1 /*************************************************
2 * Exim - an Internet mail transport agent *
3 *************************************************/
5 /* Copyright (c) University of Cambridge 1995 - 2018 */
6 /* See the file NOTICE for conditions of use and distribution. */
8 /* Thanks to Paul Kelly for contributing the original code for these
13 #include "lf_functions.h"
15 #include <mysql.h> /* The system header */
17 /* We define symbols for *_VERSION_ID (numeric), *_VERSION_STR (char*)
18 and *_BASE_STR (char*). It's a bit of guesswork. Especially for mariadb
19 with versions before 10.2, as they do not define there there specific symbols.
22 /* Newer (>= 10.2) MariaDB */
23 #if defined MARIADB_VERSION_ID
24 #define EXIM_MxSQL_VERSION_ID MARIADB_VERSION_ID
26 /* MySQL defines MYSQL_VERSION_ID, and MariaDB does so */
27 /* https://dev.mysql.com/doc/refman/5.7/en/c-api-server-client-versions.html */
28 #elif defined LIBMYSQL_VERSION_ID
29 #define EXIM_MxSQL_VERSION_ID LIBMYSQL_VERSION_ID
30 #elif defined MYSQL_VERSION_ID
31 #define EXIM_MxSQL_VERSION_ID MYSQL_VERSION_ID
34 #define EXIM_MYSQL_VERSION_ID 0
37 /* Newer (>= 10.2) MariaDB */
38 #ifdef MARIADB_CLIENT_VERSION_STR
39 #define EXIM_MxSQL_VERSION_STR MARIADB_CLIENT_VERSION_STR
41 /* Mysql uses MYSQL_SERVER_VERSION */
42 #elif defined LIBMYSQL_VERSION
43 #define EXIM_MxSQL_VERSION_STR LIBMYSQL_VERSION
44 #elif defined MYSQL_SERVER_VERSION
45 #define EXIM_MxSQL_VERSION_STR MYSQL_SERVER_VERSION
48 #define EXIM_MxSQL_VERSION_STR "unknown"
51 #if defined MARIADB_BASE_VERSION
52 #define EXIM_MxSQL_BASE_STR MARIADB_BASE_VERSION
54 #elif defined MARIADB_PACKAGE_VERSION
55 #define EXIM_MxSQL_BASE_STR "mariadb"
57 #elif defined MYSQL_BASE_VERSION
58 #define EXIM_MxSQL_BASE_STR MYSQL_BASE_VERSION
61 #define EXIM_MxSQL_BASE_STR "n.A."
65 /* Structure and anchor for caching connections. */
67 typedef struct mysql_connection {
68 struct mysql_connection *next;
73 static mysql_connection *mysql_connections = NULL;
77 /*************************************************
79 *************************************************/
81 /* See local README for interface description. */
84 mysql_open(const uschar * filename, uschar ** errmsg)
86 return (void *)(1); /* Just return something non-null */
91 /*************************************************
93 *************************************************/
95 /* See local README for interface description. */
100 mysql_connection *cn;
101 while ((cn = mysql_connections) != NULL)
103 mysql_connections = cn->next;
104 DEBUG(D_lookup) debug_printf_indent("close MYSQL connection: %s\n", cn->server);
105 mysql_close(cn->handle);
111 /*************************************************
112 * Internal search function *
113 *************************************************/
115 /* This function is called from the find entry point to do the search for a
119 query the query string
120 server the server string
121 resultptr where to store the result
122 errmsg where to point an error message
123 defer_break TRUE if no more servers are to be tried after DEFER
124 do_cache set zero if data is changed
126 The server string is of the form "host/dbname/user/password". The host can be
127 host:port. This string is in a nextinlist temporary buffer, so can be
130 Returns: OK, FAIL, or DEFER
134 perform_mysql_search(const uschar *query, uschar *server, uschar **resultptr,
135 uschar **errmsg, BOOL *defer_break, uint *do_cache)
137 MYSQL *mysql_handle = NULL; /* Keep compilers happy */
138 MYSQL_RES *mysql_result = NULL;
139 MYSQL_ROW mysql_row_data;
144 unsigned int num_fields;
145 gstring * result = NULL;
146 mysql_connection *cn;
147 uschar *server_copy = NULL;
150 /* Disaggregate the parameters from the server argument. The order is host,
151 database, user, password. We can write to the string, since it is in a
152 nextinlist temporary buffer. The copy of the string that is used for caching
153 has the password removed. This copy is also used for debugging output. */
155 for (int i = 3; i > 0; i--)
157 uschar *pp = Ustrrchr(server, '/');
160 *errmsg = string_sprintf("incomplete MySQL server data: %s",
161 (i == 3)? server : server_copy);
167 if (i == 3) server_copy = string_copy(server); /* sans password */
169 sdata[0] = server; /* What's left at the start */
171 /* See if we have a cached connection to the server */
173 for (cn = mysql_connections; cn; cn = cn->next)
174 if (Ustrcmp(cn->server, server_copy) == 0)
176 mysql_handle = cn->handle;
180 /* If no cached connection, we must set one up. Mysql allows for a host name
181 and port to be specified. It also allows the name of a Unix socket to be used.
182 Unfortunately, this contains slashes, but its use is expected to be rare, so
183 the rather cumbersome syntax shouldn't inconvenience too many people. We use
184 this: host:port(socket)[group] where all the parts are optional.
185 The "group" parameter specifies an option group from a MySQL option file. */
190 uschar *socket = NULL;
192 uschar *group = US"exim";
194 if ((p = Ustrchr(sdata[0], '[')))
198 while (*p && *p != ']') p++;
202 if ((p = Ustrchr(sdata[0], '(')))
206 while (*p && *p != ')') p++;
210 if ((p = Ustrchr(sdata[0], ':')))
216 if (Ustrchr(sdata[0], '/'))
218 *errmsg = string_sprintf("unexpected slash in MySQL server hostname: %s",
224 /* If the database is the empty string, set it NULL - the query must then
227 if (sdata[1][0] == 0) sdata[1] = NULL;
230 debug_printf_indent("MYSQL new connection: host=%s port=%d socket=%s "
231 "database=%s user=%s\n", sdata[0], port, socket, sdata[1], sdata[2]);
233 /* Get store for a new handle, initialize it, and connect to the server */
235 mysql_handle = store_get(sizeof(MYSQL), FALSE);
236 mysql_init(mysql_handle);
237 mysql_options(mysql_handle, MYSQL_READ_DEFAULT_GROUP, CS group);
238 if (mysql_real_connect(mysql_handle,
239 /* host user passwd database */
240 CS sdata[0], CS sdata[2], CS sdata[3], CS sdata[1],
241 port, CS socket, CLIENT_MULTI_RESULTS) == NULL)
243 *errmsg = string_sprintf("MYSQL connection failed: %s",
244 mysql_error(mysql_handle));
245 *defer_break = FALSE;
249 /* Add the connection to the cache */
251 cn = store_get(sizeof(mysql_connection), FALSE);
252 cn->server = server_copy;
253 cn->handle = mysql_handle;
254 cn->next = mysql_connections;
255 mysql_connections = cn;
258 /* Else use a previously cached connection */
263 debug_printf_indent("MYSQL using cached connection for %s\n", server_copy);
268 if (mysql_query(mysql_handle, CS query) != 0)
270 *errmsg = string_sprintf("MYSQL: query failed: %s\n",
271 mysql_error(mysql_handle));
272 *defer_break = FALSE;
276 /* Pick up the result. If the query was not of the type that returns data,
277 namely INSERT, UPDATE, or DELETE, an error occurs here. However, this situation
278 can be detected by calling mysql_field_count(). If its result is zero, no data
279 was expected (this is all explained clearly in the MySQL manual). In this case,
280 we return the number of rows affected by the command. In this event, we do NOT
281 want to cache the result; also the whole cache for the handle must be cleaned
282 up. Setting do_cache zero requests this. */
284 if (!(mysql_result = mysql_use_result(mysql_handle)))
286 if ( mysql_field_count(mysql_handle) == 0 )
288 DEBUG(D_lookup) debug_printf_indent("MYSQL: query was not one that returns data\n");
289 result = string_cat(result,
290 string_sprintf("%d", mysql_affected_rows(mysql_handle)));
294 *errmsg = string_sprintf("MYSQL: lookup result failed: %s\n",
295 mysql_error(mysql_handle));
296 *defer_break = FALSE;
300 /* Find the number of fields returned. If this is one, we don't add field
301 names to the data. Otherwise we do. */
303 num_fields = mysql_num_fields(mysql_result);
305 /* Get the fields and construct the result string. If there is more than one
306 row, we insert '\n' between them. */
308 fields = mysql_fetch_fields(mysql_result);
310 while ((mysql_row_data = mysql_fetch_row(mysql_result)))
312 unsigned long *lengths = mysql_fetch_lengths(mysql_result);
315 result = string_catn(result, US"\n", 1);
318 for (int i = 0; i < num_fields; i++)
319 result = lf_quote(US fields[i].name, US mysql_row_data[i], lengths[i],
322 else if (mysql_row_data[0] != NULL) /* NULL value yields nothing */
323 result = string_catn(result, US mysql_row_data[0], lengths[0]);
326 /* more results? -1 = no, >0 = error, 0 = yes (keep looping)
327 This is needed because of the CLIENT_MULTI_RESULTS on mysql_real_connect(),
328 we don't expect any more results. */
330 while((i = mysql_next_result(mysql_handle)) >= 0)
332 if(i == 0) /* Just ignore more results */
334 DEBUG(D_lookup) debug_printf_indent("MYSQL: got unexpected more results\n");
338 *errmsg = string_sprintf(
339 "MYSQL: lookup result error when checking for more results: %s\n",
340 mysql_error(mysql_handle));
344 /* If result is NULL then no data has been found and so we return FAIL.
345 Otherwise, we must terminate the string which has been built; string_cat()
346 always leaves enough room for a terminating zero. */
351 *errmsg = US"MYSQL: no data found";
354 /* Get here by goto from various error checks and from the case where no data
355 was read (e.g. an update query). */
359 /* Free mysal store for any result that was got; don't close the connection, as
362 if (mysql_result) mysql_free_result(mysql_result);
364 /* Non-NULL result indicates a successful result */
368 *resultptr = string_from_gstring(result);
369 gstring_release_unused(result);
374 DEBUG(D_lookup) debug_printf_indent("%s\n", *errmsg);
375 return yield; /* FAIL or DEFER */
382 /*************************************************
384 *************************************************/
386 /* See local README for interface description. The handle and filename
387 arguments are not used. The code to loop through a list of servers while the
388 query is deferred with a retryable error is now in a separate function that is
389 shared with other SQL lookups. */
392 mysql_find(void * handle, const uschar * filename, const uschar * query,
393 int length, uschar ** result, uschar ** errmsg, uint * do_cache,
396 return lf_sqlperform(US"MySQL", US"mysql_servers", mysql_servers, query,
397 result, errmsg, do_cache, perform_mysql_search);
402 /*************************************************
403 * Quote entry point *
404 *************************************************/
406 /* The only characters that need to be quoted (with backslash) are newline,
407 tab, carriage return, backspace, backslash itself, and the quote characters.
408 Percent, and underscore and not escaped. They are only special in contexts
409 where they can be wild cards, and this isn't usually the case for data inserted
410 from messages, since that isn't likely to be treated as a pattern of any kind.
411 Sadly, MySQL doesn't seem to behave like other programs. If you use something
412 like "where id="ab\%cd" it does not treat the string as "ab%cd". So you really
413 can't quote "on spec".
416 s the string to be quoted
417 opt additional option text or NULL if none
419 Returns: the processed string or NULL for a bad option
423 mysql_quote(uschar *s, uschar *opt)
430 if (opt != NULL) return NULL; /* No options recognized */
432 while ((c = *t++) != 0)
433 if (Ustrchr("\n\t\r\b\'\"\\", c) != NULL) count++;
435 if (count == 0) return s;
436 t = quoted = store_get(Ustrlen(s) + count + 1, is_tainted(s));
438 while ((c = *s++) != 0)
440 if (Ustrchr("\n\t\r\b\'\"\\", c) != NULL)
445 case '\n': *t++ = 'n';
447 case '\t': *t++ = 't';
449 case '\r': *t++ = 'r';
451 case '\b': *t++ = 'b';
465 /*************************************************
466 * Version reporting entry point *
467 *************************************************/
469 /* See local README for interface description. */
471 #include "../version.h"
474 mysql_version_report(FILE *f)
476 fprintf(f, "Library version: MySQL: Compile: %lu %s [%s]\n"
477 " Runtime: %lu %s\n",
478 (long)EXIM_MxSQL_VERSION_ID, EXIM_MxSQL_VERSION_STR, EXIM_MxSQL_BASE_STR,
479 mysql_get_client_version(), mysql_get_client_info());
481 fprintf(f, " Exim version %s\n", EXIM_VERSION_STR);
485 /* These are the lookup_info blocks for this driver */
487 static lookup_info mysql_lookup_info = {
488 US"mysql", /* lookup name */
489 lookup_querystyle, /* query-style lookup */
490 mysql_open, /* open function */
491 NULL, /* no check function */
492 mysql_find, /* find function */
493 NULL, /* no close function */
494 mysql_tidy, /* tidy function */
495 mysql_quote, /* quoting function */
496 mysql_version_report /* version reporting */
500 #define mysql_lookup_module_info _lookup_module_info
503 static lookup_info *_lookup_list[] = { &mysql_lookup_info };
504 lookup_module_info mysql_lookup_module_info = { LOOKUP_MODULE_INFO_MAGIC, _lookup_list, 1 };
506 /* End of lookups/mysql.c */