Home Explore Help
Register Sign In
lqb
/
rt-thread
mirror of https://gitee.com/rtthread/rt-thread.git
1
0
Fork 0
Files Issues 0 Wiki
Tree: cfc72ec713
Branches Tags
rt-thread
/
components
/
external
/
SQLite-3.8.1
/
src
/
auth.c

auth.c 8.0 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249 
  1. /*
    2. 

  2. ** 2003 January 11
    3. 

  3. **
    4. 

  4. ** The author disclaims copyright to this source code.  In place of
    5. 

  5. ** a legal notice, here is a blessing:
    6. 

  6. **
    7. 

  7. **    May you do good and not evil.
    8. 

  8. **    May you find forgiveness for yourself and forgive others.
    9. 

  9. **    May you share freely, never taking more than you give.
    10. 

  10. **
    11. 

  11. *************************************************************************
    12. 

  12. ** This file contains code used to implement the sqlite3_set_authorizer()
    13. 

  13. ** API.  This facility is an optional feature of the library.  Embedded
    14. 

  14. ** systems that do not need this facility may omit it by recompiling
    15. 

  15. ** the library with -DSQLITE_OMIT_AUTHORIZATION=1
    16. 

  16. */
    17. 

  17. #include "sqliteInt.h"
    18. 

  18. 

  19. /*
    20. 

  20. ** All of the code in this file may be omitted by defining a single
    21. 

  21. ** macro.
    22. 

  22. */
    23. 

  23. #ifndef SQLITE_OMIT_AUTHORIZATION
    24. 

  24. 

  25. /*
    26. 

  26. ** Set or clear the access authorization function.
    27. 

  27. **
    28. 

  28. ** The access authorization function is be called during the compilation
    29. 

  29. ** phase to verify that the user has read and/or write access permission on
    30. 

  30. ** various fields of the database.  The first argument to the auth function
    31. 

  31. ** is a copy of the 3rd argument to this routine.  The second argument
    32. 

  32. ** to the auth function is one of these constants:
    33. 

  33. **
    34. 

  34. **       SQLITE_CREATE_INDEX
    35. 

  35. **       SQLITE_CREATE_TABLE
    36. 

  36. **       SQLITE_CREATE_TEMP_INDEX
    37. 

  37. **       SQLITE_CREATE_TEMP_TABLE
    38. 

  38. **       SQLITE_CREATE_TEMP_TRIGGER
    39. 

  39. **       SQLITE_CREATE_TEMP_VIEW
    40. 

  40. **       SQLITE_CREATE_TRIGGER
    41. 

  41. **       SQLITE_CREATE_VIEW
    42. 

  42. **       SQLITE_DELETE
    43. 

  43. **       SQLITE_DROP_INDEX
    44. 

  44. **       SQLITE_DROP_TABLE
    45. 

  45. **       SQLITE_DROP_TEMP_INDEX
    46. 

  46. **       SQLITE_DROP_TEMP_TABLE
    47. 

  47. **       SQLITE_DROP_TEMP_TRIGGER
    48. 

  48. **       SQLITE_DROP_TEMP_VIEW
    49. 

  49. **       SQLITE_DROP_TRIGGER
    50. 

  50. **       SQLITE_DROP_VIEW
    51. 

  51. **       SQLITE_INSERT
    52. 

  52. **       SQLITE_PRAGMA
    53. 

  53. **       SQLITE_READ
    54. 

  54. **       SQLITE_SELECT
    55. 

  55. **       SQLITE_TRANSACTION
    56. 

  56. **       SQLITE_UPDATE
    57. 

  57. **
    58. 

  58. ** The third and fourth arguments to the auth function are the name of
    59. 

  59. ** the table and the column that are being accessed.  The auth function
    60. 

  60. ** should return either SQLITE_OK, SQLITE_DENY, or SQLITE_IGNORE.  If
    61. 

  61. ** SQLITE_OK is returned, it means that access is allowed.  SQLITE_DENY
    62. 

  62. ** means that the SQL statement will never-run - the sqlite3_exec() call
    63. 

  63. ** will return with an error.  SQLITE_IGNORE means that the SQL statement
    64. 

  64. ** should run but attempts to read the specified column will return NULL
    65. 

  65. ** and attempts to write the column will be ignored.
    66. 

  66. **
    67. 

  67. ** Setting the auth function to NULL disables this hook.  The default
    68. 

  68. ** setting of the auth function is NULL.
    69. 

  69. */
    70. 

  70. int sqlite3_set_authorizer(
    71. 

  71.   sqlite3 *db,
    72. 

  72.   int (*xAuth)(void*,int,const char*,const char*,const char*,const char*),
    73. 

  73.   void *pArg
    74. 

  74. ){
    75. 

  75.   sqlite3_mutex_enter(db->mutex);
    76. 

  76.   db->xAuth = xAuth;
    77. 

  77.   db->pAuthArg = pArg;
    78. 

  78.   sqlite3ExpirePreparedStatements(db);
    79. 

  79.   sqlite3_mutex_leave(db->mutex);
    80. 

  80.   return SQLITE_OK;
    81. 

  81. }
    82. 

  82. 

  83. /*
    84. 

  84. ** Write an error message into pParse->zErrMsg that explains that the
    85. 

  85. ** user-supplied authorization function returned an illegal value.
    86. 

  86. */
    87. 

  87. static void sqliteAuthBadReturnCode(Parse *pParse){
    88. 

  88.   sqlite3ErrorMsg(pParse, "authorizer malfunction");
    89. 

  89.   pParse->rc = SQLITE_ERROR;
    90. 

  90. }
    91. 

  91. 

  92. /*
    93. 

  93. ** Invoke the authorization callback for permission to read column zCol from
    94. 

  94. ** table zTab in database zDb. This function assumes that an authorization
    95. 

  95. ** callback has been registered (i.e. that sqlite3.xAuth is not NULL).
    96. 

  96. **
    97. 

  97. ** If SQLITE_IGNORE is returned and pExpr is not NULL, then pExpr is changed
    98. 

  98. ** to an SQL NULL expression. Otherwise, if pExpr is NULL, then SQLITE_IGNORE
    99. 

  99. ** is treated as SQLITE_DENY. In this case an error is left in pParse.
    100. 

  100. */
    101. 

  101. int sqlite3AuthReadCol(
    102. 

  102.   Parse *pParse,                  /* The parser context */
    103. 

  103.   const char *zTab,               /* Table name */
    104. 

  104.   const char *zCol,               /* Column name */
    105. 

  105.   int iDb                         /* Index of containing database. */
    106. 

  106. ){
    107. 

  107.   sqlite3 *db = pParse->db;       /* Database handle */
    108. 

  108.   char *zDb = db->aDb[iDb].zName; /* Name of attached database */
    109. 

  109.   int rc;                         /* Auth callback return code */
    110. 

  110. 

  111.   rc = db->xAuth(db->pAuthArg, SQLITE_READ, zTab,zCol,zDb,pParse->zAuthContext);
    112. 

  112.   if( rc==SQLITE_DENY ){
    113. 

  113.     if( db->nDb>2 || iDb!=0 ){
    114. 

  114.       sqlite3ErrorMsg(pParse, "access to %s.%s.%s is prohibited",zDb,zTab,zCol);
    115. 

  115.     }else{
    116. 

  116.       sqlite3ErrorMsg(pParse, "access to %s.%s is prohibited", zTab, zCol);
    117. 

  117.     }
    118. 

  118.     pParse->rc = SQLITE_AUTH;
    119. 

  119.   }else if( rc!=SQLITE_IGNORE && rc!=SQLITE_OK ){
    120. 

  120.     sqliteAuthBadReturnCode(pParse);
    121. 

  121.   }
    122. 

  122.   return rc;
    123. 

  123. }
    124. 

  124. 

  125. /*
    126. 

  126. ** The pExpr should be a TK_COLUMN expression.  The table referred to
    127. 

  127. ** is in pTabList or else it is the NEW or OLD table of a trigger.  
    128. 

  128. ** Check to see if it is OK to read this particular column.
    129. 

  129. **
    130. 

  130. ** If the auth function returns SQLITE_IGNORE, change the TK_COLUMN 
    131. 

  131. ** instruction into a TK_NULL.  If the auth function returns SQLITE_DENY,
    132. 

  132. ** then generate an error.
    133. 

  133. */
    134. 

  134. void sqlite3AuthRead(
    135. 

  135.   Parse *pParse,        /* The parser context */
    136. 

  136.   Expr *pExpr,          /* The expression to check authorization on */
    137. 

  137.   Schema *pSchema,      /* The schema of the expression */
    138. 

  138.   SrcList *pTabList     /* All table that pExpr might refer to */
    139. 

  139. ){
    140. 

  140.   sqlite3 *db = pParse->db;
    141. 

  141.   Table *pTab = 0;      /* The table being read */
    142. 

  142.   const char *zCol;     /* Name of the column of the table */
    143. 

  143.   int iSrc;             /* Index in pTabList->a[] of table being read */
    144. 

  144.   int iDb;              /* The index of the database the expression refers to */
    145. 

  145.   int iCol;             /* Index of column in table */
    146. 

  146. 

  147.   if( db->xAuth==0 ) return;
    148. 

  148.   iDb = sqlite3SchemaToIndex(pParse->db, pSchema);
    149. 

  149.   if( iDb<0 ){
    150. 

  150.     /* An attempt to read a column out of a subquery or other
    151. 

  151.     ** temporary table. */
    152. 

  152.     return;
    153. 

  153.   }
    154. 

  154. 

  155.   assert( pExpr->op==TK_COLUMN || pExpr->op==TK_TRIGGER );
    156. 

  156.   if( pExpr->op==TK_TRIGGER ){
    157. 

  157.     pTab = pParse->pTriggerTab;
    158. 

  158.   }else{
    159. 

  159.     assert( pTabList );
    160. 

  160.     for(iSrc=0; ALWAYS(iSrc<pTabList->nSrc); iSrc++){
    161. 

  161.       if( pExpr->iTable==pTabList->a[iSrc].iCursor ){
    162. 

  162.         pTab = pTabList->a[iSrc].pTab;
    163. 

  163.         break;
    164. 

  164.       }
    165. 

  165.     }
    166. 

  166.   }
    167. 

  167.   iCol = pExpr->iColumn;
    168. 

  168.   if( NEVER(pTab==0) ) return;
    169. 

  169. 

  170.   if( iCol>=0 ){
    171. 

  171.     assert( iCol<pTab->nCol );
    172. 

  172.     zCol = pTab->aCol[iCol].zName;
    173. 

  173.   }else if( pTab->iPKey>=0 ){
    174. 

  174.     assert( pTab->iPKey<pTab->nCol );
    175. 

  175.     zCol = pTab->aCol[pTab->iPKey].zName;
    176. 

  176.   }else{
    177. 

  177.     zCol = "ROWID";
    178. 

  178.   }
    179. 

  179.   assert( iDb>=0 && iDb<db->nDb );
    180. 

  180.   if( SQLITE_IGNORE==sqlite3AuthReadCol(pParse, pTab->zName, zCol, iDb) ){
    181. 

  181.     pExpr->op = TK_NULL;
    182. 

  182.   }
    183. 

  183. }
    184. 

  184. 

  185. /*
    186. 

  186. ** Do an authorization check using the code and arguments given.  Return
    187. 

  187. ** either SQLITE_OK (zero) or SQLITE_IGNORE or SQLITE_DENY.  If SQLITE_DENY
    188. 

  188. ** is returned, then the error count and error message in pParse are
    189. 

  189. ** modified appropriately.
    190. 

  190. */
    191. 

  191. int sqlite3AuthCheck(
    192. 

  192.   Parse *pParse,
    193. 

  193.   int code,
    194. 

  194.   const char *zArg1,
    195. 

  195.   const char *zArg2,
    196. 

  196.   const char *zArg3
    197. 

  197. ){
    198. 

  198.   sqlite3 *db = pParse->db;
    199. 

  199.   int rc;
    200. 

  200. 

  201.   /* Don't do any authorization checks if the database is initialising
    202. 

  202.   ** or if the parser is being invoked from within sqlite3_declare_vtab.
    203. 

  203.   */
    204. 

  204.   if( db->init.busy || IN_DECLARE_VTAB ){
    205. 

  205.     return SQLITE_OK;
    206. 

  206.   }
    207. 

  207. 

  208.   if( db->xAuth==0 ){
    209. 

  209.     return SQLITE_OK;
    210. 

  210.   }
    211. 

  211.   rc = db->xAuth(db->pAuthArg, code, zArg1, zArg2, zArg3, pParse->zAuthContext);
    212. 

  212.   if( rc==SQLITE_DENY ){
    213. 

  213.     sqlite3ErrorMsg(pParse, "not authorized");
    214. 

  214.     pParse->rc = SQLITE_AUTH;
    215. 

  215.   }else if( rc!=SQLITE_OK && rc!=SQLITE_IGNORE ){
    216. 

  216.     rc = SQLITE_DENY;
    217. 

  217.     sqliteAuthBadReturnCode(pParse);
    218. 

  218.   }
    219. 

  219.   return rc;
    220. 

  220. }
    221. 

  221. 

  222. /*
    223. 

  223. ** Push an authorization context.  After this routine is called, the
    224. 

  224. ** zArg3 argument to authorization callbacks will be zContext until
    225. 

  225. ** popped.  Or if pParse==0, this routine is a no-op.
    226. 

  226. */
    227. 

  227. void sqlite3AuthContextPush(
    228. 

  228.   Parse *pParse,
    229. 

  229.   AuthContext *pContext, 
    230. 

  230.   const char *zContext
    231. 

  231. ){
    232. 

  232.   assert( pParse );
    233. 

  233.   pContext->pParse = pParse;
    234. 

  234.   pContext->zAuthContext = pParse->zAuthContext;
    235. 

  235.   pParse->zAuthContext = zContext;
    236. 

  236. }
    237. 

  237. 

  238. /*
    239. 

  239. ** Pop an authorization context that was previously pushed
    240. 

  240. ** by sqlite3AuthContextPush
    241. 

  241. */
    242. 

  242. void sqlite3AuthContextPop(AuthContext *pContext){
    243. 

  243.   if( pContext->pParse ){
    244. 

  244.     pContext->pParse->zAuthContext = pContext->zAuthContext;
    245. 

  245.     pContext->pParse = 0;
    246. 

  246.   }
    247. 

  247. }
    248. 

  248. 

  249. #endif /* SQLITE_OMIT_AUTHORIZATION */
    250.