search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Exclude test/doctum-config.php from Scrutinizer analysis
[phpmyadmin.git] / libraries / classes / CreateAddField.php
blob88c0afffe61556b94f5f665b1f20a0e431015a19
1 <?php
2 /* vim: set expandtab sw=4 ts=4 sts=4: */
3 /**
4 * Holds the PhpMyAdmin\CreateAddField class
5 *
6 * @package PhpMyAdmin
7 */
8 declare(strict_types=1);
9
10 namespace PhpMyAdmin;
11
12 /**
13 * Set of functions for tbl_create.php and tbl_addfield.php
14 *
15 * @package PhpMyAdmin
16 */
17 class CreateAddField
18 {
19 /**
20 * @var DatabaseInterface
21 */
22 private $dbi;
23
24 /**
25 * Constructor
26 *
27 * @param DatabaseInterface $dbi DatabaseInterface interface
28 */
29 public function __construct(DatabaseInterface $dbi)
30 {
31 $this->dbi = $dbi;
32 }
33
34 /**
35 * Transforms the radio button field_key into 4 arrays
36 *
37 * @return array An array of arrays which represents column keys for each index type
38 */
39 private function getIndexedColumns(): array
40 {
41 $fieldCount = count($_POST['field_name']);
42 $fieldPrimary = json_decode($_POST['primary_indexes'], true);
43 $fieldIndex = json_decode($_POST['indexes'], true);
44 $fieldUnique = json_decode($_POST['unique_indexes'], true);
45 $fieldFullText = json_decode($_POST['fulltext_indexes'], true);
46 $fieldSpatial = json_decode($_POST['spatial_indexes'], true);
47
48 return [
49 $fieldCount,
50 $fieldPrimary,
51 $fieldIndex,
52 $fieldUnique,
53 $fieldFullText,
54 $fieldSpatial,
55 ];
56 }
57
58 /**
59 * Initiate the column creation statement according to the table creation or
60 * add columns to a existing table
61 *
62 * @param int $fieldCount number of columns
63 * @param boolean $isCreateTable true if requirement is to get the statement
64 * for table creation
65 *
66 * @return array An array of initial sql statements
67 * according to the request
68 */
69 private function buildColumnCreationStatement(
70 int $fieldCount,
71 bool $isCreateTable = true
72 ): array {
73 $definitions = [];
74 $previousField = -1;
75 for ($i = 0; $i < $fieldCount; ++$i) {
76 // '0' is also empty for php :-(
77 if (strlen($_POST['field_name'][$i]) === 0) {
78 continue;
79 }
80
81 $definition = $this->getStatementPrefix($isCreateTable) .
82 Table::generateFieldSpec(
83 trim($_POST['field_name'][$i]),
84 $_POST['field_type'][$i],
85 $_POST['field_length'][$i],
86 $_POST['field_attribute'][$i],
87 isset($_POST['field_collation'][$i])
88 ? $_POST['field_collation'][$i]
89 : '',
90 isset($_POST['field_null'][$i])
91 ? $_POST['field_null'][$i]
92 : 'NO',
93 $_POST['field_default_type'][$i],
94 $_POST['field_default_value'][$i],
95 isset($_POST['field_extra'][$i])
96 ? $_POST['field_extra'][$i]
97 : false,
98 isset($_POST['field_comments'][$i])
99 ? $_POST['field_comments'][$i]
100 : '',
101 isset($_POST['field_virtuality'][$i])
102 ? $_POST['field_virtuality'][$i]
103 : '',
104 isset($_POST['field_expression'][$i])
105 ? $_POST['field_expression'][$i]
106 : ''
107 );
108
109 $definition .= $this->setColumnCreationStatementSuffix(
110 $previousField,
111 $isCreateTable
112 );
113 $previousField = $i;
114 $definitions[] = $definition;
115 } // end for
116
117 return $definitions;
118 }
119
120 /**
121 * Set column creation suffix according to requested position of the new column
122 *
123 * @param int $previousField previous field for ALTER statement
124 * @param bool $isCreateTable true if requirement is to get the statement
125 * for table creation
126 *
127 * @return string suffix
128 */
129 private function setColumnCreationStatementSuffix(
130 int $previousField,
131 bool $isCreateTable = true
132 ): string {
133 // no suffix is needed if request is a table creation
134 $sqlSuffix = ' ';
135 if ($isCreateTable) {
136 return $sqlSuffix;
137 }
138
139 if ((string) $_POST['field_where'] === 'last') {
140 return $sqlSuffix;
141 }
142
143 // Only the first field can be added somewhere other than at the end
144 if ($previousField == -1) {
145 if ((string) $_POST['field_where'] === 'first') {
146 $sqlSuffix .= ' FIRST';
147 } elseif (! empty($_POST['after_field'])) {
148 $sqlSuffix .= ' AFTER '
149 . Util::backquote($_POST['after_field']);
150 }
151 } else {
152 $sqlSuffix .= ' AFTER '
153 . Util::backquote(
154 $_POST['field_name'][$previousField]
155 );
156 }
157
158 return $sqlSuffix;
159 }
160
161 /**
162 * Create relevant index statements
163 *
164 * @param array $index an array of index columns
165 * @param string $indexChoice index choice that which represents
166 * the index type of $indexed_fields
167 * @param boolean $isCreateTable true if requirement is to get the statement
168 * for table creation
169 *
170 * @return array an array of sql statements for indexes
171 */
172 private function buildIndexStatements(
173 array $index,
174 string $indexChoice,
175 bool $isCreateTable = true
176 ): array {
177 $statement = [];
178 if (! count($index)) {
179 return $statement;
180 }
181
182 $sqlQuery = $this->getStatementPrefix($isCreateTable)
183 . ' ' . $indexChoice;
184
185 if (! empty($index['Key_name']) && $index['Key_name'] != 'PRIMARY') {
186 $sqlQuery .= ' ' . Util::backquote($index['Key_name']);
187 }
188
189 $indexFields = [];
190 foreach ($index['columns'] as $key => $column) {
191 $indexFields[$key] = Util::backquote(
192 $_POST['field_name'][$column['col_index']]
193 );
194 if ($column['size']) {
195 $indexFields[$key] .= '(' . $column['size'] . ')';
196 }
197 }
198
199 $sqlQuery .= ' (' . implode(', ', $indexFields) . ')';
200
201 $keyBlockSizes = $index['Key_block_size'];
202 if (! empty($keyBlockSizes)) {
203 $sqlQuery .= " KEY_BLOCK_SIZE = "
204 . $this->dbi->escapeString($keyBlockSizes);
205 }
206
207 // specifying index type is allowed only for primary, unique and index only
208 $type = $index['Index_type'];
209 if ($index['Index_choice'] != 'SPATIAL'
210 && $index['Index_choice'] != 'FULLTEXT'
211 && in_array($type, Index::getIndexTypes())
212 ) {
213 $sqlQuery .= ' USING ' . $type;
214 }
215
216 $parser = $index['Parser'];
217 if ($index['Index_choice'] == 'FULLTEXT' && ! empty($parser)) {
218 $sqlQuery .= " WITH PARSER " . $this->dbi->escapeString($parser);
219 }
220
221 $comment = $index['Index_comment'];
222 if (! empty($comment)) {
223 $sqlQuery .= " COMMENT '" . $this->dbi->escapeString($comment)
224 . "'";
225 }
226
227 $statement[] = $sqlQuery;
228
229 return $statement;
230 }
231
232 /**
233 * Statement prefix for the buildColumnCreationStatement()
234 *
235 * @param boolean $isCreateTable true if requirement is to get the statement
236 * for table creation
237 *
238 * @return string prefix
239 */
240 private function getStatementPrefix(bool $isCreateTable = true): string
241 {
242 $sqlPrefix = " ";
243 if (! $isCreateTable) {
244 $sqlPrefix = ' ADD ';
245 }
246 return $sqlPrefix;
247 }
248
249 /**
250 * Merge index definitions for one type of index
251 *
252 * @param array $definitions the index definitions to merge to
253 * @param boolean $isCreateTable true if requirement is to get the statement
254 * for table creation
255 * @param array $indexedColumns the columns for one type of index
256 * @param string $indexKeyword the index keyword to use in the definition
257 *
258 * @return array
259 */
260 private function mergeIndexStatements(
261 array $definitions,
262 bool $isCreateTable,
263 array $indexedColumns,
264 string $indexKeyword
265 ): array {
266 foreach ($indexedColumns as $index) {
267 $statements = $this->buildIndexStatements(
268 $index,
269 " " . $indexKeyword . " ",
270 $isCreateTable
271 );
272 $definitions = array_merge($definitions, $statements);
273 }
274 return $definitions;
275 }
276
277 /**
278 * Returns sql statement according to the column and index specifications as
279 * requested
280 *
281 * @param boolean $isCreateTable true if requirement is to get the statement
282 * for table creation
283 *
284 * @return string sql statement
285 */
286 private function getColumnCreationStatements(bool $isCreateTable = true): string
287 {
288 $sqlStatement = "";
289 list(
290 $fieldCount,
291 $fieldPrimary,
292 $fieldIndex,
293 $fieldUnique,
294 $fieldFullText,
295 $fieldSpatial
296 ) = $this->getIndexedColumns();
297 $definitions = $this->buildColumnCreationStatement(
298 $fieldCount,
299 $isCreateTable
300 );
301
302 // Builds the PRIMARY KEY statements
303 $primaryKeyStatements = $this->buildIndexStatements(
304 isset($fieldPrimary[0]) ? $fieldPrimary[0] : [],
305 " PRIMARY KEY ",
306 $isCreateTable
307 );
308 $definitions = array_merge($definitions, $primaryKeyStatements);
309
310 // Builds the INDEX statements
311 $definitions = $this->mergeIndexStatements(
312 $definitions,
313 $isCreateTable,
314 $fieldIndex,
315 "INDEX"
316 );
317
318 // Builds the UNIQUE statements
319 $definitions = $this->mergeIndexStatements(
320 $definitions,
321 $isCreateTable,
322 $fieldUnique,
323 "UNIQUE"
324 );
325
326 // Builds the FULLTEXT statements
327 $definitions = $this->mergeIndexStatements(
328 $definitions,
329 $isCreateTable,
330 $fieldFullText,
331 "FULLTEXT"
332 );
333
334 // Builds the SPATIAL statements
335 $definitions = $this->mergeIndexStatements(
336 $definitions,
337 $isCreateTable,
338 $fieldSpatial,
339 "SPATIAL"
340 );
341
342 if (count($definitions)) {
343 $sqlStatement = implode(', ', $definitions);
344 }
345 return preg_replace('@, $@', '', $sqlStatement);
346 }
347
348 /**
349 * Returns the partitioning clause
350 *
351 * @return string partitioning clause
352 */
353 public function getPartitionsDefinition(): string
354 {
355 $sqlQuery = "";
356 if (! empty($_POST['partition_by'])
357 && ! empty($_POST['partition_expr'])
358 && ! empty($_POST['partition_count'])
359 && $_POST['partition_count'] > 1
360 ) {
361 $sqlQuery .= " PARTITION BY " . $_POST['partition_by']
362 . " (" . $_POST['partition_expr'] . ")"
363 . " PARTITIONS " . $_POST['partition_count'];
364 }
365
366 if (! empty($_POST['subpartition_by'])
367 && ! empty($_POST['subpartition_expr'])
368 && ! empty($_POST['subpartition_count'])
369 && $_POST['subpartition_count'] > 1
370 ) {
371 $sqlQuery .= " SUBPARTITION BY " . $_POST['subpartition_by']
372 . " (" . $_POST['subpartition_expr'] . ")"
373 . " SUBPARTITIONS " . $_POST['subpartition_count'];
374 }
375
376 if (! empty($_POST['partitions'])) {
377 $partitions = [];
378 foreach ($_POST['partitions'] as $partition) {
379 $partitions[] = $this->getPartitionDefinition($partition);
380 }
381 $sqlQuery .= " (" . implode(", ", $partitions) . ")";
382 }
383
384 return $sqlQuery;
385 }
386
387 /**
388 * Returns the definition of a partition/subpartition
389 *
390 * @param array $partition array of partition/subpartition detiails
391 * @param boolean $isSubPartition whether a subpartition
392 *
393 * @return string partition/subpartition definition
394 */
395 private function getPartitionDefinition(
396 array $partition,
397 bool $isSubPartition = false
398 ): string {
399 $sqlQuery = " " . ($isSubPartition ? "SUB" : "") . "PARTITION ";
400 $sqlQuery .= $partition['name'];
401
402 if (! empty($partition['value_type'])) {
403 $sqlQuery .= " VALUES " . $partition['value_type'];
404
405 if ($partition['value_type'] != 'LESS THAN MAXVALUE') {
406 $sqlQuery .= " (" . $partition['value'] . ")";
407 }
408 }
409
410 if (! empty($partition['engine'])) {
411 $sqlQuery .= " ENGINE = " . $partition['engine'];
412 }
413 if (! empty($partition['comment'])) {
414 $sqlQuery .= " COMMENT = '" . $partition['comment'] . "'";
415 }
416 if (! empty($partition['data_directory'])) {
417 $sqlQuery .= " DATA DIRECTORY = '" . $partition['data_directory'] . "'";
418 }
419 if (! empty($partition['index_directory'])) {
420 $sqlQuery .= " INDEX_DIRECTORY = '" . $partition['index_directory'] . "'";
421 }
422 if (! empty($partition['max_rows'])) {
423 $sqlQuery .= " MAX_ROWS = " . $partition['max_rows'];
424 }
425 if (! empty($partition['min_rows'])) {
426 $sqlQuery .= " MIN_ROWS = " . $partition['min_rows'];
427 }
428 if (! empty($partition['tablespace'])) {
429 $sqlQuery .= " TABLESPACE = " . $partition['tablespace'];
430 }
431 if (! empty($partition['node_group'])) {
432 $sqlQuery .= " NODEGROUP = " . $partition['node_group'];
433 }
434
435 if (! empty($partition['subpartitions'])) {
436 $subpartitions = [];
437 foreach ($partition['subpartitions'] as $subpartition) {
438 $subpartitions[] = $this->getPartitionDefinition(
439 $subpartition,
440 true
441 );
442 }
443 $sqlQuery .= " (" . implode(", ", $subpartitions) . ")";
444 }
445
446 return $sqlQuery;
447 }
448
449 /**
450 * Function to get table creation sql query
451 *
452 * @param string $db database name
453 * @param string $table table name
454 *
455 * @return string
456 */
457 public function getTableCreationQuery(string $db, string $table): string
458 {
459 // get column addition statements
460 $sqlStatement = $this->getColumnCreationStatements(true);
461
462 // Builds the 'create table' statement
463 $sqlQuery = 'CREATE TABLE ' . Util::backquote($db) . '.'
464 . Util::backquote(trim($table)) . ' (' . $sqlStatement . ')';
465
466 // Adds table type, character set, comments and partition definition
467 if (! empty($_POST['tbl_storage_engine'])
468 && ($_POST['tbl_storage_engine'] != 'Default')
469 ) {
470 $sqlQuery .= ' ENGINE = ' . $this->dbi->escapeString($_POST['tbl_storage_engine']);
471 }
472 if (! empty($_POST['tbl_collation'])) {
473 $sqlQuery .= Util::getCharsetQueryPart($_POST['tbl_collation']);
474 }
475 if (! empty($_POST['connection'])
476 && ! empty($_POST['tbl_storage_engine'])
477 && $_POST['tbl_storage_engine'] == 'FEDERATED'
478 ) {
479 $sqlQuery .= " CONNECTION = '"
480 . $this->dbi->escapeString($_POST['connection']) . "'";
481 }
482 if (! empty($_POST['comment'])) {
483 $sqlQuery .= ' COMMENT = \''
484 . $this->dbi->escapeString($_POST['comment']) . '\'';
485 }
486 $sqlQuery .= $this->getPartitionsDefinition();
487 $sqlQuery .= ';';
488
489 return $sqlQuery;
490 }
491
492 /**
493 * Function to get the number of fields for the table creation form
494 *
495 * @return int
496 */
497 public function getNumberOfFieldsFromRequest(): int
498 {
499 // Limit to 4096 fields (MySQL maximal value)
500 $mysqlLimit = 4096;
501
502 if (isset($_POST['submit_num_fields'])) { // adding new fields
503 $numberOfFields = intval($_POST['orig_num_fields']) + intval($_POST['added_fields']);
504 } elseif (isset($_POST['orig_num_fields'])) { // retaining existing fields
505 $numberOfFields = intval($_POST['orig_num_fields']);
506 } elseif (isset($_POST['num_fields'])
507 && intval($_POST['num_fields']) > 0
508 ) { // new table with specified number of fields
509 $numberOfFields = intval($_POST['num_fields']);
510 } else { // new table with unspecified number of fields
511 $numberOfFields = 4;
512 }
513
514 return min($numberOfFields, $mysqlLimit);
515 }
516
517 /**
518 * Function to execute the column creation statement
519 *
520 * @param string $db current database
521 * @param string $table current table
522 * @param string $errorUrl error page url
523 *
524 * @return array
525 */
526 public function tryColumnCreationQuery(
527 string $db,
528 string $table,
529 string $errorUrl
530 ): array {
531 // get column addition statements
532 $sqlStatement = $this->getColumnCreationStatements(false);
533
534 // To allow replication, we first select the db to use and then run queries
535 // on this db.
536 if (! $this->dbi->selectDb($db)) {
537 Util::mysqlDie(
538 $this->dbi->getError(),
539 'USE ' . Util::backquote($db),
540 false,
541 $errorUrl
542 );
543 }
544 $sqlQuery = 'ALTER TABLE ' .
545 Util::backquote($table) . ' ' . $sqlStatement . ';';
546 // If there is a request for SQL previewing.
547 if (isset($_POST['preview_sql'])) {
548 Core::previewSQL($sqlQuery);
549 }
550 return [
551 $this->dbi->tryQuery($sqlQuery),
552 $sqlQuery,
553 ];
554 }
555 }
phpMyAdmin