NotificationsYou must be signed in to change notification settings
Fork6
Star31

Commitfdac8cf

committed

Check to ensure the number of primary key fields supplied does not

exceed the total number of non-dropped source table fields fordblink_build_sql_*(). Addresses bug report from Rushabh Lathia.Backpatch all the way to the 7.3 branch.

1 parent73a835e commitfdac8cfCopy full SHA for fdac8cf

File tree

3 files changed

+72

-1

lines changed

contrib/dblink
- dblink.c
- expected
  - dblink.out
- sql
  - dblink.sql

3 files changed

+72

-1

lines changed

`‎contrib/dblink/dblink.c`

Lines changed: 57 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -8,7 +8,7 @@`
`8`	`8`	`* Darko Prenosil <Darko.Prenosil@finteh.hr>`
`9`	`9`	`* Shridhar Daithankar <shridhar_daithankar@persistent.co.in>`
`10`	`10`	`*`
`11`		`- * $PostgreSQL: pgsql/contrib/dblink/dblink.c,v 1.87 2010/01/24 22:19:38 joe Exp $`
	`11`	`+ * $PostgreSQL: pgsql/contrib/dblink/dblink.c,v 1.88 2010/02/03 23:01:11 joe Exp $`
`12`	`12`	`* Copyright (c) 2001-2010, PostgreSQL Global Development Group`
`13`	`13`	`* ALL RIGHTS RESERVED;`
`14`	`14`	`*`
`@@ -101,6 +101,7 @@ static void dblink_security_check(PGconn conn, remoteConn rconn);`
`101`	`101`	`staticvoiddblink_res_error(constcharconname,PGresultres,constchar*dblink_context_msg,boolfail);`
`102`	`102`	`staticcharget_connect_string(constcharservername);`
`103`	`103`	`staticcharescape_param_str(constcharfrom);`
	`104`	`+staticintget_nondropped_natts(Oidrelid);`
`104`	`105`
`105`	`106`	`/* Global */`
`106`	`107`	`staticremoteConn*pconn=NULL;`
`@@ -1262,6 +1263,7 @@ dblink_build_sql_insert(PG_FUNCTION_ARGS)`
`1262`	`1263`	`intsrc_nitems;`
`1263`	`1264`	`inttgt_nitems;`
`1264`	`1265`	`char*sql;`
	`1266`	`+intnondropped_natts;`
`1265`	`1267`
`1266`	`1268`	`/*`
`1267`	`1269`	`* Convert relname to rel OID.`
`@@ -1289,6 +1291,15 @@ dblink_build_sql_insert(PG_FUNCTION_ARGS)`
`1289`	`1291`	`errmsg("input for number of primary key " \`
`1290`	`1292`	`"attributes too large")));`
`1291`	`1293`
	`1294`	`+/*`
	`1295`	`+ * ensure we don't ask for more pk attributes than we have`
	`1296`	`+ * non-dropped columns`
	`1297`	`+ */`
	`1298`	`+nondropped_natts=get_nondropped_natts(relid);`
	`1299`	`+if (pknumatts>nondropped_natts)`
	`1300`	`+ereport(ERROR, (errcode(ERRCODE_SYNTAX_ERROR),`
	`1301`	`+errmsg("number of primary key fields exceeds number of specified relation attributes")));`
	`1302`	`+`
`1292`	`1303`	`/*`
`1293`	`1304`	`* Source array is made up of key values that will be used to locate the`
`1294`	`1305`	`* tuple of interest from the local system.`
`@@ -1354,6 +1365,7 @@ dblink_build_sql_delete(PG_FUNCTION_ARGS)`
`1354`	`1365`	`int2vectorpkattnums= (int2vector)PG_GETARG_POINTER(1);`
`1355`	`1366`	`int32pknumatts_tmp=PG_GETARG_INT32(2);`
`1356`	`1367`	`ArrayType*tgt_pkattvals_arry=PG_GETARG_ARRAYTYPE_P(3);`
	`1368`	`+intnondropped_natts;`
`1357`	`1369`	`Oidrelid;`
`1358`	`1370`	`int16pknumatts=0;`
`1359`	`1371`	`char**tgt_pkattvals;`
`@@ -1386,6 +1398,15 @@ dblink_build_sql_delete(PG_FUNCTION_ARGS)`
`1386`	`1398`	`errmsg("input for number of primary key " \`
`1387`	`1399`	`"attributes too large")));`
`1388`	`1400`
	`1401`	`+/*`
	`1402`	`+ * ensure we don't ask for more pk attributes than we have`
	`1403`	`+ * non-dropped columns`
	`1404`	`+ */`
	`1405`	`+nondropped_natts=get_nondropped_natts(relid);`
	`1406`	`+if (pknumatts>nondropped_natts)`
	`1407`	`+ereport(ERROR, (errcode(ERRCODE_SYNTAX_ERROR),`
	`1408`	`+errmsg("number of primary key fields exceeds number of specified relation attributes")));`
	`1409`	`+`
`1389`	`1410`	`/*`
`1390`	`1411`	`* Target array is made up of key values that will be used to build the`
`1391`	`1412`	`* SQL string for use on the remote system.`
`@@ -1441,6 +1462,7 @@ dblink_build_sql_update(PG_FUNCTION_ARGS)`
`1441`	`1462`	`int32pknumatts_tmp=PG_GETARG_INT32(2);`
`1442`	`1463`	`ArrayType*src_pkattvals_arry=PG_GETARG_ARRAYTYPE_P(3);`
`1443`	`1464`	`ArrayType*tgt_pkattvals_arry=PG_GETARG_ARRAYTYPE_P(4);`
	`1465`	`+intnondropped_natts;`
`1444`	`1466`	`Oidrelid;`
`1445`	`1467`	`int16pknumatts=0;`
`1446`	`1468`	`char**src_pkattvals;`
`@@ -1475,6 +1497,15 @@ dblink_build_sql_update(PG_FUNCTION_ARGS)`
`1475`	`1497`	`errmsg("input for number of primary key " \`
`1476`	`1498`	`"attributes too large")));`
`1477`	`1499`
	`1500`	`+/*`
	`1501`	`+ * ensure we don't ask for more pk attributes than we have`
	`1502`	`+ * non-dropped columns`
	`1503`	`+ */`
	`1504`	`+nondropped_natts=get_nondropped_natts(relid);`
	`1505`	`+if (pknumatts>nondropped_natts)`
	`1506`	`+ereport(ERROR, (errcode(ERRCODE_SYNTAX_ERROR),`
	`1507`	`+errmsg("number of primary key fields exceeds number of specified relation attributes")));`
	`1508`	`+`
`1478`	`1509`	`/*`
`1479`	`1510`	`* Source array is made up of key values that will be used to locate the`
`1480`	`1511`	`* tuple of interest from the local system.`
`@@ -2442,3 +2473,28 @@ escape_param_str(const char *str)`
`2442`	`2473`
`2443`	`2474`	`returnbuf->data;`
`2444`	`2475`	`}`
	`2476`	`+`
	`2477`	`+staticint`
	`2478`	`+get_nondropped_natts(Oidrelid)`
	`2479`	`+{`
	`2480`	`+intnondropped_natts=0;`
	`2481`	`+TupleDesctupdesc;`
	`2482`	`+Relationrel;`
	`2483`	`+intnatts;`
	`2484`	`+inti;`
	`2485`	`+`
	`2486`	`+rel=relation_open(relid,AccessShareLock);`
	`2487`	`+tupdesc=rel->rd_att;`
	`2488`	`+natts=tupdesc->natts;`
	`2489`	`+`
	`2490`	`+for (i=0;i<natts;i++)`
	`2491`	`+{`
	`2492`	`+if (tupdesc->attrs[i]->attisdropped)`
	`2493`	`+continue;`
	`2494`	`+nondropped_natts++;`
	`2495`	`+}`
	`2496`	`+`
	`2497`	`+relation_close(rel,AccessShareLock);`
	`2498`	`+returnnondropped_natts;`
	`2499`	`+}`
	`2500`	`+`

`‎contrib/dblink/expected/dblink.out`

Lines changed: 9 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -39,6 +39,9 @@ SELECT dblink_build_sql_insert('foo','1 2',2,'{"0", "a"}','{"99", "xyz"}');`
`39`	`39`	`INSERT INTO foo(f1,f2,f3) VALUES('99','xyz','{a0,b0,c0}')`
`40`	`40`	`(1 row)`
`41`	`41`
	`42`	`+-- too many pk fields, should fail`
	`43`	`+SELECT dblink_build_sql_insert('foo','1 2 3 4',4,'{"0", "a", "{a0,b0,c0}"}','{"99", "xyz", "{za0,zb0,zc0}"}');`
	`44`	`+ERROR: number of primary key fields exceeds number of specified relation attributes`
`42`	`45`	`-- build an update statement based on a local tuple,`
`43`	`46`	`-- replacing the primary key values with new ones`
`44`	`47`	`SELECT dblink_build_sql_update('foo','1 2',2,'{"0", "a"}','{"99", "xyz"}');`
`@@ -47,13 +50,19 @@ SELECT dblink_build_sql_update('foo','1 2',2,'{"0", "a"}','{"99", "xyz"}');`
`47`	`50`	`UPDATE foo SET f1 = '99', f2 = 'xyz', f3 = '{a0,b0,c0}' WHERE f1 = '99' AND f2 = 'xyz'`
`48`	`51`	`(1 row)`
`49`	`52`
	`53`	`+-- too many pk fields, should fail`
	`54`	`+SELECT dblink_build_sql_update('foo','1 2 3 4',4,'{"0", "a", "{a0,b0,c0}"}','{"99", "xyz", "{za0,zb0,zc0}"}');`
	`55`	`+ERROR: number of primary key fields exceeds number of specified relation attributes`
`50`	`56`	`-- build a delete statement based on a local tuple,`
`51`	`57`	`SELECT dblink_build_sql_delete('foo','1 2',2,'{"0", "a"}');`
`52`	`58`	`dblink_build_sql_delete`
`53`	`59`	`---------------------------------------------`
`54`	`60`	`DELETE FROM foo WHERE f1 = '0' AND f2 = 'a'`
`55`	`61`	`(1 row)`
`56`	`62`
	`63`	`+-- too many pk fields, should fail`
	`64`	`+SELECT dblink_build_sql_delete('foo','1 2 3 4',4,'{"0", "a", "{a0,b0,c0}"}');`
	`65`	`+ERROR: number of primary key fields exceeds number of specified relation attributes`
`57`	`66`	`-- retest using a quoted and schema qualified table`
`58`	`67`	`CREATE SCHEMA "MySchema";`
`59`	`68`	`CREATE TABLE "MySchema"."Foo"(f1 int, f2 text, f3 text[], primary key (f1,f2));`

`‎contrib/dblink/sql/dblink.sql`

Lines changed: 6 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -34,13 +34,19 @@ FROM dblink_get_pkey('foo');`
`34`	`34`	`-- build an insert statement based on a local tuple,`
`35`	`35`	`-- replacing the primary key values with new ones`
`36`	`36`	`SELECT dblink_build_sql_insert('foo','1 2',2,'{"0", "a"}','{"99", "xyz"}');`
	`37`	`+-- too many pk fields, should fail`
	`38`	`+SELECT dblink_build_sql_insert('foo','1 2 3 4',4,'{"0", "a", "{a0,b0,c0}"}','{"99", "xyz", "{za0,zb0,zc0}"}');`
`37`	`39`
`38`	`40`	`-- build an update statement based on a local tuple,`
`39`	`41`	`-- replacing the primary key values with new ones`
`40`	`42`	`SELECT dblink_build_sql_update('foo','1 2',2,'{"0", "a"}','{"99", "xyz"}');`
	`43`	`+-- too many pk fields, should fail`
	`44`	`+SELECT dblink_build_sql_update('foo','1 2 3 4',4,'{"0", "a", "{a0,b0,c0}"}','{"99", "xyz", "{za0,zb0,zc0}"}');`
`41`	`45`
`42`	`46`	`-- build a delete statement based on a local tuple,`
`43`	`47`	`SELECT dblink_build_sql_delete('foo','1 2',2,'{"0", "a"}');`
	`48`	`+-- too many pk fields, should fail`
	`49`	`+SELECT dblink_build_sql_delete('foo','1 2 3 4',4,'{"0", "a", "{a0,b0,c0}"}');`
`44`	`50`
`45`	`51`	`-- retest using a quoted and schema qualified table`
`46`	`52`	`CREATESCHEMA "MySchema";`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commitfdac8cf

File tree

3 files changed

3 files changed

`‎contrib/dblink/dblink.c`

`‎contrib/dblink/expected/dblink.out`

`‎contrib/dblink/sql/dblink.sql`

0 commit comments