Example 1 with Item
use of com.alibaba.druid.sql.ast.expr.SQLCaseExpr.Item in project druid by alibaba.
the class WallVisitorUtils method getValue.
public static Object getValue(WallVisitor visitor, SQLExpr x) {
if (x != null && x.getAttributes().containsKey(EVAL_VALUE)) {
return getValueFromAttributes(visitor, x);
}
if (x instanceof SQLBinaryOpExpr) {
return getValue(visitor, (SQLBinaryOpExpr) x);
}
if (x instanceof SQLBooleanExpr) {
return ((SQLBooleanExpr) x).getValue();
}
if (x instanceof SQLNumericLiteralExpr) {
return ((SQLNumericLiteralExpr) x).getNumber();
}
if (x instanceof SQLCharExpr) {
return ((SQLCharExpr) x).getText();
}
if (x instanceof SQLNCharExpr) {
return ((SQLNCharExpr) x).getText();
}
if (x instanceof SQLNotExpr) {
Object result = getValue(visitor, ((SQLNotExpr) x).getExpr());
if (result instanceof Boolean) {
return !((Boolean) result).booleanValue();
}
}
if (x instanceof SQLQueryExpr) {
if (isSimpleCountTableSource(visitor, ((SQLQueryExpr) x).getSubQuery())) {
return Integer.valueOf(1);
}
if (isSimpleCaseTableSource(visitor, ((SQLQueryExpr) x).getSubQuery())) {
SQLSelectQueryBlock queryBlock = (SQLSelectQueryBlock) ((SQLQueryExpr) x).getSubQuery().getQuery();
SQLCaseExpr caseExpr = (SQLCaseExpr) queryBlock.getSelectList().get(0).getExpr();
Object result = getValue(caseExpr);
if (visitor != null && !visitor.getConfig().isCaseConditionConstAllow()) {
boolean leftIsName = false;
if (x.getParent() instanceof SQLBinaryOpExpr) {
SQLExpr left = ((SQLBinaryOpExpr) x.getParent()).getLeft();
if (left instanceof SQLName) {
leftIsName = true;
}
}
if (!leftIsName && result != null) {
addViolation(visitor, ErrorCode.CONST_CASE_CONDITION, "const case condition", caseExpr);
}
}
return result;
}
}
String dbType = null;
if (visitor != null) {
dbType = visitor.getDbType();
}
if (//
x instanceof SQLMethodInvokeExpr || //
x instanceof SQLBetweenExpr || //
x instanceof SQLInListExpr || //
x instanceof SQLUnaryExpr) {
return eval(visitor, dbType, x, Collections.emptyList());
}
if (x instanceof SQLCaseExpr) {
if (visitor != null && !visitor.getConfig().isCaseConditionConstAllow()) {
SQLCaseExpr caseExpr = (SQLCaseExpr) x;
boolean leftIsName = false;
if (caseExpr.getParent() instanceof SQLBinaryOpExpr) {
SQLExpr left = ((SQLBinaryOpExpr) caseExpr.getParent()).getLeft();
if (left instanceof SQLName) {
leftIsName = true;
}
}
if (!leftIsName && caseExpr.getValueExpr() == null && caseExpr.getItems().size() > 0) {
SQLCaseExpr.Item item = caseExpr.getItems().get(0);
Object conditionVal = getValue(visitor, item.getConditionExpr());
Object itemVal = getValue(visitor, item.getValueExpr());
if (conditionVal instanceof Boolean && itemVal != null) {
addViolation(visitor, ErrorCode.CONST_CASE_CONDITION, "const case condition", caseExpr);
}
}
}
return eval(visitor, dbType, x, Collections.emptyList());
}
return null;
}
Also used :
SQLCharExpr(com.alibaba.druid.sql.ast.expr.SQLCharExpr)
Item(com.alibaba.druid.sql.ast.expr.SQLCaseExpr.Item)
SQLMethodInvokeExpr(com.alibaba.druid.sql.ast.expr.SQLMethodInvokeExpr)
SQLName(com.alibaba.druid.sql.ast.SQLName)
SQLNCharExpr(com.alibaba.druid.sql.ast.expr.SQLNCharExpr)
SQLExpr(com.alibaba.druid.sql.ast.SQLExpr)
SQLBooleanExpr(com.alibaba.druid.sql.ast.expr.SQLBooleanExpr)
SQLNumericLiteralExpr(com.alibaba.druid.sql.ast.expr.SQLNumericLiteralExpr)
SQLInListExpr(com.alibaba.druid.sql.ast.expr.SQLInListExpr)
SQLQueryExpr(com.alibaba.druid.sql.ast.expr.SQLQueryExpr)
SQLNotExpr(com.alibaba.druid.sql.ast.expr.SQLNotExpr)
SQLBetweenExpr(com.alibaba.druid.sql.ast.expr.SQLBetweenExpr)
SQLBinaryOpExpr(com.alibaba.druid.sql.ast.expr.SQLBinaryOpExpr)
SQLObject(com.alibaba.druid.sql.ast.SQLObject)
SQLUnaryExpr(com.alibaba.druid.sql.ast.expr.SQLUnaryExpr)
SQLCaseExpr(com.alibaba.druid.sql.ast.expr.SQLCaseExpr)
Example 2 with Item
use of com.alibaba.druid.sql.ast.expr.SQLCaseExpr.Item in project druid by alibaba.
the class WallVisitorUtils method isTopFromDenySchema.
private static boolean isTopFromDenySchema(WallVisitor visitor, SQLMethodInvokeExpr x) {
SQLObject parent = x.getParent();
for (; ; ) {
if (parent instanceof SQLExpr || parent instanceof Item || parent instanceof SQLSelectItem) {
parent = parent.getParent();
} else {
break;
}
}
if (parent instanceof SQLSelectQueryBlock) {
SQLSelectQueryBlock queryBlock = (SQLSelectQueryBlock) parent;
if (!(queryBlock.getParent() instanceof SQLSelect)) {
return false;
}
SQLSelect select = (SQLSelect) queryBlock.getParent();
if (!(select.getParent() instanceof SQLSelectStatement)) {
return false;
}
SQLSelectStatement stmt = (SQLSelectStatement) select.getParent();
if (stmt.getParent() != null) {
return false;
}
SQLTableSource from = queryBlock.getFrom();
if (from instanceof SQLExprTableSource) {
SQLExpr fromExpr = ((SQLExprTableSource) from).getExpr();
if (fromExpr instanceof SQLName) {
String fromTableName = fromExpr.toString();
return visitor.isDenyTable(fromTableName);
}
}
return false;
}
return false;
}Aggregations
SQLExpr (com.alibaba.druid.sql.ast.SQLExpr)2
SQLName (com.alibaba.druid.sql.ast.SQLName)2
SQLObject (com.alibaba.druid.sql.ast.SQLObject)2
Item (com.alibaba.druid.sql.ast.expr.SQLCaseExpr.Item)2
SQLBetweenExpr (com.alibaba.druid.sql.ast.expr.SQLBetweenExpr)1
SQLBinaryOpExpr (com.alibaba.druid.sql.ast.expr.SQLBinaryOpExpr)1
SQLBooleanExpr (com.alibaba.druid.sql.ast.expr.SQLBooleanExpr)1
SQLCaseExpr (com.alibaba.druid.sql.ast.expr.SQLCaseExpr)1
SQLCharExpr (com.alibaba.druid.sql.ast.expr.SQLCharExpr)1
SQLInListExpr (com.alibaba.druid.sql.ast.expr.SQLInListExpr)1
SQLMethodInvokeExpr (com.alibaba.druid.sql.ast.expr.SQLMethodInvokeExpr)1
SQLNCharExpr (com.alibaba.druid.sql.ast.expr.SQLNCharExpr)1
SQLNotExpr (com.alibaba.druid.sql.ast.expr.SQLNotExpr)1
SQLNumericLiteralExpr (com.alibaba.druid.sql.ast.expr.SQLNumericLiteralExpr)1
SQLQueryExpr (com.alibaba.druid.sql.ast.expr.SQLQueryExpr)1
SQLUnaryExpr (com.alibaba.druid.sql.ast.expr.SQLUnaryExpr)1
