* This file is part of the oGRAC project.
* Copyright (c) 2024 Huawei Technologies Co.,Ltd.
*
* oGRAC is licensed under Mulan PSL v2.
* You can use this software according to the terms and conditions of the Mulan PSL v2.
* You may obtain a copy of Mulan PSL v2 at:
*
* http://license.coscl.org.cn/MulanPSL2
*
* THIS SOFTWARE IS PROVIDED ON AN "AS IS" BASIS, WITHOUT WARRANTIES OF ANY KIND,
* EITHER EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO NON-INFRINGEMENT,
* MERCHANTABILITY OR FIT FOR A PARTICULAR PURPOSE.
* See the Mulan PSL v2 for more details.
* -------------------------------------------------------------------------
*
* ogsql_privilege.c
*
*
* IDENTIFICATION
* src/ogsql/executor/ogsql_privilege.c
*
* -------------------------------------------------------------------------
*/
#include "ogsql_privilege.h"
#include "srv_instance.h"
#include "pl_library.h"
#include "pl_meta_common.h"
#include "dtc_dls.h"
#ifdef __cplusplus
extern "C" {
#endif
static status_t sql_check_pl_privs_core(sql_stmt_t *stmt, pl_entity_t *entity, text_t *checked_user);
uint32 sql_get_any_priv_id(sql_stmt_t *stmt)
{
switch (stmt->context->type) {
case OGSQL_TYPE_CREATE_TABLE:
return CREATE_ANY_TABLE;
case OGSQL_TYPE_CREATE_INDEX:
return CREATE_ANY_INDEX;
case OGSQL_TYPE_CREATE_SEQUENCE:
return CREATE_ANY_SEQUENCE;
case OGSQL_TYPE_CREATE_VIEW:
return CREATE_ANY_VIEW;
case OGSQL_TYPE_CREATE_SYNONYM:
return CREATE_ANY_SYNONYM;
case OGSQL_TYPE_CREATE_PROC:
return CREATE_ANY_PROCEDURE;
case OGSQL_TYPE_CREATE_TRIG:
return CREATE_ANY_TRIGGER;
case OGSQL_TYPE_DROP_TABLE:
case OGSQL_TYPE_TRUNCATE_TABLE:
return DROP_ANY_TABLE;
case OGSQL_TYPE_DROP_INDEX:
return DROP_ANY_INDEX;
case OGSQL_TYPE_DROP_SEQUENCE:
return DROP_ANY_SEQUENCE;
case OGSQL_TYPE_DROP_VIEW:
return DROP_ANY_VIEW;
case OGSQL_TYPE_DROP_SYNONYM:
return DROP_ANY_SYNONYM;
case OGSQL_TYPE_DROP_TRIG:
return DROP_ANY_TRIGGER;
case OGSQL_TYPE_DROP_PROC:
return DROP_ANY_PROCEDURE;
case OGSQL_TYPE_DROP_LIBRARY:
return DROP_ANY_LIBRARY;
case OGSQL_TYPE_LOCK_TABLE:
return LOCK_ANY_TABLE;
case OGSQL_TYPE_ALTER_TABLE:
return ALTER_ANY_TABLE;
case OGSQL_TYPE_ALTER_INDEX:
return ALTER_ANY_INDEX;
case OGSQL_TYPE_ALTER_SEQUENCE:
return ALTER_ANY_SEQUENCE;
case OGSQL_TYPE_SELECT:
return SELECT_ANY_TABLE;
case OGSQL_TYPE_INSERT:
case OGSQL_TYPE_REPLACE:
return INSERT_ANY_TABLE;
case OGSQL_TYPE_UPDATE:
return UPDATE_ANY_TABLE;
case OGSQL_TYPE_DELETE:
return DELETE_ANY_TABLE;
case OGSQL_TYPE_COMMENT:
return COMMENT_ANY_TABLE;
case OGSQL_TYPE_ANALYSE_TABLE:
return ANALYZE_ANY;
case OGSQL_TYPE_MERGE:
return INSERT_ANY_TABLE;
case OGSQL_TYPE_GRANT:
return GRANT_ANY_OBJECT_PRIVILEGE;
case OGSQL_TYPE_REVOKE:
return GRANT_ANY_OBJECT_PRIVILEGE;
default:
return OG_SYS_PRIVS_COUNT;
}
}
status_t sql_check_inherit_priv(sql_stmt_t *stmt, text_t *obj_user)
{
knl_session_t *knl_session = &stmt->session->knl_session;
text_t curr_user;
if (stmt->session->switched_schema) {
cm_str2text(stmt->session->curr_schema, &curr_user);
} else {
curr_user = stmt->session->curr_user;
}
if (cm_text_equal_ins(&curr_user, obj_user) || knl_session->kernel->attr.enable_auto_inherit) {
return OG_SUCCESS;
}
if (knl_check_sys_priv_by_name(knl_session, obj_user, INHERIT_ANY_PRIVILEGES)) {
return OG_SUCCESS;
}
if (knl_check_user_priv_by_name(knl_session, &curr_user, obj_user, OG_PRIV_INHERIT_PRIVILEGES)) {
return OG_SUCCESS;
}
OG_LOG_DEBUG_ERR("Inherit privileges on user %s has not granted to %s", T2S(&curr_user), T2S_EX(obj_user));
OG_THROW_ERROR(ERR_NO_INHERIT_PRIV);
return OG_ERROR;
}
static status_t sql_check_pl_priv_core(sql_stmt_t *stmt, text_t *obj_owner, text_t *obj_name, text_t *curr_user,
object_type_t obj_type, uint32 any_priv_id)
{
knl_session_t *knl_session = &stmt->session->knl_session;
if (cm_text_equal_ins(curr_user, obj_owner)) {
return OG_SUCCESS;
}
if (knl_check_obj_priv_by_name(knl_session, curr_user, obj_owner, obj_name, obj_type, OG_PRIV_EXECUTE)) {
return OG_SUCCESS;
}
if (!cm_text_str_equal(obj_owner, SYS_USER_NAME) &&
knl_check_sys_priv_by_name(knl_session, curr_user, any_priv_id)) {
return OG_SUCCESS;
}
OG_THROW_ERROR(ERR_INSUFFICIENT_PRIV);
return OG_ERROR;
}
status_t sql_check_proc_priv_core(sql_stmt_t *stmt, text_t *obj_owner, text_t *obj_name, text_t *curr_user)
{
object_type_t type = OBJ_TYPE_PROCEDURE;
uint32 priv_id = EXECUTE_ANY_PROCEDURE;
if (sql_check_pl_priv_core(stmt, obj_owner, obj_name, curr_user, type, priv_id) != OG_SUCCESS) {
OG_LOG_DEBUG_ERR("user %s has no privilege for procedure/function %s", T2S(curr_user), T2S_EX(obj_name));
return OG_ERROR;
}
return OG_SUCCESS;
}
status_t sql_check_library_priv_core(sql_stmt_t *stmt, text_t *obj_owner, text_t *obj_name, text_t *curr_user)
{
object_type_t type = OBJ_TYPE_LIBRARY;
uint32 priv_id = EXECUTE_ANY_LIBRARY;
if (sql_check_pl_priv_core(stmt, obj_owner, obj_name, curr_user, type, priv_id) != OG_SUCCESS) {
OG_LOG_DEBUG_ERR("user %s has no privilege for library %s", T2S(curr_user), T2S_EX(obj_name));
return OG_ERROR;
}
return OG_SUCCESS;
}
status_t sql_check_type_priv_core(sql_stmt_t *stmt, text_t *obj_owner, text_t *obj_name, text_t *curr_user)
{
object_type_t type = OBJ_TYPE_PROCEDURE;
uint32 priv_id = EXECUTE_ANY_TYPE;
if (sql_check_pl_priv_core(stmt, obj_owner, obj_name, curr_user, type, priv_id) != OG_SUCCESS) {
OG_LOG_DEBUG_ERR("user %s has no privilege for type %s", T2S(curr_user), T2S_EX(obj_name));
return OG_ERROR;
}
return OG_SUCCESS;
}
status_t sql_check_seq_priv(sql_stmt_t *stmt, text_t *user, text_t *seqname)
{
text_t *curr_user = &stmt->session->curr_user;
knl_session_t *session = &stmt->session->knl_session;
if (cm_text_equal(user, curr_user)) {
return OG_SUCCESS;
}
if (knl_check_sys_priv_by_uid(session, session->uid, SELECT_ANY_SEQUENCE)) {
return OG_SUCCESS;
}
if (knl_check_obj_priv_by_name(session, curr_user, user, seqname, OBJ_TYPE_SEQUENCE, OG_PRIV_SELECT)) {
return OG_SUCCESS;
}
return OG_ERROR;
}
status_t sql_check_table_priv_by_name(sql_stmt_t *stmt, text_t *curr_user, text_t *owner, text_t *obj_name,
uint32 priv_id)
{
text_t owner_name;
text_t table_name;
knl_dictionary_t dc;
object_type_t obj_type;
knl_session_t *knl = &stmt->session->knl_session;
if (knl_open_dc(knl, owner, obj_name, &dc) != OG_SUCCESS) {
return OG_ERROR;
}
if (dc.is_sysnonym) {
knl_get_link_name(&dc, &owner_name, &table_name);
} else {
owner_name = *owner;
table_name = *obj_name;
}
if (cm_text_equal(curr_user, &owner_name)) {
knl_close_dc(&dc);
return OG_SUCCESS;
}
obj_type = knl_get_object_type(dc.type);
if (knl_check_obj_priv_by_name(&stmt->session->knl_session, curr_user, &owner_name, &table_name, obj_type,
priv_id)) {
knl_close_dc(&dc);
return OG_SUCCESS;
}
knl_close_dc(&dc);
return OG_ERROR;
}
static bool32 sql_check_trigger_if_exists(sql_stmt_t *stmt, pl_entry_t *entry)
{
pl_entry_t *temp_entry = NULL;
if (stmt->trigger_list == NULL) {
return OG_FALSE;
}
for (uint32 i = 0; i < stmt->trigger_list->count; i++) {
temp_entry = (pl_entry_t *)cm_galist_get(stmt->trigger_list, i);
if (temp_entry->desc.oid == entry->desc.oid) {
return OG_TRUE;
}
}
return OG_FALSE;
}
static status_t sql_record_trigger_entry(sql_stmt_t *stmt, pl_entry_t *entry)
{
if (stmt->trigger_list == NULL) {
sql_init_trigger_list(stmt);
}
return cm_galist_insert(stmt->trigger_list, entry);
}
status_t sql_check_trigger_priv(sql_stmt_t *stmt, void *entity_in)
{
knl_session_t *session = KNL_SESSION(stmt);
pl_entity_t *entity = (pl_entity_t *)entity_in;
pl_entry_t *entry = entity->entry;
dc_user_t *dc_user = NULL;
text_t checked_user;
if (sql_check_trigger_if_exists(stmt, entry)) {
return OG_SUCCESS;
}
OG_RETURN_IFERR(sql_check_inherit_priv(stmt, &entity->def.user));
OG_RETURN_IFERR(dc_open_user_by_id(session, session->uid, &dc_user));
cm_str2text(dc_user->desc.name, &checked_user);
OG_RETURN_IFERR(sql_check_pl_privs_core(stmt, entity, &checked_user));
return sql_record_trigger_entry(stmt, entry);
}
static status_t sql_check_table_priv(sql_stmt_t *stmt, sql_table_t *table, uint32 priv_id, text_t *checked_user)
{
text_t owner_name;
text_t table_name;
object_type_t obj_type;
if (table->entry == NULL) {
return OG_ERROR;
}
if (table->entry->dc.is_sysnonym) {
knl_get_link_name(&table->entry->dc, &owner_name, &table_name);
if ((owner_name.len == 0) || (table_name.len == 0)) {
return OG_ERROR;
}
} else {
owner_name = table->user.value;
table_name = table->name.value;
}
if (cm_text_equal(checked_user, &owner_name)) {
return OG_SUCCESS;
}
obj_type = knl_get_object_type(table->entry->dc.type);
if (knl_check_obj_priv_by_name(&stmt->session->knl_session, checked_user, &owner_name, &table_name, obj_type,
priv_id)) {
return OG_SUCCESS;
}
return OG_ERROR;
}
status_t sql_check_single_select_priv(sql_stmt_t *stmt, sql_select_t *select, text_t *checked_user);
status_t sql_check_user_select_priv(knl_session_t *session, text_t *checked_user, text_t *owner, text_t *obj_name,
object_type_t obj_type, bool32 for_update)
{
if (cm_text_equal(checked_user, owner)) {
return OG_SUCCESS;
}
if (knl_check_obj_priv_by_name(session, checked_user, owner, obj_name, obj_type, OG_PRIV_SELECT)) {
return OG_SUCCESS;
}
if (!for_update) {
if (knl_check_obj_priv_by_name(session, checked_user, owner, obj_name, obj_type, OG_PRIV_READ)) {
return OG_SUCCESS;
}
}
return OG_ERROR;
}
static status_t sql_has_select_any_priv(sql_stmt_t *stmt, sql_query_t *query, text_t *checked_user)
{
knl_session_t *session = &stmt->session->knl_session;
if (cm_text_equal_ins(checked_user, &stmt->session->curr_user)) {
if (knl_check_sys_priv_by_uid(session, stmt->session->knl_session.uid, SELECT_ANY_TABLE)) {
return OG_SUCCESS;
}
if (!query->for_update) {
if (knl_check_sys_priv_by_uid(session, stmt->session->knl_session.uid, READ_ANY_TABLE)) {
return OG_SUCCESS;
}
}
} else {
if (knl_check_sys_priv_by_name(session, checked_user, SELECT_ANY_TABLE)) {
return OG_SUCCESS;
}
if (!query->for_update) {
if (knl_check_sys_priv_by_name(session, checked_user, READ_ANY_TABLE)) {
return OG_SUCCESS;
}
}
}
return OG_ERROR;
}
static status_t sql_check_ssa_priv(sql_stmt_t *stmt, sql_array_t *ssa, text_t *checked_user)
{
for (uint32 i = 0; i < ssa->count; i++) {
sql_select_t *select_ctx = (sql_select_t *)sql_array_get(ssa, i);
OG_RETURN_IFERR(sql_check_single_select_priv(stmt, select_ctx, checked_user));
}
return OG_SUCCESS;
}
static inline void reset_has_any_priv(text_t *sys_user_name, text_t *owner_name, text_t *checked_user,
bool32 dba_curr_user, bool32 has_any_dictionary, bool32 *has_any_priv)
{
if (!dba_curr_user && (cm_compare_text(checked_user, sys_user_name) != 0) &&
(cm_compare_text(owner_name, sys_user_name) == 0)) {
if (((g_instance->attr.access_dc_enable == OG_TRUE) && *has_any_priv) || (has_any_dictionary == OG_TRUE)) {
*has_any_priv = OG_TRUE;
} else {
*has_any_priv = OG_FALSE;
}
}
}
Synonym privileges are the same as the privileges for the target object.
Granting a privilege on a synonym is equivalent to granting the privilege on
the base object. Similarly, granting a privilege on a base object is equivalent to
granting the privilege on all synonyms for the object. If you grant to a user a
privilege on a synonym, then the user can use either the synonym name or the
base object name in the SQL statement that exercises the privilege.
*/
static status_t sql_check_query_priv(sql_stmt_t *stmt, sql_query_t *query, text_t *checked_user)
{
text_t owner_name;
text_t table_name;
object_type_t obj_type;
sql_table_t *table = NULL;
knl_session_t *session = &stmt->session->knl_session;
text_t sys_user_name = {
.str = SYS_USER_NAME,
.len = SYS_USER_NAME_LEN
};
text_t role = { DBA_ROLE, 3 };
bool32 has_any_dictionary = knl_check_sys_priv_by_name(session, checked_user, SELECT_ANY_DICTIONARY);
bool32 has_any_priv = (sql_has_select_any_priv(stmt, query, checked_user) == OG_SUCCESS) ? OG_TRUE : OG_FALSE;
bool32 dba_curr_user = knl_grant_role_with_option(&stmt->session->knl_session, checked_user, &role, OG_FALSE);
for (uint32 i = 0; i < query->tables.count; i++) {
table = (sql_table_t *)sql_array_get(&query->tables, i);
if ((table->type == SUBSELECT_AS_TABLE && table->subslct_tab_usage == SUBSELECT_4_NORMAL_JOIN) ||
table->type == WITH_AS_TABLE) {
OG_RETURN_IFERR(sql_check_single_select_priv(stmt, table->select_ctx, checked_user));
continue;
}
if (table->entry == NULL) {
continue;
}
if (IS_DBLINK_TABLE(table)) {
continue;
}
if (table->entry->dc.is_sysnonym) {
knl_get_link_name(&table->entry->dc, &owner_name, &table_name);
if ((owner_name.len == 0) || (table_name.len == 0)) {
return OG_ERROR;
}
} else {
owner_name = table->user.value;
table_name = table->name.value;
}
reset_has_any_priv(&sys_user_name, &owner_name, checked_user, dba_curr_user, has_any_dictionary, &has_any_priv);
obj_type = knl_get_object_type(table->entry->dc.type);
if (!has_any_priv) {
OG_RETURN_IFERR(
sql_check_user_select_priv(session, checked_user, &owner_name, &table_name, obj_type,
query->for_update));
}
if (table->type == VIEW_AS_TABLE) {
OG_RETURN_IFERR(sql_check_single_select_priv(stmt, table->select_ctx, &owner_name));
}
}
if (query->ssa.count > 0) {
OG_RETURN_IFERR(sql_check_ssa_priv(stmt, &query->ssa, checked_user));
}
return OG_SUCCESS;
}
static status_t sql_check_select_node_priv(sql_stmt_t *stmt, select_node_t *node, text_t *checked_user)
{
OG_RETURN_IFERR(sql_stack_safe(stmt));
OG_RETSUC_IFTRUE(node == NULL);
switch (node->type) {
case SELECT_NODE_QUERY:
return sql_check_query_priv(stmt, node->query, checked_user);
case SELECT_NODE_UNION:
case SELECT_NODE_UNION_ALL:
case SELECT_NODE_MINUS:
case SELECT_NODE_INTERSECT:
case SELECT_NODE_INTERSECT_ALL:
case SELECT_NODE_EXCEPT_ALL:
case SELECT_NODE_EXCEPT:
OG_RETURN_IFERR(sql_check_select_node_priv(stmt, node->left, checked_user));
OG_RETURN_IFERR(sql_check_select_node_priv(stmt, node->right, checked_user));
return OG_SUCCESS;
default:
break;
}
return OG_ERROR;
}
static status_t sql_check_single_pl_dc_priv(sql_stmt_t *stmt, pl_dc_t *pl_dc, text_t *checked_user)
{
text_t obj_owner;
text_t obj_name;
dc_user_t *dc_user = NULL;
if (pl_dc->is_recursive) {
return OG_SUCCESS;
}
if (pl_dc->type == PL_SYS_PACKAGE) {
cm_str2text(SYS_USER_NAME, &obj_owner);
cm_str2text(pl_dc->entry->desc.name, &obj_name);
return sql_check_proc_priv_core(stmt, &obj_owner, &obj_name, checked_user);
}
OG_RETURN_IFERR(dc_open_user_by_id(KNL_SESSION(stmt), pl_dc->uid, &dc_user));
cm_str2text(dc_user->desc.name, &obj_owner);
cm_str2text(pl_dc->entry->desc.name, &obj_name);
if (pl_dc->type == PL_TYPE_SPEC) {
OG_RETURN_IFERR(sql_check_type_priv_core(stmt, &obj_owner, &obj_name, checked_user));
} else {
OG_RETURN_IFERR(sql_check_proc_priv_core(stmt, &obj_owner, &obj_name, checked_user));
}
return sql_check_pl_privs_core(stmt, pl_dc->entity, checked_user);
}
status_t sql_check_ple_dc_priv(sql_stmt_t *stmt, void *pl_dc_in)
{
pl_dc_t *pl_dc = (pl_dc_t *)pl_dc_in;
knl_session_t *knl_session = KNL_SESSION(stmt);
dc_user_t *dc_user = NULL;
text_t user_name;
if (dc_open_user_by_id(knl_session, knl_session->uid, &dc_user) != OG_SUCCESS) {
return OG_ERROR;
}
cm_str2text(dc_user->desc.name, &user_name);
if (sql_check_single_pl_dc_priv(stmt, pl_dc, &user_name) != OG_SUCCESS) {
OG_THROW_ERROR(ERR_INSUFFICIENT_PRIV);
return OG_ERROR;
}
return OG_SUCCESS;
}
status_t sql_check_pl_dc_lst_priv(sql_stmt_t *stmt, galist_t *pl_dc_lst, text_t *checked_user)
{
if (pl_dc_lst == NULL) {
return OG_SUCCESS;
}
if (stmt->pl_compiler != NULL) {
return OG_SUCCESS;
}
for (uint32 i = 0; i < pl_dc_lst->count; i++) {
pl_dc_t *pl_dc = (pl_dc_t *)cm_galist_get(pl_dc_lst, i);
if (sql_check_single_pl_dc_priv(stmt, pl_dc, checked_user) != OG_SUCCESS) {
return OG_ERROR;
}
}
return OG_SUCCESS;
}
status_t sql_check_single_select_priv(sql_stmt_t *stmt, sql_select_t *select, text_t *checked_user)
{
OG_RETVALUE_IFTRUE(select == NULL, OG_ERROR);
OG_RETURN_IFERR(sql_check_select_node_priv(stmt, select->root, checked_user));
OG_RETURN_IFERR(sql_check_pl_dc_lst_priv(stmt, select->pl_dc_lst, checked_user));
return OG_SUCCESS;
}
static status_t sql_check_select_priv(sql_stmt_t *stmt, text_t *checked_user)
{
sql_select_t *select_ctx = NULL;
select_ctx = (sql_select_t *)stmt->context->entry;
OG_RETVALUE_IFTRUE(select_ctx == NULL, OG_ERROR);
return sql_check_single_select_priv(stmt, select_ctx, checked_user);
}
static status_t sql_check_update_priv(sql_stmt_t *stmt, text_t *checked_user)
{
uint32 loop;
upd_object_t *upd_obj = NULL;
text_t table_user;
sql_update_t *update_ctx = (sql_update_t *)stmt->context->entry;
knl_session_t *session = &stmt->session->knl_session;
OG_RETVALUE_IFTRUE(update_ctx == NULL, OG_ERROR);
bool32 have_any_priv = knl_check_sys_priv_by_name(session, checked_user, UPDATE_ANY_TABLE);
for (loop = 0; loop < update_ctx->objects->count; ++loop) {
upd_obj = (upd_object_t *)cm_galist_get(update_ctx->objects, loop);
if (sql_check_table_priv(stmt, upd_obj->table, OG_PRIV_UPDATE, checked_user) != OG_SUCCESS) {
if (have_any_priv) {
table_user.str = upd_obj->table->user.str;
table_user.len = upd_obj->table->user.len;
if ((cm_text_str_equal(&table_user, "SYS")) && (!cm_text_equal(checked_user, &table_user))) {
break;
}
} else {
break;
}
}
}
if (update_ctx->query->ssa.count > 0) {
OG_RETURN_IFERR(sql_check_ssa_priv(stmt, &update_ctx->query->ssa, checked_user));
}
OG_RETURN_IFERR(sql_check_pl_dc_lst_priv(stmt, update_ctx->pl_dc_lst, checked_user));
if (loop == update_ctx->objects->count) {
return OG_SUCCESS;
}
return OG_ERROR;
}
static status_t sql_check_insert_priv(sql_stmt_t *stmt, text_t *checked_user)
{
sql_table_t *table = NULL;
sql_insert_t *insert_ctx = (sql_insert_t *)stmt->context->entry;
OG_RETVALUE_IFTRUE(insert_ctx == NULL, OG_ERROR);
table = insert_ctx->table;
if (sql_check_table_priv(stmt, table, OG_PRIV_INSERT, checked_user) != OG_SUCCESS) {
if (knl_check_sys_priv_by_name(&stmt->session->knl_session, checked_user, INSERT_ANY_TABLE)) {
text_t table_user = { table->user.str, table->user.len };
if ((cm_text_str_equal(&table_user, "SYS")) && (!cm_text_equal(checked_user, &table_user))) {
return OG_ERROR;
}
} else {
return OG_ERROR;
}
}
if (insert_ctx->select_ctx != NULL) {
OG_RETURN_IFERR(sql_check_single_select_priv(stmt, insert_ctx->select_ctx, checked_user));
}
OG_RETURN_IFERR(sql_check_pl_dc_lst_priv(stmt, insert_ctx->pl_dc_lst, checked_user));
return OG_SUCCESS;
}
static status_t sql_check_delete_priv(sql_stmt_t *stmt, text_t *checked_user)
{
uint32 loop;
del_object_t *del_obj = NULL;
sql_delete_t *delete_ctx = (sql_delete_t *)stmt->context->entry;
text_t table_user;
OG_RETVALUE_IFTRUE(delete_ctx == NULL, OG_ERROR);
bool32 have_any_priv = knl_check_sys_priv_by_name(&stmt->session->knl_session, checked_user, DELETE_ANY_TABLE);
for (loop = 0; loop < delete_ctx->objects->count; ++loop) {
del_obj = (del_object_t *)cm_galist_get(delete_ctx->objects, loop);
if (sql_check_table_priv(stmt, del_obj->table, OG_PRIV_DELETE, checked_user) != OG_SUCCESS) {
if (have_any_priv) {
table_user.str = del_obj->table->user.str;
table_user.len = del_obj->table->user.len;
if ((cm_text_str_equal(&table_user, "SYS")) && (!cm_text_equal(checked_user, &table_user))) {
break;
}
} else {
break;
}
}
}
if (delete_ctx->query->ssa.count > 0) {
OG_RETURN_IFERR(sql_check_ssa_priv(stmt, &delete_ctx->query->ssa, checked_user));
}
OG_RETURN_IFERR(sql_check_pl_dc_lst_priv(stmt, delete_ctx->pl_dc_lst, checked_user));
if (loop == delete_ctx->objects->count) {
return OG_SUCCESS;
}
return OG_ERROR;
}
static status_t sql_check_replace_priv(sql_stmt_t *stmt, text_t *checked_user)
{
sql_table_t *table = NULL;
sql_insert_t *insert_ctx = &((sql_replace_t *)stmt->context->entry)->insert_ctx;
OG_RETVALUE_IFTRUE(insert_ctx == NULL, OG_ERROR);
table = insert_ctx->table;
if (sql_check_table_priv(stmt, table, OG_PRIV_INSERT, checked_user) != OG_SUCCESS) {
if (knl_check_sys_priv_by_name(&stmt->session->knl_session, checked_user, INSERT_ANY_TABLE)) {
text_t table_user = { table->user.str, table->user.len };
if ((cm_text_str_equal(&table_user, "SYS")) && (!cm_text_equal(checked_user, &table_user))) {
return OG_ERROR;
}
} else {
return OG_ERROR;
}
}
if (insert_ctx->select_ctx != NULL) {
if (sql_check_single_select_priv(stmt, insert_ctx->select_ctx, checked_user) != OG_SUCCESS) {
return OG_ERROR;
}
}
if (sql_check_table_priv(stmt, table, OG_PRIV_DELETE, checked_user) != OG_SUCCESS) {
if (knl_check_sys_priv_by_name(&stmt->session->knl_session, checked_user, DELETE_ANY_TABLE)) {
text_t table_user = { table->user.str, table->user.len };
if ((cm_text_str_equal(&table_user, "SYS")) && (!cm_text_equal(checked_user, &table_user))) {
return OG_ERROR;
}
} else {
return OG_ERROR;
}
}
return sql_check_pl_dc_lst_priv(stmt, insert_ctx->pl_dc_lst, checked_user);
}
static status_t sql_check_merge_target_table(sql_stmt_t *stmt, sql_merge_t *merge_ctx, sql_table_t *table,
text_t *checked_user)
{
knl_session_t *session = &stmt->session->knl_session;
if (merge_ctx->insert_ctx != NULL) {
if (sql_check_table_priv(stmt, table, OG_PRIV_INSERT, checked_user) != OG_SUCCESS &&
!knl_check_sys_priv_by_name(session, checked_user, INSERT_ANY_TABLE)) {
return OG_ERROR;
}
if (merge_ctx->insert_ctx->select_ctx != NULL) {
if (sql_check_single_select_priv(stmt, merge_ctx->insert_ctx->select_ctx, checked_user) != OG_SUCCESS) {
return OG_ERROR;
}
}
}
if (merge_ctx->update_ctx != NULL) {
if (sql_check_table_priv(stmt, table, OG_PRIV_UPDATE, checked_user) != OG_SUCCESS &&
!knl_check_sys_priv_by_name(session, checked_user, UPDATE_ANY_TABLE)) {
return OG_ERROR;
}
}
return OG_SUCCESS;
}
static status_t sql_check_merge_src_table(sql_stmt_t *stmt, sql_table_t *table, text_t *checked_user)
{
text_t owner_name;
text_t table_name;
knl_session_t *session = &stmt->session->knl_session;
if (table->type == NORMAL_TABLE) {
if (sql_check_table_priv(stmt, table, OG_PRIV_SELECT, checked_user) == OG_SUCCESS ||
sql_check_table_priv(stmt, table, OG_PRIV_READ, checked_user) == OG_SUCCESS ||
knl_check_sys_priv_by_name(session, checked_user, SELECT_ANY_TABLE) ||
knl_check_sys_priv_by_name(session, checked_user, READ_ANY_TABLE)) {
return OG_SUCCESS;
}
return OG_ERROR;
} else if (table->type == VIEW_AS_TABLE) {
if (sql_check_table_priv(stmt, table, OG_PRIV_SELECT, checked_user) != OG_SUCCESS &&
sql_check_table_priv(stmt, table, OG_PRIV_READ, checked_user) != OG_SUCCESS &&
!knl_check_sys_priv_by_name(session, checked_user, SELECT_ANY_TABLE) &&
!knl_check_sys_priv_by_name(session, checked_user, READ_ANY_TABLE)) {
return OG_ERROR;
}
if (table->entry->dc.is_sysnonym) {
knl_get_link_name(&table->entry->dc, &owner_name, &table_name);
if ((owner_name.len == 0) || (table_name.len == 0)) {
return OG_ERROR;
}
} else {
owner_name = table->user.value;
table_name = table->name.value;
}
return sql_check_single_select_priv(stmt, table->select_ctx, &owner_name);
} else if (table->type == SUBSELECT_AS_TABLE || table->type == WITH_AS_TABLE) {
return sql_check_single_select_priv(stmt, table->select_ctx, checked_user);
} else {
return OG_ERROR;
}
}
READ or SELECT object privilege on the source table. To specify the DELETE clause of the
merge_update_clause, you must also have the DELETE object privilege on the target
table. */
static status_t sql_check_merge_priv(sql_stmt_t *stmt, text_t *checked_user)
{
uint32 i;
sql_table_t *table = NULL;
sql_merge_t *merge_ctx = (sql_merge_t *)stmt->context->entry;
OG_RETVALUE_IFTRUE(merge_ctx == NULL, OG_ERROR);
table = (sql_table_t *)sql_array_get(&merge_ctx->query->tables, 0);
OG_RETURN_IFERR(sql_check_merge_target_table(stmt, merge_ctx, table, checked_user));
for (i = 1; i < merge_ctx->query->tables.count; i++) {
table = (sql_table_t *)sql_array_get(&merge_ctx->query->tables, i);
OG_RETURN_IFERR(sql_check_merge_src_table(stmt, table, checked_user));
}
return sql_check_pl_dc_lst_priv(stmt, merge_ctx->pl_dc_lst, checked_user);
}
static status_t sql_check_alter_user_priv(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
uint32 mask;
text_t *username = &stmt->session->curr_user;
text_t role = { DBA_ROLE, 3 };
text_t name;
knl_user_def_t *def = (knl_user_def_t *)stmt->context->entry;
if (!cm_text_str_equal_ins(username, "SYS") && cm_str_equal_ins(def->name, "SYS")) {
return OG_ERROR;
}
cm_str2text(def->name, &name);
bool32 dba_curr_user = knl_grant_role_with_option(&stmt->session->knl_session, username, &role, OG_FALSE);
bool32 dba_alter_user = knl_grant_role_with_option(&stmt->session->knl_session, &name, &role, OG_FALSE);
if (!dba_curr_user && dba_alter_user) {
return OG_ERROR;
}
mask = def->mask;
if (OG_BIT_TEST(mask, OG_GET_MASK(ALTER_USER_FIELD_PASSWORD))) {
if (OG_BIT_RESET(mask, OG_GET_MASK(ALTER_USER_FIELD_PASSWORD)) == 0 &&
cm_text_str_equal(username, def->name)) {
return OG_SUCCESS;
}
}
if (knl_check_sys_priv_by_uid(&stmt->session->knl_session, stmt->session->knl_session.uid, any_privid)) {
return OG_SUCCESS;
}
return OG_ERROR;
}
static status_t sql_check_alter_trig_priv(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
text_t *curr_user = &stmt->session->curr_user;
knl_alttrig_def_t *def = (knl_alttrig_def_t *)stmt->context->entry;
if (cm_text_equal(curr_user, &def->user)) {
return OG_SUCCESS;
}
if (knl_check_sys_priv_by_uid(&stmt->session->knl_session, stmt->session->knl_session.uid, any_privid)) {
if ((cm_text_str_equal(&def->user, "SYS")) &&
(!cm_text_equal(curr_user, &def->user))) {
OG_THROW_ERROR(ERR_INSUFFICIENT_PRIV);
return OG_ERROR;
}
return OG_SUCCESS;
}
return OG_ERROR;
}
status_t sql_check_priv(sql_stmt_t *stmt, text_t *curr_user, text_t *object_user, sys_privs_id base_privid,
sys_privs_id any_privid)
{
knl_session_t *session = &stmt->session->knl_session;
if (cm_text_equal(curr_user, object_user)) {
if ((uint32)base_privid == OG_INVALID_ID32) {
return OG_SUCCESS;
} else if (knl_check_sys_priv_by_uid(session, session->uid, base_privid)) {
return OG_SUCCESS;
}
}
if (knl_check_sys_priv_by_uid(session, session->uid, any_privid)) {
if ((cm_text_str_equal(object_user, "SYS")) &&
(!cm_text_equal(curr_user, object_user))) {
return OG_ERROR;
}
return OG_SUCCESS;
}
return OG_ERROR;
}
static status_t sql_check_create_table_priv(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
uint32 i;
knl_constraint_def_t *cons_def = NULL;
knl_reference_def_t *ref = NULL;
knl_table_def_t *table_def = (knl_table_def_t *)stmt->context->entry;
text_t *curr_user = &stmt->session->curr_user;
OG_RETVALUE_IFTRUE(table_def == NULL, OG_ERROR);
OG_RETURN_IFERR(sql_check_priv(stmt, curr_user, &table_def->schema, base_privid, any_privid));
by user U3. privileges required:
user U1 : CREATE ANY TABLE
USER U2 : REFERENCES object privileges on table C
*/
for (i = 0; i < table_def->constraints.count; i++) {
cons_def = (knl_constraint_def_t *)cm_galist_get(&table_def->constraints, i);
if (cons_def->type != CONS_TYPE_REFERENCE) {
no need additional privileges */
continue;
}
ref = &cons_def->ref;
if (cm_text_equal_ins(&table_def->schema, &ref->ref_user)) {
continue;
}
if (sql_check_table_priv_by_name(stmt, &table_def->schema, &ref->ref_user, &ref->ref_table, OG_PRIV_REFERENCES)
!=
OG_SUCCESS) {
return OG_ERROR;
}
}
if (stmt->context->supplement != NULL) {
return sql_check_single_select_priv(stmt, (sql_select_t *)stmt->context->supplement, curr_user);
}
return OG_SUCCESS;
}
To create an index in your own schema, one of the following conditions must be true:
1. The table or cluster to be indexed must be in your own schema.
2. You must have the INDEX object privilege on the table to be indexed.
3. You must have the CREATE ANY INDEX system privilege.
To create an index in another schema, you must have the CREATE ANY INDEX system privilege.
*/
static status_t sql_check_create_index_priv(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
text_t *curr_user = &stmt->session->curr_user;
knl_index_def_t *def = (knl_index_def_t *)stmt->context->entry;
OG_RETVALUE_IFTRUE(def == NULL, OG_ERROR);
if (sql_check_priv(stmt, curr_user, &def->user, base_privid, any_privid) == OG_SUCCESS) {
return OG_SUCCESS;
}
return sql_check_table_priv_by_name(stmt, curr_user, &def->user, &def->table, OG_PRIV_INDEX);
}
static status_t sql_check_create_seq_priv(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
text_t *curr_user = &stmt->session->curr_user;
knl_sequence_def_t *def = (knl_sequence_def_t *)stmt->context->entry;
OG_RETVALUE_IFTRUE(def == NULL, OG_ERROR);
return sql_check_priv(stmt, curr_user, &def->user, base_privid, any_privid);
}
To create a view in your own schema, you must have the CREATE VIEW system privilege.
To create a view in another user's schema, you must have the CREATE ANY VIEW system privilege.
The owner of the schema containing the view must have the privileges necessary to
either select (READ or SELECT privilege), insert, update, or delete rows from all the
tables or views on which the view is based.
*/
status_t sql_check_create_view_priv(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
text_t *curr_user = &stmt->session->curr_user;
knl_view_def_t *def = (knl_view_def_t *)stmt->context->entry;
OG_RETVALUE_IFTRUE(def == NULL, OG_ERROR);
OG_RETURN_IFERR(sql_check_priv(stmt, curr_user, &def->user, base_privid, any_privid));
return sql_check_single_select_priv(stmt, (sql_select_t *)(def->select), &def->user);
}
To create a private synonym in your own schema, you must have the CREATE SYNONYM system privilege.
To create a private synonym in another user's schema, you must have the CREATE ANY SYNONYM system privilege.
To create a PUBLIC synonym, you must have the CREATE PUBLIC SYNONYM system privilege.
*/
static status_t sql_check_create_sysn_priv(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
text_t *curr_user = &stmt->session->curr_user;
knl_synonym_def_t *def = (knl_synonym_def_t *)stmt->context->entry;
if (def->flags & SYNONYM_IS_PUBLIC) {
if (knl_check_sys_priv_by_uid(&stmt->session->knl_session, stmt->session->knl_session.uid,
CREATE_PUBLIC_SYNONYM)) {
return OG_SUCCESS;
} else {
return OG_ERROR;
}
}
return sql_check_priv(stmt, curr_user, &def->owner, base_privid, any_privid);
}
static status_t sql_check_create_library_priv(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
text_t *curr_user = &stmt->session->curr_user;
pl_library_def_t *library_def = (pl_library_def_t *)stmt->context->entry;
OG_RETVALUE_IFTRUE(library_def == NULL, OG_ERROR);
return sql_check_priv(stmt, curr_user, &library_def->owner, base_privid, any_privid);
}
static status_t sql_check_drop_library_priv(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
text_t *curr_user = &stmt->session->curr_user;
knl_drop_def_t *def = (knl_drop_def_t *)stmt->context->entry;
knl_session_t *session = &stmt->session->knl_session;
if (cm_compare_text_str_ins(&def->owner, T2S(curr_user)) == 0) {
return OG_SUCCESS;
}
if (knl_check_sys_priv_by_uid(session, session->uid, DROP_ANY_LIBRARY)) {
if ((cm_text_str_equal(&def->owner, "SYS")) &&
(!cm_text_equal(curr_user, &def->owner))) {
OG_THROW_ERROR(ERR_INSUFFICIENT_PRIV);
return OG_ERROR;
}
return OG_SUCCESS;
}
OG_THROW_ERROR(ERR_INSUFFICIENT_PRIV);
return OG_ERROR;
}
static status_t sql_check_sys_priv_for_tenant(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
if (sql_check_user_tenant(&stmt->session->knl_session) != OG_SUCCESS) {
return OG_ERROR;
}
if (knl_check_sys_priv_by_uid(&stmt->session->knl_session, stmt->session->knl_session.uid, base_privid)) {
return OG_SUCCESS;
}
return OG_ERROR;
}
static status_t sql_check_create_dir_priv(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
if (knl_check_dir_priv_by_uid(&stmt->session->knl_session, stmt->session->knl_session.uid, CREATE_ANY_DIRECTORY)) {
return OG_SUCCESS;
}
return OG_ERROR;
}
static status_t sql_check_drop_dir_priv(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
if (knl_check_dir_priv_by_uid(&stmt->session->knl_session, stmt->session->knl_session.uid, DROP_ANY_DIRECTORY)) {
return OG_SUCCESS;
}
return OG_ERROR;
}
static status_t sql_check_drop_tab_priv(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
text_t owner;
text_t obj_name;
knl_dictionary_t dc;
text_t *curr_user = &stmt->session->curr_user;
knl_drop_def_t *def = (knl_drop_def_t *)stmt->context->entry;
OG_RETVALUE_IFTRUE(def == NULL, OG_ERROR);
if (OG_SUCCESS == knl_open_dc(&stmt->session->knl_session, &def->owner, &def->name, &dc)) {
if (dc.is_sysnonym) {
knl_get_link_name(&dc, &owner, &obj_name);
} else {
owner = def->owner;
obj_name = def->name;
}
knl_close_dc(&dc);
return sql_check_priv(stmt, curr_user, &owner, base_privid, any_privid);
} else {
cm_reset_error();
return OG_SUCCESS;
}
}
static status_t sql_check_drop_priv(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
text_t *curr_user = &stmt->session->curr_user;
knl_drop_def_t *def = (knl_drop_def_t *)stmt->context->entry;
OG_RETVALUE_IFTRUE(def == NULL, OG_ERROR);
return sql_check_priv(stmt, curr_user, &def->owner, base_privid, any_privid);
}
To drop a private synonym, either the synonym must be in your own schema or you
must have the DROP ANY SYNONYM system privilege.
To drop a PUBLIC synonym, you must have the DROP PUBLIC SYNONYM system privilege.
*/
static status_t sql_check_drop_sysn_priv(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
text_t *curr_user = &stmt->session->curr_user;
knl_drop_def_t *def = (knl_drop_def_t *)stmt->context->entry;
knl_session_t *session = &stmt->session->knl_session;
if (cm_compare_text_str_ins(&def->owner, "PUBLIC") == 0) {
if (knl_check_sys_priv_by_uid(session, session->uid, DROP_PUBLIC_SYNONYM)) {
return OG_SUCCESS;
} else {
return OG_ERROR;
}
}
if (cm_compare_text_str_ins(&def->owner, T2S(curr_user)) == 0) {
return OG_SUCCESS;
}
if (knl_check_sys_priv_by_uid(session, session->uid, DROP_ANY_SYNONYM)) {
if ((cm_text_str_equal(&def->owner, "SYS")) &&
(!cm_text_equal(curr_user, &def->owner))) {
OG_THROW_ERROR(ERR_INSUFFICIENT_PRIV);
return OG_ERROR;
}
return OG_SUCCESS;
}
return OG_ERROR;
}
static status_t sql_check_drop_role_priv(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
text_t *curr_user = &stmt->session->curr_user;
knl_drop_def_t *def = (knl_drop_def_t *)stmt->context->entry;
knl_session_t *session = &stmt->session->knl_session;
text_t sys_user_name = {
.str = SYS_USER_NAME,
.len = SYS_USER_NAME_LEN
};
uint32 rid;
dc_role_t *role = NULL;
dc_context_t *ogx = &session->kernel->dc_ctx;
if (!cm_text_equal_ins(curr_user, &sys_user_name)) {
dls_spin_lock(session, &ogx->paral_lock, NULL);
if (dc_get_role_id(session, &def->name, &rid)) {
role = ogx->roles[rid];
if (role->desc.owner_uid == DB_SYS_USER_ID) {
dls_spin_unlock(session, &ogx->paral_lock);
return OG_ERROR;
}
}
dls_spin_unlock(session, &ogx->paral_lock);
}
if (knl_check_sys_priv_by_uid(session, session->uid, any_privid)) {
return OG_SUCCESS;
}
if (knl_grant_role_with_option(session, curr_user, &def->name, OG_TRUE)) {
return OG_SUCCESS;
}
return OG_ERROR;
}
The table or view must be in your own schema, or you must have the LOCK ANY TABLE
system privilege, or you must have any object privilege (except the READ object
privilege) on the table or view.
*/
static status_t sql_check_lock_table_priv(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
uint32 i;
text_t *curr_user = &stmt->session->curr_user;
knl_session_t *session = &stmt->session->knl_session;
lock_tables_def_t *tables_def = (lock_tables_def_t *)stmt->context->entry;
lock_table_t *table = NULL;
bool32 have_any_priv = knl_check_sys_priv_by_uid(session, session->uid, any_privid);
for (i = 0; i < tables_def->tables.count; i++) {
table = (lock_table_t *)cm_galist_get(&tables_def->tables, i);
if (cm_text_equal(curr_user, &table->schema)) {
continue;
} else {
if (have_any_priv) {
if ((cm_text_str_equal(&table->schema, "SYS")) && (!cm_text_equal(curr_user, &table->schema))) {
return OG_ERROR;
}
continue;
} else {
return OG_ERROR;
}
}
}
return OG_SUCCESS;
}
static status_t sql_check_truncate_priv(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
text_t owner;
text_t obj_name;
knl_dictionary_t dc;
text_t *curr_user = &stmt->session->curr_user;
knl_trunc_def_t *def = (knl_trunc_def_t *)stmt->context->entry;
OG_RETVALUE_IFTRUE(def == NULL, OG_ERROR);
if (OG_SUCCESS == knl_open_dc(&stmt->session->knl_session, &def->owner, &def->name, &dc)) {
if (dc.is_sysnonym) {
knl_get_link_name(&dc, &owner, &obj_name);
} else {
owner = def->owner;
obj_name = def->name;
}
knl_close_dc(&dc);
return sql_check_priv(stmt, curr_user, &owner, base_privid, any_privid);
} else {
cm_reset_error();
return OG_SUCCESS;
}
}
static status_t sql_check_flashback_priv(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
text_t *curr_user = &stmt->session->curr_user;
knl_flashback_def_t *def = (knl_flashback_def_t *)stmt->context->entry;
OG_RETVALUE_IFTRUE(def == NULL, OG_ERROR);
return sql_check_priv(stmt, curr_user, &def->owner, base_privid, any_privid);
}
The database object must reside in your own schema or you must have the DROP ANY ...
system privilege for the type of object to be purged
*/
static status_t sql_check_purge_type_priv(knl_session_t *knl_session, text_t *curr_user, bool32 own, uint32 priv_id)
{
if (own) {
return OG_SUCCESS;
} else {
if (knl_check_sys_priv_by_uid(knl_session, knl_session->uid, priv_id)) {
return OG_SUCCESS;
}
}
return OG_ERROR;
}
static status_t sql_check_purge_priv(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
bool32 own;
text_t *user = &stmt->session->curr_user;
knl_purge_def_t *purge_def = (knl_purge_def_t *)stmt->context->entry;
knl_session_t *knl_session = &stmt->session->knl_session;
own = cm_text_equal(user, &purge_def->owner);
switch (purge_def->type) {
case PURGE_TABLE:
case PURGE_TABLE_OBJECT:
case PURGE_PART:
case PURGE_PART_OBJECT: {
return sql_check_purge_type_priv(knl_session, user, own, DROP_ANY_TABLE);
}
case PURGE_INDEX:
case PURGE_INDEX_OBJECT: {
return sql_check_purge_type_priv(knl_session, user, own, DROP_ANY_INDEX);
}
case PURGE_RECYCLEBIN: {
return sql_check_purge_type_priv(knl_session, user, OG_FALSE, PURGE_DBA_RECYCLEBIN);
}
case PURGE_TABLESPACE: {
return sql_check_purge_type_priv(knl_session, user, OG_FALSE, DROP_TABLESPACE);
}
default:
break;
}
return OG_ERROR;
}
static bool32 sql_check_objpriv(knl_handle_t session, text_t *curr_user, knl_priv_def_t *priv, sql_priv_check_t *priv_check)
{
knl_session_t *knl_session = (knl_session_t *)session;
text_t sys_user = {
.str = "SYS",
.len = 3
};
if (cm_text_equal(curr_user, priv_check->objowner)) {
return OG_TRUE;
}
if (priv->priv_type != PRIV_TYPE_ALL_PRIV) {
if (knl_check_obj_priv_with_option(session, curr_user, priv_check->objowner, priv_check->objname,
priv_check->objtype, priv->priv_id)) {
return OG_TRUE;
}
} else {
if (knl_check_allobjprivs_with_option(session, curr_user, priv_check->objowner, priv_check->objname,
priv_check->objtype)) {
return OG_TRUE;
}
}
if (cm_text_equal(&sys_user, priv_check->objowner)) {
return OG_FALSE;
}
if (knl_check_sys_priv_by_uid(session, knl_session->uid, GRANT_ANY_OBJECT_PRIVILEGE)) {
return OG_TRUE;
}
return OG_FALSE;
}
static bool32 sql_check_obj_user_priv(knl_handle_t session, text_t *curr_user, knl_priv_def_t *priv,
sql_priv_check_t *priv_check)
{
knl_session_t *knl_session = (knl_session_t *)session;
text_t sys_user = {
.str = "SYS",
.len = 3
};
if (cm_text_equal(curr_user, priv_check->objname)) {
return OG_TRUE;
}
if (cm_text_equal(&sys_user, priv_check->objname)) {
return OG_FALSE;
}
if (knl_check_sys_priv_by_uid(session, knl_session->uid, GRANT_ANY_OBJECT_PRIVILEGE)) {
return OG_TRUE;
}
return OG_FALSE;
}
static bool32 sql_has_grant_revoke_priv(sql_stmt_t *stmt, knl_priv_def_t *priv, sql_priv_check_t *priv_check)
{
text_t *curr_user = &stmt->session->curr_user;
knl_session_t *session = &stmt->session->knl_session;
if (priv->priv_type == PRIV_TYPE_SYS_PRIV) {
if (knl_check_sys_priv_by_uid(session, session->uid, GRANT_ANY_PRIVILEGE) ||
knl_sys_priv_with_option(session, curr_user, priv->priv_id)) {
return OG_TRUE;
}
} else if (priv->priv_type == PRIV_TYPE_ROLE) {
if (knl_grant_role_with_option(session, curr_user, &priv->priv_name, OG_TRUE)) {
return OG_TRUE;
}
if (knl_check_sys_priv_by_uid(session, session->uid, GRANT_ANY_ROLE)) {
if (priv->priv_id < SYS_ROLE_ID_COUNT) {
return knl_check_sys_priv_by_uid(session, session->uid, GRANT_ANY_PRIVILEGE);
}
return OG_TRUE;
}
} else if (priv->priv_type == PRIV_TYPE_OBJ_PRIV) {
return sql_check_objpriv(session, curr_user, priv, priv_check);
} else if (priv->priv_type == PRIV_TYPE_ALL_PRIV) {
if (priv_check->priv_type == PRIV_TYPE_SYS_PRIV) {
if (knl_check_sys_priv_by_uid(session, session->uid, GRANT_ANY_PRIVILEGE)) {
return OG_TRUE;
}
} else {
return sql_check_objpriv(session, curr_user, priv, priv_check);
}
} else if (priv->priv_type == PRIV_TYPE_USER_PRIV) {
return sql_check_obj_user_priv(session, curr_user, priv, priv_check);
}
return OG_FALSE;
}
status_t sql_check_grant_revoke_priv(sql_stmt_t *stmt, sql_priv_check_t *priv_check)
{
uint32 i;
knl_priv_def_t *priv = NULL;
for (i = 0; i < priv_check->priv_list->count; i++) {
priv = (knl_priv_def_t *)cm_galist_get(priv_check->priv_list, i);
if (!sql_has_grant_revoke_priv(stmt, priv, priv_check)) {
return OG_ERROR;
}
}
return OG_SUCCESS;
}
To grant a system privilege, one of the following conditions must be met:
1. You must have been granted the GRANT ANY PRIVILEGE system privilege.
2. You must have been granted the system privilege with the ADMIN OPTION.
To grant a role to a user or another role, one of the following conditions must be met:
1. you must have been directly granted the role with the ADMIN OPTION
2. you must have been granted the GRANT ANY ROLE system privilege
3. you must have created the role.
To grant an object privilege on a user, by specifying the ON USER clause of the on_object_clause:
1. you must be the user on whom the privilege is granted
2. you must have been granted the object privilege on that user with the WITH GRANT OPTION
3. you must have been granted the GRANT ANY OBJECT PRIVILEGE system privilege.
*/
static status_t sql_check_grant_priv(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
knl_grant_def_t *grant_def = (knl_grant_def_t *)stmt->context->entry;
sql_priv_check_t priv_check;
OG_RETVALUE_IFTRUE(grant_def == NULL, OG_ERROR);
priv_check.objowner = &grant_def->schema;
priv_check.objname = &grant_def->objname;
priv_check.priv_list = &grant_def->privs;
priv_check.objtype = grant_def->objtype;
priv_check.priv_type = grant_def->priv_type;
return sql_check_grant_revoke_priv(stmt, &priv_check);
}
To revoke a system privilege, one of the following conditions must be met:
1. you must have been granted the privilege with the ADMIN OPTION
2. You can revoke any privilege if you have the GRANT ANY PRIVILEGE system privilege
To revoke a role from a user or another role, one of the following conditions must be met:
1. you must have been directly granted the role with the ADMIN OPTION
2. you must have created the role
3. You can revoke any role if you have the GRANT ANY ROLE system privilege.
revoke object privileges
*/
static status_t sql_check_revoke_priv(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
knl_revoke_def_t *revoke_def = (knl_revoke_def_t *)stmt->context->entry;
sql_priv_check_t priv_check;
OG_RETVALUE_IFTRUE(revoke_def == NULL, OG_ERROR);
priv_check.objowner = &revoke_def->schema;
priv_check.objname = &revoke_def->objname;
priv_check.priv_list = &revoke_def->privs;
priv_check.objtype = revoke_def->objtype;
priv_check.priv_type = revoke_def->priv_type;
return sql_check_grant_revoke_priv(stmt, &priv_check);
}
static status_t sql_check_alter_table_priv(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
text_t owner;
text_t obj_name;
text_t *curr_user = &stmt->session->curr_user;
knl_dictionary_t dc;
knl_altable_def_t *def = (knl_altable_def_t *)stmt->context->entry;
knl_constraint_def_t *cons = NULL;
text_t sys_user_name = {
.str = SYS_USER_NAME,
.len = SYS_USER_NAME_LEN
};
OG_RETVALUE_IFTRUE(def == NULL, OG_ERROR);
if (OG_SUCCESS == knl_open_dc(&stmt->session->knl_session, &def->user, &def->name, &dc)) {
if (dc.is_sysnonym) {
knl_get_link_name(&dc, &owner, &obj_name);
} else {
owner = def->user;
obj_name = def->name;
}
knl_close_dc(&dc);
} else {
cm_reset_error();
return OG_SUCCESS;
}
if (sql_check_priv(stmt, curr_user, &owner, base_privid, any_privid) != OG_SUCCESS &&
sql_check_table_priv_by_name(stmt, curr_user, &owner, &obj_name, OG_PRIV_ALTER) != OG_SUCCESS) {
return OG_ERROR;
}
or truncate partition */
if (ALTABLE_DROP_PARTITION == def->action || ALTABLE_TRUNCATE_PARTITION == def->action) {
if (!cm_text_equal(curr_user, &owner)) {
if (!knl_check_sys_priv_by_uid(&stmt->session->knl_session, stmt->session->knl_session.uid,
DROP_ANY_TABLE)) {
return OG_ERROR;
}
}
}
if (ALTABLE_ADD_CONSTRAINT == def->action || ALTABLE_MODIFY_CONSTRAINT == def->action ||
ALTABLE_RENAME_CONSTRAINT == def->action) {
cons = &def->cons_def.new_cons;
if (cons->type != CONS_TYPE_REFERENCE) {
return OG_SUCCESS;
}
if (cm_text_equal(&owner, &cons->ref.ref_user) || cm_text_equal(&owner, &sys_user_name)) {
return OG_SUCCESS;
}
if (!knl_check_obj_priv_by_name(&stmt->session->knl_session, &owner, &cons->ref.ref_user, &cons->ref.ref_table,
OBJ_TYPE_TABLE, OG_PRIV_REFERENCES)) {
OG_LOG_DEBUG_ERR("%s has no references privilege on table %s", T2S(&owner), T2S_EX(&cons->ref.ref_table));
return OG_ERROR;
}
}
return OG_SUCCESS;
}
static status_t sql_check_alter_seq_priv(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
text_t *curr_user = &stmt->session->curr_user;
knl_session_t *se = &stmt->session->knl_session;
knl_sequence_def_t *def = (knl_sequence_def_t *)stmt->context->entry;
OG_RETVALUE_IFTRUE(def == NULL, OG_ERROR);
if (sql_check_priv(stmt, curr_user, &def->user, base_privid, any_privid) == OG_SUCCESS) {
return OG_SUCCESS;
}
if (cm_text_equal(curr_user, &def->user)) {
return OG_SUCCESS;
}
if (knl_check_obj_priv_by_name(se, curr_user, &def->user, &def->name, OBJ_TYPE_SEQUENCE, OG_PRIV_ALTER)) {
return OG_SUCCESS;
}
return OG_ERROR;
}
static status_t sql_check_alter_index_priv(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
text_t *curr_user = &stmt->session->curr_user;
knl_alindex_def_t *def = (knl_alindex_def_t *)stmt->context->entry;
OG_RETVALUE_IFTRUE(def == NULL, OG_ERROR);
return sql_check_priv(stmt, curr_user, &def->user, base_privid, any_privid);
}
static status_t sql_check_comment_priv(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
text_t *curr_user = &stmt->session->curr_user;
knl_comment_def_t *def = (knl_comment_def_t *)stmt->context->entry;
OG_RETVALUE_IFTRUE(def == NULL, OG_ERROR);
return sql_check_priv(stmt, curr_user, &def->owner, base_privid, any_privid);
}
privileges required
S1: user A create a trigger T in schema A based on table C (in schema A) : CREATE TRIGGER
S2: user A create a trigger T in schema A based on table C (in schema B) : CREATE ANY TRIGGER
S3: user A create a trigger T in schema B based on table C (in schema A) : CREATE ANY TRIGGER
S4: user A create a trigger T in schema B based on table C (in schema B) : CREATE ANY TRIGGER
*/
status_t sql_check_create_trig_priv(sql_stmt_t *stmt, text_t *obj_owner, text_t *table_user)
{
text_t *curr_user = &stmt->session->curr_user;
knl_session_t *session = &stmt->session->knl_session;
uint32 oper_uid = session->uid;
if (cm_text_equal_ins(curr_user, obj_owner)) {
if (cm_text_equal_ins(curr_user, table_user)) {
if (knl_check_sys_priv_by_uid(session, oper_uid, CREATE_TRIGGER)) {
return OG_SUCCESS;
}
}
}
if (!knl_check_sys_priv_by_uid(session, oper_uid, CREATE_ANY_TRIGGER)) {
return OG_ERROR;
}
return OG_SUCCESS;
}
static status_t sql_check_pl_create_priv(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
pl_entity_t *pl_ctx = (pl_entity_t *)stmt->pl_context;
text_t *curr_user = &stmt->session->curr_user;
text_t *obj_owner = &pl_ctx->def.user;
return sql_check_priv(stmt, curr_user, obj_owner, base_privid, any_privid);
}
status_t sql_check_exec_type_priv(sql_stmt_t *stmt, text_t *obj_owner, text_t *obj_name)
{
text_t curr_user;
knl_session_t *session = &stmt->session->knl_session;
cm_str2text(stmt->session->curr_schema, &curr_user);
if (cm_text_equal_ins(&curr_user, obj_owner)) {
return OG_SUCCESS;
}
if (knl_check_obj_priv_by_name(session, &curr_user, obj_owner, obj_name, OBJ_TYPE_PROCEDURE, OG_PRIV_EXECUTE)) {
return OG_SUCCESS;
}
if (knl_check_sys_priv_by_uid(session, stmt->session->curr_schema_id, EXECUTE_ANY_TYPE)) {
if ((cm_text_str_equal(obj_owner, "SYS")) &&
(!cm_text_equal(&curr_user, obj_owner))) {
OG_LOG_DEBUG_ERR("user %s has no privilege for procedure/function %s", T2S(&curr_user), T2S_EX(obj_name));
OG_THROW_ERROR(ERR_INSUFFICIENT_PRIV);
return OG_ERROR;
}
return OG_SUCCESS;
}
OG_LOG_DEBUG_ERR("user %s has no privilege for procedure/function %s", T2S(&curr_user), T2S_EX(obj_name));
OG_THROW_ERROR(ERR_INSUFFICIENT_PRIV);
return OG_ERROR;
}
status_t sql_check_pl_drop_priv_core(knl_session_t *session, text_t *obj_owner, text_t *curr_user, uint32 priv_id)
{
if (knl_check_sys_priv_by_uid(session, session->uid, priv_id)) {
if ((cm_text_str_equal(obj_owner, "SYS")) && (!cm_text_equal(curr_user, obj_owner))) {
OG_THROW_ERROR(ERR_INSUFFICIENT_PRIV);
return OG_ERROR;
}
return OG_SUCCESS;
} else {
OG_THROW_ERROR(ERR_INSUFFICIENT_PRIV);
return OG_ERROR;
}
}
static status_t sql_check_pl_drop_priv(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
pl_drop_def_t *drop_def = (pl_drop_def_t *)stmt->context->entry;
text_t *user = &stmt->session->curr_user;
text_t *obj_owner = &drop_def->obj.user;
return sql_check_priv(stmt, user, obj_owner, base_privid, any_privid);
}
static status_t sql_privs_no_check(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
return OG_SUCCESS;
}
static status_t sql_check_backup_priv(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
knl_session_t *session = &stmt->session->knl_session;
if (sql_check_user_tenant(session) != OG_SUCCESS) {
return OG_ERROR;
}
if (knl_check_sys_priv_by_uid(session, session->uid, SYSDBA)) {
return OG_SUCCESS;
}
if (knl_check_sys_priv_by_uid(session, session->uid, SYSBACKUP)) {
return OG_SUCCESS;
}
return OG_ERROR;
}
static status_t sql_check_analyse_priv(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
knl_analyze_tab_def_t *def = (knl_analyze_tab_def_t *)stmt->context->entry;
OG_RETVALUE_IFTRUE(def == NULL, OG_ERROR);
if (!sql_check_stats_priv(stmt->session, &def->owner)) {
OG_THROW_ERROR(ERR_INSUFFICIENT_PRIV);
return OG_ERROR;
}
return OG_SUCCESS;
}
static status_t sql_check_analyze_index_priv(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
knl_analyze_index_def_t *def = (knl_analyze_index_def_t *)stmt->context->entry;
OG_RETVALUE_IFTRUE(def == NULL, OG_ERROR);
if (!sql_check_stats_priv(stmt->session, &def->owner)) {
OG_THROW_ERROR(ERR_INSUFFICIENT_PRIV);
return OG_ERROR;
}
return OG_SUCCESS;
}
static status_t sql_check_sql_map_priv(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
text_t schema;
cm_str2text(stmt->session->curr_schema, &schema);
return sql_check_priv(stmt, &stmt->session->curr_user, &schema, base_privid, any_privid);
}
static status_t sql_check_dml_privs_core(sql_stmt_t *stmt)
{
text_t checked_user;
if (stmt->pl_compiler == NULL) {
if (!stmt->context->has_pl_objects && stmt->context->obj_belong_self &&
cm_text_str_equal(&stmt->session->curr_user, stmt->session->curr_schema)) {
return OG_SUCCESS;
}
checked_user = stmt->session->curr_user;
} else {
if (stmt->session->switched_schema) {
cm_str2text(stmt->session->curr_schema, &checked_user);
} else {
checked_user = stmt->session->curr_user;
}
}
switch (stmt->context->type) {
case OGSQL_TYPE_SELECT:
return sql_check_select_priv(stmt, &checked_user);
case OGSQL_TYPE_INSERT:
return sql_check_insert_priv(stmt, &checked_user);
case OGSQL_TYPE_UPDATE:
return sql_check_update_priv(stmt, &checked_user);
case OGSQL_TYPE_DELETE:
return sql_check_delete_priv(stmt, &checked_user);
case OGSQL_TYPE_MERGE:
return sql_check_merge_priv(stmt, &checked_user);
case OGSQL_TYPE_REPLACE:
return sql_check_replace_priv(stmt, &checked_user);
default:
return OG_ERROR;
}
}
status_t sql_check_dml_privs(sql_stmt_t *stmt, bool32 need_lock_ctrl)
{
sql_context_t *context = stmt->context;
if (context->ctrl.cleaned) {
CM_ASSERT(context->ctrl.valid == OG_FALSE);
return OG_SUCCESS;
}
if (!need_lock_ctrl) {
return sql_check_dml_privs_core(stmt);
}
sql_inc_ctx_ref(stmt, context);
if (context->ctrl.cleaned) {
sql_dec_ctx_ref(stmt, context);
CM_ASSERT(context->ctrl.valid == OG_FALSE);
return OG_SUCCESS;
}
status_t status = sql_check_dml_privs_core(stmt);
sql_dec_ctx_ref(stmt, context);
return status;
}
static bool32 sql_context_is_dml(sql_context_t *context)
{
if (context->type == OGSQL_TYPE_SELECT || context->type == OGSQL_TYPE_INSERT || context->type == OGSQL_TYPE_UPDATE
||
context->type == OGSQL_TYPE_DELETE || context->type == OGSQL_TYPE_MERGE || context->type == OGSQL_TYPE_REPLACE)
{
return OG_TRUE;
}
return OG_FALSE;
}
static status_t sql_check_pl_privs_core(sql_stmt_t *stmt, pl_entity_t *entity, text_t *checked_user)
{
sql_context_t *context = NULL;
sql_stmt_t *sub_stmt = NULL;
status_t ret = OG_SUCCESS;
sql_stmt_t *save_curr_stmt = stmt->session->current_stmt;
if (entity == NULL) {
return OG_SUCCESS;
}
OG_RETURN_IFERR(sql_stack_safe(stmt));
if (sql_check_pl_dc_lst_priv(stmt, &entity->dc_lst, checked_user) != OG_SUCCESS) {
return OG_ERROR;
}
if (sql_push(stmt, sizeof(sql_stmt_t), (void **)&sub_stmt) != OG_SUCCESS) {
return OG_ERROR;
}
sql_init_stmt(stmt->session, sub_stmt, stmt->id);
sub_stmt->is_sub_stmt = OG_TRUE;
sub_stmt->parent_stmt = stmt;
SET_STMT_PL_CONTEXT(sub_stmt, NULL);
sub_stmt->session->current_stmt = sub_stmt;
for (uint32 i = 0; i < entity->sqls.count; i++) {
context = (sql_context_t *)cm_galist_get(&entity->sqls, i);
CM_ASSERT(sql_context_is_dml(context));
sub_stmt->context = context;
if (sql_check_dml_privs(sub_stmt, OG_TRUE) != OG_SUCCESS) {
OG_THROW_ERROR(ERR_INSUFFICIENT_PRIV);
ret = OG_ERROR;
break;
}
}
stmt->session->current_stmt = save_curr_stmt;
sql_release_lob_info(sub_stmt);
sql_release_resource(sub_stmt, OG_TRUE);
OGSQL_POP(stmt);
return ret;
}
static status_t sql_check_pl_privs(sql_stmt_t *stmt)
{
text_t checked_user = stmt->session->curr_user;
return sql_check_pl_privs_core(stmt, stmt->pl_context, &checked_user);
}
static status_t sql_check_sys_priv(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
knl_session_t *session = KNL_SESSION(stmt);
CM_ASSERT(base_privid != OG_INVALID_ID32);
if (knl_check_sys_priv_by_uid(session, session->uid, base_privid)) {
return OG_SUCCESS;
}
return OG_ERROR;
}
static priv_tab_def g_priv_tab_def[] = {
[OGSQL_TYPE_CREATE_DATABASE] = { CREATE_DATABASE, OG_INVALID_ID32, sql_check_sys_priv_for_tenant },
[OGSQL_TYPE_CREATE_CLUSTERED_DATABASE] = { CREATE_DATABASE, OG_INVALID_ID32, sql_check_sys_priv_for_tenant },
[OGSQL_TYPE_CREATE_USER] = { CREATE_USER, OG_INVALID_ID32, sql_check_sys_priv },
[OGSQL_TYPE_CREATE_ROLE] = { CREATE_ROLE, OG_INVALID_ID32, sql_check_sys_priv },
[OGSQL_TYPE_CREATE_TABLESPACE] = { CREATE_TABLESPACE, OG_INVALID_ID32, sql_check_sys_priv_for_tenant },
[OGSQL_TYPE_CREATE_NODE] = { CREATE_NODE, OG_INVALID_ID32, sql_check_sys_priv },
[OGSQL_TYPE_CREATE_PROFILE] = { CREATE_PROFILE, OG_INVALID_ID32, sql_check_sys_priv_for_tenant },
[OGSQL_TYPE_CREATE_CTRLFILE] = { CREATE_CTRLFILE, OG_INVALID_ID32, sql_check_sys_priv },
[OGSQL_TYPE_DROP_TABLESPACE] = { DROP_TABLESPACE, OG_INVALID_ID32, sql_check_sys_priv_for_tenant },
[OGSQL_TYPE_DROP_USER] = { DROP_USER, OG_INVALID_ID32, sql_check_sys_priv },
[OGSQL_TYPE_DROP_NODE] = { DROP_NODE, OG_INVALID_ID32, sql_check_sys_priv },
[OGSQL_TYPE_DROP_PROFILE] = { DROP_PROFILE, OG_INVALID_ID32, sql_check_profile_priv },
[OGSQL_TYPE_ALTER_TABLESPACE] = { ALTER_TABLESPACE, OG_INVALID_ID32, sql_check_sys_priv_for_tenant },
[OGSQL_TYPE_ALTER_SYSTEM] = { ALTER_SYSTEM, OG_INVALID_ID32, sql_check_sys_priv_for_tenant },
[OGSQL_TYPE_ALTER_DATABASE] = { ALTER_DATABASE, OG_INVALID_ID32, sql_check_sys_priv_for_tenant },
[OGSQL_TYPE_ALTER_PROFILE] = { ALTER_PROFILE, OG_INVALID_ID32, sql_check_profile_priv },
[OGSQL_TYPE_ALTER_NODE] = { ALTER_NODE, OG_INVALID_ID32, sql_check_sys_priv },
[OGSQL_TYPE_ALTER_USER] = { OG_INVALID_ID32, ALTER_USER, sql_check_alter_user_priv },
[OGSQL_TYPE_ALTER_TRIGGER] = { OG_INVALID_ID32, ALTER_ANY_TRIGGER, sql_check_alter_trig_priv },
[OGSQL_TYPE_CREATE_DATABASE_LINK] = { CREATE_DATABASE_LINK, OG_INVALID_ID32, sql_check_sys_priv_for_tenant },
[OGSQL_TYPE_DROP_DATABASE_LINK] = { DROP_DATABASE_LINK, OG_INVALID_ID32, sql_check_sys_priv_for_tenant },
[OGSQL_TYPE_ALTER_DATABASE_LINK] = { ALTER_DATABASE_LINK, OG_INVALID_ID32, sql_check_sys_priv_for_tenant },
[OGSQL_TYPE_CREATE_TABLE] = { CREATE_TABLE, CREATE_ANY_TABLE, sql_check_create_table_priv },
[OGSQL_TYPE_CREATE_INDEX] = { OG_INVALID_ID32, CREATE_ANY_INDEX, sql_check_create_index_priv },
[OGSQL_TYPE_CREATE_INDEXES] = { OG_INVALID_ID32, CREATE_ANY_INDEX, sql_check_create_index_priv },
[OGSQL_TYPE_CREATE_SEQUENCE] = { CREATE_SEQUENCE, CREATE_ANY_SEQUENCE, sql_check_create_seq_priv },
[OGSQL_TYPE_CREATE_VIEW] = { CREATE_VIEW, CREATE_ANY_VIEW, sql_check_create_view_priv },
[OGSQL_TYPE_CREATE_SYNONYM] = { CREATE_SYNONYM, CREATE_ANY_SYNONYM, sql_check_create_sysn_priv },
[OGSQL_TYPE_CREATE_DIRECTORY] = { OG_INVALID_ID32, CREATE_ANY_DIRECTORY, sql_check_create_dir_priv },
[OGSQL_TYPE_DROP_TABLE] = { OG_INVALID_ID32, DROP_ANY_TABLE, sql_check_drop_tab_priv },
[OGSQL_TYPE_DROP_INDEX] = { OG_INVALID_ID32, DROP_ANY_INDEX, sql_check_drop_priv },
[OGSQL_TYPE_DROP_SEQUENCE] = { OG_INVALID_ID32, DROP_ANY_SEQUENCE, sql_check_drop_priv },
[OGSQL_TYPE_DROP_VIEW] = { OG_INVALID_ID32, DROP_ANY_VIEW, sql_check_drop_tab_priv },
[OGSQL_TYPE_DROP_SYNONYM] = { OG_INVALID_ID32, DROP_ANY_SYNONYM, sql_check_drop_sysn_priv },
[OGSQL_TYPE_DROP_ROLE] = { OG_INVALID_ID32, DROP_ANY_ROLE, sql_check_drop_role_priv },
[OGSQL_TYPE_DROP_DIRECTORY] = { OG_INVALID_ID32, DROP_ANY_DIRECTORY, sql_check_drop_dir_priv },
[OGSQL_TYPE_DROP_LIBRARY] = { OG_INVALID_ID32, DROP_ANY_LIBRARY, sql_check_drop_library_priv },
[OGSQL_TYPE_LOCK_TABLE] = { OG_INVALID_ID32, LOCK_ANY_TABLE, sql_check_lock_table_priv },
[OGSQL_TYPE_TRUNCATE_TABLE] = { OG_INVALID_ID32, DROP_ANY_TABLE, sql_check_truncate_priv },
[OGSQL_TYPE_FLASHBACK_TABLE] = { OG_INVALID_ID32, FLASHBACK_ANY_TABLE, sql_check_flashback_priv },
[OGSQL_TYPE_PURGE] = { OG_INVALID_ID32, OG_INVALID_ID32, sql_check_purge_priv },
[OGSQL_TYPE_GRANT] = { OG_INVALID_ID32, GRANT_ANY_PRIVILEGE, sql_check_grant_priv },
[OGSQL_TYPE_REVOKE] = { OG_INVALID_ID32, OG_INVALID_ID32, sql_check_revoke_priv },
[OGSQL_TYPE_ALTER_TABLE] = { CREATE_TABLE, ALTER_ANY_TABLE, sql_check_alter_table_priv },
[OGSQL_TYPE_ALTER_SEQUENCE] = { CREATE_SEQUENCE, ALTER_ANY_SEQUENCE, sql_check_alter_seq_priv },
[OGSQL_TYPE_ALTER_INDEX] = { OG_INVALID_ID32, ALTER_ANY_INDEX, sql_check_alter_index_priv },
[OGSQL_TYPE_COMMENT] = { OG_INVALID_ID32, COMMENT_ANY_TABLE, sql_check_comment_priv },
[OGSQL_TYPE_CREATE_LIBRARY] = { CREATE_LIBRARY, CREATE_ANY_LIBRARY, sql_check_create_library_priv },
[OGSQL_TYPE_BEGIN] = { OG_INVALID_ID32, OG_INVALID_ID32, sql_privs_no_check },
[OGSQL_TYPE_COMMIT] = { OG_INVALID_ID32, OG_INVALID_ID32, sql_privs_no_check },
[OGSQL_TYPE_COMMIT_PHASE1] = { OG_INVALID_ID32, OG_INVALID_ID32, sql_privs_no_check },
[OGSQL_TYPE_COMMIT_PHASE2] = { OG_INVALID_ID32, OG_INVALID_ID32, sql_privs_no_check },
[OGSQL_TYPE_ROLLBACK_PHASE2] = { OG_INVALID_ID32, OG_INVALID_ID32, sql_privs_no_check },
[OGSQL_TYPE_ROLLBACK] = { OG_INVALID_ID32, OG_INVALID_ID32, sql_privs_no_check },
[OGSQL_TYPE_ROLLBACK_TO] = { OG_INVALID_ID32, OG_INVALID_ID32, sql_privs_no_check },
[OGSQL_TYPE_SAVEPOINT] = { OG_INVALID_ID32, OG_INVALID_ID32, sql_privs_no_check },
[OGSQL_TYPE_RELEASE_SAVEPOINT] = { OG_INVALID_ID32, OG_INVALID_ID32, sql_privs_no_check },
#ifdef DB_DEBUG_VERSION
[OGSQL_TYPE_SYNCPOINT] = { OG_INVALID_ID32, OG_INVALID_ID32, sql_privs_no_check },
#endif
[OGSQL_TYPE_SET_TRANS] = { OG_INVALID_ID32, OG_INVALID_ID32, sql_privs_no_check },
[OGSQL_TYPE_BACKUP] = { OG_INVALID_ID32, OG_INVALID_ID32, sql_check_backup_priv },
[OGSQL_TYPE_ANALYSE_TABLE] = { OG_INVALID_ID32, ANALYZE_ANY, sql_check_analyse_priv },
[OGSQL_TYPE_ANALYZE_INDEX] = { OG_INVALID_ID32, ANALYZE_ANY, sql_check_analyze_index_priv },
[OGSQL_TYPE_RESTORE] = { SYSDBA, OG_INVALID_ID32, sql_check_sys_priv_for_tenant },
[OGSQL_TYPE_RECOVER] = { SYSDBA, OG_INVALID_ID32, sql_check_sys_priv_for_tenant },
[OGSQL_TYPE_SHUTDOWN] = { SYSDBA, OG_INVALID_ID32, sql_check_sys_priv_for_tenant },
[OGSQL_TYPE_BUILD] = { SYSDBA, OG_INVALID_ID32, sql_check_sys_priv_for_tenant },
[OGSQL_TYPE_VALIDATE] = { SYSDBA, OG_INVALID_ID32, sql_check_sys_priv_for_tenant },
[OGSQL_TYPE_OGRAC] = { SYSDBA, OG_INVALID_ID32, sql_check_sys_priv_for_tenant },
[OGSQL_TYPE_ANONYMOUS_BLOCK] = { OG_INVALID_ID32, OG_INVALID_ID32, sql_privs_no_check },
[OGSQL_TYPE_CREATE_PROC] = { CREATE_PROCEDURE, CREATE_ANY_PROCEDURE, sql_check_pl_create_priv },
[OGSQL_TYPE_CREATE_FUNC] = { CREATE_PROCEDURE, CREATE_ANY_PROCEDURE, sql_check_pl_create_priv },
[OGSQL_TYPE_CREATE_TRIG] = { CREATE_TRIGGER, CREATE_ANY_TRIGGER, sql_check_pl_create_priv },
[OGSQL_TYPE_CREATE_PACK_SPEC] = { CREATE_PROCEDURE, CREATE_ANY_PROCEDURE, sql_check_pl_create_priv },
[OGSQL_TYPE_CREATE_PACK_BODY] = { CREATE_PROCEDURE, CREATE_ANY_PROCEDURE, sql_check_pl_create_priv },
[OGSQL_TYPE_CREATE_TYPE_SPEC] = { CREATE_TYPE, CREATE_ANY_TYPE, sql_check_pl_create_priv },
[OGSQL_TYPE_CREATE_TYPE_BODY] = { CREATE_TYPE, CREATE_ANY_TYPE, sql_check_pl_create_priv },
[OGSQL_TYPE_DROP_PROC] = { OG_INVALID_ID32, DROP_ANY_PROCEDURE, sql_check_pl_drop_priv },
[OGSQL_TYPE_DROP_FUNC] = { OG_INVALID_ID32, DROP_ANY_PROCEDURE, sql_check_pl_drop_priv },
[OGSQL_TYPE_DROP_TRIG] = { OG_INVALID_ID32, DROP_ANY_TRIGGER, sql_check_pl_drop_priv },
[OGSQL_TYPE_DROP_PACK_SPEC] = { OG_INVALID_ID32, DROP_ANY_PROCEDURE, sql_check_pl_drop_priv },
[OGSQL_TYPE_DROP_PACK_BODY] = { OG_INVALID_ID32, DROP_ANY_PROCEDURE, sql_check_pl_drop_priv },
[OGSQL_TYPE_DROP_TYPE_SPEC] = { OG_INVALID_ID32, DROP_ANY_TYPE, sql_check_pl_drop_priv },
[OGSQL_TYPE_DROP_TYPE_BODY] = { OG_INVALID_ID32, DROP_ANY_TYPE, sql_check_pl_drop_priv },
[OGSQL_TYPE_ALTER_SESSION] = { OG_INVALID_ID32, OG_INVALID_ID32, sql_privs_no_check },
[OGSQL_TYPE_ALTER_SQL_MAP] = { OG_INVALID_ID32, CREATE_ANY_SQL_MAP, sql_check_sql_map_priv },
[OGSQL_TYPE_DROP_SQL_MAP] = { OG_INVALID_ID32, DROP_ANY_SQL_MAP, sql_check_sql_map_priv },
[OGSQL_TYPE_CREATE_TENANT] = { CREATE_TENANT, OG_INVALID_ID32, sql_check_sys_priv_for_tenant },
[OGSQL_TYPE_ALTER_TENANT] = { ALTER_TENANT, OG_INVALID_ID32, sql_check_sys_priv_for_tenant },
[OGSQL_TYPE_DROP_TENANT] = { DROP_TENANT, OG_INVALID_ID32, sql_check_sys_priv_for_tenant },
[OGSQL_TYPE_INHERIT_PRIVILEGES] = { OG_INVALID_ID32, INHERIT_ANY_PRIVILEGES, sql_privs_no_check },
};
static status_t sql_check_other_privs(sql_stmt_t *stmt)
{
sql_type_t type = stmt->context->type;
priv_tab_def priv_def = g_priv_tab_def[type];
CM_ASSERT(priv_def.proc != NULL);
if (priv_def.proc == NULL) {
return OG_ERROR;
}
if (priv_def.proc(stmt, priv_def.base_privid, priv_def.any_privid) != OG_SUCCESS) {
cm_reset_error();
return OG_ERROR;
}
return OG_SUCCESS;
}
status_t sql_check_privilege(sql_stmt_t *stmt, bool32 need_lock_ctrl)
{
if (stmt->chk_priv == OG_FALSE) {
return OG_SUCCESS;
}
if (stmt->lang_type == LANG_DML || stmt->lang_type == LANG_EXPLAIN) {
return sql_check_dml_privs(stmt, need_lock_ctrl);
}
if (stmt->lang_type == LANG_PL) {
return sql_check_pl_privs(stmt);
}
return sql_check_other_privs(stmt);
}
* check current user is dba or not
*/
bool32 sql_user_is_dba(session_t *session)
{
text_t role = { DBA_ROLE, 3 };
if (cm_text_str_equal_ins(&session->curr_user, "SYS")) {
return OG_TRUE;
}
return knl_grant_role_with_option(&session->knl_session, &session->curr_user, &role, OG_FALSE);
}
bool32 sql_check_schema_priv(session_t *session, text_t *obj_schema)
{
if (cm_text_equal_ins(&session->curr_user, obj_schema)) {
return OG_TRUE;
}
return sql_user_is_dba(session);
}
bool32 sql_check_stats_priv(session_t *session, text_t *obj_schema)
{
if (sql_check_schema_priv(session, obj_schema)) {
return OG_TRUE;
}
if (!cm_text_str_equal_ins(obj_schema, "SYS")) {
return knl_check_sys_priv_by_uid(&session->knl_session, session->knl_session.uid, ANALYZE_ANY);
} else {
return OG_FALSE;
}
}
bool32 sql_check_policy_exempt(session_t *session)
{
if (cm_text_str_equal_ins(&session->curr_user, SYS_USER_NAME)) {
return OG_TRUE;
}
return knl_check_sys_priv_by_uid(&session->knl_session, session->knl_session.uid, EXEMPT_ACCESS_POLICY);
}
status_t sql_check_xa_priv(knl_session_t *session, xa_xid_t *xa_xid)
{
knl_xa_xid_t knl_xa_xid;
dc_user_t *cur_user = NULL;
dc_user_t *rm_user = NULL;
uint16 rmid;
knl_rm_t *rm = NULL;
rm_pool_t *rm_pool = &g_instance->rm_pool;
if (session->uid == 0) {
return OG_SUCCESS;
}
if (knl_convert_xa_xid(xa_xid, &knl_xa_xid) != OG_SUCCESS) {
return OG_ERROR;
}
rmid = srv_get_xa_xid(&knl_xa_xid);
if (rmid == OG_INVALID_ID16) {
return OG_SUCCESS;
}
rm = rm_pool->rms[rmid];
if (rm->uid == 0) {
OG_THROW_ERROR(ERR_INSUFFICIENT_PRIV);
return OG_ERROR;
}
if (rm->uid == OG_INVALID_ID32) {
OG_THROW_ERROR(ERR_XA_INVALID_XID, "XID not started");
return OG_ERROR;
}
if (rm->uid == session->uid) {
return OG_SUCCESS;
}
if (dc_open_user_by_id(session, session->uid, &cur_user) != OG_SUCCESS) {
return OG_ERROR;
}
if (dc_open_user_by_id(session, rm->uid, &rm_user) != OG_SUCCESS) {
return OG_ERROR;
}
if (cur_user->desc.tenant_id != rm_user->desc.tenant_id && cur_user->desc.tenant_id != 0) {
OG_THROW_ERROR(ERR_INSUFFICIENT_PRIV);
return OG_ERROR;
}
if (!knl_check_sys_priv_by_uid(session, session->uid, FORCE_ANY_TRANSACTION)) {
OG_THROW_ERROR(ERR_INSUFFICIENT_PRIV);
return OG_ERROR;
}
return OG_SUCCESS;
}
status_t sql_check_profile_priv(sql_stmt_t *stmt, sys_privs_id base_privid, sys_privs_id any_privid)
{
knl_session_t *knl_session = &stmt->session->knl_session;
if (sql_check_user_tenant(knl_session) != OG_SUCCESS) {
return OG_ERROR;
}
if (!knl_check_sys_priv_by_uid(knl_session, knl_session->uid, base_privid)) {
return OG_ERROR;
}
return OG_SUCCESS;
}
status_t sql_check_user_tenant(knl_session_t *session)
{
dc_user_t *user = NULL;
if (dc_open_user_by_id(session, session->uid, &user) != OG_SUCCESS) {
return OG_ERROR;
}
if (user->desc.tenant_id != SYS_TENANTROOT_ID) {
OG_THROW_ERROR(ERR_INVALID_OPERATION, ", only support for users in TENANT$ROOT");
return OG_ERROR;
}
return OG_SUCCESS;
}
status_t sql_check_dump_priv(sql_stmt_t *stmt, knl_alter_sys_def_t *def)
{
text_t sys_user = { "SYS", 3 };
if (cm_text_equal_ins(&stmt->session->curr_user, &sys_user)) {
return OG_SUCCESS;
}
if (cm_text_equal_ins(&def->dump_info.user_name, &stmt->session->curr_user)) {
return OG_SUCCESS;
}
if (cm_text_equal_ins(&def->dump_info.user_name, &sys_user)) {
OG_THROW_ERROR(ERR_INSUFFICIENT_PRIV);
return OG_ERROR;
}
text_t role = { DBA_ROLE, 3 };
if (knl_grant_role_with_option(&stmt->session->knl_session, &stmt->session->curr_user, &role, OG_FALSE)) {
return OG_SUCCESS;
}
OG_THROW_ERROR(ERR_INSUFFICIENT_PRIV);
return OG_ERROR;
}
#ifdef __cplusplus
}
#endif
