mirror of
https://github.com/php/php-src.git
synced 2024-10-22 16:57:05 +00:00
202 lines
5.9 KiB
C++
202 lines
5.9 KiB
C++
/*
|
|
+----------------------------------------------------------------------+
|
|
| PHP Version 5 |
|
|
+----------------------------------------------------------------------+
|
|
| Copyright (c) 1997-2004 The PHP Group |
|
|
+----------------------------------------------------------------------+
|
|
| This source file is subject to version 3.0 of the PHP license, |
|
|
| that is bundled with this package in the file LICENSE, and is |
|
|
| available through the world-wide-web at the following url: |
|
|
| http://www.php.net/license/3_0.txt. |
|
|
| If you did not receive a copy of the PHP license and are unable to |
|
|
| obtain it through the world-wide-web, please send a note to |
|
|
| license@php.net so we can mail you a copy immediately. |
|
|
+----------------------------------------------------------------------+
|
|
| Author: George Schlossnagle <george@omniti.com> |
|
|
+----------------------------------------------------------------------+
|
|
*/
|
|
|
|
/* $Id$ */
|
|
|
|
#include "php.h"
|
|
#include "php_pdo_driver.h"
|
|
|
|
#define PDO_PARSER_TEXT 1
|
|
#define PDO_PARSER_BIND 2
|
|
#define PDO_PARSER_BIND_POS 3
|
|
#define PDO_PARSER_EOI 4
|
|
|
|
#define RET(i) {s->cur = cursor; return i; }
|
|
|
|
#define YYCTYPE char
|
|
#define YYCURSOR cursor
|
|
#define YYLIMIT s->lim
|
|
#define YYMARKER s->ptr
|
|
#define YYFILL(n)
|
|
|
|
typedef struct Scanner {
|
|
char *lim, *ptr, *cur, *tok;
|
|
} Scanner;
|
|
|
|
static int scan(Scanner *s)
|
|
{
|
|
char *cursor = s->cur;
|
|
std:
|
|
s->tok = cursor;
|
|
/*!re2c
|
|
BINDCHR = [:][a-zA-Z0-9_]+;
|
|
QUESTION = [?];
|
|
SPECIALS = [:?"'];
|
|
ESCQQ = [\\]["];
|
|
ESCQ = [\\]['];
|
|
EOF = [\000];
|
|
ANYNOEOF = [\001-\377];
|
|
*/
|
|
|
|
/*!re2c
|
|
(["] (ESCQQ|ANYNOEOF\[\\"])* ["]) { RET(PDO_PARSER_TEXT); }
|
|
(['] (ESCQ|ANYNOEOF\[\\"])* [']) { RET(PDO_PARSER_TEXT); }
|
|
BINDCHR { RET(PDO_PARSER_BIND); }
|
|
QUESTION { RET(PDO_PARSER_BIND_POS); }
|
|
SPECIALS { RET(PDO_PARSER_TEXT); }
|
|
(ANYNOEOF\SPECIALS)+ { RET(PDO_PARSER_TEXT); }
|
|
EOF { RET(PDO_PARSER_EOI); }
|
|
*/
|
|
}
|
|
|
|
int pdo_parse_params(pdo_stmt_t *stmt, char *inquery, int inquery_len, char **outquery,
|
|
int *outquery_len TSRMLS_DC)
|
|
{
|
|
Scanner s;
|
|
char *ptr;
|
|
int t;
|
|
int bindno = 0;
|
|
int newbuffer_len;
|
|
int padding;
|
|
HashTable *params = stmt->bound_params;
|
|
struct pdo_bound_param_data *param;
|
|
/* allocate buffer for query with expanded binds, ptr is our writing pointer */
|
|
newbuffer_len = inquery_len;
|
|
|
|
/* calculate the possible padding factor due to quoting */
|
|
if(stmt->dbh->max_escaped_char_length) {
|
|
padding = stmt->dbh->max_escaped_char_length;
|
|
} else {
|
|
padding = 3;
|
|
}
|
|
if(params) {
|
|
zend_hash_internal_pointer_reset(params);
|
|
while (SUCCESS == zend_hash_get_current_data(params, (void**)¶m)) {
|
|
if(param->parameter) {
|
|
convert_to_string(param->parameter);
|
|
/* accomodate a string that needs to be fully quoted
|
|
bind placeholders are at least 2 characters, so
|
|
the accomodate their own "'s
|
|
*/
|
|
newbuffer_len += padding * Z_STRLEN_P(param->parameter);
|
|
}
|
|
zend_hash_move_forward(params);
|
|
}
|
|
}
|
|
*outquery = (char *) emalloc(newbuffer_len + 1);
|
|
*outquery_len = 0;
|
|
|
|
ptr = *outquery;
|
|
s.cur = inquery;
|
|
s.lim = inquery + inquery_len;
|
|
while((t = scan(&s)) != PDO_PARSER_EOI) {
|
|
if(t == PDO_PARSER_TEXT) {
|
|
memcpy(ptr, s.tok, s.cur - s.tok);
|
|
ptr += (s.cur - s.tok);
|
|
*outquery_len += (s.cur - s.tok);
|
|
}
|
|
else if(t == PDO_PARSER_BIND) {
|
|
if(!params) {
|
|
/* error */
|
|
efree(*outquery);
|
|
*outquery = NULL;
|
|
return (int) (s.cur - inquery);
|
|
}
|
|
/* lookup bind first via hash and then index */
|
|
/* stupid keys need to be null-terminated, even though we know their length */
|
|
if((SUCCESS == zend_hash_find(params, s.tok, s.cur-s.tok,(void **)¶m))
|
|
||
|
|
(SUCCESS == zend_hash_index_find(params, bindno, (void **)¶m)))
|
|
{
|
|
char *quotedstr;
|
|
int quotedstrlen;
|
|
/* restore the in-string key, doesn't need null-termination here */
|
|
/* currently everything is a string here */
|
|
|
|
/* quote the bind value if necessary */
|
|
if(stmt->dbh->methods->quoter(stmt->dbh, Z_STRVAL_P(param->parameter),
|
|
Z_STRLEN_P(param->parameter), "edstr, "edstrlen TSRMLS_CC))
|
|
{
|
|
memcpy(ptr, quotedstr, quotedstrlen);
|
|
ptr += quotedstrlen;
|
|
*outquery_len += quotedstrlen;
|
|
efree(quotedstr);
|
|
} else {
|
|
memcpy(ptr, Z_STRVAL_P(param->parameter), Z_STRLEN_P(param->parameter));
|
|
ptr += Z_STRLEN_P(param->parameter);
|
|
*outquery_len += (Z_STRLEN_P(param->parameter));
|
|
}
|
|
}
|
|
else {
|
|
/* error and cleanup */
|
|
efree(*outquery);
|
|
*outquery = NULL;
|
|
return (int) (s.cur - inquery);
|
|
}
|
|
bindno++;
|
|
}
|
|
else if(t == PDO_PARSER_BIND_POS) {
|
|
if(!params) {
|
|
/* error */
|
|
efree(*outquery);
|
|
*outquery = NULL;
|
|
return (int) (s.cur - inquery);
|
|
}
|
|
/* lookup bind by index */
|
|
if(SUCCESS == zend_hash_index_find(params, bindno, (void **)¶m))
|
|
{
|
|
char *quotedstr;
|
|
int quotedstrlen;
|
|
/* currently everything is a string here */
|
|
|
|
/* quote the bind value if necessary */
|
|
if(stmt->dbh->methods->quoter(stmt->dbh, Z_STRVAL_P(param->parameter),
|
|
Z_STRLEN_P(param->parameter), "edstr, "edstrlen TSRMLS_CC))
|
|
{
|
|
memcpy(ptr, quotedstr, quotedstrlen);
|
|
ptr += quotedstrlen;
|
|
*outquery_len += quotedstrlen;
|
|
efree(quotedstr);
|
|
} else {
|
|
memcpy(ptr, Z_STRVAL_P(param->parameter), Z_STRLEN_P(param->parameter));
|
|
ptr += Z_STRLEN_P(param->parameter);
|
|
*outquery_len += (Z_STRLEN_P(param->parameter));
|
|
}
|
|
}
|
|
else {
|
|
/* error and cleanup */
|
|
efree(*outquery);
|
|
*outquery = NULL;
|
|
return (int) (s.cur - inquery);
|
|
}
|
|
bindno++;
|
|
}
|
|
}
|
|
*ptr = '\0';
|
|
return 0;
|
|
}
|
|
|
|
/*
|
|
* Local variables:
|
|
* tab-width: 4
|
|
* c-basic-offset: 4
|
|
* End:
|
|
* vim600: noet sw=4 ts=4 fdm=marker ft=c
|
|
* vim<600: noet sw=4 ts=4
|
|
*/
|