:19 +01:00
|
|
|
|
|
|
|
|
return conn;
|
|
|
|
|
}
|
|
|
|
|
|
2001-08-17 17:11:15 +02:00
|
|
|
/*
|
1999-11-30 04:08:19 +01:00
|
|
|
* PQconnectStart
|
|
|
|
|
*
|
|
|
|
|
* Begins the establishment of a connection to a postgres backend through the
|
|
|
|
|
* postmaster using connection information in a string.
|
|
|
|
|
*
|
|
|
|
|
* See comment for PQconnectdb for the definition of the string format.
|
|
|
|
|
*
|
|
|
|
|
* Returns a PGconn*. If NULL is returned, a malloc error has occurred, and
|
2000-04-12 19:17:23 +02:00
|
|
|
* you should not attempt to proceed with this connection. If the status
|
1999-11-30 04:08:19 +01:00
|
|
|
* field of the connection returned is CONNECTION_BAD, an error has
|
|
|
|
|
* occurred. In this case you should call PQfinish on the result, (perhaps
|
|
|
|
|
* inspecting the error message first). Other fields of the structure may not
|
|
|
|
|
* be valid if that occurs. If the status field is not CONNECTION_BAD, then
|
|
|
|
|
* this stage has succeeded - call PQconnectPoll, using select(2) to see when
|
|
|
|
|
* this is necessary.
|
|
|
|
|
*
|
|
|
|
|
* See PQconnectPoll for more info.
|
2000-01-14 06:33:15 +01:00
|
|
|
*/
|
1999-11-30 04:08:19 +01:00
|
|
|
PGconn *
|
|
|
|
|
PQconnectStart(const char *conninfo)
|
1996-11-09 11:39:54 +01:00
|
|
|
{
|
1999-02-05 05:25:55 +01:00
|
|
|
PGconn *conn;
|
1998-02-26 05:46:47 +01:00
|
|
|
|
2001-03-22 07:16:21 +01:00
|
|
|
/*
|
1997-09-07 07:04:48 +02:00
|
|
|
* Allocate memory for the conn structure
|
|
|
|
|
*/
|
1998-05-07 01:51:16 +02:00
|
|
|
conn = makeEmptyPGconn();
|
1997-09-07 07:04:48 +02:00
|
|
|
if (conn == NULL)
|
|
|
|
|
return (PGconn *) NULL;
|
1996-11-09 11:39:54 +01:00
|
|
|
|
2003-04-28 06:29:12 +02:00
|
|
|
/*
|
|
|
|
|
* Parse the conninfo string
|
|
|
|
|
*/
|
|
|
|
|
if (!connectOptions1(conn, conninfo))
|
|
|
|
|
return conn;
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Compute derived options
|
|
|
|
|
*/
|
|
|
|
|
if (!connectOptions2(conn))
|
|
|
|
|
return conn;
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Connect to the database
|
|
|
|
|
*/
|
|
|
|
|
if (!connectDBStart(conn))
|
|
|
|
|
{
|
|
|
|
|
/* Just in case we failed to set it in connectDBStart */
|
|
|
|
|
conn->status = CONNECTION_BAD;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return conn;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* connectOptions1
|
|
|
|
|
*
|
|
|
|
|
* Internal subroutine to set up connection parameters given an already-
|
|
|
|
|
* created PGconn and a conninfo string. Derived settings should be
|
|
|
|
|
* processed by calling connectOptions2 next. (We split them because
|
|
|
|
|
* PQsetdbLogin overrides defaults in between.)
|
|
|
|
|
*
|
|
|
|
|
* Returns true if OK, false if trouble (in which case errorMessage is set
|
|
|
|
|
* and so is conn->status).
|
|
|
|
|
*/
|
|
|
|
|
static bool
|
|
|
|
|
connectOptions1(PGconn *conn, const char *conninfo)
|
|
|
|
|
{
|
|
|
|
|
PQconninfoOption *connOptions;
|
|
|
|
|
char *tmp;
|
|
|
|
|
|
2001-03-22 07:16:21 +01:00
|
|
|
/*
|
2000-03-11 04:08:37 +01:00
|
|
|
* Parse the conninfo string
|
1996-11-09 11:39:54 +01:00
|
|
|
*/
|
2000-03-11 04:08:37 +01:00
|
|
|
connOptions = conninfo_parse(conninfo, &conn->errorMessage);
|
|
|
|
|
if (connOptions == NULL)
|
1997-09-07 07:04:48 +02:00
|
|
|
{
|
|
|
|
|
conn->status = CONNECTION_BAD;
|
2000-03-11 04:08:37 +01:00
|
|
|
/* errorMessage is already set */
|
2003-04-28 06:29:12 +02:00
|
|
|
return false;
|
1996-11-09 11:39:54 +01:00
|
|
|
}
|
2000-03-11 04:08:37 +01:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Move option values into conn structure
|
2003-04-28 06:29:12 +02:00
|
|
|
*
|
|
|
|
|
* Don't put anything cute here --- intelligence should be in
|
|
|
|
|
* connectOptions2 ...
|
2000-03-11 04:08:37 +01:00
|
|
|
*/
|
|
|
|
|
tmp = conninfo_getval(connOptions, "hostaddr");
|
1999-11-30 04:08:19 +01:00
|
|
|
conn->pghostaddr = tmp ? strdup(tmp) : NULL;
|
2000-03-11 04:08:37 +01:00
|
|
|
tmp = conninfo_getval(connOptions, "host");
|
1998-01-13 05:24:10 +01:00
|
|
|
conn->pghost = tmp ? strdup(tmp) : NULL;
|
2000-03-11 04:08:37 +01:00
|
|
|
tmp = conninfo_getval(connOptions, "port");
|
1998-01-13 05:24:10 +01:00
|
|
|
conn->pgport = tmp ? strdup(tmp) : NULL;
|
2000-03-11 04:08:37 +01:00
|
|
|
tmp = conninfo_getval(connOptions, "tty");
|
1998-02-26 05:46:47 +01:00
|
|
|
conn->pgtty = tmp ? strdup(tmp) : NULL;
|
2000-03-11 04:08:37 +01:00
|
|
|
tmp = conninfo_getval(connOptions, "options");
|
1998-01-13 05:24:10 +01:00
|
|
|
conn->pgoptions = tmp ? strdup(tmp) : NULL;
|
2000-03-11 04:08:37 +01:00
|
|
|
tmp = conninfo_getval(connOptions, "dbname");
|
1998-05-07 01:51:16 +02:00
|
|
|
conn->dbName = tmp ? strdup(tmp) : NULL;
|
2000-03-11 04:08:37 +01:00
|
|
|
tmp = conninfo_getval(connOptions, "user");
|
1998-01-13 05:24:10 +01:00
|
|
|
conn->pguser = tmp ? strdup(tmp) : NULL;
|
2000-03-11 04:08:37 +01:00
|
|
|
tmp = conninfo_getval(connOptions, "password");
|
1998-01-13 05:24:10 +01:00
|
|
|
conn->pgpass = tmp ? strdup(tmp) : NULL;
|
2002-08-18 03:35:40 +02:00
|
|
|
tmp = conninfo_getval(connOptions, "connect_timeout");
|
|
|
|
|
conn->connect_timeout = tmp ? strdup(tmp) : NULL;
|
At long last I put together a patch to support 4 client SSL negotiation
modes (and replace the requiressl boolean). The four options were first
spelled out by Magnus Hagander <mha@sollentuna.net> on 2000-08-23 in email
to pgsql-hackers, archived here:
http://archives.postgresql.org/pgsql-hackers/2000-08/msg00639.php
My original less-flexible patch and the ensuing thread are archived at:
http://dbforums.com/t623845.html
Attached is a new patch, including documentation.
To sum up, there's a new client parameter "sslmode" and environment
variable "PGSSLMODE", with these options:
sslmode description
------- -----------
disable Unencrypted non-SSL only
allow Negotiate, prefer non-SSL
prefer Negotiate, prefer SSL (default)
require Require SSL
The only change to the server is a new pg_hba.conf line type,
"hostnossl", for specifying connections that are not allowed to use SSL
(for example, to prevent servers on a local network from accidentally
using SSL and wasting cycles). Thus the 3 pg_hba.conf line types are:
pg_hba.conf line types
----------------------
host applies to either SSL or regular connections
hostssl applies only to SSL connections
hostnossl applies only to regular connections
These client and server options, the postgresql.conf ssl = false option,
and finally the possibility of compiling with no SSL support at all,
make quite a range of combinations to test. I threw together a test
script to try many of them out. It's in a separate tarball with its
config files, a patch to psql so it'll announce SSL connections even in
absence of a tty, and the test output. The test is especially informative
when run on the same tty the postmaster was started on, so the FATAL:
errors during negotiation are interleaved with the psql client output.
I saw Tom write that new submissions for 7.4 have to be in before midnight
local time, and since I'm on the east coast in the US, this just makes it
in before the bell. :)
Jon Jensen
2003-07-26 15:50:02 +02:00
|
|
|
tmp = conninfo_getval(connOptions, "sslmode");
|
|
|
|
|
conn->sslmode = tmp ? strdup(tmp) : NULL;
|
2000-08-30 16:54:24 +02:00
|
|
|
#ifdef USE_SSL
|
|
|
|
|
tmp = conninfo_getval(connOptions, "requiressl");
|
2002-03-02 01:49:22 +01:00
|
|
|
if (tmp && tmp[0] == '1')
|
At long last I put together a patch to support 4 client SSL negotiation
modes (and replace the requiressl boolean). The four options were first
spelled out by Magnus Hagander <mha@sollentuna.net> on 2000-08-23 in email
to pgsql-hackers, archived here:
http://archives.postgresql.org/pgsql-hackers/2000-08/msg00639.php
My original less-flexible patch and the ensuing thread are archived at:
http://dbforums.com/t623845.html
Attached is a new patch, including documentation.
To sum up, there's a new client parameter "sslmode" and environment
variable "PGSSLMODE", with these options:
sslmode description
------- -----------
disable Unencrypted non-SSL only
allow Negotiate, prefer non-SSL
prefer Negotiate, prefer SSL (default)
require Require SSL
The only change to the server is a new pg_hba.conf line type,
"hostnossl", for specifying connections that are not allowed to use SSL
(for example, to prevent servers on a local network from accidentally
using SSL and wasting cycles). Thus the 3 pg_hba.conf line types are:
pg_hba.conf line types
----------------------
host applies to either SSL or regular connections
hostssl applies only to SSL connections
hostnossl applies only to regular connections
These client and server options, the postgresql.conf ssl = false option,
and finally the possibility of compiling with no SSL support at all,
make quite a range of combinations to test. I threw together a test
script to try many of them out. It's in a separate tarball with its
config files, a patch to psql so it'll announce SSL connections even in
absence of a tty, and the test output. The test is especially informative
when run on the same tty the postmaster was started on, so the FATAL:
errors during negotiation are interleaved with the psql client output.
I saw Tom write that new submissions for 7.4 have to be in before midnight
local time, and since I'm on the east coast in the US, this just makes it
in before the bell. :)
Jon Jensen
2003-07-26 15:50:02 +02:00
|
|
|
{
|
|
|
|
|
/* here warn that the requiressl option is deprecated? */
|
|
|
|
|
if (conn->sslmode)
|
|
|
|
|
free(conn->sslmode);
|
2003-08-01 23:27:27 +02:00
|
|
|
conn->sslmode = strdup("require");
|
At long last I put together a patch to support 4 client SSL negotiation
modes (and replace the requiressl boolean). The four options were first
spelled out by Magnus Hagander <mha@sollentuna.net> on 2000-08-23 in email
to pgsql-hackers, archived here:
http://archives.postgresql.org/pgsql-hackers/2000-08/msg00639.php
My original less-flexible patch and the ensuing thread are archived at:
http://dbforums.com/t623845.html
Attached is a new patch, including documentation.
To sum up, there's a new client parameter "sslmode" and environment
variable "PGSSLMODE", with these options:
sslmode description
------- -----------
disable Unencrypted non-SSL only
allow Negotiate, prefer non-SSL
prefer Negotiate, prefer SSL (default)
require Require SSL
The only change to the server is a new pg_hba.conf line type,
"hostnossl", for specifying connections that are not allowed to use SSL
(for example, to prevent servers on a local network from accidentally
using SSL and wasting cycles). Thus the 3 pg_hba.conf line types are:
pg_hba.conf line types
----------------------
host applies to either SSL or regular connections
hostssl applies only to SSL connections
hostnossl applies only to regular connections
These client and server options, the postgresql.conf ssl = false option,
and finally the possibility of compiling with no SSL support at all,
make quite a range of combinations to test. I threw together a test
script to try many of them out. It's in a separate tarball with its
config files, a patch to psql so it'll announce SSL connections even in
absence of a tty, and the test output. The test is especially informative
when run on the same tty the postmaster was started on, so the FATAL:
errors during negotiation are interleaved with the psql client output.
I saw Tom write that new submissions for 7.4 have to be in before midnight
local time, and since I'm on the east coast in the US, this just makes it
in before the bell. :)
Jon Jensen
2003-07-26 15:50:02 +02:00
|
|
|
}
|
2000-08-30 16:54:24 +02:00
|
|
|
#endif
|
1997-09-07 07:04:48 +02:00
|
|
|
|
2001-03-22 07:16:21 +01:00
|
|
|
/*
|
2000-03-11 04:08:37 +01:00
|
|
|
* Free the option info - all is in conn now
|
1997-09-07 07:04:48 +02:00
|
|
|
*/
|
2000-03-11 04:08:37 +01:00
|
|
|
PQconninfoFree(connOptions);
|
1997-09-07 07:04:48 +02:00
|
|
|
|
2003-04-28 06:29:12 +02:00
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* connectOptions2
|
|
|
|
|
*
|
|
|
|
|
* Compute derived connection options after absorbing all user-supplied info.
|
|
|
|
|
*
|
|
|
|
|
* Returns true if OK, false if trouble (in which case errorMessage is set
|
|
|
|
|
* and so is conn->status).
|
|
|
|
|
*/
|
|
|
|
|
static bool
|
|
|
|
|
connectOptions2(PGconn *conn)
|
|
|
|
|
{
|
2003-05-05 02:44:56 +02:00
|
|
|
/*
|
|
|
|
|
* If database name was not given, default it to equal user name
|
|
|
|
|
*/
|
|
|
|
|
if ((conn->dbName == NULL || conn->dbName[0] == '\0')
|
|
|
|
|
&& conn->pguser != NULL)
|
|
|
|
|
{
|
|
|
|
|
if (conn->dbName)
|
|
|
|
|
free(conn->dbName);
|
|
|
|
|
conn->dbName = strdup(conn->pguser);
|
|
|
|
|
}
|
|
|
|
|
|
2003-04-28 06:29:12 +02:00
|
|
|
/*
|
|
|
|
|
* Supply default password if none given
|
|
|
|
|
*/
|
|
|
|
|
if (conn->pgpass == NULL || conn->pgpass[0] == '\0')
|
|
|
|
|
{
|
|
|
|
|
if (conn->pgpass)
|
|
|
|
|
free(conn->pgpass);
|
|
|
|
|
conn->pgpass = PasswordFromFile(conn->pghost, conn->pgport,
|
|
|
|
|
conn->dbName, conn->pguser);
|
|
|
|
|
if (conn->pgpass == NULL)
|
|
|
|
|
conn->pgpass = strdup(DefaultPassword);
|
|
|
|
|
}
|
|
|
|
|
|
2001-03-22 07:16:21 +01:00
|
|
|
/*
|
2000-11-14 00:37:54 +01:00
|
|
|
* Allow unix socket specification in the host name
|
|
|
|
|
*/
|
2003-04-04 22:42:13 +02:00
|
|
|
if (conn->pghost && is_absolute_path(conn->pghost))
|
2000-11-14 00:37:54 +01:00
|
|
|
{
|
|
|
|
|
if (conn->pgunixsocket)
|
|
|
|
|
free(conn->pgunixsocket);
|
|
|
|
|
conn->pgunixsocket = conn->pghost;
|
|
|
|
|
conn->pghost = NULL;
|
|
|
|
|
}
|
|
|
|
|
|
2003-04-28 06:29:12 +02:00
|
|
|
#ifdef NOT_USED
|
2003-08-04 02:43:34 +02:00
|
|
|
|
2001-03-22 07:16:21 +01:00
|
|
|
/*
|
2003-04-28 06:29:12 +02:00
|
|
|
* parse dbName to get all additional info in it, if any
|
1997-09-07 07:04:48 +02:00
|
|
|
*/
|
2003-04-28 06:29:12 +02:00
|
|
|
if (update_db_info(conn) != 0)
|
1999-11-30 04:08:19 +01:00
|
|
|
{
|
|
|
|
|
conn->status = CONNECTION_BAD;
|
2003-04-28 06:29:12 +02:00
|
|
|
/* errorMessage is already set */
|
|
|
|
|
return false;
|
1999-11-30 04:08:19 +01:00
|
|
|
}
|
2003-04-28 06:29:12 +02:00
|
|
|
#endif
|
1997-11-10 16:41:58 +01:00
|
|
|
|
At long last I put together a patch to support 4 client SSL negotiation
modes (and replace the requiressl boolean). The four options were first
spelled out by Magnus Hagander <mha@sollentuna.net> on 2000-08-23 in email
to pgsql-hackers, archived here:
http://archives.postgresql.org/pgsql-hackers/2000-08/msg00639.php
My original less-flexible patch and the ensuing thread are archived at:
http://dbforums.com/t623845.html
Attached is a new patch, including documentation.
To sum up, there's a new client parameter "sslmode" and environment
variable "PGSSLMODE", with these options:
sslmode description
------- -----------
disable Unencrypted non-SSL only
allow Negotiate, prefer non-SSL
prefer Negotiate, prefer SSL (default)
require Require SSL
The only change to the server is a new pg_hba.conf line type,
"hostnossl", for specifying connections that are not allowed to use SSL
(for example, to prevent servers on a local network from accidentally
using SSL and wasting cycles). Thus the 3 pg_hba.conf line types are:
pg_hba.conf line types
----------------------
host applies to either SSL or regular connections
hostssl applies only to SSL connections
hostnossl applies only to regular connections
These client and server options, the postgresql.conf ssl = false option,
and finally the possibility of compiling with no SSL support at all,
make quite a range of combinations to test. I threw together a test
script to try many of them out. It's in a separate tarball with its
config files, a patch to psql so it'll announce SSL connections even in
absence of a tty, and the test output. The test is especially informative
when run on the same tty the postmaster was started on, so the FATAL:
errors during negotiation are interleaved with the psql client output.
I saw Tom write that new submissions for 7.4 have to be in before midnight
local time, and since I'm on the east coast in the US, this just makes it
in before the bell. :)
Jon Jensen
2003-07-26 15:50:02 +02:00
|
|
|
/*
|
|
|
|
|
* validate sslmode option
|
|
|
|
|
*/
|
|
|
|
|
if (conn->sslmode)
|
|
|
|
|
{
|
|
|
|
|
if (strcmp(conn->sslmode, "disable") != 0
|
|
|
|
|
&& strcmp(conn->sslmode, "allow") != 0
|
|
|
|
|
&& strcmp(conn->sslmode, "prefer") != 0
|
|
|
|
|
&& strcmp(conn->sslmode, "require") != 0)
|
|
|
|
|
{
|
|
|
|
|
conn->status = CONNECTION_BAD;
|
|
|
|
|
printfPQExpBuffer(&conn->errorMessage,
|
2003-09-22 02:23:35 +02:00
|
|
|
libpq_gettext("invalid sslmode value: \"%s\"\n"),
|
At long last I put together a patch to support 4 client SSL negotiation
modes (and replace the requiressl boolean). The four options were first
spelled out by Magnus Hagander <mha@sollentuna.net> on 2000-08-23 in email
to pgsql-hackers, archived here:
http://archives.postgresql.org/pgsql-hackers/2000-08/msg00639.php
My original less-flexible patch and the ensuing thread are archived at:
http://dbforums.com/t623845.html
Attached is a new patch, including documentation.
To sum up, there's a new client parameter "sslmode" and environment
variable "PGSSLMODE", with these options:
sslmode description
------- -----------
disable Unencrypted non-SSL only
allow Negotiate, prefer non-SSL
prefer Negotiate, prefer SSL (default)
require Require SSL
The only change to the server is a new pg_hba.conf line type,
"hostnossl", for specifying connections that are not allowed to use SSL
(for example, to prevent servers on a local network from accidentally
using SSL and wasting cycles). Thus the 3 pg_hba.conf line types are:
pg_hba.conf line types
----------------------
host applies to either SSL or regular connections
hostssl applies only to SSL connections
hostnossl applies only to regular connections
These client and server options, the postgresql.conf ssl = false option,
and finally the possibility of compiling with no SSL support at all,
make quite a range of combinations to test. I threw together a test
script to try many of them out. It's in a separate tarball with its
config files, a patch to psql so it'll announce SSL connections even in
absence of a tty, and the test output. The test is especially informative
when run on the same tty the postmaster was started on, so the FATAL:
errors during negotiation are interleaved with the psql client output.
I saw Tom write that new submissions for 7.4 have to be in before midnight
local time, and since I'm on the east coast in the US, this just makes it
in before the bell. :)
Jon Jensen
2003-07-26 15:50:02 +02:00
|
|
|
conn->sslmode);
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#ifndef USE_SSL
|
2003-08-04 02:43:34 +02:00
|
|
|
switch (conn->sslmode[0])
|
|
|
|
|
{
|
|
|
|
|
case 'a': /* "allow" */
|
|
|
|
|
case 'p': /* "prefer" */
|
|
|
|
|
|
At long last I put together a patch to support 4 client SSL negotiation
modes (and replace the requiressl boolean). The four options were first
spelled out by Magnus Hagander <mha@sollentuna.net> on 2000-08-23 in email
to pgsql-hackers, archived here:
http://archives.postgresql.org/pgsql-hackers/2000-08/msg00639.php
My original less-flexible patch and the ensuing thread are archived at:
http://dbforums.com/t623845.html
Attached is a new patch, including documentation.
To sum up, there's a new client parameter "sslmode" and environment
variable "PGSSLMODE", with these options:
sslmode description
------- -----------
disable Unencrypted non-SSL only
allow Negotiate, prefer non-SSL
prefer Negotiate, prefer SSL (default)
require Require SSL
The only change to the server is a new pg_hba.conf line type,
"hostnossl", for specifying connections that are not allowed to use SSL
(for example, to prevent servers on a local network from accidentally
using SSL and wasting cycles). Thus the 3 pg_hba.conf line types are:
pg_hba.conf line types
----------------------
host applies to either SSL or regular connections
hostssl applies only to SSL connections
hostnossl applies only to regular connections
These client and server options, the postgresql.conf ssl = false option,
and finally the possibility of compiling with no SSL support at all,
make quite a range of combinations to test. I threw together a test
script to try many of them out. It's in a separate tarball with its
config files, a patch to psql so it'll announce SSL connections even in
absence of a tty, and the test output. The test is especially informative
when run on the same tty the postmaster was started on, so the FATAL:
errors during negotiation are interleaved with the psql client output.
I saw Tom write that new submissions for 7.4 have to be in before midnight
local time, and since I'm on the east coast in the US, this just makes it
in before the bell. :)
Jon Jensen
2003-07-26 15:50:02 +02:00
|
|
|
/*
|
|
|
|
|
* warn user that an SSL connection will never be
|
|
|
|
|
* negotiated since SSL was not compiled in?
|
|
|
|
|
*/
|
|
|
|
|
break;
|
|
|
|
|
|
2003-08-04 02:43:34 +02:00
|
|
|
case 'r': /* "require" */
|
At long last I put together a patch to support 4 client SSL negotiation
modes (and replace the requiressl boolean). The four options were first
spelled out by Magnus Hagander <mha@sollentuna.net> on 2000-08-23 in email
to pgsql-hackers, archived here:
http://archives.postgresql.org/pgsql-hackers/2000-08/msg00639.php
My original less-flexible patch and the ensuing thread are archived at:
http://dbforums.com/t623845.html
Attached is a new patch, including documentation.
To sum up, there's a new client parameter "sslmode" and environment
variable "PGSSLMODE", with these options:
sslmode description
------- -----------
disable Unencrypted non-SSL only
allow Negotiate, prefer non-SSL
prefer Negotiate, prefer SSL (default)
require Require SSL
The only change to the server is a new pg_hba.conf line type,
"hostnossl", for specifying connections that are not allowed to use SSL
(for example, to prevent servers on a local network from accidentally
using SSL and wasting cycles). Thus the 3 pg_hba.conf line types are:
pg_hba.conf line types
----------------------
host applies to either SSL or regular connections
hostssl applies only to SSL connections
hostnossl applies only to regular connections
These client and server options, the postgresql.conf ssl = false option,
and finally the possibility of compiling with no SSL support at all,
make quite a range of combinations to test. I threw together a test
script to try many of them out. It's in a separate tarball with its
config files, a patch to psql so it'll announce SSL connections even in
absence of a tty, and the test output. The test is especially informative
when run on the same tty the postmaster was started on, so the FATAL:
errors during negotiation are interleaved with the psql client output.
I saw Tom write that new submissions for 7.4 have to be in before midnight
local time, and since I'm on the east coast in the US, this just makes it
in before the bell. :)
Jon Jensen
2003-07-26 15:50:02 +02:00
|
|
|
conn->status = CONNECTION_BAD;
|
|
|
|
|
printfPQExpBuffer(&conn->errorMessage,
|
2003-09-22 02:23:35 +02:00
|
|
|
libpq_gettext("sslmode value \"%s\" invalid when SSL support is not compiled in\n"),
|
At long last I put together a patch to support 4 client SSL negotiation
modes (and replace the requiressl boolean). The four options were first
spelled out by Magnus Hagander <mha@sollentuna.net> on 2000-08-23 in email
to pgsql-hackers, archived here:
http://archives.postgresql.org/pgsql-hackers/2000-08/msg00639.php
My original less-flexible patch and the ensuing thread are archived at:
http://dbforums.com/t623845.html
Attached is a new patch, including documentation.
To sum up, there's a new client parameter "sslmode" and environment
variable "PGSSLMODE", with these options:
sslmode description
------- -----------
disable Unencrypted non-SSL only
allow Negotiate, prefer non-SSL
prefer Negotiate, prefer SSL (default)
require Require SSL
The only change to the server is a new pg_hba.conf line type,
"hostnossl", for specifying connections that are not allowed to use SSL
(for example, to prevent servers on a local network from accidentally
using SSL and wasting cycles). Thus the 3 pg_hba.conf line types are:
pg_hba.conf line types
----------------------
host applies to either SSL or regular connections
hostssl applies only to SSL connections
hostnossl applies only to regular connections
These client and server options, the postgresql.conf ssl = false option,
and finally the possibility of compiling with no SSL support at all,
make quite a range of combinations to test. I threw together a test
script to try many of them out. It's in a separate tarball with its
config files, a patch to psql so it'll announce SSL connections even in
absence of a tty, and the test output. The test is especially informative
when run on the same tty the postmaster was started on, so the FATAL:
errors during negotiation are interleaved with the psql client output.
I saw Tom write that new submissions for 7.4 have to be in before midnight
local time, and since I'm on the east coast in the US, this just makes it
in before the bell. :)
Jon Jensen
2003-07-26 15:50:02 +02:00
|
|
|
conn->sslmode);
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
#endif
|
|
|
|
|
}
|
|
|
|
|
else
|
2003-08-01 23:27:27 +02:00
|
|
|
conn->sslmode = strdup(DefaultSSLMode);
|
At long last I put together a patch to support 4 client SSL negotiation
modes (and replace the requiressl boolean). The four options were first
spelled out by Magnus Hagander <mha@sollentuna.net> on 2000-08-23 in email
to pgsql-hackers, archived here:
http://archives.postgresql.org/pgsql-hackers/2000-08/msg00639.php
My original less-flexible patch and the ensuing thread are archived at:
http://dbforums.com/t623845.html
Attached is a new patch, including documentation.
To sum up, there's a new client parameter "sslmode" and environment
variable "PGSSLMODE", with these options:
sslmode description
------- -----------
disable Unencrypted non-SSL only
allow Negotiate, prefer non-SSL
prefer Negotiate, prefer SSL (default)
require Require SSL
The only change to the server is a new pg_hba.conf line type,
"hostnossl", for specifying connections that are not allowed to use SSL
(for example, to prevent servers on a local network from accidentally
using SSL and wasting cycles). Thus the 3 pg_hba.conf line types are:
pg_hba.conf line types
----------------------
host applies to either SSL or regular connections
hostssl applies only to SSL connections
hostnossl applies only to regular connections
These client and server options, the postgresql.conf ssl = false option,
and finally the possibility of compiling with no SSL support at all,
make quite a range of combinations to test. I threw together a test
script to try many of them out. It's in a separate tarball with its
config files, a patch to psql so it'll announce SSL connections even in
absence of a tty, and the test output. The test is especially informative
when run on the same tty the postmaster was started on, so the FATAL:
errors during negotiation are interleaved with the psql client output.
I saw Tom write that new submissions for 7.4 have to be in before midnight
local time, and since I'm on the east coast in the US, this just makes it
in before the bell. :)
Jon Jensen
2003-07-26 15:50:02 +02:00
|
|
|
|
2003-04-28 06:29:12 +02:00
|
|
|
return true;
|
1996-11-09 11:39:54 +01:00
|
|
|
}
|
|
|
|
|
|
2001-08-17 17:11:15 +02:00
|
|
|
/*
|
1997-09-07 07:04:48 +02:00
|
|
|
* PQconndefaults
|
|
|
|
|
*
|
1996-11-09 11:39:54 +01:00
|
|
|
* Parse an empty string like PQconnectdb() would do and return the
|
2000-03-11 04:08:37 +01:00
|
|
|
* working connection options array.
|
|
|
|
|
*
|
|
|
|
|
* Using this function, an application may determine all possible options
|
|
|
|
|
* and their current default values.
|
|
|
|
|
*
|
|
|
|
|
* NOTE: as of PostgreSQL 7.0, the returned array is dynamically allocated
|
2000-04-12 19:17:23 +02:00
|
|
|
* and should be freed when no longer needed via PQconninfoFree(). (In prior
|
2000-03-11 04:08:37 +01:00
|
|
|
* versions, the returned array was static, but that's not thread-safe.)
|
|
|
|
|
* Pre-7.0 applications that use this function will see a small memory leak
|
|
|
|
|
* until they are updated to call PQconninfoFree.
|
1996-11-09 11:39:54 +01:00
|
|
|
*/
|
1997-09-07 07:04:48 +02:00
|
|
|
PQconninfoOption *
|
1996-11-10 04:06:38 +01:00
|
|
|
PQconndefaults(void)
|
1996-11-09 11:39:54 +01:00
|
|
|
{
|
2000-04-12 19:17:23 +02:00
|
|
|
PQExpBufferData errorBuf;
|
2000-03-11 04:08:37 +01:00
|
|
|
PQconninfoOption *connOptions;
|
1996-11-09 11:39:54 +01:00
|
|
|
|
1999-08-31 03:37:37 +02:00
|
|
|
initPQExpBuffer(&errorBuf);
|
2000-03-11 04:08:37 +01:00
|
|
|
connOptions = conninfo_parse("", &errorBuf);
|
1999-08-31 03:37:37 +02:00
|
|
|
termPQExpBuffer(&errorBuf);
|
2000-03-11 04:08:37 +01:00
|
|
|
return connOptions;
|
1996-11-09 11:39:54 +01:00
|
|
|
}
|
|
|
|
|
|
1996-07-09 08:22:35 +02:00
|
|
|
/* ----------------
|
1997-12-04 01:28:15 +01:00
|
|
|
* PQsetdbLogin
|
1997-09-07 07:04:48 +02:00
|
|
|
*
|
1996-10-10 10:20:11 +02:00
|
|
|
* establishes a connection to a postgres backend through the postmaster
|
1996-07-09 08:22:35 +02:00
|
|
|
* at the specified host and port.
|
|
|
|
|
*
|
|
|
|
|
* returns a PGconn* which is needed for all subsequent libpq calls
|
1997-03-12 22:23:16 +01:00
|
|
|
*
|
2003-04-28 06:29:12 +02:00
|
|
|
* if the status field of the connection returned is CONNECTION_BAD,
|
|
|
|
|
* then only the errorMessage is likely to be useful.
|
1996-07-09 08:22:35 +02:00
|
|
|
* ----------------
|
|
|
|
|
*/
|
1998-02-26 05:46:47 +01:00
|
|
|
PGconn *
|
2000-01-14 06:33:15 +01:00
|
|
|
PQsetdbLogin(const char *pghost, const char *pgport, const char *pgoptions,
|
|
|
|
|
const char *pgtty, const char *dbName, const char *login,
|
|
|
|
|
const char *pwd)
|
1996-07-09 08:22:35 +02:00
|
|
|
{
|
1999-02-05 05:25:55 +01:00
|
|
|
PGconn *conn;
|
1997-09-07 07:04:48 +02:00
|
|
|
|
2003-04-28 06:29:12 +02:00
|
|
|
/*
|
|
|
|
|
* Allocate memory for the conn structure
|
|
|
|
|
*/
|
1998-05-07 01:51:16 +02:00
|
|
|
conn = makeEmptyPGconn();
|
1997-09-07 07:04:48 +02:00
|
|
|
if (conn == NULL)
|
1998-05-07 01:51:16 +02:00
|
|
|
return (PGconn *) NULL;
|
|
|
|
|
|
2003-04-28 06:29:12 +02:00
|
|
|
/*
|
|
|
|
|
* Parse an empty conninfo string in order to set up the same defaults
|
|
|
|
|
* that PQconnectdb() would use.
|
|
|
|
|
*/
|
|
|
|
|
if (!connectOptions1(conn, ""))
|
|
|
|
|
return conn;
|
1997-09-07 07:04:48 +02:00
|
|
|
|
2001-03-22 07:16:21 +01:00
|
|
|
/*
|
2003-04-28 06:29:12 +02:00
|
|
|
* Absorb specified options into conn structure, overriding defaults
|
2000-11-14 00:37:54 +01:00
|
|
|
*/
|
2003-04-28 06:29:12 +02:00
|
|
|
if (pghost && pghost[0] != '\0')
|
2000-11-14 00:37:54 +01:00
|
|
|
{
|
2003-04-28 06:29:12 +02:00
|
|
|
if (conn->pghost)
|
|
|
|
|
free(conn->pghost);
|
|
|
|
|
conn->pghost = strdup(pghost);
|
2000-11-14 00:37:54 +01:00
|
|
|
}
|
UUNET is looking into offering PostgreSQL as a part of a managed web
hosting product, on both shared and dedicated machines. We currently
offer Oracle and MySQL, and it would be a nice middle-ground.
However, as shipped, PostgreSQL lacks the following features we need
that MySQL has:
1. The ability to listen only on a particular IP address. Each
hosting customer has their own IP address, on which all of their
servers (http, ftp, real media, etc.) run.
2. The ability to place the Unix-domain socket in a mode 700 directory.
This allows us to automatically create an empty database, with an
empty DBA password, for new or upgrading customers without having
to interactively set a DBA password and communicate it to (or from)
the customer. This in turn cuts down our install and upgrade times.
3. The ability to connect to the Unix-domain socket from within a
change-rooted environment. We run CGI programs chrooted to the
user's home directory, which is another reason why we need to be
able to specify where the Unix-domain socket is, instead of /tmp.
4. The ability to, if run as root, open a pid file in /var/run as
root, and then setuid to the desired user. (mysqld -u can almost
do this; I had to patch it, too).
The patch below fixes problem 1-3. I plan to address #4, also, but
haven't done so yet. These diffs are big enough that they should give
the PG development team something to think about in the meantime :-)
Also, I'm about to leave for 2 weeks' vacation, so I thought I'd get
out what I have, which works (for the problems it tackles), now.
With these changes, we can set up and run PostgreSQL with scripts the
same way we can with apache or proftpd or mysql.
In summary, this patch makes the following enhancements:
1. Adds an environment variable PGUNIXSOCKET, analogous to MYSQL_UNIX_PORT,
and command line options -k --unix-socket to the relevant programs.
2. Adds a -h option to postmaster to set the hostname or IP address to
listen on instead of the default INADDR_ANY.
3. Extends some library interfaces to support the above.
4. Fixes a few memory leaks in PQconnectdb().
The default behavior is unchanged from stock 7.0.2; if you don't use
any of these new features, they don't change the operation.
David J. MacKenzie
2000-11-13 16:18:15 +01:00
|
|
|
|
2003-04-28 06:29:12 +02:00
|
|
|
if (pgport && pgport[0] != '\0')
|
1998-05-07 01:51:16 +02:00
|
|
|
{
|
2003-04-28 06:29:12 +02:00
|
|
|
if (conn->pgport)
|
|
|
|
|
free(conn->pgport);
|
|
|
|
|
conn->pgport = strdup(pgport);
|
1998-05-07 01:51:16 +02:00
|
|
|
}
|
1997-09-07 07:04:48 +02:00
|
|
|
|
2003-04-28 06:29:12 +02:00
|
|
|
if (pgoptions && pgoptions[0] != '\0')
|
1998-05-07 01:51:16 +02:00
|
|
|
{
|
2003-04-28 06:29:12 +02:00
|
|
|
if (conn->pgoptions)
|
|
|
|
|
free(conn->pgoptions);
|
1998-05-07 01:51:16 +02:00
|
|
|
conn->pgoptions = strdup(pgoptions);
|
2003-04-28 06:29:12 +02:00
|
|
|
}
|
1997-09-07 07:04:48 +02:00
|
|
|
|
2003-04-28 06:29:12 +02:00
|
|
|
if (pgtty && pgtty[0] != '\0')
|
1999-08-31 03:37:37 +02:00
|
|
|
{
|
2003-04-28 06:29:12 +02:00
|
|
|
if (conn->pgtty)
|
|
|
|
|
free(conn->pgtty);
|
|
|
|
|
conn->pgtty = strdup(pgtty);
|
1999-08-31 03:37:37 +02:00
|
|
|
}
|
1997-09-07 07:04:48 +02:00
|
|
|
|
2003-04-28 06:29:12 +02:00
|
|
|
if (dbName && dbName[0] != '\0')
|
1998-05-07 01:51:16 +02:00
|
|
|
{
|
2003-04-28 06:29:12 +02:00
|
|
|
if (conn->dbName)
|
|
|
|
|
free(conn->dbName);
|
|
|
|
|
conn->dbName = strdup(dbName);
|
1998-05-07 01:51:16 +02:00
|
|
|
}
|
1997-09-07 07:04:48 +02:00
|
|
|
|
2003-04-28 06:29:12 +02:00
|
|
|
if (login && login[0] != '\0')
|
1998-05-07 01:51:16 +02:00
|
|
|
{
|
2003-04-28 06:29:12 +02:00
|
|
|
if (conn->pguser)
|
|
|
|
|
free(conn->pguser);
|
|
|
|
|
conn->pguser = strdup(login);
|
1998-05-07 01:51:16 +02:00
|
|
|
}
|
1997-09-07 07:04:48 +02:00
|
|
|
|
2003-04-28 06:29:12 +02:00
|
|
|
if (pwd && pwd[0] != '\0')
|
|
|
|
|
{
|
|
|
|
|
if (conn->pgpass)
|
|
|
|
|
free(conn->pgpass);
|
2002-08-15 04:56:19 +02:00
|
|
|
conn->pgpass = strdup(pwd);
|
2003-04-28 06:29:12 +02:00
|
|
|
}
|
2002-10-25 01:35:55 +02:00
|
|
|
|
2003-04-28 06:29:12 +02:00
|
|
|
/*
|
|
|
|
|
* Compute derived options
|
|
|
|
|
*/
|
|
|
|
|
if (!connectOptions2(conn))
|
|
|
|
|
return conn;
|
2000-08-30 16:54:24 +02:00
|
|
|
|
2003-04-28 06:29:12 +02:00
|
|
|
/*
|
|
|
|
|
* Connect to the database
|
|
|
|
|
*/
|
|
|
|
|
if (connectDBStart(conn))
|
|
|
|
|
(void) connectDBComplete(conn);
|
2000-04-12 19:17:23 +02:00
|
|
|
|
1997-09-07 07:04:48 +02:00
|
|
|
return conn;
|
1996-07-09 08:22:35 +02:00
|
|
|
}
|
|
|
|
|
|
1997-09-07 07:04:48 +02:00
|
|
|
|
2001-03-22 05:01:46 +01:00
|
|
|
#ifdef NOT_USED /* because it's broken */
|
1998-07-07 20:00:09 +02:00
|
|
|
/*
|
|
|
|
|
* update_db_info -
|
UUNET is looking into offering PostgreSQL as a part of a managed web
hosting product, on both shared and dedicated machines. We currently
offer Oracle and MySQL, and it would be a nice middle-ground.
However, as shipped, PostgreSQL lacks the following features we need
that MySQL has:
1. The ability to listen only on a particular IP address. Each
hosting customer has their own IP address, on which all of their
servers (http, ftp, real media, etc.) run.
2. The ability to place the Unix-domain socket in a mode 700 directory.
This allows us to automatically create an empty database, with an
empty DBA password, for new or upgrading customers without having
to interactively set a DBA password and communicate it to (or from)
the customer. This in turn cuts down our install and upgrade times.
3. The ability to connect to the Unix-domain socket from within a
change-rooted environment. We run CGI programs chrooted to the
user's home directory, which is another reason why we need to be
able to specify where the Unix-domain socket is, instead of /tmp.
4. The ability to, if run as root, open a pid file in /var/run as
root, and then setuid to the desired user. (mysqld -u can almost
do this; I had to patch it, too).
The patch below fixes problem 1-3. I plan to address #4, also, but
haven't done so yet. These diffs are big enough that they should give
the PG development team something to think about in the meantime :-)
Also, I'm about to leave for 2 weeks' vacation, so I thought I'd get
out what I have, which works (for the problems it tackles), now.
With these changes, we can set up and run PostgreSQL with scripts the
same way we can with apache or proftpd or mysql.
In summary, this patch makes the following enhancements:
1. Adds an environment variable PGUNIXSOCKET, analogous to MYSQL_UNIX_PORT,
and command line options -k --unix-socket to the relevant programs.
2. Adds a -h option to postmaster to set the hostname or IP address to
listen on instead of the default INADDR_ANY.
3. Extends some library interfaces to support the above.
4. Fixes a few memory leaks in PQconnectdb().
The default behavior is unchanged from stock 7.0.2; if you don't use
any of these new features, they don't change the operation.
David J. MacKenzie
2000-11-13 16:18:15 +01:00
|
|
|
* get all additional info out of dbName
|
1998-07-07 20:00:09 +02:00
|
|
|
*/
|
|
|
|
|
static int
|
|
|
|
|
update_db_info(PGconn *conn)
|
|
|
|
|
{
|
2001-03-22 05:01:46 +01:00
|
|
|
char *tmp,
|
|
|
|
|
*tmp2,
|
1998-09-01 06:40:42 +02:00
|
|
|
*old = conn->dbName;
|
|
|
|
|
|
1998-07-07 20:00:09 +02:00
|
|
|
if (strchr(conn->dbName, '@') != NULL)
|
|
|
|
|
{
|
|
|
|
|
/* old style: dbname[@server][:port] */
|
|
|
|
|
tmp = strrchr(conn->dbName, ':');
|
1998-09-01 06:40:42 +02:00
|
|
|
if (tmp != NULL) /* port number given */
|
1998-07-07 20:00:09 +02:00
|
|
|
{
|
UUNET is looking into offering PostgreSQL as a part of a managed web
hosting product, on both shared and dedicated machines. We currently
offer Oracle and MySQL, and it would be a nice middle-ground.
However, as shipped, PostgreSQL lacks the following features we need
that MySQL has:
1. The ability to listen only on a particular IP address. Each
hosting customer has their own IP address, on which all of their
servers (http, ftp, real media, etc.) run.
2. The ability to place the Unix-domain socket in a mode 700 directory.
This allows us to automatically create an empty database, with an
empty DBA password, for new or upgrading customers without having
to interactively set a DBA password and communicate it to (or from)
the customer. This in turn cuts down our install and upgrade times.
3. The ability to connect to the Unix-domain socket from within a
change-rooted environment. We run CGI programs chrooted to the
user's home directory, which is another reason why we need to be
able to specify where the Unix-domain socket is, instead of /tmp.
4. The ability to, if run as root, open a pid file in /var/run as
root, and then setuid to the desired user. (mysqld -u can almost
do this; I had to patch it, too).
The patch below fixes problem 1-3. I plan to address #4, also, but
haven't done so yet. These diffs are big enough that they should give
the PG development team something to think about in the meantime :-)
Also, I'm about to leave for 2 weeks' vacation, so I thought I'd get
out what I have, which works (for the problems it tackles), now.
With these changes, we can set up and run PostgreSQL with scripts the
same way we can with apache or proftpd or mysql.
In summary, this patch makes the following enhancements:
1. Adds an environment variable PGUNIXSOCKET, analogous to MYSQL_UNIX_PORT,
and command line options -k --unix-socket to the relevant programs.
2. Adds a -h option to postmaster to set the hostname or IP address to
listen on instead of the default INADDR_ANY.
3. Extends some library interfaces to support the above.
4. Fixes a few memory leaks in PQconnectdb().
The default behavior is unchanged from stock 7.0.2; if you don't use
any of these new features, they don't change the operation.
David J. MacKenzie
2000-11-13 16:18:15 +01:00
|
|
|
if (conn->pgport)
|
|
|
|
|
free(conn->pgport);
|
1998-09-01 06:40:42 +02:00
|
|
|
conn->pgport = strdup(tmp + 1);
|
1998-07-07 20:00:09 +02:00
|
|
|
*tmp = '\0';
|
|
|
|
|
}
|
1998-09-01 06:40:42 +02:00
|
|
|
|
1998-07-07 20:00:09 +02:00
|
|
|
tmp = strrchr(conn->dbName, '@');
|
1998-09-01 06:40:42 +02:00
|
|
|
if (tmp != NULL) /* host name given */
|
1998-07-07 20:00:09 +02:00
|
|
|
{
|
UUNET is looking into offering PostgreSQL as a part of a managed web
hosting product, on both shared and dedicated machines. We currently
offer Oracle and MySQL, and it would be a nice middle-ground.
However, as shipped, PostgreSQL lacks the following features we need
that MySQL has:
1. The ability to listen only on a particular IP address. Each
hosting customer has their own IP address, on which all of their
servers (http, ftp, real media, etc.) run.
2. The ability to place the Unix-domain socket in a mode 700 directory.
This allows us to automatically create an empty database, with an
empty DBA password, for new or upgrading customers without having
to interactively set a DBA password and communicate it to (or from)
the customer. This in turn cuts down our install and upgrade times.
3. The ability to connect to the Unix-domain socket from within a
change-rooted environment. We run CGI programs chrooted to the
user's home directory, which is another reason why we need to be
able to specify where the Unix-domain socket is, instead of /tmp.
4. The ability to, if run as root, open a pid file in /var/run as
root, and then setuid to the desired user. (mysqld -u can almost
do this; I had to patch it, too).
The patch below fixes problem 1-3. I plan to address #4, also, but
haven't done so yet. These diffs are big enough that they should give
the PG development team something to think about in the meantime :-)
Also, I'm about to leave for 2 weeks' vacation, so I thought I'd get
out what I have, which works (for the problems it tackles), now.
With these changes, we can set up and run PostgreSQL with scripts the
same way we can with apache or proftpd or mysql.
In summary, this patch makes the following enhancements:
1. Adds an environment variable PGUNIXSOCKET, analogous to MYSQL_UNIX_PORT,
and command line options -k --unix-socket to the relevant programs.
2. Adds a -h option to postmaster to set the hostname or IP address to
listen on instead of the default INADDR_ANY.
3. Extends some library interfaces to support the above.
4. Fixes a few memory leaks in PQconnectdb().
The default behavior is unchanged from stock 7.0.2; if you don't use
any of these new features, they don't change the operation.
David J. MacKenzie
2000-11-13 16:18:15 +01:00
|
|
|
if (conn->pghost)
|
|
|
|
|
free(conn->pghost);
|
1998-09-01 06:40:42 +02:00
|
|
|
conn->pghost = strdup(tmp + 1);
|
1998-07-07 20:00:09 +02:00
|
|
|
*tmp = '\0';
|
|
|
|
|
}
|
1998-09-01 06:40:42 +02:00
|
|
|
|
1998-07-07 20:00:09 +02:00
|
|
|
conn->dbName = strdup(old);
|
|
|
|
|
free(old);
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
1998-09-01 06:40:42 +02:00
|
|
|
int offset;
|
|
|
|
|
|
1998-07-07 20:00:09 +02:00
|
|
|
/*
|
1998-09-01 06:40:42 +02:00
|
|
|
* only allow protocols tcp and unix
|
|
|
|
|
*/
|
1998-07-07 20:00:09 +02:00
|
|
|
if (strncmp(conn->dbName, "tcp:", 4) == 0)
|
|
|
|
|
offset = 4;
|
|
|
|
|
else if (strncmp(conn->dbName, "unix:", 5) == 0)
|
|
|
|
|
offset = 5;
|
1998-09-01 06:40:42 +02:00
|
|
|
else
|
|
|
|
|
return 0;
|
|
|
|
|
|
1998-07-07 20:00:09 +02:00
|
|
|
if (strncmp(conn->dbName + offset, "postgresql://", strlen("postgresql://")) == 0)
|
|
|
|
|
{
|
1998-09-01 06:40:42 +02:00
|
|
|
|
2001-03-23 05:49:58 +01:00
|
|
|
/*-------
|
1998-09-01 06:40:42 +02:00
|
|
|
* new style:
|
2001-10-25 07:50:21 +02:00
|
|
|
* <tcp|unix>:postgresql://server[:port|:/unixsocket/path:]
|
2001-03-23 05:49:58 +01:00
|
|
|
* [/db name][?options]
|
|
|
|
|
*-------
|
1998-09-01 06:40:42 +02:00
|
|
|
*/
|
1998-07-07 20:00:09 +02:00
|
|
|
offset += strlen("postgresql://");
|
1998-09-01 06:40:42 +02:00
|
|
|
|
1998-07-07 20:00:09 +02:00
|
|
|
tmp = strrchr(conn->dbName + offset, '?');
|
1998-09-01 06:40:42 +02:00
|
|
|
if (tmp != NULL) /* options given */
|
1998-07-07 20:00:09 +02:00
|
|
|
{
|
UUNET is looking into offering PostgreSQL as a part of a managed web
hosting product, on both shared and dedicated machines. We currently
offer Oracle and MySQL, and it would be a nice middle-ground.
However, as shipped, PostgreSQL lacks the following features we need
that MySQL has:
1. The ability to listen only on a particular IP address. Each
hosting customer has their own IP address, on which all of their
servers (http, ftp, real media, etc.) run.
2. The ability to place the Unix-domain socket in a mode 700 directory.
This allows us to automatically create an empty database, with an
empty DBA password, for new or upgrading customers without having
to interactively set a DBA password and communicate it to (or from)
the customer. This in turn cuts down our install and upgrade times.
3. The ability to connect to the Unix-domain socket from within a
change-rooted environment. We run CGI programs chrooted to the
user's home directory, which is another reason why we need to be
able to specify where the Unix-domain socket is, instead of /tmp.
4. The ability to, if run as root, open a pid file in /var/run as
root, and then setuid to the desired user. (mysqld -u can almost
do this; I had to patch it, too).
The patch below fixes problem 1-3. I plan to address #4, also, but
haven't done so yet. These diffs are big enough that they should give
the PG development team something to think about in the meantime :-)
Also, I'm about to leave for 2 weeks' vacation, so I thought I'd get
out what I have, which works (for the problems it tackles), now.
With these changes, we can set up and run PostgreSQL with scripts the
same way we can with apache or proftpd or mysql.
In summary, this patch makes the following enhancements:
1. Adds an environment variable PGUNIXSOCKET, analogous to MYSQL_UNIX_PORT,
and command line options -k --unix-socket to the relevant programs.
2. Adds a -h option to postmaster to set the hostname or IP address to
listen on instead of the default INADDR_ANY.
3. Extends some library interfaces to support the above.
4. Fixes a few memory leaks in PQconnectdb().
The default behavior is unchanged from stock 7.0.2; if you don't use
any of these new features, they don't change the operation.
David J. MacKenzie
2000-11-13 16:18:15 +01:00
|
|
|
if (conn->pgoptions)
|
|
|
|
|
free(conn->pgoptions);
|
1998-09-01 06:40:42 +02:00
|
|
|
conn->pgoptions = strdup(tmp + 1);
|
1998-07-07 20:00:09 +02:00
|
|
|
*tmp = '\0';
|
|
|
|
|
}
|
1998-09-01 06:40:42 +02:00
|
|
|
|
2003-04-04 22:42:13 +02:00
|
|
|
tmp = last_path_separator(conn->dbName + offset);
|
1998-09-01 06:40:42 +02:00
|
|
|
if (tmp != NULL) /* database name given */
|
1998-07-07 20:00:09 +02:00
|
|
|
{
|
UUNET is looking into offering PostgreSQL as a part of a managed web
hosting product, on both shared and dedicated machines. We currently
offer Oracle and MySQL, and it would be a nice middle-ground.
However, as shipped, PostgreSQL lacks the following features we need
that MySQL has:
1. The ability to listen only on a particular IP address. Each
hosting customer has their own IP address, on which all of their
servers (http, ftp, real media, etc.) run.
2. The ability to place the Unix-domain socket in a mode 700 directory.
This allows us to automatically create an empty database, with an
empty DBA password, for new or upgrading customers without having
to interactively set a DBA password and communicate it to (or from)
the customer. This in turn cuts down our install and upgrade times.
3. The ability to connect to the Unix-domain socket from within a
change-rooted environment. We run CGI programs chrooted to the
user's home directory, which is another reason why we need to be
able to specify where the Unix-domain socket is, instead of /tmp.
4. The ability to, if run as root, open a pid file in /var/run as
root, and then setuid to the desired user. (mysqld -u can almost
do this; I had to patch it, too).
The patch below fixes problem 1-3. I plan to address #4, also, but
haven't done so yet. These diffs are big enough that they should give
the PG development team something to think about in the meantime :-)
Also, I'm about to leave for 2 weeks' vacation, so I thought I'd get
out what I have, which works (for the problems it tackles), now.
With these changes, we can set up and run PostgreSQL with scripts the
same way we can with apache or proftpd or mysql.
In summary, this patch makes the following enhancements:
1. Adds an environment variable PGUNIXSOCKET, analogous to MYSQL_UNIX_PORT,
and command line options -k --unix-socket to the relevant programs.
2. Adds a -h option to postmaster to set the hostname or IP address to
listen on instead of the default INADDR_ANY.
3. Extends some library interfaces to support the above.
4. Fixes a few memory leaks in PQconnectdb().
The default behavior is unchanged from stock 7.0.2; if you don't use
any of these new features, they don't change the operation.
David J. MacKenzie
2000-11-13 16:18:15 +01:00
|
|
|
if (conn->dbName)
|
|
|
|
|
free(conn->dbName);
|
1998-09-01 06:40:42 +02:00
|
|
|
conn->dbName = strdup(tmp + 1);
|
1998-07-07 20:00:09 +02:00
|
|
|
*tmp = '\0';
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
2001-03-22 05:01:46 +01:00
|
|
|
/*
|
|
|
|
|
* Why do we default only this value from the environment
|
|
|
|
|
* again?
|
|
|
|
|
*/
|
1998-07-07 20:00:09 +02:00
|
|
|
if ((tmp = getenv("PGDATABASE")) != NULL)
|
UUNET is looking into offering PostgreSQL as a part of a managed web
hosting product, on both shared and dedicated machines. We currently
offer Oracle and MySQL, and it would be a nice middle-ground.
However, as shipped, PostgreSQL lacks the following features we need
that MySQL has:
1. The ability to listen only on a particular IP address. Each
hosting customer has their own IP address, on which all of their
servers (http, ftp, real media, etc.) run.
2. The ability to place the Unix-domain socket in a mode 700 directory.
This allows us to automatically create an empty database, with an
empty DBA password, for new or upgrading customers without having
to interactively set a DBA password and communicate it to (or from)
the customer. This in turn cuts down our install and upgrade times.
3. The ability to connect to the Unix-domain socket from within a
change-rooted environment. We run CGI programs chrooted to the
user's home directory, which is another reason why we need to be
able to specify where the Unix-domain socket is, instead of /tmp.
4. The ability to, if run as root, open a pid file in /var/run as
root, and then setuid to the desired user. (mysqld -u can almost
do this; I had to patch it, too).
The patch below fixes problem 1-3. I plan to address #4, also, but
haven't done so yet. These diffs are big enough that they should give
the PG development team something to think about in the meantime :-)
Also, I'm about to leave for 2 weeks' vacation, so I thought I'd get
out what I have, which works (for the problems it tackles), now.
With these changes, we can set up and run PostgreSQL with scripts the
same way we can with apache or proftpd or mysql.
In summary, this patch makes the following enhancements:
1. Adds an environment variable PGUNIXSOCKET, analogous to MYSQL_UNIX_PORT,
and command line options -k --unix-socket to the relevant programs.
2. Adds a -h option to postmaster to set the hostname or IP address to
listen on instead of the default INADDR_ANY.
3. Extends some library interfaces to support the above.
4. Fixes a few memory leaks in PQconnectdb().
The default behavior is unchanged from stock 7.0.2; if you don't use
any of these new features, they don't change the operation.
David J. MacKenzie
2000-11-13 16:18:15 +01:00
|
|
|
{
|
|
|
|
|
if (conn->dbName)
|
|
|
|
|
free(conn->dbName);
|
1998-07-07 20:00:09 +02:00
|
|
|
conn->dbName = strdup(tmp);
|
UUNET is looking into offering PostgreSQL as a part of a managed web
hosting product, on both shared and dedicated machines. We currently
offer Oracle and MySQL, and it would be a nice middle-ground.
However, as shipped, PostgreSQL lacks the following features we need
that MySQL has:
1. The ability to listen only on a particular IP address. Each
hosting customer has their own IP address, on which all of their
servers (http, ftp, real media, etc.) run.
2. The ability to place the Unix-domain socket in a mode 700 directory.
This allows us to automatically create an empty database, with an
empty DBA password, for new or upgrading customers without having
to interactively set a DBA password and communicate it to (or from)
the customer. This in turn cuts down our install and upgrade times.
3. The ability to connect to the Unix-domain socket from within a
change-rooted environment. We run CGI programs chrooted to the
user's home directory, which is another reason why we need to be
able to specify where the Unix-domain socket is, instead of /tmp.
4. The ability to, if run as root, open a pid file in /var/run as
root, and then setuid to the desired user. (mysqld -u can almost
do this; I had to patch it, too).
The patch below fixes problem 1-3. I plan to address #4, also, but
haven't done so yet. These diffs are big enough that they should give
the PG development team something to think about in the meantime :-)
Also, I'm about to leave for 2 weeks' vacation, so I thought I'd get
out what I have, which works (for the problems it tackles), now.
With these changes, we can set up and run PostgreSQL with scripts the
same way we can with apache or proftpd or mysql.
In summary, this patch makes the following enhancements:
1. Adds an environment variable PGUNIXSOCKET, analogous to MYSQL_UNIX_PORT,
and command line options -k --unix-socket to the relevant programs.
2. Adds a -h option to postmaster to set the hostname or IP address to
listen on instead of the default INADDR_ANY.
3. Extends some library interfaces to support the above.
4. Fixes a few memory leaks in PQconnectdb().
The default behavior is unchanged from stock 7.0.2; if you don't use
any of these new features, they don't change the operation.
David J. MacKenzie
2000-11-13 16:18:15 +01:00
|
|
|
}
|
1998-07-07 20:00:09 +02:00
|
|
|
else if (conn->pguser)
|
UUNET is looking into offering PostgreSQL as a part of a managed web
hosting product, on both shared and dedicated machines. We currently
offer Oracle and MySQL, and it would be a nice middle-ground.
However, as shipped, PostgreSQL lacks the following features we need
that MySQL has:
1. The ability to listen only on a particular IP address. Each
hosting customer has their own IP address, on which all of their
servers (http, ftp, real media, etc.) run.
2. The ability to place the Unix-domain socket in a mode 700 directory.
This allows us to automatically create an empty database, with an
empty DBA password, for new or upgrading customers without having
to interactively set a DBA password and communicate it to (or from)
the customer. This in turn cuts down our install and upgrade times.
3. The ability to connect to the Unix-domain socket from within a
change-rooted environment. We run CGI programs chrooted to the
user's home directory, which is another reason why we need to be
able to specify where the Unix-domain socket is, instead of /tmp.
4. The ability to, if run as root, open a pid file in /var/run as
root, and then setuid to the desired user. (mysqld -u can almost
do this; I had to patch it, too).
The patch below fixes problem 1-3. I plan to address #4, also, but
haven't done so yet. These diffs are big enough that they should give
the PG development team something to think about in the meantime :-)
Also, I'm about to leave for 2 weeks' vacation, so I thought I'd get
out what I have, which works (for the problems it tackles), now.
With these changes, we can set up and run PostgreSQL with scripts the
same way we can with apache or proftpd or mysql.
In summary, this patch makes the following enhancements:
1. Adds an environment variable PGUNIXSOCKET, analogous to MYSQL_UNIX_PORT,
and command line options -k --unix-socket to the relevant programs.
2. Adds a -h option to postmaster to set the hostname or IP address to
listen on instead of the default INADDR_ANY.
3. Extends some library interfaces to support the above.
4. Fixes a few memory leaks in PQconnectdb().
The default behavior is unchanged from stock 7.0.2; if you don't use
any of these new features, they don't change the operation.
David J. MacKenzie
2000-11-13 16:18:15 +01:00
|
|
|
{
|
|
|
|
|
if (conn->dbName)
|
|
|
|
|
free(conn->dbName);
|
1998-07-07 20:00:09 +02:00
|
|
|
conn->dbName = strdup(conn->pguser);
|
UUNET is looking into offering PostgreSQL as a part of a managed web
hosting product, on both shared and dedicated machines. We currently
offer Oracle and MySQL, and it would be a nice middle-ground.
However, as shipped, PostgreSQL lacks the following features we need
that MySQL has:
1. The ability to listen only on a particular IP address. Each
hosting customer has their own IP address, on which all of their
servers (http, ftp, real media, etc.) run.
2. The ability to place the Unix-domain socket in a mode 700 directory.
This allows us to automatically create an empty database, with an
empty DBA password, for new or upgrading customers without having
to interactively set a DBA password and communicate it to (or from)
the customer. This in turn cuts down our install and upgrade times.
3. The ability to connect to the Unix-domain socket from within a
change-rooted environment. We run CGI programs chrooted to the
user's home directory, which is another reason why we need to be
able to specify where the Unix-domain socket is, instead of /tmp.
4. The ability to, if run as root, open a pid file in /var/run as
root, and then setuid to the desired user. (mysqld -u can almost
do this; I had to patch it, too).
The patch below fixes problem 1-3. I plan to address #4, also, but
haven't done so yet. These diffs are big enough that they should give
the PG development team something to think about in the meantime :-)
Also, I'm about to leave for 2 weeks' vacation, so I thought I'd get
out what I have, which works (for the problems it tackles), now.
With these changes, we can set up and run PostgreSQL with scripts the
same way we can with apache or proftpd or mysql.
In summary, this patch makes the following enhancements:
1. Adds an environment variable PGUNIXSOCKET, analogous to MYSQL_UNIX_PORT,
and command line options -k --unix-socket to the relevant programs.
2. Adds a -h option to postmaster to set the hostname or IP address to
listen on instead of the default INADDR_ANY.
3. Extends some library interfaces to support the above.
4. Fixes a few memory leaks in PQconnectdb().
The default behavior is unchanged from stock 7.0.2; if you don't use
any of these new features, they don't change the operation.
David J. MacKenzie
2000-11-13 16:18:15 +01:00
|
|
|
}
|
1998-07-07 20:00:09 +02:00
|
|
|
}
|
1998-09-01 06:40:42 +02:00
|
|
|
|
1998-07-07 20:00:09 +02:00
|
|
|
tmp = strrchr(old + offset, ':');
|
UUNET is looking into offering PostgreSQL as a part of a managed web
hosting product, on both shared and dedicated machines. We currently
offer Oracle and MySQL, and it would be a nice middle-ground.
However, as shipped, PostgreSQL lacks the following features we need
that MySQL has:
1. The ability to listen only on a particular IP address. Each
hosting customer has their own IP address, on which all of their
servers (http, ftp, real media, etc.) run.
2. The ability to place the Unix-domain socket in a mode 700 directory.
This allows us to automatically create an empty database, with an
empty DBA password, for new or upgrading customers without having
to interactively set a DBA password and communicate it to (or from)
the customer. This in turn cuts down our install and upgrade times.
3. The ability to connect to the Unix-domain socket from within a
change-rooted environment. We run CGI programs chrooted to the
user's home directory, which is another reason why we need to be
able to specify where the Unix-domain socket is, instead of /tmp.
4. The ability to, if run as root, open a pid file in /var/run as
root, and then setuid to the desired user. (mysqld -u can almost
do this; I had to patch it, too).
The patch below fixes problem 1-3. I plan to address #4, also, but
haven't done so yet. These diffs are big enough that they should give
the PG development team something to think about in the meantime :-)
Also, I'm about to leave for 2 weeks' vacation, so I thought I'd get
out what I have, which works (for the problems it tackles), now.
With these changes, we can set up and run PostgreSQL with scripts the
same way we can with apache or proftpd or mysql.
In summary, this patch makes the following enhancements:
1. Adds an environment variable PGUNIXSOCKET, analogous to MYSQL_UNIX_PORT,
and command line options -k --unix-socket to the relevant programs.
2. Adds a -h option to postmaster to set the hostname or IP address to
listen on instead of the default INADDR_ANY.
3. Extends some library interfaces to support the above.
4. Fixes a few memory leaks in PQconnectdb().
The default behavior is unchanged from stock 7.0.2; if you don't use
any of these new features, they don't change the operation.
David J. MacKenzie
2000-11-13 16:18:15 +01:00
|
|
|
if (tmp != NULL) /* port number or Unix socket path given */
|
1998-07-07 20:00:09 +02:00
|
|
|
{
|
|
|
|
|
*tmp = '\0';
|
UUNET is looking into offering PostgreSQL as a part of a managed web
hosting product, on both shared and dedicated machines. We currently
offer Oracle and MySQL, and it would be a nice middle-ground.
However, as shipped, PostgreSQL lacks the following features we need
that MySQL has:
1. The ability to listen only on a particular IP address. Each
hosting customer has their own IP address, on which all of their
servers (http, ftp, real media, etc.) run.
2. The ability to place the Unix-domain socket in a mode 700 directory.
This allows us to automatically create an empty database, with an
empty DBA password, for new or upgrading customers without having
to interactively set a DBA password and communicate it to (or from)
the customer. This in turn cuts down our install and upgrade times.
3. The ability to connect to the Unix-domain socket from within a
change-rooted environment. We run CGI programs chrooted to the
user's home directory, which is another reason why we need to be
able to specify where the Unix-domain socket is, instead of /tmp.
4. The ability to, if run as root, open a pid file in /var/run as
root, and then setuid to the desired user. (mysqld -u can almost
do this; I had to patch it, too).
The patch below fixes problem 1-3. I plan to address #4, also, but
haven't done so yet. These diffs are big enough that they should give
the PG development team something to think about in the meantime :-)
Also, I'm about to leave for 2 weeks' vacation, so I thought I'd get
out what I have, which works (for the problems it tackles), now.
With these changes, we can set up and run PostgreSQL with scripts the
same way we can with apache or proftpd or mysql.
In summary, this patch makes the following enhancements:
1. Adds an environment variable PGUNIXSOCKET, analogous to MYSQL_UNIX_PORT,
and command line options -k --unix-socket to the relevant programs.
2. Adds a -h option to postmaster to set the hostname or IP address to
listen on instead of the default INADDR_ANY.
3. Extends some library interfaces to support the above.
4. Fixes a few memory leaks in PQconnectdb().
The default behavior is unchanged from stock 7.0.2; if you don't use
any of these new features, they don't change the operation.
David J. MacKenzie
2000-11-13 16:18:15 +01:00
|
|
|
if ((tmp2 = strchr(tmp + 1, ':')) != NULL)
|
|
|
|
|
{
|
|
|
|
|
if (strncmp(old, "unix:", 5) != 0)
|
|
|
|
|
{
|
|
|
|
|
printfPQExpBuffer(&conn->errorMessage,
|
2001-03-22 05:01:46 +01:00
|
|
|
"connectDBStart() -- "
|
|
|
|
|
"socket name can only be specified with "
|
|
|
|
|
"non-TCP\n");
|
|
|
|
|
return 1;
|
UUNET is looking into offering PostgreSQL as a part of a managed web
hosting product, on both shared and dedicated machines. We currently
offer Oracle and MySQL, and it would be a nice middle-ground.
However, as shipped, PostgreSQL lacks the following features we need
that MySQL has:
1. The ability to listen only on a particular IP address. Each
hosting customer has their own IP address, on which all of their
servers (http, ftp, real media, etc.) run.
2. The ability to place the Unix-domain socket in a mode 700 directory.
This allows us to automatically create an empty database, with an
empty DBA password, for new or upgrading customers without having
to interactively set a DBA password and communicate it to (or from)
the customer. This in turn cuts down our install and upgrade times.
3. The ability to connect to the Unix-domain socket from within a
change-rooted environment. We run CGI programs chrooted to the
user's home directory, which is another reason why we need to be
able to specify where the Unix-domain socket is, instead of /tmp.
4. The ability to, if run as root, open a pid file in /var/run as
root, and then setuid to the desired user. (mysqld -u can almost
do this; I had to patch it, too).
The patch below fixes problem 1-3. I plan to address #4, also, but
haven't done so yet. These diffs are big enough that they should give
the PG development team something to think about in the meantime :-)
Also, I'm about to leave for 2 weeks' vacation, so I thought I'd get
out what I have, which works (for the problems it tackles), now.
With these changes, we can set up and run PostgreSQL with scripts the
same way we can with apache or proftpd or mysql.
In summary, this patch makes the following enhancements:
1. Adds an environment variable PGUNIXSOCKET, analogous to MYSQL_UNIX_PORT,
and command line options -k --unix-socket to the relevant programs.
2. Adds a -h option to postmaster to set the hostname or IP address to
listen on instead of the default INADDR_ANY.
3. Extends some library interfaces to support the above.
4. Fixes a few memory leaks in PQconnectdb().
The default behavior is unchanged from stock 7.0.2; if you don't use
any of these new features, they don't change the operation.
David J. MacKenzie
2000-11-13 16:18:15 +01:00
|
|
|
}
|
|
|
|
|
*tmp2 = '\0';
|
|
|
|
|
if (conn->pgunixsocket)
|
|
|
|
|
free(conn->pgunixsocket);
|
|
|
|
|
conn->pgunixsocket = strdup(tmp + 1);
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
if (conn->pgport)
|
|
|
|
|
free(conn->pgport);
|
|
|
|
|
conn->pgport = strdup(tmp + 1);
|
|
|
|
|
if (conn->pgunixsocket)
|
|
|
|
|
free(conn->pgunixsocket);
|
|
|
|
|
conn->pgunixsocket = NULL;
|
|
|
|
|
}
|
1998-07-07 20:00:09 +02:00
|
|
|
}
|
1998-09-01 06:40:42 +02:00
|
|
|
|
1998-07-07 20:00:09 +02:00
|
|
|
if (strncmp(old, "unix:", 5) == 0)
|
|
|
|
|
{
|
UUNET is looking into offering PostgreSQL as a part of a managed web
hosting product, on both shared and dedicated machines. We currently
offer Oracle and MySQL, and it would be a nice middle-ground.
However, as shipped, PostgreSQL lacks the following features we need
that MySQL has:
1. The ability to listen only on a particular IP address. Each
hosting customer has their own IP address, on which all of their
servers (http, ftp, real media, etc.) run.
2. The ability to place the Unix-domain socket in a mode 700 directory.
This allows us to automatically create an empty database, with an
empty DBA password, for new or upgrading customers without having
to interactively set a DBA password and communicate it to (or from)
the customer. This in turn cuts down our install and upgrade times.
3. The ability to connect to the Unix-domain socket from within a
change-rooted environment. We run CGI programs chrooted to the
user's home directory, which is another reason why we need to be
able to specify where the Unix-domain socket is, instead of /tmp.
4. The ability to, if run as root, open a pid file in /var/run as
root, and then setuid to the desired user. (mysqld -u can almost
do this; I had to patch it, too).
The patch below fixes problem 1-3. I plan to address #4, also, but
haven't done so yet. These diffs are big enough that they should give
the PG development team something to think about in the meantime :-)
Also, I'm about to leave for 2 weeks' vacation, so I thought I'd get
out what I have, which works (for the problems it tackles), now.
With these changes, we can set up and run PostgreSQL with scripts the
same way we can with apache or proftpd or mysql.
In summary, this patch makes the following enhancements:
1. Adds an environment variable PGUNIXSOCKET, analogous to MYSQL_UNIX_PORT,
and command line options -k --unix-socket to the relevant programs.
2. Adds a -h option to postmaster to set the hostname or IP address to
listen on instead of the default INADDR_ANY.
3. Extends some library interfaces to support the above.
4. Fixes a few memory leaks in PQconnectdb().
The default behavior is unchanged from stock 7.0.2; if you don't use
any of these new features, they don't change the operation.
David J. MacKenzie
2000-11-13 16:18:15 +01:00
|
|
|
if (conn->pghost)
|
|
|
|
|
free(conn->pghost);
|
1998-07-07 20:00:09 +02:00
|
|
|
conn->pghost = NULL;
|
|
|
|
|
if (strcmp(old + offset, "localhost") != 0)
|
|
|
|
|
{
|
1999-08-31 03:37:37 +02:00
|
|
|
printfPQExpBuffer(&conn->errorMessage,
|
1999-11-30 04:08:19 +01:00
|
|
|
"connectDBStart() -- "
|
2000-03-11 04:08:37 +01:00
|
|
|
"non-TCP access only possible on "
|
1999-11-30 04:08:19 +01:00
|
|
|
"localhost\n");
|
1998-09-01 06:40:42 +02:00
|
|
|
return 1;
|
1998-07-07 20:00:09 +02:00
|
|
|
}
|
|
|
|
|
}
|
1998-09-01 06:40:42 +02:00
|
|
|
else
|
UUNET is looking into offering PostgreSQL as a part of a managed web
hosting product, on both shared and dedicated machines. We currently
offer Oracle and MySQL, and it would be a nice middle-ground.
However, as shipped, PostgreSQL lacks the following features we need
that MySQL has:
1. The ability to listen only on a particular IP address. Each
hosting customer has their own IP address, on which all of their
servers (http, ftp, real media, etc.) run.
2. The ability to place the Unix-domain socket in a mode 700 directory.
This allows us to automatically create an empty database, with an
empty DBA password, for new or upgrading customers without having
to interactively set a DBA password and communicate it to (or from)
the customer. This in turn cuts down our install and upgrade times.
3. The ability to connect to the Unix-domain socket from within a
change-rooted environment. We run CGI programs chrooted to the
user's home directory, which is another reason why we need to be
able to specify where the Unix-domain socket is, instead of /tmp.
4. The ability to, if run as root, open a pid file in /var/run as
root, and then setuid to the desired user. (mysqld -u can almost
do this; I had to patch it, too).
The patch below fixes problem 1-3. I plan to address #4, also, but
haven't done so yet. These diffs are big enough that they should give
the PG development team something to think about in the meantime :-)
Also, I'm about to leave for 2 weeks' vacation, so I thought I'd get
out what I have, which works (for the problems it tackles), now.
With these changes, we can set up and run PostgreSQL with scripts the
same way we can with apache or proftpd or mysql.
In summary, this patch makes the following enhancements:
1. Adds an environment variable PGUNIXSOCKET, analogous to MYSQL_UNIX_PORT,
and command line options -k --unix-socket to the relevant programs.
2. Adds a -h option to postmaster to set the hostname or IP address to
listen on instead of the default INADDR_ANY.
3. Extends some library interfaces to support the above.
4. Fixes a few memory leaks in PQconnectdb().
The default behavior is unchanged from stock 7.0.2; if you don't use
any of these new features, they don't change the operation.
David J. MacKenzie
2000-11-13 16:18:15 +01:00
|
|
|
{
|
|
|
|
|
if (conn->pghost)
|
|
|
|
|
free(conn->pghost);
|
1998-09-01 06:40:42 +02:00
|
|
|
conn->pghost = strdup(old + offset);
|
UUNET is looking into offering PostgreSQL as a part of a managed web
hosting product, on both shared and dedicated machines. We currently
offer Oracle and MySQL, and it would be a nice middle-ground.
However, as shipped, PostgreSQL lacks the following features we need
that MySQL has:
1. The ability to listen only on a particular IP address. Each
hosting customer has their own IP address, on which all of their
servers (http, ftp, real media, etc.) run.
2. The ability to place the Unix-domain socket in a mode 700 directory.
This allows us to automatically create an empty database, with an
empty DBA password, for new or upgrading customers without having
to interactively set a DBA password and communicate it to (or from)
the customer. This in turn cuts down our install and upgrade times.
3. The ability to connect to the Unix-domain socket from within a
change-rooted environment. We run CGI programs chrooted to the
user's home directory, which is another reason why we need to be
able to specify where the Unix-domain socket is, instead of /tmp.
4. The ability to, if run as root, open a pid file in /var/run as
root, and then setuid to the desired user. (mysqld -u can almost
do this; I had to patch it, too).
The patch below fixes problem 1-3. I plan to address #4, also, but
haven't done so yet. These diffs are big enough that they should give
the PG development team something to think about in the meantime :-)
Also, I'm about to leave for 2 weeks' vacation, so I thought I'd get
out what I have, which works (for the problems it tackles), now.
With these changes, we can set up and run PostgreSQL with scripts the
same way we can with apache or proftpd or mysql.
In summary, this patch makes the following enhancements:
1. Adds an environment variable PGUNIXSOCKET, analogous to MYSQL_UNIX_PORT,
and command line options -k --unix-socket to the relevant programs.
2. Adds a -h option to postmaster to set the hostname or IP address to
listen on instead of the default INADDR_ANY.
3. Extends some library interfaces to support the above.
4. Fixes a few memory leaks in PQconnectdb().
The default behavior is unchanged from stock 7.0.2; if you don't use
any of these new features, they don't change the operation.
David J. MacKenzie
2000-11-13 16:18:15 +01:00
|
|
|
}
|
1998-07-07 20:00:09 +02:00
|
|
|
free(old);
|
|
|
|
|
}
|
|
|
|
|
}
|
1998-09-01 06:40:42 +02:00
|
|
|
|
1998-07-07 20:00:09 +02:00
|
|
|
return 0;
|
|
|
|
|
}
|
2001-11-05 18:46:40 +01:00
|
|
|
#endif /* NOT_USED */
|
2000-11-30 19:32:52 +01:00
|
|
|
|
1998-07-07 20:00:09 +02:00
|
|
|
|
2000-01-24 03:12:58 +01:00
|
|
|
/* ----------
|
|
|
|
|
* connectMakeNonblocking -
|
|
|
|
|
* Make a connection non-blocking.
|
|
|
|
|
* Returns 1 if successful, 0 if not.
|
|
|
|
|
* ----------
|
|
|
|
|
*/
|
|
|
|
|
static int
|
|
|
|
|
connectMakeNonblocking(PGconn *conn)
|
|
|
|
|
{
|
2003-05-15 18:35:30 +02:00
|
|
|
if (FCNTL_NONBLOCK(conn->sock) < 0)
|
2000-01-24 03:12:58 +01:00
|
|
|
{
|
2003-08-04 02:43:34 +02:00
|
|
|
char sebuf[256];
|
2003-06-14 19:49:54 +02:00
|
|
|
|
2000-01-24 03:12:58 +01:00
|
|
|
printfPQExpBuffer(&conn->errorMessage,
|
2001-10-25 07:50:21 +02:00
|
|
|
libpq_gettext("could not set socket to non-blocking mode: %s\n"),
|
2003-08-04 02:43:34 +02:00
|
|
|
SOCK_STRERROR(SOCK_ERRNO, sebuf, sizeof(sebuf)));
|
2000-01-24 03:12:58 +01:00
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
|
|
|
|
|
1999-11-30 04:08:19 +01:00
|
|
|
/* ----------
|
|
|
|
|
* connectNoDelay -
|
|
|
|
|
* Sets the TCP_NODELAY socket option.
|
|
|
|
|
* Returns 1 if successful, 0 if not.
|
|
|
|
|
* ----------
|
|
|
|
|
*/
|
|
|
|
|
static int
|
|
|
|
|
connectNoDelay(PGconn *conn)
|
|
|
|
|
{
|
2003-06-12 09:36:51 +02:00
|
|
|
#ifdef TCP_NODELAY
|
1999-11-30 04:08:19 +01:00
|
|
|
int on = 1;
|
|
|
|
|
|
2000-05-21 23:19:53 +02:00
|
|
|
if (setsockopt(conn->sock, IPPROTO_TCP, TCP_NODELAY,
|
2000-06-14 20:18:01 +02:00
|
|
|
(char *) &on,
|
1999-11-30 04:08:19 +01:00
|
|
|
sizeof(on)) < 0)
|
|
|
|
|
{
|
2003-08-04 02:43:34 +02:00
|
|
|
char sebuf[256];
|
2003-06-14 19:49:54 +02:00
|
|
|
|
1999-11-30 04:08:19 +01:00
|
|
|
printfPQExpBuffer(&conn->errorMessage,
|
2001-10-25 07:50:21 +02:00
|
|
|
libpq_gettext("could not set socket to TCP no delay mode: %s\n"),
|
2003-08-04 02:43:34 +02:00
|
|
|
SOCK_STRERROR(SOCK_ERRNO, sebuf, sizeof(sebuf)));
|
1999-11-30 04:08:19 +01:00
|
|
|
return 0;
|
|
|
|
|
}
|
2003-06-12 09:36:51 +02:00
|
|
|
#endif
|
1999-11-30 04:08:19 +01:00
|
|
|
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2000-12-01 00:20:51 +01:00
|
|
|
/* ----------
|
|
|
|
|
* connectFailureMessage -
|
|
|
|
|
* create a friendly error message on connection failure.
|
|
|
|
|
* ----------
|
|
|
|
|
*/
|
|
|
|
|
static void
|
2001-07-15 15:45:04 +02:00
|
|
|
connectFailureMessage(PGconn *conn, int errorno)
|
2000-12-01 00:20:51 +01:00
|
|
|
{
|
2003-08-04 02:43:34 +02:00
|
|
|
char sebuf[256];
|
2003-06-12 09:36:51 +02:00
|
|
|
|
2003-07-24 01:30:41 +02:00
|
|
|
#ifdef HAVE_UNIX_SOCKETS
|
|
|
|
|
if (IS_AF_UNIX(conn->raddr.addr.ss_family))
|
|
|
|
|
{
|
2003-08-04 02:43:34 +02:00
|
|
|
char service[NI_MAXHOST];
|
2003-07-24 01:30:41 +02:00
|
|
|
|
|
|
|
|
getnameinfo_all(&conn->raddr.addr, conn->raddr.salen,
|
|
|
|
|
NULL, 0,
|
|
|
|
|
service, sizeof(service),
|
|
|
|
|
NI_NUMERICSERV);
|
2000-12-01 00:20:51 +01:00
|
|
|
printfPQExpBuffer(&conn->errorMessage,
|
2001-07-15 15:45:04 +02:00
|
|
|
libpq_gettext(
|
2001-10-25 07:50:21 +02:00
|
|
|
"could not connect to server: %s\n"
|
|
|
|
|
"\tIs the server running locally and accepting\n"
|
|
|
|
|
"\tconnections on Unix domain socket \"%s\"?\n"
|
|
|
|
|
),
|
2003-07-24 01:30:41 +02:00
|
|
|
SOCK_STRERROR(errorno, sebuf, sizeof(sebuf)),
|
|
|
|
|
service);
|
|
|
|
|
}
|
2000-12-01 00:20:51 +01:00
|
|
|
else
|
2003-07-24 01:30:41 +02:00
|
|
|
#endif /* HAVE_UNIX_SOCKETS */
|
|
|
|
|
{
|
2000-12-01 00:20:51 +01:00
|
|
|
printfPQExpBuffer(&conn->errorMessage,
|
2001-07-15 15:45:04 +02:00
|
|
|
libpq_gettext(
|
2001-10-25 07:50:21 +02:00
|
|
|
"could not connect to server: %s\n"
|
2003-08-04 02:43:34 +02:00
|
|
|
"\tIs the server running on host \"%s\" and accepting\n"
|
2001-10-25 07:50:21 +02:00
|
|
|
"\tTCP/IP connections on port %s?\n"
|
|
|
|
|
),
|
2003-06-14 19:49:54 +02:00
|
|
|
SOCK_STRERROR(errorno, sebuf, sizeof(sebuf)),
|
2003-04-28 06:29:12 +02:00
|
|
|
conn->pghostaddr
|
|
|
|
|
? conn->pghostaddr
|
|
|
|
|
: (conn->pghost
|
|
|
|
|
? conn->pghost
|
2001-07-15 15:45:04 +02:00
|
|
|
: "???"),
|
2000-12-01 00:20:51 +01:00
|
|
|
conn->pgport);
|
2003-07-24 01:30:41 +02:00
|
|
|
}
|
2000-12-01 00:20:51 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
1999-11-30 04:08:19 +01:00
|
|
|
/* ----------
|
|
|
|
|
* connectDBStart -
|
2003-06-08 19:43:00 +02:00
|
|
|
* Begin the process of making a connection to the backend.
|
|
|
|
|
*
|
1999-11-30 04:08:19 +01:00
|
|
|
* Returns 1 if successful, 0 if not.
|
|
|
|
|
* ----------
|
|
|
|
|
*/
|
|
|
|
|
static int
|
|
|
|
|
connectDBStart(PGconn *conn)
|
1996-07-09 08:22:35 +02:00
|
|
|
{
|
2003-01-06 04:18:27 +01:00
|
|
|
int portnum;
|
2003-08-04 02:43:34 +02:00
|
|
|
char portstr[128];
|
|
|
|
|
struct addrinfo *addrs = NULL;
|
|
|
|
|
struct addrinfo hint;
|
|
|
|
|
const char *node = NULL;
|
2003-01-06 04:18:27 +01:00
|
|
|
int ret;
|
|
|
|
|
|
1999-11-30 04:08:19 +01:00
|
|
|
if (!conn)
|
|
|
|
|
return 0;
|
2000-04-12 19:17:23 +02:00
|
|
|
|
1999-11-30 04:08:19 +01:00
|
|
|
/* Ensure our buffers are empty */
|
|
|
|
|
conn->inStart = conn->inCursor = conn->inEnd = 0;
|
|
|
|
|
conn->outCount = 0;
|
|
|
|
|
|
1997-09-07 07:04:48 +02:00
|
|
|
/*
|
2003-07-24 01:30:41 +02:00
|
|
|
* Determine the parameters to pass to getaddrinfo_all.
|
2003-01-06 04:18:27 +01:00
|
|
|
*/
|
|
|
|
|
|
2003-06-08 19:43:00 +02:00
|
|
|
/* Initialize hint structure */
|
|
|
|
|
MemSet(&hint, 0, sizeof(hint));
|
|
|
|
|
hint.ai_socktype = SOCK_STREAM;
|
2003-06-12 09:36:51 +02:00
|
|
|
hint.ai_family = AF_UNSPEC;
|
2003-02-14 02:24:26 +01:00
|
|
|
|
2003-06-08 19:43:00 +02:00
|
|
|
/* Set up port number as a string */
|
2003-01-06 04:18:27 +01:00
|
|
|
if (conn->pgport != NULL && conn->pgport[0] != '\0')
|
|
|
|
|
portnum = atoi(conn->pgport);
|
|
|
|
|
else
|
|
|
|
|
portnum = DEF_PGPORT;
|
|
|
|
|
snprintf(portstr, sizeof(portstr), "%d", portnum);
|
|
|
|
|
|
2002-12-06 05:37:05 +01:00
|
|
|
if (conn->pghostaddr != NULL && conn->pghostaddr[0] != '\0')
|
|
|
|
|
{
|
2003-03-29 12:31:52 +01:00
|
|
|
/* Using pghostaddr avoids a hostname lookup */
|
2003-01-06 04:18:27 +01:00
|
|
|
node = conn->pghostaddr;
|
|
|
|
|
hint.ai_family = AF_UNSPEC;
|
2003-03-29 12:31:52 +01:00
|
|
|
hint.ai_flags = AI_NUMERICHOST;
|
1999-11-30 04:08:19 +01:00
|
|
|
}
|
2002-12-06 05:37:05 +01:00
|
|
|
else if (conn->pghost != NULL && conn->pghost[0] != '\0')
|
|
|
|
|
{
|
2003-03-29 12:31:52 +01:00
|
|
|
/* Using pghost, so we have to look-up the hostname */
|
2003-01-06 04:18:27 +01:00
|
|
|
node = conn->pghost;
|
|
|
|
|
hint.ai_family = AF_UNSPEC;
|
1998-02-26 05:46:47 +01:00
|
|
|
}
|
2003-06-12 09:36:51 +02:00
|
|
|
#ifdef HAVE_UNIX_SOCKETS
|
2002-12-06 05:37:05 +01:00
|
|
|
else
|
|
|
|
|
{
|
2003-03-29 12:31:52 +01:00
|
|
|
/* pghostaddr and pghost are NULL, so use Unix domain socket */
|
2003-06-12 09:36:51 +02:00
|
|
|
node = NULL;
|
2003-01-06 04:18:27 +01:00
|
|
|
hint.ai_family = AF_UNIX;
|
2003-06-12 09:36:51 +02:00
|
|
|
UNIXSOCK_PATH(portstr, portnum, conn->pgunixsocket);
|
2003-02-14 02:24:26 +01:00
|
|
|
}
|
2003-06-12 09:36:51 +02:00
|
|
|
#endif /* HAVE_UNIX_SOCKETS */
|
2002-12-06 05:37:05 +01:00
|
|
|
|
2003-07-24 01:30:41 +02:00
|
|
|
/* Use getaddrinfo_all() to resolve the address */
|
|
|
|
|
ret = getaddrinfo_all(node, portstr, &hint, &addrs);
|
|
|
|
|
if (ret || !addrs)
|
2002-12-06 05:37:05 +01:00
|
|
|
{
|
2003-07-24 01:30:41 +02:00
|
|
|
if (node)
|
|
|
|
|
printfPQExpBuffer(&conn->errorMessage,
|
2003-09-22 02:23:35 +02:00
|
|
|
libpq_gettext("could not translate host name \"%s\" to address: %s\n"),
|
2003-07-24 01:30:41 +02:00
|
|
|
node, gai_strerror(ret));
|
|
|
|
|
else
|
|
|
|
|
printfPQExpBuffer(&conn->errorMessage,
|
2003-09-22 02:23:35 +02:00
|
|
|
libpq_gettext("could not translate Unix-domain socket path \"%s\" to address: %s\n"),
|
|
|
|
|
portstr, gai_strerror(ret));
|
2003-07-24 01:30:41 +02:00
|
|
|
freeaddrinfo_all(hint.ai_family, addrs);
|
2002-12-06 05:37:05 +01:00
|
|
|
goto connect_errReturn;
|
|
|
|
|
}
|
|
|
|
|
|
At long last I put together a patch to support 4 client SSL negotiation
modes (and replace the requiressl boolean). The four options were first
spelled out by Magnus Hagander <mha@sollentuna.net> on 2000-08-23 in email
to pgsql-hackers, archived here:
http://archives.postgresql.org/pgsql-hackers/2000-08/msg00639.php
My original less-flexible patch and the ensuing thread are archived at:
http://dbforums.com/t623845.html
Attached is a new patch, including documentation.
To sum up, there's a new client parameter "sslmode" and environment
variable "PGSSLMODE", with these options:
sslmode description
------- -----------
disable Unencrypted non-SSL only
allow Negotiate, prefer non-SSL
prefer Negotiate, prefer SSL (default)
require Require SSL
The only change to the server is a new pg_hba.conf line type,
"hostnossl", for specifying connections that are not allowed to use SSL
(for example, to prevent servers on a local network from accidentally
using SSL and wasting cycles). Thus the 3 pg_hba.conf line types are:
pg_hba.conf line types
----------------------
host applies to either SSL or regular connections
hostssl applies only to SSL connections
hostnossl applies only to regular connections
These client and server options, the postgresql.conf ssl = false option,
and finally the possibility of compiling with no SSL support at all,
make quite a range of combinations to test. I threw together a test
script to try many of them out. It's in a separate tarball with its
config files, a patch to psql so it'll announce SSL connections even in
absence of a tty, and the test output. The test is especially informative
when run on the same tty the postmaster was started on, so the FATAL:
errors during negotiation are interleaved with the psql client output.
I saw Tom write that new submissions for 7.4 have to be in before midnight
local time, and since I'm on the east coast in the US, this just makes it
in before the bell. :)
Jon Jensen
2003-07-26 15:50:02 +02:00
|
|
|
#ifdef USE_SSL
|
|
|
|
|
/* setup values based on SSL mode */
|
2003-08-04 02:43:34 +02:00
|
|
|
if (conn->sslmode[0] == 'd') /* "disable" */
|
At long last I put together a patch to support 4 client SSL negotiation
modes (and replace the requiressl boolean). The four options were first
spelled out by Magnus Hagander <mha@sollentuna.net> on 2000-08-23 in email
to pgsql-hackers, archived here:
http://archives.postgresql.org/pgsql-hackers/2000-08/msg00639.php
My original less-flexible patch and the ensuing thread are archived at:
http://dbforums.com/t623845.html
Attached is a new patch, including documentation.
To sum up, there's a new client parameter "sslmode" and environment
variable "PGSSLMODE", with these options:
sslmode description
------- -----------
disable Unencrypted non-SSL only
allow Negotiate, prefer non-SSL
prefer Negotiate, prefer SSL (default)
require Require SSL
The only change to the server is a new pg_hba.conf line type,
"hostnossl", for specifying connections that are not allowed to use SSL
(for example, to prevent servers on a local network from accidentally
using SSL and wasting cycles). Thus the 3 pg_hba.conf line types are:
pg_hba.conf line types
----------------------
host applies to either SSL or regular connections
hostssl applies only to SSL connections
hostnossl applies only to regular connections
These client and server options, the postgresql.conf ssl = false option,
and finally the possibility of compiling with no SSL support at all,
make quite a range of combinations to test. I threw together a test
script to try many of them out. It's in a separate tarball with its
config files, a patch to psql so it'll announce SSL connections even in
absence of a tty, and the test output. The test is especially informative
when run on the same tty the postmaster was started on, so the FATAL:
errors during negotiation are interleaved with the psql client output.
I saw Tom write that new submissions for 7.4 have to be in before midnight
local time, and since I'm on the east coast in the US, this just makes it
in before the bell. :)
Jon Jensen
2003-07-26 15:50:02 +02:00
|
|
|
conn->allow_ssl_try = false;
|
2003-08-04 02:43:34 +02:00
|
|
|
else if (conn->sslmode[0] == 'a') /* "allow" */
|
At long last I put together a patch to support 4 client SSL negotiation
modes (and replace the requiressl boolean). The four options were first
spelled out by Magnus Hagander <mha@sollentuna.net> on 2000-08-23 in email
to pgsql-hackers, archived here:
http://archives.postgresql.org/pgsql-hackers/2000-08/msg00639.php
My original less-flexible patch and the ensuing thread are archived at:
http://dbforums.com/t623845.html
Attached is a new patch, including documentation.
To sum up, there's a new client parameter "sslmode" and environment
variable "PGSSLMODE", with these options:
sslmode description
------- -----------
disable Unencrypted non-SSL only
allow Negotiate, prefer non-SSL
prefer Negotiate, prefer SSL (default)
require Require SSL
The only change to the server is a new pg_hba.conf line type,
"hostnossl", for specifying connections that are not allowed to use SSL
(for example, to prevent servers on a local network from accidentally
using SSL and wasting cycles). Thus the 3 pg_hba.conf line types are:
pg_hba.conf line types
----------------------
host applies to either SSL or regular connections
hostssl applies only to SSL connections
hostnossl applies only to regular connections
These client and server options, the postgresql.conf ssl = false option,
and finally the possibility of compiling with no SSL support at all,
make quite a range of combinations to test. I threw together a test
script to try many of them out. It's in a separate tarball with its
config files, a patch to psql so it'll announce SSL connections even in
absence of a tty, and the test output. The test is especially informative
when run on the same tty the postmaster was started on, so the FATAL:
errors during negotiation are interleaved with the psql client output.
I saw Tom write that new submissions for 7.4 have to be in before midnight
local time, and since I'm on the east coast in the US, this just makes it
in before the bell. :)
Jon Jensen
2003-07-26 15:50:02 +02:00
|
|
|
conn->wait_ssl_try = true;
|
|
|
|
|
#endif
|
|
|
|
|
|
2003-02-14 02:24:26 +01:00
|
|
|
/*
|
2003-06-08 19:43:00 +02:00
|
|
|
* Set up to try to connect, with protocol 3.0 as the first attempt.
|
2003-02-14 02:24:26 +01:00
|
|
|
*/
|
2003-06-08 19:43:00 +02:00
|
|
|
conn->addrlist = addrs;
|
|
|
|
|
conn->addr_cur = addrs;
|
2003-06-09 19:59:19 +02:00
|
|
|
conn->addrlist_family = hint.ai_family;
|
2003-08-04 02:43:34 +02:00
|
|
|
conn->pversion = PG_PROTOCOL(3, 0);
|
2003-06-08 19:43:00 +02:00
|
|
|
conn->status = CONNECTION_NEEDED;
|
2000-04-12 19:17:23 +02:00
|
|
|
|
|
|
|
|
/*
|
2003-08-04 02:43:34 +02:00
|
|
|
* The code for processing CONNECTION_NEEDED state is in
|
|
|
|
|
* PQconnectPoll(), so that it can easily be re-executed if needed
|
|
|
|
|
* again during the asynchronous startup process. However, we must
|
|
|
|
|
* run it once here, because callers expect a success return from this
|
|
|
|
|
* routine to mean that we are in PGRES_POLLING_WRITING connection
|
|
|
|
|
* state.
|
2000-04-12 19:17:23 +02:00
|
|
|
*/
|
2003-06-08 19:43:00 +02:00
|
|
|
if (PQconnectPoll(conn) == PGRES_POLLING_WRITING)
|
|
|
|
|
return 1;
|
1998-01-26 02:42:53 +01:00
|
|
|
|
1999-11-30 04:08:19 +01:00
|
|
|
connect_errReturn:
|
|
|
|
|
if (conn->sock >= 0)
|
1997-09-07 07:04:48 +02:00
|
|
|
{
|
2002-06-16 00:06:09 +02:00
|
|
|
pqsecure_close(conn);
|
1999-11-30 04:08:19 +01:00
|
|
|
closesocket(conn->sock);
|
|
|
|
|
conn->sock = -1;
|
1997-04-16 08:29:19 +02:00
|
|
|
}
|
1999-11-30 04:08:19 +01:00
|
|
|
conn->status = CONNECTION_BAD;
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
1998-01-26 02:42:53 +01:00
|
|
|
|
1998-09-01 06:40:42 +02:00
|
|
|
|
2001-08-17 17:11:15 +02:00
|
|
|
/*
|
1999-11-30 04:08:19 +01:00
|
|
|
* connectDBComplete
|
|
|
|
|
*
|
|
|
|
|
* Block and complete a connection.
|
|
|
|
|
*
|
|
|
|
|
* Returns 1 on success, 0 on failure.
|
|
|
|
|
*/
|
|
|
|
|
static int
|
|
|
|
|
connectDBComplete(PGconn *conn)
|
|
|
|
|
{
|
2000-01-16 22:18:52 +01:00
|
|
|
PostgresPollingStatusType flag = PGRES_POLLING_WRITING;
|
2002-12-19 20:30:24 +01:00
|
|
|
time_t finish_time = ((time_t) -1);
|
2002-08-17 14:33:18 +02:00
|
|
|
|
2000-01-16 22:18:52 +01:00
|
|
|
if (conn == NULL || conn->status == CONNECTION_BAD)
|
|
|
|
|
return 0;
|
1998-01-26 02:42:53 +01:00
|
|
|
|
2002-09-04 22:31:48 +02:00
|
|
|
/*
|
2002-10-25 01:35:55 +02:00
|
|
|
* Set up a time limit, if connect_timeout isn't zero.
|
2002-09-04 22:31:48 +02:00
|
|
|
*/
|
|
|
|
|
if (conn->connect_timeout != NULL)
|
2000-04-12 19:17:23 +02:00
|
|
|
{
|
2002-12-19 20:30:24 +01:00
|
|
|
int timeout = atoi(conn->connect_timeout);
|
2002-10-16 04:55:30 +02:00
|
|
|
|
2002-10-25 01:35:55 +02:00
|
|
|
if (timeout > 0)
|
2002-08-27 16:49:52 +02:00
|
|
|
{
|
2002-12-19 20:30:24 +01:00
|
|
|
/*
|
|
|
|
|
* Rounding could cause connection to fail; need at least 2
|
|
|
|
|
* secs
|
|
|
|
|
*/
|
2002-10-25 01:35:55 +02:00
|
|
|
if (timeout < 2)
|
|
|
|
|
timeout = 2;
|
|
|
|
|
/* calculate the finish time based on start + timeout */
|
|
|
|
|
finish_time = time(NULL) + timeout;
|
2002-08-27 16:49:52 +02:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2002-10-25 01:35:55 +02:00
|
|
|
for (;;)
|
2002-08-27 16:49:52 +02:00
|
|
|
{
|
2000-01-16 22:18:52 +01:00
|
|
|
/*
|
2000-04-12 19:17:23 +02:00
|
|
|
* Wait, if necessary. Note that the initial state (just after
|
|
|
|
|
* PQconnectStart) is to wait for the socket to select for
|
|
|
|
|
* writing.
|
2000-01-16 22:18:52 +01:00
|
|
|
*/
|
2000-01-14 06:33:15 +01:00
|
|
|
switch (flag)
|
1998-01-26 02:42:53 +01:00
|
|
|
{
|
1999-11-30 04:08:19 +01:00
|
|
|
case PGRES_POLLING_OK:
|
2000-01-14 06:33:15 +01:00
|
|
|
return 1; /* success! */
|
2000-04-12 19:17:23 +02:00
|
|
|
|
1999-11-30 04:08:19 +01:00
|
|
|
case PGRES_POLLING_READING:
|
2002-10-16 04:55:30 +02:00
|
|
|
if (pqWaitTimed(1, 0, conn, finish_time))
|
2000-01-14 06:33:15 +01:00
|
|
|
{
|
|
|
|
|
conn->status = CONNECTION_BAD;
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
1999-11-30 04:08:19 +01:00
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
case PGRES_POLLING_WRITING:
|
2002-10-16 04:55:30 +02:00
|
|
|
if (pqWaitTimed(0, 1, conn, finish_time))
|
2000-01-14 06:33:15 +01:00
|
|
|
{
|
|
|
|
|
conn->status = CONNECTION_BAD;
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
1999-11-30 04:08:19 +01:00
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
default:
|
|
|
|
|
/* Just in case we failed to set it in PQconnectPoll */
|
|
|
|
|
conn->status = CONNECTION_BAD;
|
|
|
|
|
return 0;
|
1998-01-26 02:42:53 +01:00
|
|
|
}
|
2000-04-12 19:17:23 +02:00
|
|
|
|
2000-01-16 22:18:52 +01:00
|
|
|
/*
|
|
|
|
|
* Now try to advance the state machine.
|
|
|
|
|
*/
|
|
|
|
|
flag = PQconnectPoll(conn);
|
2000-01-14 06:33:15 +01:00
|
|
|
}
|
1999-11-30 04:08:19 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* ----------------
|
|
|
|
|
* PQconnectPoll
|
|
|
|
|
*
|
|
|
|
|
* Poll an asynchronous connection.
|
|
|
|
|
*
|
|
|
|
|
* Returns a PostgresPollingStatusType.
|
2002-08-27 18:21:51 +02:00
|
|
|
* Before calling this function, use select(2) to determine when data
|
|
|
|
|
* has arrived..
|
2000-04-12 19:17:23 +02:00
|
|
|
*
|
1999-11-30 04:08:19 +01:00
|
|
|
* You must call PQfinish whether or not this fails.
|
|
|
|
|
*
|
|
|
|
|
* This function and PQconnectStart are intended to allow connections to be
|
|
|
|
|
* made without blocking the execution of your program on remote I/O. However,
|
|
|
|
|
* there are a number of caveats:
|
|
|
|
|
*
|
2000-04-12 19:17:23 +02:00
|
|
|
* o If you call PQtrace, ensure that the stream object into which you trace
|
|
|
|
|
* will not block.
|
|
|
|
|
* o If you do not supply an IP address for the remote host (i.e. you
|
2003-06-08 19:43:00 +02:00
|
|
|
* supply a host name instead) then PQconnectStart will block on
|
2000-04-12 19:17:23 +02:00
|
|
|
* gethostbyname. You will be fine if using Unix sockets (i.e. by
|
|
|
|
|
* supplying neither a host name nor a host address).
|
|
|
|
|
* o If your backend wants to use Kerberos authentication then you must
|
|
|
|
|
* supply both a host name and a host address, otherwise this function
|
|
|
|
|
* may block on gethostname.
|
1999-11-30 04:08:19 +01:00
|
|
|
*
|
2000-01-14 06:33:15 +01:00
|
|
|
* ----------------
|
|
|
|
|
*/
|
1999-11-30 04:08:19 +01:00
|
|
|
PostgresPollingStatusType
|
|
|
|
|
PQconnectPoll(PGconn *conn)
|
|
|
|
|
{
|
|
|
|
|
PGresult *res;
|
2003-06-14 19:49:54 +02:00
|
|
|
char sebuf[256];
|
2001-03-22 05:01:46 +01:00
|
|
|
|
1999-11-30 04:08:19 +01:00
|
|
|
if (conn == NULL)
|
|
|
|
|
return PGRES_POLLING_FAILED;
|
|
|
|
|
|
|
|
|
|
/* Get the new data */
|
|
|
|
|
switch (conn->status)
|
|
|
|
|
{
|
2000-04-12 19:17:23 +02:00
|
|
|
/*
|
|
|
|
|
* We really shouldn't have been polled in these two cases,
|
|
|
|
|
* but we can handle it.
|
|
|
|
|
*/
|
1999-11-30 04:08:19 +01:00
|
|
|
case CONNECTION_BAD:
|
|
|
|
|
return PGRES_POLLING_FAILED;
|
|
|
|
|
case CONNECTION_OK:
|
|
|
|
|
return PGRES_POLLING_OK;
|
|
|
|
|
|
2000-04-12 19:17:23 +02:00
|
|
|
/* These are reading states */
|
1999-11-30 04:08:19 +01:00
|
|
|
case CONNECTION_AWAITING_RESPONSE:
|
|
|
|
|
case CONNECTION_AUTH_OK:
|
2000-04-12 19:17:23 +02:00
|
|
|
{
|
|
|
|
|
/* Load waiting data */
|
|
|
|
|
int n = pqReadData(conn);
|
1999-11-30 04:08:19 +01:00
|
|
|
|
2000-04-12 19:17:23 +02:00
|
|
|
if (n < 0)
|
|
|
|
|
goto error_return;
|
|
|
|
|
if (n == 0)
|
|
|
|
|
return PGRES_POLLING_READING;
|
|
|
|
|
|
|
|
|
|
break;
|
|
|
|
|
}
|
1998-01-26 02:42:53 +01:00
|
|
|
|
2000-04-12 19:17:23 +02:00
|
|
|
/* These are writing states, so we just proceed. */
|
1999-11-30 04:08:19 +01:00
|
|
|
case CONNECTION_STARTED:
|
|
|
|
|
case CONNECTION_MADE:
|
2000-04-12 19:17:23 +02:00
|
|
|
break;
|
1999-11-30 04:08:19 +01:00
|
|
|
|
2003-06-08 19:43:00 +02:00
|
|
|
/* We allow pqSetenvPoll to decide whether to proceed. */
|
|
|
|
|
case CONNECTION_SETENV:
|
|
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
/* Special cases: proceed without waiting. */
|
|
|
|
|
case CONNECTION_SSL_STARTUP:
|
|
|
|
|
case CONNECTION_NEEDED:
|
|
|
|
|
break;
|
|
|
|
|
|
1999-11-30 04:08:19 +01:00
|
|
|
default:
|
|
|
|
|
printfPQExpBuffer(&conn->errorMessage,
|
2001-07-15 15:45:04 +02:00
|
|
|
libpq_gettext(
|
2001-10-25 07:50:21 +02:00
|
|
|
"invalid connection state, "
|
|
|
|
|
"probably indicative of memory corruption\n"
|
|
|
|
|
));
|
1999-11-30 04:08:19 +01:00
|
|
|
goto error_return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2000-04-12 19:17:23 +02:00
|
|
|
keep_going: /* We will come back to here until there
|
2003-06-08 19:43:00 +02:00
|
|
|
* is nothing left to do. */
|
2000-04-12 19:17:23 +02:00
|
|
|
switch (conn->status)
|
1999-11-30 04:08:19 +01:00
|
|
|
{
|
2003-06-08 19:43:00 +02:00
|
|
|
case CONNECTION_NEEDED:
|
|
|
|
|
{
|
|
|
|
|
/*
|
|
|
|
|
* Try to initiate a connection to one of the addresses
|
2003-07-24 01:30:41 +02:00
|
|
|
* returned by getaddrinfo_all(). conn->addr_cur is the
|
2003-06-08 19:43:00 +02:00
|
|
|
* next one to try. We fail when we run out of addresses
|
2003-08-04 02:43:34 +02:00
|
|
|
* (reporting the error returned for the *last*
|
|
|
|
|
* alternative, which may not be what users expect :-().
|
2003-06-08 19:43:00 +02:00
|
|
|
*/
|
|
|
|
|
while (conn->addr_cur != NULL)
|
|
|
|
|
{
|
|
|
|
|
struct addrinfo *addr_cur = conn->addr_cur;
|
|
|
|
|
|
|
|
|
|
/* Remember current address for possible error msg */
|
2003-06-20 06:09:12 +02:00
|
|
|
memcpy(&conn->raddr.addr, addr_cur->ai_addr,
|
2003-06-08 19:43:00 +02:00
|
|
|
addr_cur->ai_addrlen);
|
2003-06-20 06:09:12 +02:00
|
|
|
conn->raddr.salen = addr_cur->ai_addrlen;
|
2003-06-08 19:43:00 +02:00
|
|
|
|
|
|
|
|
/* Open a socket */
|
2003-07-24 01:30:41 +02:00
|
|
|
conn->sock = socket(addr_cur->ai_family, SOCK_STREAM, 0);
|
2003-06-08 19:43:00 +02:00
|
|
|
if (conn->sock < 0)
|
|
|
|
|
{
|
|
|
|
|
/*
|
2003-08-04 02:43:34 +02:00
|
|
|
* ignore socket() failure if we have more
|
|
|
|
|
* addresses to try
|
2003-06-08 19:43:00 +02:00
|
|
|
*/
|
|
|
|
|
if (addr_cur->ai_next != NULL)
|
|
|
|
|
{
|
|
|
|
|
conn->addr_cur = addr_cur->ai_next;
|
|
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
printfPQExpBuffer(&conn->errorMessage,
|
2003-08-04 02:43:34 +02:00
|
|
|
libpq_gettext("could not create socket: %s\n"),
|
|
|
|
|
SOCK_STRERROR(SOCK_ERRNO, sebuf, sizeof(sebuf)));
|
2003-06-08 19:43:00 +02:00
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
2003-08-04 02:43:34 +02:00
|
|
|
* Select socket options: no delay of outgoing data
|
|
|
|
|
* for TCP sockets, and nonblock mode. Fail if this
|
|
|
|
|
* fails.
|
2003-06-08 19:43:00 +02:00
|
|
|
*/
|
2003-06-12 09:36:51 +02:00
|
|
|
if (!IS_AF_UNIX(addr_cur->ai_family))
|
2003-06-08 19:43:00 +02:00
|
|
|
{
|
|
|
|
|
if (!connectNoDelay(conn))
|
2003-06-12 09:36:51 +02:00
|
|
|
{
|
|
|
|
|
closesocket(conn->sock);
|
|
|
|
|
conn->sock = -1;
|
|
|
|
|
conn->addr_cur = addr_cur->ai_next;
|
|
|
|
|
continue;
|
|
|
|
|
}
|
2003-06-08 19:43:00 +02:00
|
|
|
}
|
|
|
|
|
if (connectMakeNonblocking(conn) == 0)
|
2003-06-12 09:36:51 +02:00
|
|
|
{
|
|
|
|
|
closesocket(conn->sock);
|
|
|
|
|
conn->sock = -1;
|
|
|
|
|
conn->addr_cur = addr_cur->ai_next;
|
|
|
|
|
continue;
|
|
|
|
|
}
|
2003-08-04 02:43:34 +02:00
|
|
|
|
2003-06-08 19:43:00 +02:00
|
|
|
/*
|
2003-08-04 02:43:34 +02:00
|
|
|
* Start/make connection. This should not block,
|
|
|
|
|
* since we are in nonblock mode. If it does, well,
|
|
|
|
|
* too bad.
|
2003-06-08 19:43:00 +02:00
|
|
|
*/
|
2003-08-04 02:43:34 +02:00
|
|
|
retry_connect:
|
2003-06-08 19:43:00 +02:00
|
|
|
if (connect(conn->sock, addr_cur->ai_addr,
|
|
|
|
|
addr_cur->ai_addrlen) < 0)
|
|
|
|
|
{
|
|
|
|
|
if (SOCK_ERRNO == EINTR)
|
|
|
|
|
/* Interrupted system call - just try again */
|
|
|
|
|
goto retry_connect;
|
|
|
|
|
if (SOCK_ERRNO == EINPROGRESS ||
|
|
|
|
|
SOCK_ERRNO == EWOULDBLOCK ||
|
|
|
|
|
SOCK_ERRNO == 0)
|
|
|
|
|
{
|
|
|
|
|
/*
|
|
|
|
|
* This is fine - we're in non-blocking mode,
|
|
|
|
|
* and the connection is in progress. Tell
|
|
|
|
|
* caller to wait for write-ready on socket.
|
|
|
|
|
*/
|
|
|
|
|
conn->status = CONNECTION_STARTED;
|
|
|
|
|
return PGRES_POLLING_WRITING;
|
|
|
|
|
}
|
|
|
|
|
/* otherwise, trouble */
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
/*
|
|
|
|
|
* Hm, we're connected already --- seems the
|
2003-08-04 02:43:34 +02:00
|
|
|
* "nonblock connection" wasn't. Advance the
|
|
|
|
|
* state machine and go do the next stuff.
|
2003-06-08 19:43:00 +02:00
|
|
|
*/
|
|
|
|
|
conn->status = CONNECTION_STARTED;
|
|
|
|
|
goto keep_going;
|
|
|
|
|
}
|
2003-08-04 02:43:34 +02:00
|
|
|
|
2003-06-08 19:43:00 +02:00
|
|
|
/*
|
|
|
|
|
* This connection failed --- set up error report,
|
|
|
|
|
* then close socket (do it this way in case close()
|
2003-08-04 02:43:34 +02:00
|
|
|
* affects the value of errno...). We will ignore the
|
|
|
|
|
* connect() failure and keep going if there are more
|
|
|
|
|
* addresses.
|
2003-06-08 19:43:00 +02:00
|
|
|
*/
|
|
|
|
|
connectFailureMessage(conn, SOCK_ERRNO);
|
|
|
|
|
if (conn->sock >= 0)
|
|
|
|
|
{
|
|
|
|
|
closesocket(conn->sock);
|
|
|
|
|
conn->sock = -1;
|
|
|
|
|
}
|
2003-08-04 02:43:34 +02:00
|
|
|
|
2003-06-08 19:43:00 +02:00
|
|
|
/*
|
|
|
|
|
* Try the next address, if any.
|
|
|
|
|
*/
|
|
|
|
|
conn->addr_cur = addr_cur->ai_next;
|
2003-08-04 02:43:34 +02:00
|
|
|
} /* loop over addresses */
|
2003-06-08 19:43:00 +02:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Ooops, no more addresses. An appropriate error message
|
|
|
|
|
* is already set up, so just set the right status.
|
|
|
|
|
*/
|
|
|
|
|
goto error_return;
|
|
|
|
|
}
|
|
|
|
|
|
1999-11-30 04:08:19 +01:00
|
|
|
case CONNECTION_STARTED:
|
2000-04-12 19:17:23 +02:00
|
|
|
{
|
2001-08-04 00:11:39 +02:00
|
|
|
int optval;
|
2003-08-04 02:43:34 +02:00
|
|
|
ACCEPT_TYPE_ARG3 optlen = sizeof(optval);
|
2000-04-12 19:17:23 +02:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Write ready, since we've made it here, so the
|
2003-06-08 19:43:00 +02:00
|
|
|
* connection has been made ... or has failed.
|
2000-04-12 19:17:23 +02:00
|
|
|
*/
|
1998-01-26 02:42:53 +01:00
|
|
|
|
2000-01-14 06:33:15 +01:00
|
|
|
/*
|
2000-04-12 19:17:23 +02:00
|
|
|
* Now check (using getsockopt) that there is not an error
|
|
|
|
|
* state waiting for us on the socket.
|
2000-01-14 06:33:15 +01:00
|
|
|
*/
|
2000-04-12 19:17:23 +02:00
|
|
|
|
|
|
|
|
if (getsockopt(conn->sock, SOL_SOCKET, SO_ERROR,
|
2000-06-14 20:18:01 +02:00
|
|
|
(char *) &optval, &optlen) == -1)
|
2000-04-12 19:17:23 +02:00
|
|
|
{
|
|
|
|
|
printfPQExpBuffer(&conn->errorMessage,
|
2001-07-15 15:45:04 +02:00
|
|
|
libpq_gettext("could not get socket error status: %s\n"),
|
2003-08-04 02:43:34 +02:00
|
|
|
SOCK_STRERROR(SOCK_ERRNO, sebuf, sizeof(sebuf)));
|
2000-04-12 19:17:23 +02:00
|
|
|
goto error_return;
|
|
|
|
|
}
|
|
|
|
|
else if (optval != 0)
|
|
|
|
|
{
|
|
|
|
|
/*
|
|
|
|
|
* When using a nonblocking connect, we will typically
|
|
|
|
|
* see connect failures at this point, so provide a
|
|
|
|
|
* friendly error message.
|
|
|
|
|
*/
|
2001-07-15 15:45:04 +02:00
|
|
|
connectFailureMessage(conn, optval);
|
2003-08-04 02:43:34 +02:00
|
|
|
|
2003-06-08 19:43:00 +02:00
|
|
|
/*
|
|
|
|
|
* If more addresses remain, keep trying, just as in
|
2003-08-04 02:43:34 +02:00
|
|
|
* the case where connect() returned failure
|
|
|
|
|
* immediately.
|
2003-06-08 19:43:00 +02:00
|
|
|
*/
|
|
|
|
|
if (conn->addr_cur->ai_next != NULL)
|
|
|
|
|
{
|
|
|
|
|
if (conn->sock >= 0)
|
|
|
|
|
{
|
|
|
|
|
closesocket(conn->sock);
|
|
|
|
|
conn->sock = -1;
|
|
|
|
|
}
|
|
|
|
|
conn->addr_cur = conn->addr_cur->ai_next;
|
|
|
|
|
conn->status = CONNECTION_NEEDED;
|
|
|
|
|
goto keep_going;
|
|
|
|
|
}
|
2000-04-12 19:17:23 +02:00
|
|
|
goto error_return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Fill in the client address */
|
2003-06-12 09:36:51 +02:00
|
|
|
conn->laddr.salen = sizeof(conn->laddr.addr);
|
2003-08-04 02:43:34 +02:00
|
|
|
if (getsockname(conn->sock,
|
|
|
|
|
(struct sockaddr *) & conn->laddr.addr,
|
|
|
|
|
&conn->laddr.salen) < 0)
|
2000-04-12 19:17:23 +02:00
|
|
|
{
|
|
|
|
|
printfPQExpBuffer(&conn->errorMessage,
|
2003-08-04 02:43:34 +02:00
|
|
|
libpq_gettext("could not get client address from socket: %s\n"),
|
|
|
|
|
SOCK_STRERROR(SOCK_ERRNO, sebuf, sizeof(sebuf)));
|
2000-04-12 19:17:23 +02:00
|
|
|
goto error_return;
|
|
|
|
|
}
|
|
|
|
|
|
2003-06-08 19:43:00 +02:00
|
|
|
/*
|
|
|
|
|
* Make sure we can write before advancing to next step.
|
|
|
|
|
*/
|
2000-04-12 19:17:23 +02:00
|
|
|
conn->status = CONNECTION_MADE;
|
|
|
|
|
return PGRES_POLLING_WRITING;
|
1999-11-30 04:08:19 +01:00
|
|
|
}
|
|
|
|
|
|
2000-04-12 19:17:23 +02:00
|
|
|
case CONNECTION_MADE:
|
1999-11-30 04:08:19 +01:00
|
|
|
{
|
2003-08-04 02:43:34 +02:00
|
|
|
char *startpacket;
|
|
|
|
|
int packetlen;
|
1999-11-30 04:08:19 +01:00
|
|
|
|
2003-06-08 19:43:00 +02:00
|
|
|
#ifdef USE_SSL
|
2003-08-04 02:43:34 +02:00
|
|
|
|
2003-06-08 19:43:00 +02:00
|
|
|
/*
|
2003-08-04 02:43:34 +02:00
|
|
|
* If SSL is enabled and we haven't already got it
|
|
|
|
|
* running, request it instead of sending the startup
|
|
|
|
|
* message.
|
2003-06-08 19:43:00 +02:00
|
|
|
*/
|
2003-07-24 01:30:41 +02:00
|
|
|
if (IS_AF_UNIX(conn->raddr.addr.ss_family))
|
2003-06-08 19:43:00 +02:00
|
|
|
{
|
|
|
|
|
/* Don't bother requesting SSL over a Unix socket */
|
|
|
|
|
conn->allow_ssl_try = false;
|
|
|
|
|
}
|
2003-08-01 23:27:27 +02:00
|
|
|
if (conn->allow_ssl_try && !conn->wait_ssl_try &&
|
|
|
|
|
conn->ssl == NULL)
|
2003-06-08 19:43:00 +02:00
|
|
|
{
|
|
|
|
|
ProtocolVersion pv;
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Send the SSL request packet.
|
|
|
|
|
*
|
2003-08-04 02:43:34 +02:00
|
|
|
* Theoretically, this could block, but it really
|
|
|
|
|
* shouldn't since we only got here if the socket is
|
|
|
|
|
* write-ready.
|
2003-06-08 19:43:00 +02:00
|
|
|
*/
|
|
|
|
|
pv = htonl(NEGOTIATE_SSL_CODE);
|
|
|
|
|
if (pqPacketSend(conn, 0, &pv, sizeof(pv)) != STATUS_OK)
|
|
|
|
|
{
|
|
|
|
|
printfPQExpBuffer(&conn->errorMessage,
|
|
|
|
|
libpq_gettext("could not send SSL negotiation packet: %s\n"),
|
2003-08-04 02:43:34 +02:00
|
|
|
SOCK_STRERROR(SOCK_ERRNO, sebuf, sizeof(sebuf)));
|
2003-06-08 19:43:00 +02:00
|
|
|
goto error_return;
|
|
|
|
|
}
|
|
|
|
|
/* Ok, wait for response */
|
|
|
|
|
conn->status = CONNECTION_SSL_STARTUP;
|
|
|
|
|
return PGRES_POLLING_READING;
|
|
|
|
|
}
|
2003-08-04 02:43:34 +02:00
|
|
|
#endif /* USE_SSL */
|
2003-06-08 19:43:00 +02:00
|
|
|
|
2000-04-12 19:17:23 +02:00
|
|
|
/*
|
2003-04-18 00:26:02 +02:00
|
|
|
* Build the startup packet.
|
2000-04-12 19:17:23 +02:00
|
|
|
*/
|
2003-06-08 19:43:00 +02:00
|
|
|
if (PG_PROTOCOL_MAJOR(conn->pversion) >= 3)
|
|
|
|
|
startpacket = pqBuildStartupPacket3(conn, &packetlen,
|
2003-08-04 02:43:34 +02:00
|
|
|
EnvironmentOptions);
|
2003-06-08 19:43:00 +02:00
|
|
|
else
|
|
|
|
|
startpacket = pqBuildStartupPacket2(conn, &packetlen,
|
2003-08-04 02:43:34 +02:00
|
|
|
EnvironmentOptions);
|
2003-04-18 00:26:02 +02:00
|
|
|
if (!startpacket)
|
|
|
|
|
{
|
|
|
|
|
printfPQExpBuffer(&conn->errorMessage,
|
|
|
|
|
libpq_gettext("out of memory\n"));
|
|
|
|
|
goto error_return;
|
|
|
|
|
}
|
1998-01-26 02:42:53 +01:00
|
|
|
|
2000-04-12 19:17:23 +02:00
|
|
|
/*
|
|
|
|
|
* Send the startup packet.
|
|
|
|
|
*
|
|
|
|
|
* Theoretically, this could block, but it really shouldn't
|
|
|
|
|
* since we only got here if the socket is write-ready.
|
|
|
|
|
*/
|
2003-04-18 00:26:02 +02:00
|
|
|
if (pqPacketSend(conn, 0, startpacket, packetlen) != STATUS_OK)
|
2000-04-12 19:17:23 +02:00
|
|
|
{
|
|
|
|
|
printfPQExpBuffer(&conn->errorMessage,
|
2001-10-25 07:50:21 +02:00
|
|
|
libpq_gettext("could not send startup packet: %s\n"),
|
2003-08-04 02:43:34 +02:00
|
|
|
SOCK_STRERROR(SOCK_ERRNO, sebuf, sizeof(sebuf)));
|
2003-04-18 00:26:02 +02:00
|
|
|
free(startpacket);
|
2000-04-12 19:17:23 +02:00
|
|
|
goto error_return;
|
|
|
|
|
}
|
1999-11-30 04:08:19 +01:00
|
|
|
|
2003-04-18 00:26:02 +02:00
|
|
|
free(startpacket);
|
|
|
|
|
|
2000-04-12 19:17:23 +02:00
|
|
|
conn->status = CONNECTION_AWAITING_RESPONSE;
|
1999-11-30 04:08:19 +01:00
|
|
|
return PGRES_POLLING_READING;
|
|
|
|
|
}
|
|
|
|
|
|
2000-04-12 19:17:23 +02:00
|
|
|
/*
|
2003-08-04 02:43:34 +02:00
|
|
|
* Handle SSL negotiation: wait for postmaster messages and
|
|
|
|
|
* respond as necessary.
|
2003-06-08 19:43:00 +02:00
|
|
|
*/
|
|
|
|
|
case CONNECTION_SSL_STARTUP:
|
|
|
|
|
{
|
|
|
|
|
#ifdef USE_SSL
|
|
|
|
|
PostgresPollingStatusType pollres;
|
|
|
|
|
|
|
|
|
|
/*
|
2003-08-04 02:43:34 +02:00
|
|
|
* On first time through, get the postmaster's response to
|
|
|
|
|
* our SSL negotiation packet. Be careful to read only
|
2003-06-08 19:43:00 +02:00
|
|
|
* one byte (if there's more, it could be SSL data).
|
|
|
|
|
*/
|
|
|
|
|
if (conn->ssl == NULL)
|
|
|
|
|
{
|
|
|
|
|
char SSLok;
|
|
|
|
|
int nread;
|
|
|
|
|
|
2003-08-04 02:43:34 +02:00
|
|
|
retry_ssl_read:
|
2003-06-08 19:43:00 +02:00
|
|
|
nread = recv(conn->sock, &SSLok, 1, 0);
|
|
|
|
|
if (nread < 0)
|
|
|
|
|
{
|
|
|
|
|
if (SOCK_ERRNO == EINTR)
|
|
|
|
|
/* Interrupted system call - just try again */
|
|
|
|
|
goto retry_ssl_read;
|
|
|
|
|
|
|
|
|
|
printfPQExpBuffer(&conn->errorMessage,
|
|
|
|
|
libpq_gettext("could not receive server response to SSL negotiation packet: %s\n"),
|
2003-08-04 02:43:34 +02:00
|
|
|
SOCK_STRERROR(SOCK_ERRNO, sebuf, sizeof(sebuf)));
|
2003-06-08 19:43:00 +02:00
|
|
|
goto error_return;
|
|
|
|
|
}
|
|
|
|
|
if (nread == 0)
|
|
|
|
|
/* caller failed to wait for data */
|
|
|
|
|
return PGRES_POLLING_READING;
|
|
|
|
|
if (SSLok == 'S')
|
|
|
|
|
{
|
|
|
|
|
/* Do one-time setup; this creates conn->ssl */
|
|
|
|
|
if (pqsecure_initialize(conn) == -1)
|
|
|
|
|
goto error_return;
|
|
|
|
|
}
|
|
|
|
|
else if (SSLok == 'N')
|
|
|
|
|
{
|
2003-08-04 02:43:34 +02:00
|
|
|
if (conn->sslmode[0] == 'r') /* "require" */
|
2003-08-01 23:27:27 +02:00
|
|
|
{
|
|
|
|
|
/* Require SSL, but server does not want it */
|
|
|
|
|
printfPQExpBuffer(&conn->errorMessage,
|
|
|
|
|
libpq_gettext("server does not support SSL, but SSL was required\n"));
|
|
|
|
|
goto error_return;
|
2003-06-08 19:43:00 +02:00
|
|
|
}
|
|
|
|
|
/* Otherwise, proceed with normal startup */
|
|
|
|
|
conn->allow_ssl_try = false;
|
|
|
|
|
conn->status = CONNECTION_MADE;
|
|
|
|
|
return PGRES_POLLING_WRITING;
|
|
|
|
|
}
|
|
|
|
|
else if (SSLok == 'E')
|
|
|
|
|
{
|
|
|
|
|
/* Received error - probably protocol mismatch */
|
|
|
|
|
if (conn->Pfdebug)
|
|
|
|
|
fprintf(conn->Pfdebug, "Postmaster reports error, attempting fallback to pre-7.0.\n");
|
2003-08-04 02:43:34 +02:00
|
|
|
if (conn->sslmode[0] == 'r') /* "require" */
|
2003-08-01 23:27:27 +02:00
|
|
|
{
|
|
|
|
|
/* Require SSL, but server is too old */
|
|
|
|
|
printfPQExpBuffer(&conn->errorMessage,
|
|
|
|
|
libpq_gettext("server does not support SSL, but SSL was required\n"));
|
|
|
|
|
goto error_return;
|
2003-06-08 19:43:00 +02:00
|
|
|
}
|
|
|
|
|
/* Otherwise, try again without SSL */
|
|
|
|
|
conn->allow_ssl_try = false;
|
|
|
|
|
/* Assume it ain't gonna handle protocol 3, either */
|
2003-08-04 02:43:34 +02:00
|
|
|
conn->pversion = PG_PROTOCOL(2, 0);
|
2003-06-08 19:43:00 +02:00
|
|
|
/* Must drop the old connection */
|
|
|
|
|
closesocket(conn->sock);
|
|
|
|
|
conn->sock = -1;
|
|
|
|
|
conn->status = CONNECTION_NEEDED;
|
|
|
|
|
goto keep_going;
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
printfPQExpBuffer(&conn->errorMessage,
|
|
|
|
|
libpq_gettext("received invalid response to SSL negotiation: %c\n"),
|
|
|
|
|
SSLok);
|
|
|
|
|
goto error_return;
|
|
|
|
|
}
|
|
|
|
|
}
|
2003-08-04 02:43:34 +02:00
|
|
|
|
2003-06-08 19:43:00 +02:00
|
|
|
/*
|
|
|
|
|
* Begin or continue the SSL negotiation process.
|
|
|
|
|
*/
|
|
|
|
|
pollres = pqsecure_open_client(conn);
|
|
|
|
|
if (pollres == PGRES_POLLING_OK)
|
|
|
|
|
{
|
|
|
|
|
/* SSL handshake done, ready to send startup packet */
|
|
|
|
|
conn->status = CONNECTION_MADE;
|
|
|
|
|
return PGRES_POLLING_WRITING;
|
|
|
|
|
}
|
|
|
|
|
return pollres;
|
2003-08-04 02:43:34 +02:00
|
|
|
#else /* !USE_SSL */
|
2003-06-08 19:43:00 +02:00
|
|
|
/* can't get here */
|
|
|
|
|
goto error_return;
|
2003-08-04 02:43:34 +02:00
|
|
|
#endif /* USE_SSL */
|
2003-06-08 19:43:00 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Handle authentication exchange: wait for postmaster
|
2000-04-12 19:17:23 +02:00
|
|
|
* messages and respond as necessary.
|
|
|
|
|
*/
|
|
|
|
|
case CONNECTION_AWAITING_RESPONSE:
|
1999-11-30 04:08:19 +01:00
|
|
|
{
|
2000-04-12 19:17:23 +02:00
|
|
|
char beresp;
|
2003-04-22 02:08:07 +02:00
|
|
|
int msgLength;
|
|
|
|
|
int avail;
|
2000-04-12 19:17:23 +02:00
|
|
|
AuthRequest areq;
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Scan the message from current point (note that if we
|
|
|
|
|
* find the message is incomplete, we will return without
|
|
|
|
|
* advancing inStart, and resume here next time).
|
|
|
|
|
*/
|
|
|
|
|
conn->inCursor = conn->inStart;
|
|
|
|
|
|
2003-04-22 02:08:07 +02:00
|
|
|
/* Read type byte */
|
2000-04-12 19:17:23 +02:00
|
|
|
if (pqGetc(&beresp, conn))
|
2000-01-14 06:33:15 +01:00
|
|
|
{
|
2002-08-27 17:02:50 +02:00
|
|
|
/* We'll come back when there is more data */
|
2000-01-14 06:33:15 +01:00
|
|
|
return PGRES_POLLING_READING;
|
|
|
|
|
}
|
1999-11-30 04:08:19 +01:00
|
|
|
|
2003-04-22 02:08:07 +02:00
|
|
|
/*
|
|
|
|
|
* Validate message type: we expect only an authentication
|
|
|
|
|
* request or an error here. Anything else probably means
|
|
|
|
|
* it's not Postgres on the other end at all.
|
|
|
|
|
*/
|
|
|
|
|
if (!(beresp == 'R' || beresp == 'E'))
|
|
|
|
|
{
|
|
|
|
|
printfPQExpBuffer(&conn->errorMessage,
|
|
|
|
|
libpq_gettext(
|
|
|
|
|
"expected authentication request from "
|
2003-08-04 02:43:34 +02:00
|
|
|
"server, but received %c\n"),
|
2003-04-22 02:08:07 +02:00
|
|
|
beresp);
|
|
|
|
|
goto error_return;
|
|
|
|
|
}
|
|
|
|
|
|
2003-06-08 19:43:00 +02:00
|
|
|
if (PG_PROTOCOL_MAJOR(conn->pversion) >= 3)
|
2003-04-22 02:08:07 +02:00
|
|
|
{
|
2003-06-08 19:43:00 +02:00
|
|
|
/* Read message length word */
|
|
|
|
|
if (pqGetInt(&msgLength, 4, conn))
|
|
|
|
|
{
|
|
|
|
|
/* We'll come back when there is more data */
|
|
|
|
|
return PGRES_POLLING_READING;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
/* Set phony message length to disable checks below */
|
|
|
|
|
msgLength = 8;
|
2003-04-22 02:08:07 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Try to validate message length before using it.
|
|
|
|
|
* Authentication requests can't be very large. Errors
|
2003-08-04 02:43:34 +02:00
|
|
|
* can be a little larger, but not huge. If we see a
|
|
|
|
|
* large apparent length in an error, it means we're
|
|
|
|
|
* really talking to a pre-3.0-protocol server; cope.
|
2003-04-22 02:08:07 +02:00
|
|
|
*/
|
|
|
|
|
if (beresp == 'R' && (msgLength < 8 || msgLength > 100))
|
|
|
|
|
{
|
|
|
|
|
printfPQExpBuffer(&conn->errorMessage,
|
|
|
|
|
libpq_gettext(
|
|
|
|
|
"expected authentication request from "
|
2003-08-04 02:43:34 +02:00
|
|
|
"server, but received %c\n"),
|
2003-04-22 02:08:07 +02:00
|
|
|
beresp);
|
|
|
|
|
goto error_return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (beresp == 'E' && (msgLength < 8 || msgLength > 30000))
|
2000-04-12 19:17:23 +02:00
|
|
|
{
|
2003-04-22 02:08:07 +02:00
|
|
|
/* Handle error from a pre-3.0 server */
|
2003-08-04 02:43:34 +02:00
|
|
|
conn->inCursor = conn->inStart + 1; /* reread data */
|
2000-04-12 19:17:23 +02:00
|
|
|
if (pqGets(&conn->errorMessage, conn))
|
|
|
|
|
{
|
2002-08-27 18:21:51 +02:00
|
|
|
/* We'll come back when there is more data */
|
2000-04-12 19:17:23 +02:00
|
|
|
return PGRES_POLLING_READING;
|
|
|
|
|
}
|
|
|
|
|
/* OK, we read the message; mark data consumed */
|
|
|
|
|
conn->inStart = conn->inCursor;
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* The postmaster typically won't end its message with
|
|
|
|
|
* a newline, so add one to conform to libpq
|
|
|
|
|
* conventions.
|
|
|
|
|
*/
|
|
|
|
|
appendPQExpBufferChar(&conn->errorMessage, '\n');
|
2003-06-08 19:43:00 +02:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* If we tried to open the connection in 3.0 protocol,
|
|
|
|
|
* fall back to 2.0 protocol.
|
|
|
|
|
*/
|
|
|
|
|
if (PG_PROTOCOL_MAJOR(conn->pversion) >= 3)
|
|
|
|
|
{
|
2003-08-04 02:43:34 +02:00
|
|
|
conn->pversion = PG_PROTOCOL(2, 0);
|
2003-06-08 19:43:00 +02:00
|
|
|
/* Must drop the old connection */
|
|
|
|
|
pqsecure_close(conn);
|
|
|
|
|
closesocket(conn->sock);
|
|
|
|
|
conn->sock = -1;
|
|
|
|
|
conn->status = CONNECTION_NEEDED;
|
|
|
|
|
goto keep_going;
|
|
|
|
|
}
|
|
|
|
|
|
2000-04-12 19:17:23 +02:00
|
|
|
goto error_return;
|
|
|
|
|
}
|
1999-11-30 04:08:19 +01:00
|
|
|
|
2003-04-22 02:08:07 +02:00
|
|
|
/*
|
|
|
|
|
* Can't process if message body isn't all here yet.
|
2003-06-08 19:43:00 +02:00
|
|
|
*
|
2003-08-04 02:43:34 +02:00
|
|
|
* (In protocol 2.0 case, we are assuming messages carry at
|
|
|
|
|
* least 4 bytes of data.)
|
2003-04-22 02:08:07 +02:00
|
|
|
*/
|
|
|
|
|
msgLength -= 4;
|
|
|
|
|
avail = conn->inEnd - conn->inCursor;
|
|
|
|
|
if (avail < msgLength)
|
2000-04-12 19:17:23 +02:00
|
|
|
{
|
2003-04-22 02:08:07 +02:00
|
|
|
/*
|
2003-08-04 02:43:34 +02:00
|
|
|
* Before returning, try to enlarge the input buffer
|
|
|
|
|
* if needed to hold the whole message; see notes in
|
2003-06-08 19:43:00 +02:00
|
|
|
* pqParseInput3.
|
2003-04-22 02:08:07 +02:00
|
|
|
*/
|
|
|
|
|
if (pqCheckInBufferSpace(conn->inCursor + msgLength, conn))
|
|
|
|
|
goto error_return;
|
|
|
|
|
/* We'll come back when there is more data */
|
|
|
|
|
return PGRES_POLLING_READING;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Handle errors. */
|
|
|
|
|
if (beresp == 'E')
|
|
|
|
|
{
|
2003-06-08 19:43:00 +02:00
|
|
|
if (PG_PROTOCOL_MAJOR(conn->pversion) >= 3)
|
2003-04-22 02:08:07 +02:00
|
|
|
{
|
2003-06-08 19:43:00 +02:00
|
|
|
if (pqGetErrorNotice3(conn, true))
|
|
|
|
|
{
|
|
|
|
|
/* We'll come back when there is more data */
|
|
|
|
|
return PGRES_POLLING_READING;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
if (pqGets(&conn->errorMessage, conn))
|
|
|
|
|
{
|
|
|
|
|
/* We'll come back when there is more data */
|
|
|
|
|
return PGRES_POLLING_READING;
|
|
|
|
|
}
|
2003-04-22 02:08:07 +02:00
|
|
|
}
|
|
|
|
|
/* OK, we read the message; mark data consumed */
|
|
|
|
|
conn->inStart = conn->inCursor;
|
At long last I put together a patch to support 4 client SSL negotiation
modes (and replace the requiressl boolean). The four options were first
spelled out by Magnus Hagander <mha@sollentuna.net> on 2000-08-23 in email
to pgsql-hackers, archived here:
http://archives.postgresql.org/pgsql-hackers/2000-08/msg00639.php
My original less-flexible patch and the ensuing thread are archived at:
http://dbforums.com/t623845.html
Attached is a new patch, including documentation.
To sum up, there's a new client parameter "sslmode" and environment
variable "PGSSLMODE", with these options:
sslmode description
------- -----------
disable Unencrypted non-SSL only
allow Negotiate, prefer non-SSL
prefer Negotiate, prefer SSL (default)
require Require SSL
The only change to the server is a new pg_hba.conf line type,
"hostnossl", for specifying connections that are not allowed to use SSL
(for example, to prevent servers on a local network from accidentally
using SSL and wasting cycles). Thus the 3 pg_hba.conf line types are:
pg_hba.conf line types
----------------------
host applies to either SSL or regular connections
hostssl applies only to SSL connections
hostnossl applies only to regular connections
These client and server options, the postgresql.conf ssl = false option,
and finally the possibility of compiling with no SSL support at all,
make quite a range of combinations to test. I threw together a test
script to try many of them out. It's in a separate tarball with its
config files, a patch to psql so it'll announce SSL connections even in
absence of a tty, and the test output. The test is especially informative
when run on the same tty the postmaster was started on, so the FATAL:
errors during negotiation are interleaved with the psql client output.
I saw Tom write that new submissions for 7.4 have to be in before midnight
local time, and since I'm on the east coast in the US, this just makes it
in before the bell. :)
Jon Jensen
2003-07-26 15:50:02 +02:00
|
|
|
|
|
|
|
|
#ifdef USE_SSL
|
2003-08-04 02:43:34 +02:00
|
|
|
|
At long last I put together a patch to support 4 client SSL negotiation
modes (and replace the requiressl boolean). The four options were first
spelled out by Magnus Hagander <mha@sollentuna.net> on 2000-08-23 in email
to pgsql-hackers, archived here:
http://archives.postgresql.org/pgsql-hackers/2000-08/msg00639.php
My original less-flexible patch and the ensuing thread are archived at:
http://dbforums.com/t623845.html
Attached is a new patch, including documentation.
To sum up, there's a new client parameter "sslmode" and environment
variable "PGSSLMODE", with these options:
sslmode description
------- -----------
disable Unencrypted non-SSL only
allow Negotiate, prefer non-SSL
prefer Negotiate, prefer SSL (default)
require Require SSL
The only change to the server is a new pg_hba.conf line type,
"hostnossl", for specifying connections that are not allowed to use SSL
(for example, to prevent servers on a local network from accidentally
using SSL and wasting cycles). Thus the 3 pg_hba.conf line types are:
pg_hba.conf line types
----------------------
host applies to either SSL or regular connections
hostssl applies only to SSL connections
hostnossl applies only to regular connections
These client and server options, the postgresql.conf ssl = false option,
and finally the possibility of compiling with no SSL support at all,
make quite a range of combinations to test. I threw together a test
script to try many of them out. It's in a separate tarball with its
config files, a patch to psql so it'll announce SSL connections even in
absence of a tty, and the test output. The test is especially informative
when run on the same tty the postmaster was started on, so the FATAL:
errors during negotiation are interleaved with the psql client output.
I saw Tom write that new submissions for 7.4 have to be in before midnight
local time, and since I'm on the east coast in the US, this just makes it
in before the bell. :)
Jon Jensen
2003-07-26 15:50:02 +02:00
|
|
|
/*
|
2003-08-01 23:27:27 +02:00
|
|
|
* if sslmode is "allow" and we haven't tried an SSL
|
2003-08-04 02:43:34 +02:00
|
|
|
* connection already, then retry with an SSL
|
|
|
|
|
* connection
|
At long last I put together a patch to support 4 client SSL negotiation
modes (and replace the requiressl boolean). The four options were first
spelled out by Magnus Hagander <mha@sollentuna.net> on 2000-08-23 in email
to pgsql-hackers, archived here:
http://archives.postgresql.org/pgsql-hackers/2000-08/msg00639.php
My original less-flexible patch and the ensuing thread are archived at:
http://dbforums.com/t623845.html
Attached is a new patch, including documentation.
To sum up, there's a new client parameter "sslmode" and environment
variable "PGSSLMODE", with these options:
sslmode description
------- -----------
disable Unencrypted non-SSL only
allow Negotiate, prefer non-SSL
prefer Negotiate, prefer SSL (default)
require Require SSL
The only change to the server is a new pg_hba.conf line type,
"hostnossl", for specifying connections that are not allowed to use SSL
(for example, to prevent servers on a local network from accidentally
using SSL and wasting cycles). Thus the 3 pg_hba.conf line types are:
pg_hba.conf line types
----------------------
host applies to either SSL or regular connections
hostssl applies only to SSL connections
hostnossl applies only to regular connections
These client and server options, the postgresql.conf ssl = false option,
and finally the possibility of compiling with no SSL support at all,
make quite a range of combinations to test. I threw together a test
script to try many of them out. It's in a separate tarball with its
config files, a patch to psql so it'll announce SSL connections even in
absence of a tty, and the test output. The test is especially informative
when run on the same tty the postmaster was started on, so the FATAL:
errors during negotiation are interleaved with the psql client output.
I saw Tom write that new submissions for 7.4 have to be in before midnight
local time, and since I'm on the east coast in the US, this just makes it
in before the bell. :)
Jon Jensen
2003-07-26 15:50:02 +02:00
|
|
|
*/
|
2003-08-01 23:27:27 +02:00
|
|
|
if (conn->sslmode[0] == 'a' /* "allow" */
|
At long last I put together a patch to support 4 client SSL negotiation
modes (and replace the requiressl boolean). The four options were first
spelled out by Magnus Hagander <mha@sollentuna.net> on 2000-08-23 in email
to pgsql-hackers, archived here:
http://archives.postgresql.org/pgsql-hackers/2000-08/msg00639.php
My original less-flexible patch and the ensuing thread are archived at:
http://dbforums.com/t623845.html
Attached is a new patch, including documentation.
To sum up, there's a new client parameter "sslmode" and environment
variable "PGSSLMODE", with these options:
sslmode description
------- -----------
disable Unencrypted non-SSL only
allow Negotiate, prefer non-SSL
prefer Negotiate, prefer SSL (default)
require Require SSL
The only change to the server is a new pg_hba.conf line type,
"hostnossl", for specifying connections that are not allowed to use SSL
(for example, to prevent servers on a local network from accidentally
using SSL and wasting cycles). Thus the 3 pg_hba.conf line types are:
pg_hba.conf line types
----------------------
host applies to either SSL or regular connections
hostssl applies only to SSL connections
hostnossl applies only to regular connections
These client and server options, the postgresql.conf ssl = false option,
and finally the possibility of compiling with no SSL support at all,
make quite a range of combinations to test. I threw together a test
script to try many of them out. It's in a separate tarball with its
config files, a patch to psql so it'll announce SSL connections even in
absence of a tty, and the test output. The test is especially informative
when run on the same tty the postmaster was started on, so the FATAL:
errors during negotiation are interleaved with the psql client output.
I saw Tom write that new submissions for 7.4 have to be in before midnight
local time, and since I'm on the east coast in the US, this just makes it
in before the bell. :)
Jon Jensen
2003-07-26 15:50:02 +02:00
|
|
|
&& conn->ssl == NULL
|
2003-08-01 23:27:27 +02:00
|
|
|
&& conn->allow_ssl_try
|
|
|
|
|
&& conn->wait_ssl_try)
|
At long last I put together a patch to support 4 client SSL negotiation
modes (and replace the requiressl boolean). The four options were first
spelled out by Magnus Hagander <mha@sollentuna.net> on 2000-08-23 in email
to pgsql-hackers, archived here:
http://archives.postgresql.org/pgsql-hackers/2000-08/msg00639.php
My original less-flexible patch and the ensuing thread are archived at:
http://dbforums.com/t623845.html
Attached is a new patch, including documentation.
To sum up, there's a new client parameter "sslmode" and environment
variable "PGSSLMODE", with these options:
sslmode description
------- -----------
disable Unencrypted non-SSL only
allow Negotiate, prefer non-SSL
prefer Negotiate, prefer SSL (default)
require Require SSL
The only change to the server is a new pg_hba.conf line type,
"hostnossl", for specifying connections that are not allowed to use SSL
(for example, to prevent servers on a local network from accidentally
using SSL and wasting cycles). Thus the 3 pg_hba.conf line types are:
pg_hba.conf line types
----------------------
host applies to either SSL or regular connections
hostssl applies only to SSL connections
hostnossl applies only to regular connections
These client and server options, the postgresql.conf ssl = false option,
and finally the possibility of compiling with no SSL support at all,
make quite a range of combinations to test. I threw together a test
script to try many of them out. It's in a separate tarball with its
config files, a patch to psql so it'll announce SSL connections even in
absence of a tty, and the test output. The test is especially informative
when run on the same tty the postmaster was started on, so the FATAL:
errors during negotiation are interleaved with the psql client output.
I saw Tom write that new submissions for 7.4 have to be in before midnight
local time, and since I'm on the east coast in the US, this just makes it
in before the bell. :)
Jon Jensen
2003-07-26 15:50:02 +02:00
|
|
|
{
|
2003-08-01 23:27:27 +02:00
|
|
|
/* only retry once */
|
At long last I put together a patch to support 4 client SSL negotiation
modes (and replace the requiressl boolean). The four options were first
spelled out by Magnus Hagander <mha@sollentuna.net> on 2000-08-23 in email
to pgsql-hackers, archived here:
http://archives.postgresql.org/pgsql-hackers/2000-08/msg00639.php
My original less-flexible patch and the ensuing thread are archived at:
http://dbforums.com/t623845.html
Attached is a new patch, including documentation.
To sum up, there's a new client parameter "sslmode" and environment
variable "PGSSLMODE", with these options:
sslmode description
------- -----------
disable Unencrypted non-SSL only
allow Negotiate, prefer non-SSL
prefer Negotiate, prefer SSL (default)
require Require SSL
The only change to the server is a new pg_hba.conf line type,
"hostnossl", for specifying connections that are not allowed to use SSL
(for example, to prevent servers on a local network from accidentally
using SSL and wasting cycles). Thus the 3 pg_hba.conf line types are:
pg_hba.conf line types
----------------------
host applies to either SSL or regular connections
hostssl applies only to SSL connections
hostnossl applies only to regular connections
These client and server options, the postgresql.conf ssl = false option,
and finally the possibility of compiling with no SSL support at all,
make quite a range of combinations to test. I threw together a test
script to try many of them out. It's in a separate tarball with its
config files, a patch to psql so it'll announce SSL connections even in
absence of a tty, and the test output. The test is especially informative
when run on the same tty the postmaster was started on, so the FATAL:
errors during negotiation are interleaved with the psql client output.
I saw Tom write that new submissions for 7.4 have to be in before midnight
local time, and since I'm on the east coast in the US, this just makes it
in before the bell. :)
Jon Jensen
2003-07-26 15:50:02 +02:00
|
|
|
conn->wait_ssl_try = false;
|
|
|
|
|
/* Must drop the old connection */
|
|
|
|
|
closesocket(conn->sock);
|
|
|
|
|
conn->sock = -1;
|
|
|
|
|
conn->status = CONNECTION_NEEDED;
|
|
|
|
|
goto keep_going;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* if sslmode is "prefer" and we're in an SSL
|
2003-08-01 23:27:27 +02:00
|
|
|
* connection, then do a non-SSL retry
|
At long last I put together a patch to support 4 client SSL negotiation
modes (and replace the requiressl boolean). The four options were first
spelled out by Magnus Hagander <mha@sollentuna.net> on 2000-08-23 in email
to pgsql-hackers, archived here:
http://archives.postgresql.org/pgsql-hackers/2000-08/msg00639.php
My original less-flexible patch and the ensuing thread are archived at:
http://dbforums.com/t623845.html
Attached is a new patch, including documentation.
To sum up, there's a new client parameter "sslmode" and environment
variable "PGSSLMODE", with these options:
sslmode description
------- -----------
disable Unencrypted non-SSL only
allow Negotiate, prefer non-SSL
prefer Negotiate, prefer SSL (default)
require Require SSL
The only change to the server is a new pg_hba.conf line type,
"hostnossl", for specifying connections that are not allowed to use SSL
(for example, to prevent servers on a local network from accidentally
using SSL and wasting cycles). Thus the 3 pg_hba.conf line types are:
pg_hba.conf line types
----------------------
host applies to either SSL or regular connections
hostssl applies only to SSL connections
hostnossl applies only to regular connections
These client and server options, the postgresql.conf ssl = false option,
and finally the possibility of compiling with no SSL support at all,
make quite a range of combinations to test. I threw together a test
script to try many of them out. It's in a separate tarball with its
config files, a patch to psql so it'll announce SSL connections even in
absence of a tty, and the test output. The test is especially informative
when run on the same tty the postmaster was started on, so the FATAL:
errors during negotiation are interleaved with the psql client output.
I saw Tom write that new submissions for 7.4 have to be in before midnight
local time, and since I'm on the east coast in the US, this just makes it
in before the bell. :)
Jon Jensen
2003-07-26 15:50:02 +02:00
|
|
|
*/
|
2003-08-01 23:27:27 +02:00
|
|
|
if (conn->sslmode[0] == 'p' /* "prefer" */
|
At long last I put together a patch to support 4 client SSL negotiation
modes (and replace the requiressl boolean). The four options were first
spelled out by Magnus Hagander <mha@sollentuna.net> on 2000-08-23 in email
to pgsql-hackers, archived here:
http://archives.postgresql.org/pgsql-hackers/2000-08/msg00639.php
My original less-flexible patch and the ensuing thread are archived at:
http://dbforums.com/t623845.html
Attached is a new patch, including documentation.
To sum up, there's a new client parameter "sslmode" and environment
variable "PGSSLMODE", with these options:
sslmode description
------- -----------
disable Unencrypted non-SSL only
allow Negotiate, prefer non-SSL
prefer Negotiate, prefer SSL (default)
require Require SSL
The only change to the server is a new pg_hba.conf line type,
"hostnossl", for specifying connections that are not allowed to use SSL
(for example, to prevent servers on a local network from accidentally
using SSL and wasting cycles). Thus the 3 pg_hba.conf line types are:
pg_hba.conf line types
----------------------
host applies to either SSL or regular connections
hostssl applies only to SSL connections
hostnossl applies only to regular connections
These client and server options, the postgresql.conf ssl = false option,
and finally the possibility of compiling with no SSL support at all,
make quite a range of combinations to test. I threw together a test
script to try many of them out. It's in a separate tarball with its
config files, a patch to psql so it'll announce SSL connections even in
absence of a tty, and the test output. The test is especially informative
when run on the same tty the postmaster was started on, so the FATAL:
errors during negotiation are interleaved with the psql client output.
I saw Tom write that new submissions for 7.4 have to be in before midnight
local time, and since I'm on the east coast in the US, this just makes it
in before the bell. :)
Jon Jensen
2003-07-26 15:50:02 +02:00
|
|
|
&& conn->ssl
|
2003-08-04 02:43:34 +02:00
|
|
|
&& conn->allow_ssl_try /* redundant? */
|
|
|
|
|
&& !conn->wait_ssl_try) /* redundant? */
|
At long last I put together a patch to support 4 client SSL negotiation
modes (and replace the requiressl boolean). The four options were first
spelled out by Magnus Hagander <mha@sollentuna.net> on 2000-08-23 in email
to pgsql-hackers, archived here:
http://archives.postgresql.org/pgsql-hackers/2000-08/msg00639.php
My original less-flexible patch and the ensuing thread are archived at:
http://dbforums.com/t623845.html
Attached is a new patch, including documentation.
To sum up, there's a new client parameter "sslmode" and environment
variable "PGSSLMODE", with these options:
sslmode description
------- -----------
disable Unencrypted non-SSL only
allow Negotiate, prefer non-SSL
prefer Negotiate, prefer SSL (default)
require Require SSL
The only change to the server is a new pg_hba.conf line type,
"hostnossl", for specifying connections that are not allowed to use SSL
(for example, to prevent servers on a local network from accidentally
using SSL and wasting cycles). Thus the 3 pg_hba.conf line types are:
pg_hba.conf line types
----------------------
host applies to either SSL or regular connections
hostssl applies only to SSL connections
hostnossl applies only to regular connections
These client and server options, the postgresql.conf ssl = false option,
and finally the possibility of compiling with no SSL support at all,
make quite a range of combinations to test. I threw together a test
script to try many of them out. It's in a separate tarball with its
config files, a patch to psql so it'll announce SSL connections even in
absence of a tty, and the test output. The test is especially informative
when run on the same tty the postmaster was started on, so the FATAL:
errors during negotiation are interleaved with the psql client output.
I saw Tom write that new submissions for 7.4 have to be in before midnight
local time, and since I'm on the east coast in the US, this just makes it
in before the bell. :)
Jon Jensen
2003-07-26 15:50:02 +02:00
|
|
|
{
|
2003-08-01 23:27:27 +02:00
|
|
|
/* only retry once */
|
At long last I put together a patch to support 4 client SSL negotiation
modes (and replace the requiressl boolean). The four options were first
spelled out by Magnus Hagander <mha@sollentuna.net> on 2000-08-23 in email
to pgsql-hackers, archived here:
http://archives.postgresql.org/pgsql-hackers/2000-08/msg00639.php
My original less-flexible patch and the ensuing thread are archived at:
http://dbforums.com/t623845.html
Attached is a new patch, including documentation.
To sum up, there's a new client parameter "sslmode" and environment
variable "PGSSLMODE", with these options:
sslmode description
------- -----------
disable Unencrypted non-SSL only
allow Negotiate, prefer non-SSL
prefer Negotiate, prefer SSL (default)
require Require SSL
The only change to the server is a new pg_hba.conf line type,
"hostnossl", for specifying connections that are not allowed to use SSL
(for example, to prevent servers on a local network from accidentally
using SSL and wasting cycles). Thus the 3 pg_hba.conf line types are:
pg_hba.conf line types
----------------------
host applies to either SSL or regular connections
hostssl applies only to SSL connections
hostnossl applies only to regular connections
These client and server options, the postgresql.conf ssl = false option,
and finally the possibility of compiling with no SSL support at all,
make quite a range of combinations to test. I threw together a test
script to try many of them out. It's in a separate tarball with its
config files, a patch to psql so it'll announce SSL connections even in
absence of a tty, and the test output. The test is especially informative
when run on the same tty the postmaster was started on, so the FATAL:
errors during negotiation are interleaved with the psql client output.
I saw Tom write that new submissions for 7.4 have to be in before midnight
local time, and since I'm on the east coast in the US, this just makes it
in before the bell. :)
Jon Jensen
2003-07-26 15:50:02 +02:00
|
|
|
conn->allow_ssl_try = false;
|
|
|
|
|
/* Must drop the old connection */
|
|
|
|
|
pqsecure_close(conn);
|
|
|
|
|
closesocket(conn->sock);
|
|
|
|
|
conn->sock = -1;
|
|
|
|
|
conn->status = CONNECTION_NEEDED;
|
|
|
|
|
goto keep_going;
|
|
|
|
|
}
|
|
|
|
|
#endif
|
|
|
|
|
|
2000-04-12 19:17:23 +02:00
|
|
|
goto error_return;
|
|
|
|
|
}
|
1999-11-30 04:08:19 +01:00
|
|
|
|
2003-04-22 02:08:07 +02:00
|
|
|
/* It is an authentication request. */
|
2000-04-12 19:17:23 +02:00
|
|
|
/* Get the type of request. */
|
|
|
|
|
if (pqGetInt((int *) &areq, 4, conn))
|
1999-11-30 04:08:19 +01:00
|
|
|
{
|
|
|
|
|
/* We'll come back when there are more data */
|
|
|
|
|
return PGRES_POLLING_READING;
|
|
|
|
|
}
|
|
|
|
|
|
2000-04-12 19:17:23 +02:00
|
|
|
/* Get the password salt if there is one. */
|
2001-08-17 04:59:20 +02:00
|
|
|
if (areq == AUTH_REQ_MD5)
|
2000-04-12 19:17:23 +02:00
|
|
|
{
|
2001-08-17 04:59:20 +02:00
|
|
|
if (pqGetnchar(conn->md5Salt,
|
|
|
|
|
sizeof(conn->md5Salt), conn))
|
|
|
|
|
{
|
|
|
|
|
/* We'll come back when there are more data */
|
|
|
|
|
return PGRES_POLLING_READING;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if (areq == AUTH_REQ_CRYPT)
|
|
|
|
|
{
|
|
|
|
|
if (pqGetnchar(conn->cryptSalt,
|
|
|
|
|
sizeof(conn->cryptSalt), conn))
|
2000-04-12 19:17:23 +02:00
|
|
|
{
|
|
|
|
|
/* We'll come back when there are more data */
|
|
|
|
|
return PGRES_POLLING_READING;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* OK, we successfully read the message; mark data
|
|
|
|
|
* consumed
|
|
|
|
|
*/
|
|
|
|
|
conn->inStart = conn->inCursor;
|
1999-11-30 04:08:19 +01:00
|
|
|
|
2000-04-12 19:17:23 +02:00
|
|
|
/* Respond to the request if necessary. */
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Note that conn->pghost must be non-NULL if we are going
|
|
|
|
|
* to avoid the Kerberos code doing a hostname look-up.
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* XXX fe-auth.c has not been fixed to support
|
|
|
|
|
* PQExpBuffers, so:
|
|
|
|
|
*/
|
|
|
|
|
if (fe_sendauth(areq, conn, conn->pghost, conn->pgpass,
|
|
|
|
|
conn->errorMessage.data) != STATUS_OK)
|
|
|
|
|
{
|
|
|
|
|
conn->errorMessage.len = strlen(conn->errorMessage.data);
|
|
|
|
|
goto error_return;
|
|
|
|
|
}
|
1999-11-30 04:08:19 +01:00
|
|
|
conn->errorMessage.len = strlen(conn->errorMessage.data);
|
|
|
|
|
|
2000-04-12 19:17:23 +02:00
|
|
|
/*
|
|
|
|
|
* Just make sure that any data sent by fe_sendauth is
|
|
|
|
|
* flushed out. Although this theoretically could block,
|
|
|
|
|
* it really shouldn't since we don't send large auth
|
|
|
|
|
* responses.
|
|
|
|
|
*/
|
|
|
|
|
if (pqFlush(conn))
|
|
|
|
|
goto error_return;
|
1999-11-30 04:08:19 +01:00
|
|
|
|
2000-04-12 19:17:23 +02:00
|
|
|
if (areq == AUTH_REQ_OK)
|
|
|
|
|
{
|
|
|
|
|
/* We are done with authentication exchange */
|
|
|
|
|
conn->status = CONNECTION_AUTH_OK;
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Set asyncStatus so that PQsetResult will think that
|
|
|
|
|
* what comes back next is the result of a query. See
|
|
|
|
|
* below.
|
|
|
|
|
*/
|
|
|
|
|
conn->asyncStatus = PGASYNC_BUSY;
|
|
|
|
|
}
|
1999-11-30 04:08:19 +01:00
|
|
|
|
2000-04-12 19:17:23 +02:00
|
|
|
/* Look to see if we have more data yet. */
|
|
|
|
|
goto keep_going;
|
|
|
|
|
}
|
1999-08-31 03:37:37 +02:00
|
|
|
|
1999-11-30 04:08:19 +01:00
|
|
|
case CONNECTION_AUTH_OK:
|
|
|
|
|
{
|
2001-03-22 07:16:21 +01:00
|
|
|
/*
|
2000-04-12 19:17:23 +02:00
|
|
|
* Now we expect to hear from the backend. A ReadyForQuery
|
2001-03-22 07:16:21 +01:00
|
|
|
* message indicates that startup is successful, but we
|
|
|
|
|
* might also get an Error message indicating failure.
|
|
|
|
|
* (Notice messages indicating nonfatal warnings are also
|
2003-04-25 21:45:10 +02:00
|
|
|
* allowed by the protocol, as are ParameterStatus and
|
|
|
|
|
* BackendKeyData messages.) Easiest way to handle this is
|
|
|
|
|
* to let PQgetResult() read the messages. We just have to
|
2003-08-04 02:43:34 +02:00
|
|
|
* fake it out about the state of the connection, by
|
|
|
|
|
* setting asyncStatus = PGASYNC_BUSY (done above).
|
2000-01-14 06:33:15 +01:00
|
|
|
*/
|
1999-11-30 04:08:19 +01:00
|
|
|
|
2000-04-12 19:17:23 +02:00
|
|
|
if (PQisBusy(conn))
|
|
|
|
|
return PGRES_POLLING_READING;
|
1999-11-30 04:08:19 +01:00
|
|
|
|
2000-04-12 19:17:23 +02:00
|
|
|
res = PQgetResult(conn);
|
1999-11-30 04:08:19 +01:00
|
|
|
|
2000-04-12 19:17:23 +02:00
|
|
|
/*
|
|
|
|
|
* NULL return indicating we have gone to IDLE state is
|
|
|
|
|
* expected
|
|
|
|
|
*/
|
|
|
|
|
if (res)
|
|
|
|
|
{
|
|
|
|
|
if (res->resultStatus != PGRES_FATAL_ERROR)
|
|
|
|
|
printfPQExpBuffer(&conn->errorMessage,
|
2001-07-15 15:45:04 +02:00
|
|
|
libpq_gettext("unexpected message from server during startup\n"));
|
2000-04-12 19:17:23 +02:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* if the resultStatus is FATAL, then
|
|
|
|
|
* conn->errorMessage already has a copy of the error;
|
|
|
|
|
* needn't copy it back. But add a newline if it's not
|
|
|
|
|
* there already, since postmaster error messages may
|
|
|
|
|
* not have one.
|
|
|
|
|
*/
|
|
|
|
|
if (conn->errorMessage.len <= 0 ||
|
|
|
|
|
conn->errorMessage.data[conn->errorMessage.len - 1] != '\n')
|
|
|
|
|
appendPQExpBufferChar(&conn->errorMessage, '\n');
|
|
|
|
|
PQclear(res);
|
|
|
|
|
goto error_return;
|
|
|
|
|
}
|
|
|
|
|
|
2003-06-08 19:43:00 +02:00
|
|
|
/* We can release the address list now. */
|
2003-07-24 01:30:41 +02:00
|
|
|
freeaddrinfo_all(conn->addrlist_family, conn->addrlist);
|
2003-06-08 19:43:00 +02:00
|
|
|
conn->addrlist = NULL;
|
|
|
|
|
conn->addr_cur = NULL;
|
|
|
|
|
|
|
|
|
|
/* Fire up post-connection housekeeping if needed */
|
|
|
|
|
if (PG_PROTOCOL_MAJOR(conn->pversion) < 3)
|
|
|
|
|
{
|
|
|
|
|
conn->status = CONNECTION_SETENV;
|
|
|
|
|
conn->setenv_state = SETENV_STATE_OPTION_SEND;
|
|
|
|
|
conn->next_eo = EnvironmentOptions;
|
|
|
|
|
return PGRES_POLLING_WRITING;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Otherwise, we are open for business! */
|
2003-04-25 21:45:10 +02:00
|
|
|
conn->status = CONNECTION_OK;
|
|
|
|
|
return PGRES_POLLING_OK;
|
1999-11-30 04:08:19 +01:00
|
|
|
}
|
|
|
|
|
|
2003-06-08 19:43:00 +02:00
|
|
|
case CONNECTION_SETENV:
|
|
|
|
|
|
|
|
|
|
/*
|
2003-08-04 02:43:34 +02:00
|
|
|
* Do post-connection housekeeping (only needed in protocol
|
|
|
|
|
* 2.0).
|
2003-06-08 19:43:00 +02:00
|
|
|
*
|
2003-08-04 02:43:34 +02:00
|
|
|
* We pretend that the connection is OK for the duration of these
|
|
|
|
|
* queries.
|
2003-06-08 19:43:00 +02:00
|
|
|
*/
|
|
|
|
|
conn->status = CONNECTION_OK;
|
|
|
|
|
|
|
|
|
|
switch (pqSetenvPoll(conn))
|
|
|
|
|
{
|
|
|
|
|
case PGRES_POLLING_OK: /* Success */
|
|
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
case PGRES_POLLING_READING: /* Still going */
|
|
|
|
|
conn->status = CONNECTION_SETENV;
|
|
|
|
|
return PGRES_POLLING_READING;
|
|
|
|
|
|
|
|
|
|
case PGRES_POLLING_WRITING: /* Still going */
|
|
|
|
|
conn->status = CONNECTION_SETENV;
|
|
|
|
|
return PGRES_POLLING_WRITING;
|
|
|
|
|
|
|
|
|
|
default:
|
|
|
|
|
goto error_return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* We are open for business! */
|
|
|
|
|
conn->status = CONNECTION_OK;
|
|
|
|
|
return PGRES_POLLING_OK;
|
|
|
|
|
|
1999-11-30 04:08:19 +01:00
|
|
|
default:
|
1999-08-31 03:37:37 +02:00
|
|
|
printfPQExpBuffer(&conn->errorMessage,
|
2001-07-15 15:45:04 +02:00
|
|
|
libpq_gettext(
|
2001-10-25 07:50:21 +02:00
|
|
|
"invalid connection state %c, "
|
|
|
|
|
"probably indicative of memory corruption\n"
|
|
|
|
|
),
|
2001-07-15 15:45:04 +02:00
|
|
|
conn->status);
|
1999-11-30 04:08:19 +01:00
|
|
|
goto error_return;
|
1998-05-07 01:51:16 +02:00
|
|
|
}
|
1998-01-26 02:42:53 +01:00
|
|
|
|
1999-11-30 04:08:19 +01:00
|
|
|
/* Unreachable */
|
|
|
|
|
|
|
|
|
|
error_return:
|
2001-03-22 07:16:21 +01:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* We used to close the socket at this point, but that makes it
|
|
|
|
|
* awkward for those above us if they wish to remove this socket from
|
|
|
|
|
* their own records (an fd_set for example). We'll just have this
|
|
|
|
|
* socket closed when PQfinish is called (which is compulsory even
|
|
|
|
|
* after an error, since the connection structure must be freed).
|
1998-05-07 01:51:16 +02:00
|
|
|
*/
|
2003-06-08 19:43:00 +02:00
|
|
|
conn->status = CONNECTION_BAD;
|
1999-11-30 04:08:19 +01:00
|
|
|
return PGRES_POLLING_FAILED;
|
|
|
|
|
}
|
1998-05-07 01:51:16 +02:00
|
|
|
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* makeEmptyPGconn
|
1998-09-01 06:40:42 +02:00
|
|
|
* - create a PGconn data structure with (as yet) no interesting data
|
1998-05-07 01:51:16 +02:00
|
|
|
*/
|
|
|
|
|
static PGconn *
|
|
|
|
|
makeEmptyPGconn(void)
|
|
|
|
|
{
|
2003-08-01 23:27:27 +02:00
|
|
|
PGconn *conn;
|
1998-09-01 06:40:42 +02:00
|
|
|
|
2003-07-27 05:32:26 +02:00
|
|
|
#ifdef WIN32
|
2003-08-01 23:27:27 +02:00
|
|
|
/* needed to use the static libpq under windows as well */
|
2003-08-04 02:43:34 +02:00
|
|
|
WSADATA wsaData;
|
2003-07-27 05:32:26 +02:00
|
|
|
|
|
|
|
|
if (WSAStartup(MAKEWORD(1, 1), &wsaData))
|
2003-08-04 02:43:34 +02:00
|
|
|
return (PGconn *) NULL;
|
2003-07-27 05:32:26 +02:00
|
|
|
WSASetLastError(0);
|
|
|
|
|
#endif
|
|
|
|
|
|
2003-08-01 23:27:27 +02:00
|
|
|
conn = (PGconn *) malloc(sizeof(PGconn));
|
|
|
|
|
if (conn == NULL)
|
|
|
|
|
return conn;
|
|
|
|
|
|
2000-01-14 06:33:15 +01:00
|
|
|
/* Zero all pointers and booleans */
|
1998-05-07 01:51:16 +02:00
|
|
|
MemSet((char *) conn, 0, sizeof(PGconn));
|
|
|
|
|
|
2003-06-21 23:51:35 +02:00
|
|
|
conn->noticeHooks.noticeRec = defaultNoticeReceiver;
|
|
|
|
|
conn->noticeHooks.noticeProc = defaultNoticeProcessor;
|
1998-05-07 01:51:16 +02:00
|
|
|
conn->status = CONNECTION_BAD;
|
|
|
|
|
conn->asyncStatus = PGASYNC_IDLE;
|
2003-06-21 23:51:35 +02:00
|
|
|
conn->xactStatus = PQTRANS_IDLE;
|
2003-06-08 19:43:00 +02:00
|
|
|
conn->setenv_state = SETENV_STATE_IDLE;
|
|
|
|
|
conn->client_encoding = PG_SQL_ASCII;
|
2003-06-21 23:51:35 +02:00
|
|
|
conn->verbosity = PQERRORS_DEFAULT;
|
1998-05-07 01:51:16 +02:00
|
|
|
conn->notifyList = DLNewList();
|
|
|
|
|
conn->sock = -1;
|
2000-01-14 06:33:15 +01:00
|
|
|
#ifdef USE_SSL
|
2003-08-01 23:27:27 +02:00
|
|
|
conn->allow_ssl_try = true;
|
|
|
|
|
conn->wait_ssl_try = false;
|
2000-01-14 06:33:15 +01:00
|
|
|
#endif
|
|
|
|
|
|
1999-08-31 03:37:37 +02:00
|
|
|
/*
|
2003-08-04 02:43:34 +02:00
|
|
|
* We try to send at least 8K at a time, which is the usual size of
|
|
|
|
|
* pipe buffers on Unix systems. That way, when we are sending a
|
2000-04-12 19:17:23 +02:00
|
|
|
* large amount of data, we avoid incurring extra kernel context swaps
|
2003-04-19 02:02:30 +02:00
|
|
|
* for partial bufferloads. The output buffer is initially made 16K
|
|
|
|
|
* in size, and we try to dump it after accumulating 8K.
|
1999-08-31 03:37:37 +02:00
|
|
|
*
|
|
|
|
|
* With the same goal of minimizing context swaps, the input buffer will
|
2000-04-12 19:17:23 +02:00
|
|
|
* be enlarged anytime it has less than 8K free, so we initially
|
|
|
|
|
* allocate twice that.
|
1999-08-31 03:37:37 +02:00
|
|
|
*/
|
|
|
|
|
conn->inBufSize = 16 * 1024;
|
1998-05-07 01:51:16 +02:00
|
|
|
conn->inBuffer = (char *) malloc(conn->inBufSize);
|
2003-04-19 02:02:30 +02:00
|
|
|
conn->outBufSize = 16 * 1024;
|
1998-05-07 01:51:16 +02:00
|
|
|
conn->outBuffer = (char *) malloc(conn->outBufSize);
|
2000-01-18 07:09:24 +01:00
|
|
|
conn->nonblocking = FALSE;
|
1999-08-31 03:37:37 +02:00
|
|
|
initPQExpBuffer(&conn->errorMessage);
|
|
|
|
|
initPQExpBuffer(&conn->workBuffer);
|
2003-06-08 19:43:00 +02:00
|
|
|
|
1999-08-31 03:37:37 +02:00
|
|
|
if (conn->inBuffer == NULL ||
|
|
|
|
|
conn->outBuffer == NULL ||
|
|
|
|
|
conn->errorMessage.data == NULL ||
|
|
|
|
|
conn->workBuffer.data == NULL)
|
1998-05-07 01:51:16 +02:00
|
|
|
{
|
2000-01-14 06:33:15 +01:00
|
|
|
/* out of memory already :-( */
|
1998-05-07 01:51:16 +02:00
|
|
|
freePGconn(conn);
|
|
|
|
|
conn = NULL;
|
|
|
|
|
}
|
2003-06-08 19:43:00 +02:00
|
|
|
|
1998-05-07 01:51:16 +02:00
|
|
|
return conn;
|
|
|
|
|
}
|
|
|
|
|
|
1996-07-09 08:22:35 +02:00
|
|
|
/*
|
|
|
|
|
* freePGconn
|
1997-09-07 07:04:48 +02:00
|
|
|
* - free the PGconn data structure
|
1996-07-09 08:22:35 +02:00
|
|
|
*/
|
1997-09-07 07:04:48 +02:00
|
|
|
static void
|
1997-09-08 23:56:23 +02:00
|
|
|
freePGconn(PGconn *conn)
|
1996-07-09 08:22:35 +02:00
|
|
|
{
|
1997-09-07 07:04:48 +02:00
|
|
|
if (!conn)
|
|
|
|
|
return;
|
1998-08-17 05:50:43 +02:00
|
|
|
pqClearAsyncResult(conn); /* deallocate result and curTuple */
|
1998-05-07 01:51:16 +02:00
|
|
|
if (conn->sock >= 0)
|
2001-07-31 04:14:49 +02:00
|
|
|
{
|
2002-06-16 00:06:09 +02:00
|
|
|
pqsecure_close(conn);
|
1998-07-03 06:24:16 +02:00
|
|
|
closesocket(conn->sock);
|
2001-07-31 04:14:49 +02:00
|
|
|
}
|
1997-09-07 07:04:48 +02:00
|
|
|
if (conn->pghost)
|
|
|
|
|
free(conn->pghost);
|
1999-11-30 04:08:19 +01:00
|
|
|
if (conn->pghostaddr)
|
|
|
|
|
free(conn->pghostaddr);
|
1998-05-07 01:51:16 +02:00
|
|
|
if (conn->pgport)
|
|
|
|
|
free(conn->pgport);
|
UUNET is looking into offering PostgreSQL as a part of a managed web
hosting product, on both shared and dedicated machines. We currently
offer Oracle and MySQL, and it would be a nice middle-ground.
However, as shipped, PostgreSQL lacks the following features we need
that MySQL has:
1. The ability to listen only on a particular IP address. Each
hosting customer has their own IP address, on which all of their
servers (http, ftp, real media, etc.) run.
2. The ability to place the Unix-domain socket in a mode 700 directory.
This allows us to automatically create an empty database, with an
empty DBA password, for new or upgrading customers without having
to interactively set a DBA password and communicate it to (or from)
the customer. This in turn cuts down our install and upgrade times.
3. The ability to connect to the Unix-domain socket from within a
change-rooted environment. We run CGI programs chrooted to the
user's home directory, which is another reason why we need to be
able to specify where the Unix-domain socket is, instead of /tmp.
4. The ability to, if run as root, open a pid file in /var/run as
root, and then setuid to the desired user. (mysqld -u can almost
do this; I had to patch it, too).
The patch below fixes problem 1-3. I plan to address #4, also, but
haven't done so yet. These diffs are big enough that they should give
the PG development team something to think about in the meantime :-)
Also, I'm about to leave for 2 weeks' vacation, so I thought I'd get
out what I have, which works (for the problems it tackles), now.
With these changes, we can set up and run PostgreSQL with scripts the
same way we can with apache or proftpd or mysql.
In summary, this patch makes the following enhancements:
1. Adds an environment variable PGUNIXSOCKET, analogous to MYSQL_UNIX_PORT,
and command line options -k --unix-socket to the relevant programs.
2. Adds a -h option to postmaster to set the hostname or IP address to
listen on instead of the default INADDR_ANY.
3. Extends some library interfaces to support the above.
4. Fixes a few memory leaks in PQconnectdb().
The default behavior is unchanged from stock 7.0.2; if you don't use
any of these new features, they don't change the operation.
David J. MacKenzie
2000-11-13 16:18:15 +01:00
|
|
|
if (conn->pgunixsocket)
|
|
|
|
|
free(conn->pgunixsocket);
|
1997-09-07 07:04:48 +02:00
|
|
|
if (conn->pgtty)
|
|
|
|
|
free(conn->pgtty);
|
2003-06-08 19:43:00 +02:00
|
|
|
if (conn->connect_timeout)
|
|
|
|
|
free(conn->connect_timeout);
|
1997-09-07 07:04:48 +02:00
|
|
|
if (conn->pgoptions)
|
|
|
|
|
free(conn->pgoptions);
|
|
|
|
|
if (conn->dbName)
|
|
|
|
|
free(conn->dbName);
|
|
|
|
|
if (conn->pguser)
|
|
|
|
|
free(conn->pguser);
|
1998-04-21 06:00:06 +02:00
|
|
|
if (conn->pgpass)
|
|
|
|
|
free(conn->pgpass);
|
2003-08-01 23:27:27 +02:00
|
|
|
if (conn->sslmode)
|
|
|
|
|
free(conn->sslmode);
|
1998-05-07 01:51:16 +02:00
|
|
|
/* Note that conn->Pfdebug is not ours to close or free */
|
1997-09-07 07:04:48 +02:00
|
|
|
if (conn->notifyList)
|
|
|
|
|
DLFreeList(conn->notifyList);
|
2003-07-24 01:30:41 +02:00
|
|
|
freeaddrinfo_all(conn->addrlist_family, conn->addrlist);
|
1998-05-07 01:51:16 +02:00
|
|
|
if (conn->lobjfuncs)
|
|
|
|
|
free(conn->lobjfuncs);
|
|
|
|
|
if (conn->inBuffer)
|
|
|
|
|
free(conn->inBuffer);
|
|
|
|
|
if (conn->outBuffer)
|
|
|
|
|
free(conn->outBuffer);
|
1999-08-31 03:37:37 +02:00
|
|
|
termPQExpBuffer(&conn->errorMessage);
|
|
|
|
|
termPQExpBuffer(&conn->workBuffer);
|
1997-09-07 07:04:48 +02:00
|
|
|
free(conn);
|
1996-07-09 08:22:35 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
2003-06-21 23:51:35 +02:00
|
|
|
* closePGconn
|
|
|
|
|
* - properly close a connection to the backend
|
|
|
|
|
*/
|
1996-07-09 08:22:35 +02:00
|
|
|
static void
|
1997-09-08 23:56:23 +02:00
|
|
|
closePGconn(PGconn *conn)
|
1996-07-09 08:22:35 +02:00
|
|
|
{
|
2001-10-25 07:50:21 +02:00
|
|
|
/*
|
|
|
|
|
* Note that the protocol doesn't allow us to send Terminate messages
|
|
|
|
|
* during the startup phase.
|
|
|
|
|
*/
|
2001-07-06 21:04:23 +02:00
|
|
|
if (conn->sock >= 0 && conn->status == CONNECTION_OK)
|
1998-05-07 01:51:16 +02:00
|
|
|
{
|
|
|
|
|
/*
|
1998-09-01 06:40:42 +02:00
|
|
|
* Try to send "close connection" message to backend. Ignore any
|
2003-04-19 02:02:30 +02:00
|
|
|
* error.
|
1998-05-07 01:51:16 +02:00
|
|
|
*/
|
2003-06-08 19:43:00 +02:00
|
|
|
pqPutMsgStart('X', false, conn);
|
2003-04-19 02:02:30 +02:00
|
|
|
pqPutMsgEnd(conn);
|
2001-07-06 19:58:53 +02:00
|
|
|
pqFlush(conn);
|
1998-05-07 01:51:16 +02:00
|
|
|
}
|
|
|
|
|
|
2000-04-12 19:17:23 +02:00
|
|
|
/*
|
2000-01-24 03:12:58 +01:00
|
|
|
* must reset the blocking status so a possible reconnect will work
|
|
|
|
|
* don't call PQsetnonblocking() because it will fail if it's unable
|
|
|
|
|
* to flush the connection.
|
|
|
|
|
*/
|
|
|
|
|
conn->nonblocking = FALSE;
|
|
|
|
|
|
1998-05-07 01:51:16 +02:00
|
|
|
/*
|
|
|
|
|
* Close the connection, reset all transient state, flush I/O buffers.
|
|
|
|
|
*/
|
|
|
|
|
if (conn->sock >= 0)
|
2001-07-31 04:14:49 +02:00
|
|
|
{
|
2002-06-16 00:06:09 +02:00
|
|
|
pqsecure_close(conn);
|
1998-07-03 06:24:16 +02:00
|
|
|
closesocket(conn->sock);
|
2001-07-31 04:14:49 +02:00
|
|
|
}
|
1998-05-07 01:51:16 +02:00
|
|
|
conn->sock = -1;
|
1997-09-07 07:04:48 +02:00
|
|
|
conn->status = CONNECTION_BAD; /* Well, not really _bad_ - just
|
|
|
|
|
* absent */
|
1998-05-07 01:51:16 +02:00
|
|
|
conn->asyncStatus = PGASYNC_IDLE;
|
1998-08-17 05:50:43 +02:00
|
|
|
pqClearAsyncResult(conn); /* deallocate result and curTuple */
|
1998-05-07 01:51:16 +02:00
|
|
|
if (conn->lobjfuncs)
|
|
|
|
|
free(conn->lobjfuncs);
|
|
|
|
|
conn->lobjfuncs = NULL;
|
|
|
|
|
conn->inStart = conn->inCursor = conn->inEnd = 0;
|
|
|
|
|
conn->outCount = 0;
|
1996-07-09 08:22:35 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
PQfinish:
|
1997-09-07 07:04:48 +02:00
|
|
|
properly close a connection to the backend
|
|
|
|
|
also frees the PGconn data structure so it shouldn't be re-used
|
|
|
|
|
after this
|
1996-07-09 08:22:35 +02:00
|
|
|
*/
|
|
|
|
|
void
|
1997-09-08 23:56:23 +02:00
|
|
|
PQfinish(PGconn *conn)
|
1996-07-09 08:22:35 +02:00
|
|
|
{
|
1998-08-09 04:59:33 +02:00
|
|
|
if (conn)
|
1997-09-07 07:04:48 +02:00
|
|
|
{
|
1998-05-07 01:51:16 +02:00
|
|
|
closePGconn(conn);
|
1997-09-07 07:04:48 +02:00
|
|
|
freePGconn(conn);
|
|
|
|
|
}
|
1996-07-09 08:22:35 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* PQreset :
|
|
|
|
|
resets the connection to the backend
|
1997-09-07 07:04:48 +02:00
|
|
|
closes the existing connection and makes a new one
|
1996-07-09 08:22:35 +02:00
|
|
|
*/
|
|
|
|
|
void
|
1997-09-08 23:56:23 +02:00
|
|
|
PQreset(PGconn *conn)
|
1996-07-09 08:22:35 +02:00
|
|
|
{
|
1998-08-09 04:59:33 +02:00
|
|
|
if (conn)
|
1997-09-07 07:04:48 +02:00
|
|
|
{
|
|
|
|
|
closePGconn(conn);
|
1999-11-30 04:08:19 +01:00
|
|
|
|
2000-01-14 06:33:15 +01:00
|
|
|
if (connectDBStart(conn))
|
|
|
|
|
(void) connectDBComplete(conn);
|
1997-09-07 07:04:48 +02:00
|
|
|
}
|
1999-11-30 04:08:19 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/* PQresetStart :
|
|
|
|
|
resets the connection to the backend
|
|
|
|
|
closes the existing connection and makes a new one
|
|
|
|
|
Returns 1 on success, 0 on failure.
|
|
|
|
|
*/
|
|
|
|
|
int
|
|
|
|
|
PQresetStart(PGconn *conn)
|
|
|
|
|
{
|
|
|
|
|
if (conn)
|
|
|
|
|
{
|
|
|
|
|
closePGconn(conn);
|
|
|
|
|
|
|
|
|
|
return connectDBStart(conn);
|
|
|
|
|
}
|
|
|
|
|
|
2000-01-14 06:33:15 +01:00
|
|
|
return 0;
|
1999-11-30 04:08:19 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/* PQresetPoll :
|
|
|
|
|
resets the connection to the backend
|
|
|
|
|
closes the existing connection and makes a new one
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
PostgresPollingStatusType
|
|
|
|
|
PQresetPoll(PGconn *conn)
|
|
|
|
|
{
|
|
|
|
|
if (conn)
|
|
|
|
|
return PQconnectPoll(conn);
|
|
|
|
|
|
|
|
|
|
return PGRES_POLLING_FAILED;
|
1996-07-09 08:22:35 +02:00
|
|
|
}
|
|
|
|
|
|
1998-07-09 05:29:11 +02:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* PQrequestCancel: attempt to request cancellation of the current operation.
|
|
|
|
|
*
|
|
|
|
|
* The return value is TRUE if the cancel request was successfully
|
1999-08-31 03:37:37 +02:00
|
|
|
* dispatched, FALSE if not (in which case conn->errorMessage is set).
|
1998-07-09 05:29:11 +02:00
|
|
|
* Note: successful dispatch is no guarantee that there will be any effect at
|
|
|
|
|
* the backend. The application must read the operation result as usual.
|
|
|
|
|
*
|
1999-08-31 03:37:37 +02:00
|
|
|
* XXX it was a bad idea to have the error message returned in
|
|
|
|
|
* conn->errorMessage, since it could overwrite a message already there.
|
|
|
|
|
* Would be better to return it in a char array passed by the caller.
|
|
|
|
|
*
|
1998-07-09 05:29:11 +02:00
|
|
|
* CAUTION: we want this routine to be safely callable from a signal handler
|
|
|
|
|
* (for example, an application might want to call it in a SIGINT handler).
|
|
|
|
|
* This means we cannot use any C library routine that might be non-reentrant.
|
|
|
|
|
* malloc/free are often non-reentrant, and anything that might call them is
|
|
|
|
|
* just as dangerous. We avoid sprintf here for that reason. Building up
|
|
|
|
|
* error messages with strcpy/strcat is tedious but should be quite safe.
|
2000-12-18 18:33:42 +01:00
|
|
|
* We also save/restore errno in case the signal handler support doesn't.
|
1999-08-31 03:37:37 +02:00
|
|
|
*
|
|
|
|
|
* NOTE: this routine must not generate any error message longer than
|
|
|
|
|
* INITIAL_EXPBUFFER_SIZE (currently 256), since we dare not try to
|
|
|
|
|
* expand conn->errorMessage!
|
1998-07-09 05:29:11 +02:00
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
int
|
|
|
|
|
PQrequestCancel(PGconn *conn)
|
|
|
|
|
{
|
2001-08-21 22:39:54 +02:00
|
|
|
int save_errno = SOCK_ERRNO;
|
1998-07-09 05:29:11 +02:00
|
|
|
int tmpsock = -1;
|
2003-06-14 19:49:54 +02:00
|
|
|
char sebuf[256];
|
1998-09-01 06:40:42 +02:00
|
|
|
struct
|
|
|
|
|
{
|
|
|
|
|
uint32 packetlen;
|
|
|
|
|
CancelRequestPacket cp;
|
1998-07-09 05:29:11 +02:00
|
|
|
} crp;
|
|
|
|
|
|
|
|
|
|
/* Check we have an open connection */
|
|
|
|
|
if (!conn)
|
|
|
|
|
return FALSE;
|
|
|
|
|
|
|
|
|
|
if (conn->sock < 0)
|
|
|
|
|
{
|
1999-08-31 03:37:37 +02:00
|
|
|
strcpy(conn->errorMessage.data,
|
1998-07-09 05:29:11 +02:00
|
|
|
"PQrequestCancel() -- connection is not open\n");
|
1999-08-31 03:37:37 +02:00
|
|
|
conn->errorMessage.len = strlen(conn->errorMessage.data);
|
2001-07-20 19:45:06 +02:00
|
|
|
#ifdef WIN32
|
|
|
|
|
WSASetLastError(save_errno);
|
|
|
|
|
#else
|
2000-12-18 18:33:42 +01:00
|
|
|
errno = save_errno;
|
2001-07-20 19:45:06 +02:00
|
|
|
#endif
|
1998-07-09 05:29:11 +02:00
|
|
|
return FALSE;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
1998-09-01 06:40:42 +02:00
|
|
|
* We need to open a temporary connection to the postmaster. Use the
|
|
|
|
|
* information saved by connectDB to do this with only kernel calls.
|
1998-07-09 05:29:11 +02:00
|
|
|
*/
|
2003-06-12 09:36:51 +02:00
|
|
|
if ((tmpsock = socket(conn->raddr.addr.ss_family, SOCK_STREAM, 0)) < 0)
|
1998-07-09 05:29:11 +02:00
|
|
|
{
|
1999-08-31 03:37:37 +02:00
|
|
|
strcpy(conn->errorMessage.data,
|
|
|
|
|
"PQrequestCancel() -- socket() failed: ");
|
1998-07-09 05:29:11 +02:00
|
|
|
goto cancel_errReturn;
|
|
|
|
|
}
|
2002-04-16 01:34:17 +02:00
|
|
|
retry3:
|
2003-08-04 02:43:34 +02:00
|
|
|
if (connect(tmpsock, (struct sockaddr *) & conn->raddr.addr,
|
|
|
|
|
conn->raddr.salen) < 0)
|
1998-07-09 05:29:11 +02:00
|
|
|
{
|
2002-04-16 01:34:17 +02:00
|
|
|
if (SOCK_ERRNO == EINTR)
|
|
|
|
|
/* Interrupted system call - we'll just try again */
|
|
|
|
|
goto retry3;
|
1999-08-31 03:37:37 +02:00
|
|
|
strcpy(conn->errorMessage.data,
|
|
|
|
|
"PQrequestCancel() -- connect() failed: ");
|
1998-07-09 05:29:11 +02:00
|
|
|
goto cancel_errReturn;
|
|
|
|
|
}
|
1998-09-01 06:40:42 +02:00
|
|
|
|
1998-07-09 05:29:11 +02:00
|
|
|
/*
|
|
|
|
|
* We needn't set nonblocking I/O or NODELAY options here.
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
/* Create and send the cancel request packet. */
|
|
|
|
|
|
|
|
|
|
crp.packetlen = htonl((uint32) sizeof(crp));
|
|
|
|
|
crp.cp.cancelRequestCode = (MsgType) htonl(CANCEL_REQUEST_CODE);
|
|
|
|
|
crp.cp.backendPID = htonl(conn->be_pid);
|
|
|
|
|
crp.cp.cancelAuthCode = htonl(conn->be_key);
|
|
|
|
|
|
2002-04-16 01:34:17 +02:00
|
|
|
retry4:
|
1998-09-01 06:40:42 +02:00
|
|
|
if (send(tmpsock, (char *) &crp, sizeof(crp), 0) != (int) sizeof(crp))
|
1998-07-09 05:29:11 +02:00
|
|
|
{
|
2002-04-16 01:34:17 +02:00
|
|
|
if (SOCK_ERRNO == EINTR)
|
|
|
|
|
/* Interrupted system call - we'll just try again */
|
|
|
|
|
goto retry4;
|
1999-08-31 03:37:37 +02:00
|
|
|
strcpy(conn->errorMessage.data,
|
|
|
|
|
"PQrequestCancel() -- send() failed: ");
|
1998-07-09 05:29:11 +02:00
|
|
|
goto cancel_errReturn;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Sent it, done */
|
|
|
|
|
closesocket(tmpsock);
|
2003-04-25 03:24:00 +02:00
|
|
|
#ifdef WIN32
|
2001-07-20 19:45:06 +02:00
|
|
|
WSASetLastError(save_errno);
|
1998-07-09 05:29:11 +02:00
|
|
|
#else
|
2001-07-20 19:45:06 +02:00
|
|
|
errno = save_errno;
|
1998-07-09 05:29:11 +02:00
|
|
|
#endif
|
|
|
|
|
|
|
|
|
|
return TRUE;
|
|
|
|
|
|
|
|
|
|
cancel_errReturn:
|
2003-06-14 19:49:54 +02:00
|
|
|
strcat(conn->errorMessage.data, SOCK_STRERROR(SOCK_ERRNO, sebuf, sizeof(sebuf)));
|
1999-08-31 03:37:37 +02:00
|
|
|
strcat(conn->errorMessage.data, "\n");
|
|
|
|
|
conn->errorMessage.len = strlen(conn->errorMessage.data);
|
1998-07-09 05:29:11 +02:00
|
|
|
if (tmpsock >= 0)
|
|
|
|
|
{
|
|
|
|
|
closesocket(tmpsock);
|
2003-04-25 03:24:00 +02:00
|
|
|
#ifdef WIN32
|
2001-07-20 19:45:06 +02:00
|
|
|
WSASetLastError(save_errno);
|
1998-07-09 05:29:11 +02:00
|
|
|
#else
|
2001-07-20 19:45:06 +02:00
|
|
|
errno = save_errno;
|
1998-07-09 05:29:11 +02:00
|
|
|
#endif
|
|
|
|
|
}
|
|
|
|
|
return FALSE;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
1996-07-09 08:22:35 +02:00
|
|
|
/*
|
2003-04-19 02:02:30 +02:00
|
|
|
* pqPacketSend() -- convenience routine to send a message to server.
|
2003-04-18 00:26:02 +02:00
|
|
|
*
|
|
|
|
|
* pack_type: the single-byte message type code. (Pass zero for startup
|
|
|
|
|
* packets, which have no message type code.)
|
|
|
|
|
*
|
|
|
|
|
* buf, buf_len: contents of message. The given length includes only what
|
|
|
|
|
* is in buf; the message type and message length fields are added here.
|
1996-07-09 08:22:35 +02:00
|
|
|
*
|
|
|
|
|
* RETURNS: STATUS_ERROR if the write fails, STATUS_OK otherwise.
|
|
|
|
|
* SIDE_EFFECTS: may block.
|
2003-06-08 19:43:00 +02:00
|
|
|
*
|
|
|
|
|
* Note: all messages sent with this routine have a length word, whether
|
|
|
|
|
* it's protocol 2.0 or 3.0.
|
|
|
|
|
*/
|
1997-03-12 22:23:16 +01:00
|
|
|
int
|
2003-04-18 00:26:02 +02:00
|
|
|
pqPacketSend(PGconn *conn, char pack_type,
|
|
|
|
|
const void *buf, size_t buf_len)
|
1996-07-09 08:22:35 +02:00
|
|
|
{
|
2003-04-19 02:02:30 +02:00
|
|
|
/* Start the message. */
|
2003-06-08 19:43:00 +02:00
|
|
|
if (pqPutMsgStart(pack_type, true, conn))
|
1998-01-26 02:42:53 +01:00
|
|
|
return STATUS_ERROR;
|
1996-07-09 08:22:35 +02:00
|
|
|
|
2003-04-18 00:26:02 +02:00
|
|
|
/* Send the message body. */
|
|
|
|
|
if (pqPutnchar(buf, buf_len, conn))
|
1998-01-26 02:42:53 +01:00
|
|
|
return STATUS_ERROR;
|
1997-12-04 01:28:15 +01:00
|
|
|
|
2003-04-19 02:02:30 +02:00
|
|
|
/* Finish the message. */
|
|
|
|
|
if (pqPutMsgEnd(conn))
|
|
|
|
|
return STATUS_ERROR;
|
|
|
|
|
|
2003-04-18 00:26:02 +02:00
|
|
|
/* Flush to ensure backend gets it. */
|
1998-05-07 01:51:16 +02:00
|
|
|
if (pqFlush(conn))
|
|
|
|
|
return STATUS_ERROR;
|
1997-09-07 07:04:48 +02:00
|
|
|
|
1998-01-26 02:42:53 +01:00
|
|
|
return STATUS_OK;
|
1996-07-09 08:22:35 +02:00
|
|
|
}
|
|
|
|
|
|
2000-10-17 19:43:13 +02:00
|
|
|
|
|
|
|
|
|
|
|
|
|
#ifndef SYSCONFDIR
|
2001-03-22 05:01:46 +01:00
|
|
|
#error "You must compile this file with SYSCONFDIR defined."
|
2000-10-17 19:43:13 +02:00
|
|
|
#endif
|
|
|
|
|
|
2000-10-23 00:15:13 +02:00
|
|
|
#define MAXBUFSIZE 256
|
|
|
|
|
|
2000-12-07 03:04:30 +01:00
|
|
|
static int
|
|
|
|
|
parseServiceInfo(PQconninfoOption *options, PQExpBuffer errorMessage)
|
|
|
|
|
{
|
2001-03-22 05:01:46 +01:00
|
|
|
char *service = conninfo_getval(options, "service");
|
|
|
|
|
char *serviceFile = SYSCONFDIR "/pg_service.conf";
|
|
|
|
|
int group_found = 0;
|
|
|
|
|
int linenr = 0,
|
|
|
|
|
i;
|
|
|
|
|
|
2003-04-28 06:52:13 +02:00
|
|
|
/*
|
|
|
|
|
* We have to special-case the environment variable PGSERVICE here,
|
|
|
|
|
* since this is and should be called before inserting environment
|
|
|
|
|
* defaults for other connection options.
|
|
|
|
|
*/
|
|
|
|
|
if (service == NULL)
|
|
|
|
|
service = getenv("PGSERVICE");
|
|
|
|
|
|
2001-03-22 05:01:46 +01:00
|
|
|
if (service != NULL)
|
|
|
|
|
{
|
|
|
|
|
FILE *f;
|
|
|
|
|
char buf[MAXBUFSIZE],
|
|
|
|
|
*line;
|
|
|
|
|
|
|
|
|
|
f = fopen(serviceFile, "r");
|
|
|
|
|
if (f == NULL)
|
|
|
|
|
{
|
|
|
|
|
printfPQExpBuffer(errorMessage, "ERROR: Service file '%s' not found\n",
|
|
|
|
|
serviceFile);
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
while ((line = fgets(buf, MAXBUFSIZE - 1, f)) != NULL)
|
|
|
|
|
{
|
|
|
|
|
linenr++;
|
|
|
|
|
|
|
|
|
|
if (strlen(line) >= MAXBUFSIZE - 2)
|
|
|
|
|
{
|
|
|
|
|
fclose(f);
|
|
|
|
|
printfPQExpBuffer(errorMessage,
|
|
|
|
|
"ERROR: line %d too long in service file '%s'\n",
|
|
|
|
|
linenr,
|
|
|
|
|
serviceFile);
|
|
|
|
|
return 2;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* ignore EOL at end of line */
|
|
|
|
|
if (strlen(line) && line[strlen(line) - 1] == '\n')
|
|
|
|
|
line[strlen(line) - 1] = 0;
|
|
|
|
|
|
|
|
|
|
/* ignore leading blanks */
|
|
|
|
|
while (*line && isspace((unsigned char) line[0]))
|
|
|
|
|
line++;
|
|
|
|
|
|
|
|
|
|
/* ignore comments and empty lines */
|
|
|
|
|
if (strlen(line) == 0 || line[0] == '#')
|
|
|
|
|
continue;
|
|
|
|
|
|
|
|
|
|
/* Check for right groupname */
|
|
|
|
|
if (line[0] == '[')
|
|
|
|
|
{
|
|
|
|
|
if (group_found)
|
|
|
|
|
{
|
|
|
|
|
/* group info already read */
|
|
|
|
|
fclose(f);
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (strncmp(line + 1, service, strlen(service)) == 0 &&
|
|
|
|
|
line[strlen(service) + 1] == ']')
|
|
|
|
|
group_found = 1;
|
|
|
|
|
else
|
|
|
|
|
group_found = 0;
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
if (group_found)
|
|
|
|
|
{
|
|
|
|
|
/*
|
|
|
|
|
* Finally, we are in the right group and can parse
|
|
|
|
|
* the line
|
|
|
|
|
*/
|
|
|
|
|
char *key,
|
|
|
|
|
*val;
|
|
|
|
|
int found_keyword;
|
2000-10-17 03:00:58 +02:00
|
|
|
|
2003-06-14 19:49:54 +02:00
|
|
|
key = line;
|
|
|
|
|
val = strchr(line, '=');
|
2003-08-04 02:43:34 +02:00
|
|
|
if (val == NULL)
|
2001-03-22 05:01:46 +01:00
|
|
|
{
|
|
|
|
|
printfPQExpBuffer(errorMessage,
|
|
|
|
|
"ERROR: syntax error in service file '%s', line %d\n",
|
|
|
|
|
serviceFile,
|
|
|
|
|
linenr);
|
|
|
|
|
fclose(f);
|
|
|
|
|
return 3;
|
|
|
|
|
}
|
2003-06-14 19:49:54 +02:00
|
|
|
*val++ = '\0';
|
2003-01-08 17:21:53 +01:00
|
|
|
|
|
|
|
|
/*
|
2003-08-04 02:43:34 +02:00
|
|
|
* If not already set, set the database name to the
|
|
|
|
|
* name of the service
|
2003-01-08 17:21:53 +01:00
|
|
|
*/
|
|
|
|
|
for (i = 0; options[i].keyword; i++)
|
2003-04-28 06:52:13 +02:00
|
|
|
{
|
2003-01-08 17:21:53 +01:00
|
|
|
if (strcmp(options[i].keyword, "dbname") == 0)
|
2003-04-28 06:52:13 +02:00
|
|
|
{
|
2003-01-08 17:21:53 +01:00
|
|
|
if (options[i].val == NULL)
|
|
|
|
|
options[i].val = strdup(service);
|
2003-04-28 06:52:13 +02:00
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
2003-01-08 17:21:53 +01:00
|
|
|
|
2003-04-28 06:52:13 +02:00
|
|
|
/*
|
|
|
|
|
* Set the parameter --- but don't override any
|
|
|
|
|
* previous explicit setting.
|
|
|
|
|
*/
|
2001-03-22 05:01:46 +01:00
|
|
|
found_keyword = 0;
|
|
|
|
|
for (i = 0; options[i].keyword; i++)
|
|
|
|
|
{
|
|
|
|
|
if (strcmp(options[i].keyword, key) == 0)
|
|
|
|
|
{
|
2003-04-28 06:52:13 +02:00
|
|
|
if (options[i].val == NULL)
|
|
|
|
|
options[i].val = strdup(val);
|
2001-03-22 05:01:46 +01:00
|
|
|
found_keyword = 1;
|
2003-04-28 06:52:13 +02:00
|
|
|
break;
|
2001-03-22 05:01:46 +01:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (!found_keyword)
|
|
|
|
|
{
|
|
|
|
|
printfPQExpBuffer(errorMessage,
|
|
|
|
|
"ERROR: syntax error in service file '%s', line %d\n",
|
|
|
|
|
serviceFile,
|
|
|
|
|
linenr);
|
|
|
|
|
fclose(f);
|
|
|
|
|
return 3;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
fclose(f);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return 0;
|
2000-10-17 03:00:58 +02:00
|
|
|
}
|
|
|
|
|
|
1998-01-26 02:42:53 +01:00
|
|
|
|
2001-08-17 17:11:15 +02:00
|
|
|
/*
|
1996-11-09 11:39:54 +01:00
|
|
|
* Conninfo parser routine
|
2000-03-11 04:08:37 +01:00
|
|
|
*
|
|
|
|
|
* If successful, a malloc'd PQconninfoOption array is returned.
|
|
|
|
|
* If not successful, NULL is returned and an error message is
|
|
|
|
|
* left in errorMessage.
|
1996-11-09 11:39:54 +01:00
|
|
|
*/
|
2000-03-11 04:08:37 +01:00
|
|
|
static PQconninfoOption *
|
1999-08-31 03:37:37 +02:00
|
|
|
conninfo_parse(const char *conninfo, PQExpBuffer errorMessage)
|
1996-11-09 11:39:54 +01:00
|
|
|
{
|
1997-09-08 04:41:22 +02:00
|
|
|
char *pname;
|
|
|
|
|
char *pval;
|
|
|
|
|
char *buf;
|
1999-02-05 05:25:55 +01:00
|
|
|
char *tmp;
|
1997-09-08 04:41:22 +02:00
|
|
|
char *cp;
|
|
|
|
|
char *cp2;
|
2000-03-11 04:08:37 +01:00
|
|
|
PQconninfoOption *options;
|
1997-09-07 07:04:48 +02:00
|
|
|
PQconninfoOption *option;
|
2003-04-28 06:29:12 +02:00
|
|
|
char errortmp[PQERRORMSG_LENGTH];
|
1997-09-07 07:04:48 +02:00
|
|
|
|
2000-03-11 04:08:37 +01:00
|
|
|
/* Make a working copy of PQconninfoOptions */
|
|
|
|
|
options = malloc(sizeof(PQconninfoOptions));
|
|
|
|
|
if (options == NULL)
|
|
|
|
|
{
|
|
|
|
|
printfPQExpBuffer(errorMessage,
|
2001-07-15 15:45:04 +02:00
|
|
|
libpq_gettext("out of memory\n"));
|
2000-03-11 04:08:37 +01:00
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
memcpy(options, PQconninfoOptions, sizeof(PQconninfoOptions));
|
1997-09-07 07:04:48 +02:00
|
|
|
|
2000-03-11 04:08:37 +01:00
|
|
|
/* Need a modifiable copy of the input string */
|
1997-09-07 07:04:48 +02:00
|
|
|
if ((buf = strdup(conninfo)) == NULL)
|
|
|
|
|
{
|
1999-08-31 03:37:37 +02:00
|
|
|
printfPQExpBuffer(errorMessage,
|
2001-07-15 15:45:04 +02:00
|
|
|
libpq_gettext("out of memory\n"));
|
2000-03-11 04:08:37 +01:00
|
|
|
PQconninfoFree(options);
|
|
|
|
|
return NULL;
|
1996-11-09 11:39:54 +01:00
|
|
|
}
|
1997-09-07 07:04:48 +02:00
|
|
|
cp = buf;
|
1996-11-09 11:39:54 +01:00
|
|
|
|
1997-09-07 07:04:48 +02:00
|
|
|
while (*cp)
|
|
|
|
|
{
|
|
|
|
|
/* Skip blanks before the parameter name */
|
2000-12-03 21:45:40 +01:00
|
|
|
if (isspace((unsigned char) *cp))
|
1997-09-07 07:04:48 +02:00
|
|
|
{
|
|
|
|
|
cp++;
|
|
|
|
|
continue;
|
1996-11-09 11:39:54 +01:00
|
|
|
}
|
|
|
|
|
|
1997-09-07 07:04:48 +02:00
|
|
|
/* Get the parameter name */
|
|
|
|
|
pname = cp;
|
|
|
|
|
while (*cp)
|
|
|
|
|
{
|
|
|
|
|
if (*cp == '=')
|
|
|
|
|
break;
|
2000-12-03 21:45:40 +01:00
|
|
|
if (isspace((unsigned char) *cp))
|
1997-09-07 07:04:48 +02:00
|
|
|
{
|
|
|
|
|
*cp++ = '\0';
|
|
|
|
|
while (*cp)
|
|
|
|
|
{
|
2000-12-03 21:45:40 +01:00
|
|
|
if (!isspace((unsigned char) *cp))
|
1997-09-07 07:04:48 +02:00
|
|
|
break;
|
|
|
|
|
cp++;
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
cp++;
|
|
|
|
|
}
|
1996-11-09 11:39:54 +01:00
|
|
|
|
1997-09-07 07:04:48 +02:00
|
|
|
/* Check that there is a following '=' */
|
|
|
|
|
if (*cp != '=')
|
|
|
|
|
{
|
1999-08-31 03:37:37 +02:00
|
|
|
printfPQExpBuffer(errorMessage,
|
2001-07-15 15:45:04 +02:00
|
|
|
libpq_gettext("missing \"=\" after \"%s\" in connection info string\n"),
|
1999-08-31 03:37:37 +02:00
|
|
|
pname);
|
2000-03-11 04:08:37 +01:00
|
|
|
PQconninfoFree(options);
|
1997-09-07 07:04:48 +02:00
|
|
|
free(buf);
|
2000-03-11 04:08:37 +01:00
|
|
|
return NULL;
|
1997-09-07 07:04:48 +02:00
|
|
|
}
|
|
|
|
|
*cp++ = '\0';
|
1996-11-09 11:39:54 +01:00
|
|
|
|
1997-09-07 07:04:48 +02:00
|
|
|
/* Skip blanks after the '=' */
|
|
|
|
|
while (*cp)
|
|
|
|
|
{
|
2000-12-03 21:45:40 +01:00
|
|
|
if (!isspace((unsigned char) *cp))
|
1997-09-07 07:04:48 +02:00
|
|
|
break;
|
|
|
|
|
cp++;
|
1996-11-09 11:39:54 +01:00
|
|
|
}
|
1997-09-07 07:04:48 +02:00
|
|
|
|
2000-03-11 04:08:37 +01:00
|
|
|
/* Get the parameter value */
|
1997-09-07 07:04:48 +02:00
|
|
|
pval = cp;
|
|
|
|
|
|
|
|
|
|
if (*cp != '\'')
|
|
|
|
|
{
|
|
|
|
|
cp2 = pval;
|
|
|
|
|
while (*cp)
|
|
|
|
|
{
|
2000-12-03 21:45:40 +01:00
|
|
|
if (isspace((unsigned char) *cp))
|
1997-09-07 07:04:48 +02:00
|
|
|
{
|
|
|
|
|
*cp++ = '\0';
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
if (*cp == '\\')
|
|
|
|
|
{
|
|
|
|
|
cp++;
|
|
|
|
|
if (*cp != '\0')
|
|
|
|
|
*cp2++ = *cp++;
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
*cp2++ = *cp++;
|
|
|
|
|
}
|
|
|
|
|
*cp2 = '\0';
|
1996-11-09 11:39:54 +01:00
|
|
|
}
|
1997-09-07 07:04:48 +02:00
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
cp2 = pval;
|
|
|
|
|
cp++;
|
|
|
|
|
for (;;)
|
|
|
|
|
{
|
|
|
|
|
if (*cp == '\0')
|
|
|
|
|
{
|
1999-08-31 03:37:37 +02:00
|
|
|
printfPQExpBuffer(errorMessage,
|
2001-07-15 15:45:04 +02:00
|
|
|
libpq_gettext("unterminated quoted string in connection info string\n"));
|
2000-03-11 04:08:37 +01:00
|
|
|
PQconninfoFree(options);
|
1997-09-07 07:04:48 +02:00
|
|
|
free(buf);
|
2000-03-11 04:08:37 +01:00
|
|
|
return NULL;
|
1997-09-07 07:04:48 +02:00
|
|
|
}
|
|
|
|
|
if (*cp == '\\')
|
|
|
|
|
{
|
|
|
|
|
cp++;
|
|
|
|
|
if (*cp != '\0')
|
|
|
|
|
*cp2++ = *cp++;
|
|
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
if (*cp == '\'')
|
|
|
|
|
{
|
|
|
|
|
*cp2 = '\0';
|
|
|
|
|
cp++;
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
*cp2++ = *cp++;
|
|
|
|
|
}
|
1996-11-09 11:39:54 +01:00
|
|
|
}
|
1997-09-07 07:04:48 +02:00
|
|
|
|
2001-03-22 07:16:21 +01:00
|
|
|
/*
|
|
|
|
|
* Now we have the name and the value. Search for the param
|
|
|
|
|
* record.
|
1997-09-07 07:04:48 +02:00
|
|
|
*/
|
2000-03-11 04:08:37 +01:00
|
|
|
for (option = options; option->keyword != NULL; option++)
|
1997-09-07 07:04:48 +02:00
|
|
|
{
|
2000-03-11 04:08:37 +01:00
|
|
|
if (strcmp(option->keyword, pname) == 0)
|
1997-09-07 07:04:48 +02:00
|
|
|
break;
|
1996-11-09 11:39:54 +01:00
|
|
|
}
|
1997-09-07 07:04:48 +02:00
|
|
|
if (option->keyword == NULL)
|
|
|
|
|
{
|
1999-08-31 03:37:37 +02:00
|
|
|
printfPQExpBuffer(errorMessage,
|
2001-10-25 07:50:21 +02:00
|
|
|
libpq_gettext("invalid connection option \"%s\"\n"),
|
1999-08-31 03:37:37 +02:00
|
|
|
pname);
|
2000-03-11 04:08:37 +01:00
|
|
|
PQconninfoFree(options);
|
1997-09-07 07:04:48 +02:00
|
|
|
free(buf);
|
2000-03-11 04:08:37 +01:00
|
|
|
return NULL;
|
1996-11-09 11:39:54 +01:00
|
|
|
}
|
|
|
|
|
|
2001-03-22 07:16:21 +01:00
|
|
|
/*
|
1997-09-07 07:04:48 +02:00
|
|
|
* Store the value
|
|
|
|
|
*/
|
2000-03-11 04:08:37 +01:00
|
|
|
if (option->val)
|
|
|
|
|
free(option->val);
|
1997-09-07 07:04:48 +02:00
|
|
|
option->val = strdup(pval);
|
2000-10-17 03:00:58 +02:00
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
2003-04-28 06:29:12 +02:00
|
|
|
/* Done with the modifiable input string */
|
|
|
|
|
free(buf);
|
|
|
|
|
|
2003-04-28 06:52:13 +02:00
|
|
|
/*
|
2003-08-04 02:43:34 +02:00
|
|
|
* If there's a service spec, use it to obtain any
|
|
|
|
|
* not-explicitly-given parameters.
|
2003-04-28 06:52:13 +02:00
|
|
|
*/
|
2001-03-22 05:01:46 +01:00
|
|
|
if (parseServiceInfo(options, errorMessage))
|
|
|
|
|
{
|
|
|
|
|
PQconninfoFree(options);
|
|
|
|
|
return NULL;
|
1996-11-09 11:39:54 +01:00
|
|
|
}
|
|
|
|
|
|
2001-03-22 07:16:21 +01:00
|
|
|
/*
|
|
|
|
|
* Get the fallback resources for parameters not specified in the
|
2003-04-28 06:52:13 +02:00
|
|
|
* conninfo string nor the service.
|
1996-11-09 11:39:54 +01:00
|
|
|
*/
|
2000-03-11 04:08:37 +01:00
|
|
|
for (option = options; option->keyword != NULL; option++)
|
1997-09-07 07:04:48 +02:00
|
|
|
{
|
|
|
|
|
if (option->val != NULL)
|
2003-04-28 06:52:13 +02:00
|
|
|
continue; /* Value was in conninfo or service */
|
1997-09-07 07:04:48 +02:00
|
|
|
|
2001-03-22 07:16:21 +01:00
|
|
|
/*
|
1997-09-07 07:04:48 +02:00
|
|
|
* Try to get the environment variable fallback
|
|
|
|
|
*/
|
1998-09-18 18:46:07 +02:00
|
|
|
if (option->envvar != NULL)
|
1997-09-07 07:04:48 +02:00
|
|
|
{
|
1998-09-18 18:46:07 +02:00
|
|
|
if ((tmp = getenv(option->envvar)) != NULL)
|
1997-09-07 07:04:48 +02:00
|
|
|
{
|
|
|
|
|
option->val = strdup(tmp);
|
|
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
}
|
1996-11-09 11:39:54 +01:00
|
|
|
|
2001-03-22 07:16:21 +01:00
|
|
|
/*
|
|
|
|
|
* No environment variable specified or this one isn't set - try
|
|
|
|
|
* compiled in
|
1997-09-07 07:04:48 +02:00
|
|
|
*/
|
|
|
|
|
if (option->compiled != NULL)
|
|
|
|
|
{
|
|
|
|
|
option->val = strdup(option->compiled);
|
|
|
|
|
continue;
|
|
|
|
|
}
|
1996-11-09 11:39:54 +01:00
|
|
|
|
2001-03-22 07:16:21 +01:00
|
|
|
/*
|
1997-09-07 07:04:48 +02:00
|
|
|
* Special handling for user
|
|
|
|
|
*/
|
2000-03-11 04:08:37 +01:00
|
|
|
if (strcmp(option->keyword, "user") == 0)
|
1997-09-07 07:04:48 +02:00
|
|
|
{
|
1998-09-20 06:51:12 +02:00
|
|
|
option->val = fe_getauthname(errortmp);
|
1999-08-31 03:37:37 +02:00
|
|
|
/* note any error message is thrown away */
|
1998-09-20 06:51:12 +02:00
|
|
|
continue;
|
1997-09-07 07:04:48 +02:00
|
|
|
}
|
1996-11-09 11:39:54 +01:00
|
|
|
}
|
|
|
|
|
|
2000-03-11 04:08:37 +01:00
|
|
|
return options;
|
1996-11-09 11:39:54 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
1999-02-05 05:25:55 +01:00
|
|
|
static char *
|
2000-03-11 04:08:37 +01:00
|
|
|
conninfo_getval(PQconninfoOption *connOptions,
|
|
|
|
|
const char *keyword)
|
1996-11-09 11:39:54 +01:00
|
|
|
{
|
1997-09-07 07:04:48 +02:00
|
|
|
PQconninfoOption *option;
|
1996-11-09 11:39:54 +01:00
|
|
|
|
2000-03-11 04:08:37 +01:00
|
|
|
for (option = connOptions; option->keyword != NULL; option++)
|
1997-09-07 07:04:48 +02:00
|
|
|
{
|
2000-03-11 04:08:37 +01:00
|
|
|
if (strcmp(option->keyword, keyword) == 0)
|
1997-09-07 07:04:48 +02:00
|
|
|
return option->val;
|
1996-11-09 11:39:54 +01:00
|
|
|
}
|
|
|
|
|
|
1997-09-07 07:04:48 +02:00
|
|
|
return NULL;
|
1996-11-09 11:39:54 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2000-03-11 04:08:37 +01:00
|
|
|
void
|
|
|
|
|
PQconninfoFree(PQconninfoOption *connOptions)
|
1996-11-09 11:39:54 +01:00
|
|
|
{
|
1997-09-07 07:04:48 +02:00
|
|
|
PQconninfoOption *option;
|
1996-11-09 11:39:54 +01:00
|
|
|
|
2000-03-11 04:08:37 +01:00
|
|
|
if (connOptions == NULL)
|
|
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
for (option = connOptions; option->keyword != NULL; option++)
|
1997-09-07 07:04:48 +02:00
|
|
|
{
|
|
|
|
|
if (option->val != NULL)
|
|
|
|
|
free(option->val);
|
1996-11-09 11:39:54 +01:00
|
|
|
}
|
2000-03-11 04:08:37 +01:00
|
|
|
free(connOptions);
|
1996-11-09 11:39:54 +01:00
|
|
|
}
|
|
|
|
|
|
2001-11-11 03:09:05 +01:00
|
|
|
|
1996-07-09 08:22:35 +02:00
|
|
|
/* =========== accessor functions for PGconn ========= */
|
2000-02-08 00:10:11 +01:00
|
|
|
char *
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
PQdb(const PGconn *conn)
|
1996-07-09 08:22:35 +02:00
|
|
|
{
|
1997-09-07 07:04:48 +02:00
|
|
|
if (!conn)
|
|
|
|
|
return (char *) NULL;
|
|
|
|
|
return conn->dbName;
|
1996-07-09 08:22:35 +02:00
|
|
|
}
|
|
|
|
|
|
2000-02-08 00:10:11 +01:00
|
|
|
char *
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
PQuser(const PGconn *conn)
|
1996-11-09 11:39:54 +01:00
|
|
|
{
|
1997-09-07 07:04:48 +02:00
|
|
|
if (!conn)
|
|
|
|
|
return (char *) NULL;
|
|
|
|
|
return conn->pguser;
|
1996-11-09 11:39:54 +01:00
|
|
|
}
|
|
|
|
|
|
2000-02-08 00:10:11 +01:00
|
|
|
char *
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
PQpass(const PGconn *conn)
|
1998-09-03 04:10:56 +02:00
|
|
|
{
|
|
|
|
|
if (!conn)
|
|
|
|
|
return (char *) NULL;
|
|
|
|
|
return conn->pgpass;
|
|
|
|
|
}
|
|
|
|
|
|
2000-02-08 00:10:11 +01:00
|
|
|
char *
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
PQhost(const PGconn *conn)
|
1996-07-09 08:22:35 +02:00
|
|
|
{
|
1997-09-07 07:04:48 +02:00
|
|
|
if (!conn)
|
|
|
|
|
return (char *) NULL;
|
2000-11-27 22:12:25 +01:00
|
|
|
return conn->pghost ? conn->pghost : conn->pgunixsocket;
|
1996-07-09 08:22:35 +02:00
|
|
|
}
|
|
|
|
|
|
2000-02-08 00:10:11 +01:00
|
|
|
char *
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
PQport(const PGconn *conn)
|
1996-07-09 08:22:35 +02:00
|
|
|
{
|
1997-09-07 07:04:48 +02:00
|
|
|
if (!conn)
|
|
|
|
|
return (char *) NULL;
|
1998-09-03 04:10:56 +02:00
|
|
|
return conn->pgport;
|
1996-07-09 08:22:35 +02:00
|
|
|
}
|
|
|
|
|
|
2000-02-08 00:10:11 +01:00
|
|
|
char *
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
PQtty(const PGconn *conn)
|
1996-07-09 08:22:35 +02:00
|
|
|
{
|
1997-09-07 07:04:48 +02:00
|
|
|
if (!conn)
|
|
|
|
|
return (char *) NULL;
|
|
|
|
|
return conn->pgtty;
|
1996-07-09 08:22:35 +02:00
|
|
|
}
|
|
|
|
|
|
2000-02-08 00:10:11 +01:00
|
|
|
char *
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
PQoptions(const PGconn *conn)
|
1996-07-09 08:22:35 +02:00
|
|
|
{
|
1997-09-07 07:04:48 +02:00
|
|
|
if (!conn)
|
|
|
|
|
return (char *) NULL;
|
1998-09-03 04:10:56 +02:00
|
|
|
return conn->pgoptions;
|
1996-07-09 08:22:35 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
ConnStatusType
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
PQstatus(const PGconn *conn)
|
1996-07-09 08:22:35 +02:00
|
|
|
{
|
1997-09-07 07:04:48 +02:00
|
|
|
if (!conn)
|
|
|
|
|
return CONNECTION_BAD;
|
|
|
|
|
return conn->status;
|
1996-07-09 08:22:35 +02:00
|
|
|
}
|
|
|
|
|
|
2003-06-21 23:51:35 +02:00
|
|
|
PGTransactionStatusType
|
|
|
|
|
PQtransactionStatus(const PGconn *conn)
|
|
|
|
|
{
|
|
|
|
|
if (!conn || conn->status != CONNECTION_OK)
|
|
|
|
|
return PQTRANS_UNKNOWN;
|
|
|
|
|
if (conn->asyncStatus != PGASYNC_IDLE)
|
|
|
|
|
return PQTRANS_ACTIVE;
|
|
|
|
|
return conn->xactStatus;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
const char *
|
|
|
|
|
PQparameterStatus(const PGconn *conn, const char *paramName)
|
|
|
|
|
{
|
|
|
|
|
const pgParameterStatus *pstatus;
|
|
|
|
|
|
|
|
|
|
if (!conn || !paramName)
|
|
|
|
|
return NULL;
|
|
|
|
|
for (pstatus = conn->pstatus; pstatus != NULL; pstatus = pstatus->next)
|
|
|
|
|
{
|
|
|
|
|
if (strcmp(pstatus->name, paramName) == 0)
|
|
|
|
|
return pstatus->value;
|
|
|
|
|
}
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
int
|
|
|
|
|
PQprotocolVersion(const PGconn *conn)
|
|
|
|
|
{
|
|
|
|
|
if (!conn)
|
|
|
|
|
return 0;
|
|
|
|
|
if (conn->status == CONNECTION_BAD)
|
|
|
|
|
return 0;
|
|
|
|
|
return PG_PROTOCOL_MAJOR(conn->pversion);
|
|
|
|
|
}
|
|
|
|
|
|
2000-02-08 00:10:11 +01:00
|
|
|
char *
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
PQerrorMessage(const PGconn *conn)
|
1996-07-09 08:22:35 +02:00
|
|
|
{
|
1997-09-07 07:04:48 +02:00
|
|
|
if (!conn)
|
2001-07-15 15:45:04 +02:00
|
|
|
return libpq_gettext("connection pointer is NULL\n");
|
2000-03-11 04:08:37 +01:00
|
|
|
|
1999-08-31 03:37:37 +02:00
|
|
|
return conn->errorMessage.data;
|
1996-07-09 08:22:35 +02:00
|
|
|
}
|
|
|
|
|
|
1998-05-07 01:51:16 +02:00
|
|
|
int
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
PQsocket(const PGconn *conn)
|
1998-05-07 01:51:16 +02:00
|
|
|
{
|
|
|
|
|
if (!conn)
|
|
|
|
|
return -1;
|
|
|
|
|
return conn->sock;
|
|
|
|
|
}
|
|
|
|
|
|
1998-09-03 04:10:56 +02:00
|
|
|
int
|
In the spirit of TODO item
* Add use of 'const' for varibles in source tree
(which is misspelled, btw.)
I went through the front-end libpq code and did so. This affects in
particular the various accessor functions (such as PQdb() and
PQgetvalue()) as well as, by necessity, the internal helpers they use.
I have been really thorough in that regard, perhaps some people will find
it annoying that things like
char * foo = PQgetvalue(res, 0, 0)
will generate a warning. On the other hand it _should_ generate one. This
is no real compatibility break, although a few clients will have to be
fixed to suppress warnings. (Which again would be in the spirit of the
above TODO.)
In addition I replaced some int's by size_t's and removed some warnings
(and generated some new ones -- grmpf!). Also I rewrote PQoidStatus (so it
actually honors the const!) and supplied a new function PQoidValue that
returns a proper Oid type. This is only front-end stuff, none of the
communicaton stuff was touched.
The psql patch also adds some new consts to honor the new libpq situation,
as well as fixes a fatal condition that resulted when using the -V
(--version) option and there is no database listening.
So, to summarize, the psql you should definitely put in (with or without
the libpq). If you think I went too far with the const-mania in libpq, let
me know and I'll make adjustments. If you approve it, I will also update
the docs.
-Peter
--
Peter Eisentraut Sernanders vaeg 10:115
1999-11-11 01:10:14 +01:00
|
|
|
PQbackendPID(const PGconn *conn)
|
1998-09-03 04:10:56 +02:00
|
|
|
{
|
|
|
|
|
if (!conn || conn->status != CONNECTION_OK)
|
|
|
|
|
return 0;
|
|
|
|
|
return conn->be_pid;
|
|
|
|
|
}
|
|
|
|
|
|
2000-01-15 06:37:21 +01:00
|
|
|
int
|
2000-02-05 13:33:22 +01:00
|
|
|
PQclientEncoding(const PGconn *conn)
|
2000-01-15 06:37:21 +01:00
|
|
|
{
|
|
|
|
|
if (!conn || conn->status != CONNECTION_OK)
|
|
|
|
|
return -1;
|
|
|
|
|
return conn->client_encoding;
|
|
|
|
|
}
|
|
|
|
|
|
2000-02-05 13:33:22 +01:00
|
|
|
int
|
|
|
|
|
PQsetClientEncoding(PGconn *conn, const char *encoding)
|
|
|
|
|
{
|
2000-04-12 19:17:23 +02:00
|
|
|
char qbuf[128];
|
2000-02-05 13:33:22 +01:00
|
|
|
static char query[] = "set client_encoding to '%s'";
|
2000-04-12 19:17:23 +02:00
|
|
|
PGresult *res;
|
|
|
|
|
int status;
|
2000-02-05 13:33:22 +01:00
|
|
|
|
|
|
|
|
if (!conn || conn->status != CONNECTION_OK)
|
|
|
|
|
return -1;
|
|
|
|
|
|
2000-02-19 06:04:54 +01:00
|
|
|
if (!encoding)
|
|
|
|
|
return -1;
|
|
|
|
|
|
2000-02-05 13:33:22 +01:00
|
|
|
/* check query buffer overflow */
|
|
|
|
|
if (sizeof(qbuf) < (sizeof(query) + strlen(encoding)))
|
|
|
|
|
return -1;
|
|
|
|
|
|
|
|
|
|
/* ok, now send a query */
|
|
|
|
|
sprintf(qbuf, query, encoding);
|
|
|
|
|
res = PQexec(conn, qbuf);
|
|
|
|
|
|
2000-04-12 19:17:23 +02:00
|
|
|
if (res == (PGresult *) NULL)
|
2000-02-05 13:33:22 +01:00
|
|
|
return -1;
|
|
|
|
|
if (res->resultStatus != PGRES_COMMAND_OK)
|
|
|
|
|
status = -1;
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
/* change libpq internal encoding */
|
|
|
|
|
conn->client_encoding = pg_char_to_encoding(encoding);
|
2000-04-12 19:17:23 +02:00
|
|
|
status = 0; /* everything is ok */
|
2000-02-05 13:33:22 +01:00
|
|
|
}
|
|
|
|
|
PQclear(res);
|
2000-04-12 19:17:23 +02:00
|
|
|
return (status);
|
2000-02-05 13:33:22 +01:00
|
|
|
}
|
2000-04-12 19:17:23 +02:00
|
|
|
|
2003-06-21 23:51:35 +02:00
|
|
|
PGVerbosity
|
|
|
|
|
PQsetErrorVerbosity(PGconn *conn, PGVerbosity verbosity)
|
|
|
|
|
{
|
2003-08-04 02:43:34 +02:00
|
|
|
PGVerbosity old;
|
2003-06-21 23:51:35 +02:00
|
|
|
|
|
|
|
|
if (!conn)
|
|
|
|
|
return PQERRORS_DEFAULT;
|
|
|
|
|
old = conn->verbosity;
|
|
|
|
|
conn->verbosity = verbosity;
|
|
|
|
|
return old;
|
|
|
|
|
}
|
|
|
|
|
|
1996-07-09 08:22:35 +02:00
|
|
|
void
|
1997-09-08 23:56:23 +02:00
|
|
|
PQtrace(PGconn *conn, FILE *debug_port)
|
1996-07-09 08:22:35 +02:00
|
|
|
{
|
2003-06-21 23:51:35 +02:00
|
|
|
if (conn == NULL)
|
1997-09-07 07:04:48 +02:00
|
|
|
return;
|
|
|
|
|
PQuntrace(conn);
|
|
|
|
|
conn->Pfdebug = debug_port;
|
1996-07-09 08:22:35 +02:00
|
|
|
}
|
|
|
|
|
|
1997-09-07 07:04:48 +02:00
|
|
|
void
|
1997-09-08 23:56:23 +02:00
|
|
|
PQuntrace(PGconn *conn)
|
1996-07-09 08:22:35 +02:00
|
|
|
{
|
1998-05-07 01:51:16 +02:00
|
|
|
if (conn == NULL)
|
1997-09-07 07:04:48 +02:00
|
|
|
return;
|
|
|
|
|
if (conn->Pfdebug)
|
|
|
|
|
{
|
|
|
|
|
fflush(conn->Pfdebug);
|
|
|
|
|
conn->Pfdebug = NULL;
|
|
|
|
|
}
|
1996-07-09 08:22:35 +02:00
|
|
|
}
|
1998-08-09 04:59:33 +02:00
|
|
|
|
2003-06-21 23:51:35 +02:00
|
|
|
PQnoticeReceiver
|
|
|
|
|
PQsetNoticeReceiver(PGconn *conn, PQnoticeReceiver proc, void *arg)
|
|
|
|
|
{
|
|
|
|
|
PQnoticeReceiver old;
|
|
|
|
|
|
|
|
|
|
if (conn == NULL)
|
|
|
|
|
return NULL;
|
|
|
|
|
|
|
|
|
|
old = conn->noticeHooks.noticeRec;
|
|
|
|
|
if (proc)
|
|
|
|
|
{
|
|
|
|
|
conn->noticeHooks.noticeRec = proc;
|
|
|
|
|
conn->noticeHooks.noticeRecArg = arg;
|
|
|
|
|
}
|
|
|
|
|
return old;
|
|
|
|
|
}
|
|
|
|
|
|
1999-10-26 06:49:00 +02:00
|
|
|
PQnoticeProcessor
|
1998-09-01 06:40:42 +02:00
|
|
|
PQsetNoticeProcessor(PGconn *conn, PQnoticeProcessor proc, void *arg)
|
1998-08-09 04:59:33 +02:00
|
|
|
{
|
1999-10-26 06:49:00 +02:00
|
|
|
PQnoticeProcessor old;
|
2000-03-11 04:08:37 +01:00
|
|
|
|
1998-08-09 04:59:33 +02:00
|
|
|
if (conn == NULL)
|
1999-10-26 06:49:00 +02:00
|
|
|
return NULL;
|
|
|
|
|
|
2003-06-21 23:51:35 +02:00
|
|
|
old = conn->noticeHooks.noticeProc;
|
2000-03-11 04:08:37 +01:00
|
|
|
if (proc)
|
|
|
|
|
{
|
2003-06-21 23:51:35 +02:00
|
|
|
conn->noticeHooks.noticeProc = proc;
|
|
|
|
|
conn->noticeHooks.noticeProcArg = arg;
|
1999-10-26 06:49:00 +02:00
|
|
|
}
|
|
|
|
|
return old;
|
1998-08-09 04:59:33 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
2003-06-21 23:51:35 +02:00
|
|
|
* The default notice message receiver just gets the standard notice text
|
|
|
|
|
* and sends it to the notice processor. This two-level setup exists
|
|
|
|
|
* mostly for backwards compatibility; perhaps we should deprecate use of
|
|
|
|
|
* PQsetNoticeProcessor?
|
|
|
|
|
*/
|
|
|
|
|
static void
|
|
|
|
|
defaultNoticeReceiver(void *arg, const PGresult *res)
|
|
|
|
|
{
|
|
|
|
|
(void) arg; /* not used */
|
2003-06-23 21:20:25 +02:00
|
|
|
if (res->noticeHooks.noticeProc != NULL)
|
|
|
|
|
(*res->noticeHooks.noticeProc) (res->noticeHooks.noticeProcArg,
|
|
|
|
|
PQresultErrorMessage(res));
|
2003-06-21 23:51:35 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* The default notice message processor just prints the
|
1998-08-09 04:59:33 +02:00
|
|
|
* message on stderr. Applications can override this if they
|
|
|
|
|
* want the messages to go elsewhere (a window, for example).
|
|
|
|
|
* Note that simply discarding notices is probably a bad idea.
|
|
|
|
|
*/
|
|
|
|
|
static void
|
1998-09-01 06:40:42 +02:00
|
|
|
defaultNoticeProcessor(void *arg, const char *message)
|
1998-08-09 04:59:33 +02:00
|
|
|
{
|
2000-04-12 19:17:23 +02:00
|
|
|
(void) arg; /* not used */
|
1998-08-09 04:59:33 +02:00
|
|
|
/* Note: we expect the supplied string to end with a newline already. */
|
|
|
|
|
fprintf(stderr, "%s", message);
|
|
|
|
|
}
|
2002-08-15 04:56:19 +02:00
|
|
|
|
2003-04-18 00:26:02 +02:00
|
|
|
/*
|
|
|
|
|
* returns a pointer to the next token or NULL if the current
|
|
|
|
|
* token doesn't match
|
|
|
|
|
*/
|
|
|
|
|
static char *
|
2002-08-15 04:56:19 +02:00
|
|
|
pwdfMatchesString(char *buf, char *token)
|
|
|
|
|
{
|
2002-09-04 22:31:48 +02:00
|
|
|
char *tbuf,
|
|
|
|
|
*ttok;
|
|
|
|
|
bool bslash = false;
|
|
|
|
|
|
2002-08-15 04:56:19 +02:00
|
|
|
if (buf == NULL || token == NULL)
|
|
|
|
|
return NULL;
|
|
|
|
|
tbuf = buf;
|
|
|
|
|
ttok = token;
|
|
|
|
|
if (*tbuf == '*')
|
|
|
|
|
return tbuf + 2;
|
|
|
|
|
while (*tbuf != 0)
|
|
|
|
|
{
|
|
|
|
|
if (*tbuf == '\\' && !bslash)
|
|
|
|
|
{
|
|
|
|
|
tbuf++;
|
|
|
|
|
bslash = true;
|
|
|
|
|
}
|
|
|
|
|
if (*tbuf == ':' && *ttok == 0 && !bslash)
|
2002-09-04 22:31:48 +02:00
|
|
|
return tbuf + 1;
|
2002-08-15 04:56:19 +02:00
|
|
|
bslash = false;
|
|
|
|
|
if (*ttok == 0)
|
|
|
|
|
return NULL;
|
|
|
|
|
if (*tbuf == *ttok)
|
|
|
|
|
{
|
|
|
|
|
tbuf++;
|
|
|
|
|
ttok++;
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
2003-01-30 20:49:54 +01:00
|
|
|
/* Get a password from the password file. Return value is malloc'd. */
|
2003-04-18 00:26:02 +02:00
|
|
|
static char *
|
2002-09-06 00:05:50 +02:00
|
|
|
PasswordFromFile(char *hostname, char *port, char *dbname, char *username)
|
2002-08-15 04:56:19 +02:00
|
|
|
{
|
2002-09-04 22:31:48 +02:00
|
|
|
FILE *fp;
|
2002-09-06 00:05:50 +02:00
|
|
|
char *pgpassfile;
|
|
|
|
|
char *home;
|
|
|
|
|
struct stat stat_buf;
|
2002-09-04 22:31:48 +02:00
|
|
|
|
2002-08-15 04:56:19 +02:00
|
|
|
#define LINELEN NAMEDATALEN*5
|
2002-09-04 22:31:48 +02:00
|
|
|
char buf[LINELEN];
|
2002-08-15 04:56:19 +02:00
|
|
|
|
2002-09-06 00:05:50 +02:00
|
|
|
if (dbname == NULL || strlen(dbname) == 0)
|
2002-08-15 04:56:19 +02:00
|
|
|
return NULL;
|
|
|
|
|
|
2002-09-06 00:05:50 +02:00
|
|
|
if (username == NULL || strlen(username) == 0)
|
2002-08-15 04:56:19 +02:00
|
|
|
return NULL;
|
|
|
|
|
|
|
|
|
|
if (hostname == NULL)
|
|
|
|
|
hostname = DefaultHost;
|
|
|
|
|
|
|
|
|
|
if (port == NULL)
|
|
|
|
|
port = DEF_PGPORT_STR;
|
|
|
|
|
|
2002-09-06 00:05:50 +02:00
|
|
|
/* Look for it in the home dir */
|
|
|
|
|
home = getenv("HOME");
|
2003-01-30 20:49:54 +01:00
|
|
|
if (!home)
|
|
|
|
|
return NULL;
|
|
|
|
|
|
|
|
|
|
pgpassfile = malloc(strlen(home) + 1 + strlen(PGPASSFILE) + 1);
|
|
|
|
|
if (!pgpassfile)
|
2002-09-06 00:05:50 +02:00
|
|
|
{
|
2003-01-30 20:49:54 +01:00
|
|
|
fprintf(stderr, libpq_gettext("out of memory\n"));
|
2002-09-06 00:05:50 +02:00
|
|
|
return NULL;
|
2003-01-30 20:49:54 +01:00
|
|
|
}
|
2002-09-06 00:05:50 +02:00
|
|
|
|
2002-09-06 04:33:47 +02:00
|
|
|
sprintf(pgpassfile, "%s/%s", home, PGPASSFILE);
|
2002-09-06 00:05:50 +02:00
|
|
|
|
2002-08-30 01:06:32 +02:00
|
|
|
/* If password file cannot be opened, ignore it. */
|
2002-09-06 00:05:50 +02:00
|
|
|
if (stat(pgpassfile, &stat_buf) == -1)
|
|
|
|
|
{
|
|
|
|
|
free(pgpassfile);
|
2002-08-30 01:06:32 +02:00
|
|
|
return NULL;
|
2002-09-06 00:05:50 +02:00
|
|
|
}
|
2002-08-30 01:06:32 +02:00
|
|
|
|
2002-10-03 19:09:42 +02:00
|
|
|
#ifndef WIN32
|
2002-08-30 01:06:32 +02:00
|
|
|
/* If password file is insecure, alert the user and ignore it. */
|
|
|
|
|
if (stat_buf.st_mode & (S_IRWXG | S_IRWXO))
|
|
|
|
|
{
|
|
|
|
|
fprintf(stderr,
|
2002-09-22 22:57:21 +02:00
|
|
|
libpq_gettext("WARNING: Password file %s has world or group read access; permission should be u=rw (0600)\n"),
|
2002-09-06 00:05:50 +02:00
|
|
|
pgpassfile);
|
|
|
|
|
free(pgpassfile);
|
2002-08-30 01:06:32 +02:00
|
|
|
return NULL;
|
|
|
|
|
}
|
2002-10-03 19:09:42 +02:00
|
|
|
#endif
|
2002-08-30 01:06:32 +02:00
|
|
|
|
2002-09-06 00:05:50 +02:00
|
|
|
fp = fopen(pgpassfile, "r");
|
|
|
|
|
free(pgpassfile);
|
2002-08-15 04:56:19 +02:00
|
|
|
if (fp == NULL)
|
|
|
|
|
return NULL;
|
|
|
|
|
|
2002-09-04 22:31:48 +02:00
|
|
|
while (!feof(fp))
|
|
|
|
|
{
|
|
|
|
|
char *t = buf,
|
|
|
|
|
*ret;
|
2003-01-30 20:49:54 +01:00
|
|
|
int len;
|
2002-09-04 22:31:48 +02:00
|
|
|
|
2002-08-15 04:56:19 +02:00
|
|
|
fgets(buf, LINELEN - 1, fp);
|
2003-01-30 20:49:54 +01:00
|
|
|
|
|
|
|
|
len = strlen(buf);
|
|
|
|
|
if (len == 0)
|
2002-08-15 04:56:19 +02:00
|
|
|
continue;
|
|
|
|
|
|
2003-01-30 20:49:54 +01:00
|
|
|
/* Remove trailing newline */
|
|
|
|
|
if (buf[len - 1] == '\n')
|
|
|
|
|
buf[len - 1] = 0;
|
|
|
|
|
|
2002-08-15 04:56:19 +02:00
|
|
|
if ((t = pwdfMatchesString(t, hostname)) == NULL ||
|
2002-09-04 22:31:48 +02:00
|
|
|
(t = pwdfMatchesString(t, port)) == NULL ||
|
|
|
|
|
(t = pwdfMatchesString(t, dbname)) == NULL ||
|
|
|
|
|
(t = pwdfMatchesString(t, username)) == NULL)
|
2002-08-15 04:56:19 +02:00
|
|
|
continue;
|
2002-08-30 07:28:50 +02:00
|
|
|
ret = strdup(t);
|
2002-08-15 04:56:19 +02:00
|
|
|
fclose(fp);
|
|
|
|
|
return ret;
|
|
|
|
|
}
|
2002-09-06 00:05:50 +02:00
|
|
|
|
2002-08-15 04:56:19 +02:00
|
|
|
fclose(fp);
|
|
|
|
|
return NULL;
|
|
|
|
|
|
|
|
|
|
#undef LINELEN
|
|
|
|
|
}
|
