npm - @tachybase/module-multi-app - Versions diffs - 1.6.0 → 1.6.2 - Mend

@tachybase/module-multi-app 1.6.0 → 1.6.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (105) hide show

package/dist/node_modules/mariadb/lib/misc/parse.js CHANGED Viewed

@@ -1,3 +1,6 @@
+//  SPDX-License-Identifier: LGPL-2.1-or-later
+//  Copyright (c) 2015-2025 MariaDB Corporation Ab
 const Errors = require('../misc/errors');
 const State = {
@@ -10,89 +13,107 @@ const State = {
   Placeholder: 7 /* found placeholder */
 };
+const SLASH_BYTE = '/'.charCodeAt(0);
+const STAR_BYTE = '*'.charCodeAt(0);
+const BACKSLASH_BYTE = '\\'.charCodeAt(0);
+const HASH_BYTE = '#'.charCodeAt(0);
+const MINUS_BYTE = '-'.charCodeAt(0);
+const LINE_FEED_BYTE = '\n'.charCodeAt(0);
+const DBL_QUOTE_BYTE = '"'.charCodeAt(0);
+const QUOTE_BYTE = "'".charCodeAt(0);
+const RADICAL_BYTE = '`'.charCodeAt(0);
+const QUESTION_MARK_BYTE = '?'.charCodeAt(0);
+const COLON_BYTE = ':'.charCodeAt(0);
+const SEMICOLON_BYTE = ';'.charCodeAt(0);
 /**
- * Split query according to parameters (question mark).
- * Question mark in comment are not taken in account
+ * Search for question mark positions.
+ * Question marks in comment are not taken into account
  *
- * @returns {Array} query separated by parameters
+ * @returns {Array} question mark position
  */
-module.exports.splitQuery = function (sql) {
-  let partList = [];
+module.exports.splitQuery = function (query) {
+  let paramPositions = [];
   let state = State.Normal;
-  let lastChar = '\0';
+  let lastChar = 0x00;
   let singleQuotes = false;
-  let lastParameterPosition = 0;
-  let idx = 0;
-  let car = sql.charAt(idx++);
+  let currentChar;
-  while (car !== '') {
+  const len = query.length;
+  for (let i = 0; i < len; i++) {
+    currentChar = query[i];
     if (
       state === State.Escape &&
-      !((car === "'" && singleQuotes) || (car === '"' && !singleQuotes))
+      !((currentChar === QUOTE_BYTE && singleQuotes) || (currentChar === DBL_QUOTE_BYTE && !singleQuotes))
     ) {
       state = State.String;
-      car = sql.charAt(idx++);
+      lastChar = currentChar;
       continue;
     }
-    switch (car) {
-      case '*':
-        if (state === State.Normal && lastChar == '/') state = State.SlashStarComment;
+    switch (currentChar) {
+      case STAR_BYTE:
+        if (state === State.Normal && lastChar === SLASH_BYTE) {
+          state = State.SlashStarComment;
+        }
         break;
-      case '/':
-        if (state === State.SlashStarComment && lastChar == '*') state = State.Normal;
+      case SLASH_BYTE:
+        if (state === State.SlashStarComment && lastChar === STAR_BYTE) {
+          state = State.Normal;
+        }
         break;
-      case '#':
-        if (state === State.Normal) state = State.EOLComment;
+      case HASH_BYTE:
+        if (state === State.Normal) {
+          state = State.EOLComment;
+        }
         break;
-      case '-':
-        if (state === State.Normal && lastChar == '-') {
+      case MINUS_BYTE:
+        if (state === State.Normal && lastChar === MINUS_BYTE) {
           state = State.EOLComment;
         }
         break;
-      case '\n':
+      case LINE_FEED_BYTE:
         if (state === State.EOLComment) {
           state = State.Normal;
         }
         break;
-      case '"':
+      case DBL_QUOTE_BYTE:
         if (state === State.Normal) {
           state = State.String;
           singleQuotes = false;
         } else if (state === State.String && !singleQuotes) {
           state = State.Normal;
-        } else if (state === State.Escape && !singleQuotes) {
+        } else if (state === State.Escape) {
           state = State.String;
         }
         break;
-      case "'":
+      case QUOTE_BYTE:
         if (state === State.Normal) {
           state = State.String;
           singleQuotes = true;
         } else if (state === State.String && singleQuotes) {
           state = State.Normal;
-        } else if (state === State.Escape && singleQuotes) {
+        } else if (state === State.Escape) {
           state = State.String;
         }
         break;
-      case '\\':
-        if (state === State.String) state = State.Escape;
+      case BACKSLASH_BYTE:
+        if (state === State.String) {
+          state = State.Escape;
+        }
         break;
-      case '?':
+      case QUESTION_MARK_BYTE:
         if (state === State.Normal) {
-          partList.push(sql.substring(lastParameterPosition, idx - 1));
-          lastParameterPosition = idx;
+          paramPositions.push(i, ++i);
         }
         break;
-      case '`':
+      case RADICAL_BYTE:
         if (state === State.Backtick) {
           state = State.Normal;
         } else if (state === State.Normal) {
@@ -100,458 +121,165 @@ module.exports.splitQuery = function (sql) {
         }
         break;
     }
-    lastChar = car;
-    car = sql.charAt(idx++);
+    lastChar = currentChar;
   }
-  if (lastParameterPosition === 0) {
-    partList.push(sql);
-  } else {
-    partList.push(sql.substring(lastParameterPosition));
-  }
-  return partList;
+  return paramPositions;
 };
 /**
  * Split query according to parameters using placeholder.
  *
- * @param sql             sql with placeholders
+ * @param query           query bytes
  * @param info            connection information
  * @param initialValues   placeholder object
  * @param displaySql      display sql function
- * @returns {{parts: Array, values: Array}}
+ * @returns {{paramPositions: Array, values: Array}}
  */
-module.exports.splitQueryPlaceholder = function (sql, info, initialValues, displaySql) {
-  let partList = [];
+module.exports.splitQueryPlaceholder = function (query, info, initialValues, displaySql) {
+  let placeholderValues = Object.assign({}, initialValues);
+  let paramPositions = [];
   let values = [];
   let state = State.Normal;
-  let lastChar = '\0';
-  let singleQuotes = false;
-  let lastParameterPosition = 0;
-  let idx = 0;
-  let car = sql.charAt(idx++);
-  let placeholderName;
-  while (car !== '') {
-    if (
-      state === State.Escape &&
-      !((car === "'" && singleQuotes) || (car === '"' && !singleQuotes))
-    ) {
-      state = State.String;
-      car = sql.charAt(idx++);
-      continue;
-    }
-    switch (car) {
-      case '*':
-        if (state === State.Normal && lastChar == '/') state = State.SlashStarComment;
-        break;
-      case '/':
-        if (state === State.SlashStarComment && lastChar == '*') state = State.Normal;
-        break;
-      case '#':
-        if (state === State.Normal) state = State.EOLComment;
-        break;
-      case '-':
-        if (state === State.Normal && lastChar == '-') {
-          state = State.EOLComment;
-        }
-        break;
-      case '\n':
-        if (state === State.EOLComment) {
-          state = State.Normal;
-        }
-        break;
-      case '"':
-        if (state === State.Normal) {
-          state = State.String;
-          singleQuotes = false;
-        } else if (state === State.String && !singleQuotes) {
-          state = State.Normal;
-        } else if (state === State.Escape && !singleQuotes) {
-          state = State.String;
-        }
-        break;
-      case "'":
-        if (state === State.Normal) {
-          state = State.String;
-          singleQuotes = true;
-        } else if (state === State.String && singleQuotes) {
-          state = State.Normal;
-          singleQuotes = false;
-        } else if (state === State.Escape && singleQuotes) {
-          state = State.String;
-        }
-        break;
-      case '\\':
-        if (state === State.String) state = State.Escape;
-        break;
-      case ':':
-        if (state === State.Normal) {
-          partList.push(sql.substring(lastParameterPosition, idx - 1));
-          placeholderName = '';
-          while (
-            ((car = sql.charAt(idx++)) !== '' && car >= '0' && car <= '9') ||
-            (car >= 'A' && car <= 'Z') ||
-            (car >= 'a' && car <= 'z') ||
-            car === '-' ||
-            car === '_'
-          ) {
-            placeholderName += car;
-          }
-          idx--;
-          const val = initialValues[placeholderName];
-          if (val === undefined) {
-            throw Errors.createError(
-              "Placeholder '" + placeholderName + "' is not defined",
-              displaySql.call(),
-              false,
-              info,
-              'HY000',
-              Errors.ER_PLACEHOLDER_UNDEFINED
-            );
-          }
-          values.push(val);
-          lastParameterPosition = idx;
-        }
-        break;
-      case '`':
-        if (state === State.Backtick) {
-          state = State.Normal;
-        } else if (state === State.Normal) {
-          state = State.Backtick;
-        }
-    }
-    lastChar = car;
-    car = sql.charAt(idx++);
-  }
-  if (lastParameterPosition === 0) {
-    partList.push(sql);
-  } else {
-    partList.push(sql.substring(lastParameterPosition));
-  }
-  return { parts: partList, values: values };
-};
-/**
- * Split query according to parameters (question mark).
- *
- * The only rewritten queries follow these notation: INSERT [LOW_PRIORITY | DELAYED |
- * HIGH_PRIORITY] [IGNORE] [INTO] tbl_name [PARTITION (partition_list)] [(col,...)] {VALUES |
- * VALUE} (...) [ ON DUPLICATE KEY UPDATE col=expr [, col=expr] ... ] With expr without
- * parameter.
- *
- * Query with INSERT ... SELECT / containing LAST_INSERT_ID() will not be rewritten
- *
- * query parts will be split this way :
- * - pre-value part
- * - after value part
- * [- after parameter part] (after each parameter)
- * - ending part
- *
- * example : INSERT INTO MyTABLE VALUES (9, ?, 5, ?, 8) ON DUPLICATE KEY UPDATE col2=col2+10
- * will result in :
- * - pre-value       : "INSERT INTO MyTABLE VALUES"
- * - after value     : " (9, "
- * - after parameter : ", 5, "
- * - after parameter : ", 8)"
- * - ending          : " ON DUPLICATE KEY UPDATE col2=col2+10"
- *
- *
- * @returns {JSON} query separated by parameters
- */
-module.exports.splitRewritableQuery = function (sql) {
-  let reWritablePrepare = true;
-  let multipleQueriesPrepare = true;
-  let partList = [];
-  let lastChar = '\0';
-  let lastParameterPosition = 0;
-  let preValuePart1 = null;
-  let preValuePart2 = null;
-  let postValuePart = null;
+  let lastChar = 0x00;
   let singleQuotes = false;
+  let car;
-  let isInParenthesis = 0;
-  let isFirstChar = true;
-  let isInsert = false;
-  let semicolon = false;
-  let hasParam = false;
-  let state = State.Normal;
-  let idx = 0;
-  let car = sql.charAt(idx++);
-  while (car !== '') {
+  const len = query.length;
+  for (let i = 0; i < len; i++) {
+    car = query[i];
     if (
       state === State.Escape &&
-      !((car === "'" && singleQuotes) || (car === '"' && !singleQuotes))
+      !((car === QUOTE_BYTE && singleQuotes) || (car === DBL_QUOTE_BYTE && !singleQuotes))
     ) {
       state = State.String;
-      car = sql.charAt(idx++);
+      lastChar = car;
       continue;
     }
     switch (car) {
-      case '*':
-        if (state === State.Normal && lastChar == '/') {
+      case STAR_BYTE:
+        if (state === State.Normal && lastChar === SLASH_BYTE) {
           state = State.SlashStarComment;
         }
         break;
-      case '/':
-        if (state === State.SlashStarComment && lastChar == '*') {
+      case SLASH_BYTE:
+        if (state === State.SlashStarComment && lastChar === STAR_BYTE) {
           state = State.Normal;
+        } else if (state === State.Normal && lastChar === SLASH_BYTE) {
+          state = State.EOLComment;
         }
         break;
-      case '#':
+      case HASH_BYTE:
         if (state === State.Normal) {
           state = State.EOLComment;
         }
         break;
-      case '-':
-        if (state === State.Normal && lastChar == '-') {
+      case MINUS_BYTE:
+        if (state === State.Normal && lastChar === MINUS_BYTE) {
           state = State.EOLComment;
         }
         break;
-      case '\n':
+      case LINE_FEED_BYTE:
         if (state === State.EOLComment) {
           state = State.Normal;
         }
         break;
-      case '"':
+      case DBL_QUOTE_BYTE:
         if (state === State.Normal) {
           state = State.String;
           singleQuotes = false;
         } else if (state === State.String && !singleQuotes) {
           state = State.Normal;
-        } else if (state === State.Escape && !singleQuotes) {
+        } else if (state === State.Escape) {
           state = State.String;
         }
         break;
-      case ';':
-        if (state === State.Normal) {
-          semicolon = true;
-          multipleQueriesPrepare = false;
-        }
-        break;
-      case "'":
+      case QUOTE_BYTE:
         if (state === State.Normal) {
           state = State.String;
           singleQuotes = true;
         } else if (state === State.String && singleQuotes) {
           state = State.Normal;
-        } else if (state === State.Escape && singleQuotes) {
+        } else if (state === State.Escape) {
           state = State.String;
         }
         break;
-      case '\\':
+      case BACKSLASH_BYTE:
         if (state === State.String) {
           state = State.Escape;
         }
         break;
-      case '?':
+      case QUESTION_MARK_BYTE:
         if (state === State.Normal) {
-          hasParam = true;
-          let part = sql.substring(lastParameterPosition, idx - 1);
-          lastParameterPosition = idx;
+          const key = Object.keys(placeholderValues)[0];
+          values.push(placeholderValues[key]);
+          delete placeholderValues[key];
-          if (preValuePart1 === null) {
-            preValuePart1 = part;
-            preValuePart2 = '';
-          } else if (preValuePart2 === null) {
-            preValuePart2 = part;
-          } else {
-            if (postValuePart) {
-              //having parameters after the last ")" of value is not rewritable
-              reWritablePrepare = false;
-              partList.push(postValuePart + part);
-              postValuePart = null;
-            } else partList.push(part);
-          }
-        }
-        break;
-      case '`':
-        if (state === State.Backtick) {
-          state = State.Normal;
-        } else if (state === State.Normal) {
-          state = State.Backtick;
+          paramPositions.push(i);
+          paramPositions.push(++i);
         }
         break;
+      case COLON_BYTE:
+        if (state === State.Normal) {
+          let j = 1;
-      case 's':
-      case 'S':
-        if (
-          state === State.Normal &&
-          postValuePart === null &&
-          sql.length > idx + 5 &&
-          (sql.charAt(idx) === 'e' || sql.charAt(idx) === 'E') &&
-          (sql.charAt(idx + 1) === 'l' || sql.charAt(idx + 1) === 'L') &&
-          (sql.charAt(idx + 2) === 'e' || sql.charAt(idx + 2) === 'E') &&
-          (sql.charAt(idx + 3) === 'c' || sql.charAt(idx + 3) === 'C') &&
-          (sql.charAt(idx + 4) === 't' || sql.charAt(idx + 4) === 'T')
-        ) {
-          //field/table name might contain 'select'
-          if (
-            idx > 1 &&
-            sql.charAt(idx - 2) > ' ' &&
-            '();><=-+,'.indexOf(sql.charAt(idx - 2)) === -1
+          while (
+            (i + j < len && query[i + j] >= '0'.charCodeAt(0) && query[i + j] <= '9'.charCodeAt(0)) ||
+            (query[i + j] >= 'A'.charCodeAt(0) && query[i + j] <= 'Z'.charCodeAt(0)) ||
+            (query[i + j] >= 'a'.charCodeAt(0) && query[i + j] <= 'z'.charCodeAt(0)) ||
+            query[i + j] === '-'.charCodeAt(0) ||
+            query[i + j] === '_'.charCodeAt(0)
           ) {
-            break;
+            j++;
           }
-          if (sql.charAt(idx + 5) > ' ' && '();><=-+,'.indexOf(sql.charAt(idx + 5)) === -1) {
-            break;
+          paramPositions.push(i, i + j);
+          const placeholderName = query.toString('utf8', i + 1, i + j);
+          i += j;
+          let val;
+          if (placeholderName in placeholderValues) {
+            val = placeholderValues[placeholderName];
+            delete placeholderValues[placeholderName];
+          } else {
+            // value is already used
+            val = initialValues[placeholderName];
           }
-          //SELECT queries, INSERT FROM SELECT not rewritable
-          reWritablePrepare = false;
-        }
-        break;
-      case 'v':
-      case 'V':
-        if (
-          state === State.Normal &&
-          !preValuePart1 &&
-          (lastChar == ')' || lastChar <= ' ') &&
-          sql.length > idx + 6 &&
-          (sql.charAt(idx) === 'a' || sql.charAt(idx) === 'A') &&
-          (sql.charAt(idx + 1) === 'l' || sql.charAt(idx + 1) === 'L') &&
-          (sql.charAt(idx + 2) === 'u' || sql.charAt(idx + 2) === 'U') &&
-          (sql.charAt(idx + 3) === 'e' || sql.charAt(idx + 3) === 'E') &&
-          (sql.charAt(idx + 4) === 's' || sql.charAt(idx + 4) === 'S') &&
-          (sql.charAt(idx + 5) === '(' || sql.charAt(idx + 5) <= ' ')
-        ) {
-          idx += 5;
-          preValuePart1 = sql.substring(lastParameterPosition, idx);
-          lastParameterPosition = idx;
-        }
-        break;
-      case 'l':
-      case 'L':
-        if (
-          state === State.Normal &&
-          sql.length > idx + 13 &&
-          (sql.charAt(idx) === 'a' || sql.charAt(idx) === 'A') &&
-          (sql.charAt(idx + 1) === 's' || sql.charAt(idx + 1) === 'S') &&
-          (sql.charAt(idx + 2) === 't' || sql.charAt(idx + 2) === 'T') &&
-          sql.charAt(idx + 3) === '_' &&
-          (sql.charAt(idx + 4) === 'i' || sql.charAt(idx + 4) === 'I') &&
-          (sql.charAt(idx + 5) === 'n' || sql.charAt(idx + 5) === 'N') &&
-          (sql.charAt(idx + 6) === 's' || sql.charAt(idx + 6) === 'S') &&
-          (sql.charAt(idx + 7) === 'e' || sql.charAt(idx + 7) === 'E') &&
-          (sql.charAt(idx + 8) === 'r' || sql.charAt(idx + 8) === 'R') &&
-          (sql.charAt(idx + 9) === 't' || sql.charAt(idx + 9) === 'T') &&
-          sql.charAt(idx + 10) === '_' &&
-          (sql.charAt(idx + 11) === 'i' || sql.charAt(idx + 11) === 'I') &&
-          (sql.charAt(idx + 12) === 'd' || sql.charAt(idx + 12) === 'D') &&
-          sql.charAt(idx + 13) === '('
-        ) {
-          reWritablePrepare = false;
-          idx += 13;
-        }
-        break;
-      case '(':
-        if (state === State.Normal) {
-          isInParenthesis++;
-        }
-        break;
-      case ')':
-        if (state === State.Normal) {
-          isInParenthesis--;
-          if (isInParenthesis === 0 && preValuePart2 !== null && postValuePart === null) {
-            postValuePart = sql.substring(lastParameterPosition, idx);
-            lastParameterPosition = idx;
+          if (val === undefined) {
+            throw Errors.createError(
+              `Placeholder '${placeholderName}' is not defined`,
+              Errors.ER_PLACEHOLDER_UNDEFINED,
+              info,
+              'HY000',
+              displaySql.call()
+            );
           }
+          values.push(val);
         }
         break;
-      default:
-        if (state === State.Normal && isFirstChar && car > ' ') {
-          if (
-            (car === 'I' || car === 'i') &&
-            sql.length > idx + 6 &&
-            (sql.charAt(idx) === 'n' || sql.charAt(idx) === 'N') &&
-            (sql.charAt(idx + 1) === 's' || sql.charAt(idx + 1) === 'S') &&
-            (sql.charAt(idx + 2) === 'e' || sql.charAt(idx + 2) === 'E') &&
-            (sql.charAt(idx + 3) === 'r' || sql.charAt(idx + 3) === 'R') &&
-            (sql.charAt(idx + 4) === 't' || sql.charAt(idx + 4) === 'T') &&
-            (sql.charAt(idx + 5) === '(' || sql.charAt(idx + 5) <= ' ')
-          ) {
-            isInsert = true;
-          }
-          isFirstChar = false;
-        }
-        //multiple queries
-        if (state === State.Normal && semicolon && car >= ' ') {
-          reWritablePrepare = false;
-          multipleQueriesPrepare = true;
+      case RADICAL_BYTE:
+        if (state === State.Backtick) {
+          state = State.Normal;
+        } else if (state === State.Normal) {
+          state = State.Backtick;
         }
         break;
     }
     lastChar = car;
-    car = sql.charAt(idx++);
   }
-  if (state === State.EOLComment) multipleQueriesPrepare = false;
-  if (!hasParam) {
-    //permit to have rewrite without parameter
-    if (preValuePart1 === null) {
-      partList.unshift('');
-      partList.unshift(sql);
-    } else {
-      partList.unshift(sql.substring(lastParameterPosition, idx));
-      partList.unshift(preValuePart1);
-    }
-    lastParameterPosition = idx;
-  } else {
-    partList.unshift(preValuePart2 !== null ? preValuePart2 : '');
-    partList.unshift(preValuePart1 !== null ? preValuePart1 : '');
-  }
-  if (!isInsert) {
-    reWritablePrepare = false;
-  }
-  //postValuePart is the value after the last parameter and parenthesis
-  //if no param, don't add to the list.
-  if (hasParam) {
-    partList.push(postValuePart !== null ? postValuePart : '');
-  }
-  partList.push(sql.substring(lastParameterPosition, idx));
-  return {
-    partList: partList,
-    reWritable: reWritablePrepare,
-    multipleQueries: multipleQueriesPrepare
-  };
+  return { paramPositions: paramPositions, values: values };
 };
-module.exports.searchPlaceholder = function (sql, info, initialValues, displaySql) {
+module.exports.searchPlaceholder = function (sql) {
   let sqlPlaceHolder = '';
-  const rowNumber = initialValues.length;
-  let values = new Array(rowNumber);
-  for (let i = 0; i < rowNumber; i++) values[i] = [];
+  let placeHolderIndex = [];
   let state = State.Normal;
   let lastChar = '\0';
@@ -563,10 +291,7 @@ module.exports.searchPlaceholder = function (sql, info, initialValues, displaySq
   let placeholderName;
   while (car !== '') {
-    if (
-      state === State.Escape &&
-      !((car === "'" && singleQuotes) || (car === '"' && !singleQuotes))
-    ) {
+    if (state === State.Escape && !((car === "'" && singleQuotes) || (car === '"' && !singleQuotes))) {
       state = State.String;
       lastChar = car;
       car = sql.charAt(idx++);
@@ -575,11 +300,11 @@ module.exports.searchPlaceholder = function (sql, info, initialValues, displaySq
     switch (car) {
       case '*':
-        if (state === State.Normal && lastChar == '/') state = State.SlashStarComment;
+        if (state === State.Normal && lastChar === '/') state = State.SlashStarComment;
         break;
       case '/':
-        if (state === State.SlashStarComment && lastChar == '*') state = State.Normal;
+        if (state === State.SlashStarComment && lastChar === '*') state = State.Normal;
         break;
       case '#':
@@ -587,7 +312,7 @@ module.exports.searchPlaceholder = function (sql, info, initialValues, displaySq
         break;
       case '-':
-        if (state === State.Normal && lastChar == '-') {
+        if (state === State.Normal && lastChar === '-') {
           state = State.EOLComment;
         }
         break;
@@ -639,14 +364,7 @@ module.exports.searchPlaceholder = function (sql, info, initialValues, displaySq
             placeholderName += car;
           }
           idx--;
-          for (let i = 0; i < rowNumber; i++) {
-            const val = initialValues[i][placeholderName];
-            if (val !== undefined) {
-              values[i].push(val);
-            } else {
-              values[i].push(null);
-            }
-          }
+          placeHolderIndex.push(placeholderName);
           lastParameterPosition = idx;
         }
         break;
@@ -667,367 +385,145 @@ module.exports.searchPlaceholder = function (sql, info, initialValues, displaySq
     sqlPlaceHolder += sql.substring(lastParameterPosition);
   }
-  return { sql: sqlPlaceHolder, values: values };
+  return { sql: sqlPlaceHolder, placeHolderIndex: placeHolderIndex };
 };
 /**
- * Split query according to named parameters.
- *
- * The only rewritten queries follow these notation: INSERT [LOW_PRIORITY | DELAYED |
- * HIGH_PRIORITY] [IGNORE] [INTO] tbl_name [PARTITION (partition_list)] [(col,...)] {VALUES |
- * VALUE} (...) [ ON DUPLICATE KEY UPDATE col=expr [, col=expr] ... ] With expr without
- * parameter.
- *
- * Query with INSERT ... SELECT / containing LAST_INSERT_ID() will not be rewritten
- *
- * query parts will be split this way :
- * - pre-value part
- * - after value part
- * [- after parameter part] (after each parameter)
- * - ending part
- *
- * example : INSERT INTO MyTABLE VALUES (9, :param1, 5, :param2, 8) ON DUPLICATE KEY UPDATE col2=col2+10
- * will result in :
- * - pre-value       : "INSERT INTO MyTABLE VALUES"
- * - after value     : " (9, "
- * - after parameter : ", 5, "
- * - after parameter : ", 8)"
- * - ending          : " ON DUPLICATE KEY UPDATE col2=col2+10"
- *
+ * Ensure that filename requested by server corresponds to query
+ * protocol : https://mariadb.com/kb/en/library/local_infile-packet/
  *
- * @returns {JSON} query separated by parameters
+ * @param sql         query
+ * @param parameters  parameters if any
+ * @param fileName    server requested file
+ * @returns {boolean} is filename corresponding to query
  */
-module.exports.splitRewritableNamedParameterQuery = function (sql, initialValues) {
-  let reWritablePrepare = true;
-  let multipleQueriesPrepare = true;
-  let partList = [];
-  let values = new Array(initialValues.length);
-  for (let i = 0; i < values.length; i++) values[i] = [];
-  let lastChar = '\0';
-  let lastParameterPosition = 0;
-  let preValuePart1 = null;
-  let preValuePart2 = null;
-  let postValuePart = null;
+module.exports.validateFileName = function (sql, parameters, fileName) {
+  // in case of windows, file name in query are escaped
+  // so for example LOAD DATA LOCAL INFILE 'C:\\Temp\\myFile.txt' ...
+  // but server return 'C:\Temp\myFile.txt'
+  // so with regex escaped, must test LOAD DATA LOCAL INFILE 'C:\\\\Temp\\\\myFile.txt'
+  let queryValidator = new RegExp(
+    "^(\\s*\\/\\*([^\\*]|\\*[^\\/])*\\*\\/)*\\s*LOAD\\s+DATA\\s+((LOW_PRIORITY|CONCURRENT)\\s+)?LOCAL\\s+INFILE\\s+'" +
+      fileName.replace(/\\/g, '\\\\\\\\').replace('.', '\\.') +
+      "'",
+    'i'
+  );
+  if (queryValidator.test(sql)) return true;
-  let singleQuotes = false;
+  if (parameters != null) {
+    queryValidator = new RegExp(
+      '^(\\s*\\/\\*([^\\*]|\\*[^\\/])*\\*\\/)*\\s*LOAD\\s+DATA\\s+((LOW_PRIORITY|CONCURRENT)\\s+)?LOCAL\\s+INFILE\\s+\\?',
+      'i'
+    );
+    if (queryValidator.test(sql) && parameters.length > 0) {
+      if (Array.isArray(parameters)) {
+        return parameters[0].toLowerCase() === fileName.toLowerCase();
+      }
+      return parameters.toLowerCase() === fileName.toLowerCase();
+    }
+  }
+  return false;
+};
-  let isInParenthesis = 0;
-  let isFirstChar = true;
-  let isInsert = false;
-  let semicolon = false;
-  let hasParam = false;
-  let placeholderName;
+/**
+ * Parse commands from buffer, returns queries separated by ';'
+ * (last one is not parsed)
+ *
+ * @param bufState buffer
+ * @returns {*[]} array of queries contained in buffer
+ */
+module.exports.parseQueries = function (bufState) {
   let state = State.Normal;
+  let lastChar = 0x00;
+  let currByte;
+  let queries = [];
+  let singleQuotes = false;
-  let idx = 0;
-  let car = sql.charAt(idx++);
-  while (car !== '') {
+  for (let i = bufState.offset; i < bufState.end; i++) {
+    currByte = bufState.buffer[i];
     if (
       state === State.Escape &&
-      !((car === "'" && singleQuotes) || (car === '"' && !singleQuotes))
+      !((currByte === QUOTE_BYTE && singleQuotes) || (currByte === DBL_QUOTE_BYTE && !singleQuotes))
     ) {
       state = State.String;
-      car = sql.charAt(idx++);
+      lastChar = currByte;
       continue;
     }
-    switch (car) {
-      case '*':
-        if (state === State.Normal && lastChar == '/') {
+    switch (currByte) {
+      case STAR_BYTE:
+        if (state === State.Normal && lastChar === SLASH_BYTE) {
           state = State.SlashStarComment;
         }
         break;
-      case '/':
-        if (state === State.SlashStarComment && lastChar == '*') {
+      case SLASH_BYTE:
+        if (state === State.SlashStarComment && lastChar === STAR_BYTE) {
           state = State.Normal;
+        } else if (state === State.Normal && lastChar === SLASH_BYTE) {
+          state = State.EOLComment;
         }
         break;
-      case '#':
+      case HASH_BYTE:
         if (state === State.Normal) {
           state = State.EOLComment;
         }
         break;
-      case '-':
-        if (state === State.Normal && lastChar == '-') {
+      case MINUS_BYTE:
+        if (state === State.Normal && lastChar === MINUS_BYTE) {
           state = State.EOLComment;
         }
         break;
-      case '\n':
+      case LINE_FEED_BYTE:
         if (state === State.EOLComment) {
           state = State.Normal;
         }
         break;
-      case '"':
+      case DBL_QUOTE_BYTE:
         if (state === State.Normal) {
           state = State.String;
           singleQuotes = false;
         } else if (state === State.String && !singleQuotes) {
           state = State.Normal;
-        } else if (state === State.Escape && !singleQuotes) {
+        } else if (state === State.Escape) {
           state = State.String;
         }
         break;
-      case ';':
-        if (state === State.Normal) {
-          semicolon = true;
-          multipleQueriesPrepare = false;
-        }
-        break;
-      case "'":
+      case QUOTE_BYTE:
         if (state === State.Normal) {
           state = State.String;
           singleQuotes = true;
         } else if (state === State.String && singleQuotes) {
           state = State.Normal;
-        } else if (state === State.Escape && singleQuotes) {
+        } else if (state === State.Escape) {
           state = State.String;
         }
         break;
-      case '\\':
+      case BACKSLASH_BYTE:
         if (state === State.String) {
           state = State.Escape;
         }
         break;
-      case ':':
+      case SEMICOLON_BYTE:
         if (state === State.Normal) {
-          let part = sql.substring(lastParameterPosition, idx - 1);
-          placeholderName = '';
-          while (
-            ((car = sql.charAt(idx++)) !== '' && car >= '0' && car <= '9') ||
-            (car >= 'A' && car <= 'Z') ||
-            (car >= 'a' && car <= 'z') ||
-            car === '-' ||
-            car === '_'
-          ) {
-            placeholderName += car;
-          }
-          idx--;
-          hasParam = true;
-          initialValues.forEach((row, idx) => {
-            if (row[placeholderName] !== undefined) {
-              values[idx].push(row[placeholderName]);
-            } else {
-              values[idx].push(null);
-            }
-          });
-          lastParameterPosition = idx;
-          if (preValuePart1 === null) {
-            preValuePart1 = part;
-            preValuePart2 = '';
-          } else if (preValuePart2 === null) {
-            preValuePart2 = part;
-          } else {
-            if (postValuePart) {
-              //having parameters after the last ")" of value is not rewritable
-              reWritablePrepare = false;
-              partList.push(postValuePart + part);
-              postValuePart = null;
-            } else partList.push(part);
-          }
+          queries.push(bufState.buffer.toString('utf8', bufState.offset, i));
+          bufState.offset = i + 1;
         }
         break;
-      case '`':
+      case RADICAL_BYTE:
         if (state === State.Backtick) {
           state = State.Normal;
         } else if (state === State.Normal) {
           state = State.Backtick;
         }
         break;
-      case 's':
-      case 'S':
-        if (
-          state === State.Normal &&
-          postValuePart === null &&
-          sql.length > idx + 5 &&
-          (sql.charAt(idx) === 'e' || sql.charAt(idx) === 'E') &&
-          (sql.charAt(idx + 1) === 'l' || sql.charAt(idx + 1) === 'L') &&
-          (sql.charAt(idx + 2) === 'e' || sql.charAt(idx + 2) === 'E') &&
-          (sql.charAt(idx + 3) === 'c' || sql.charAt(idx + 3) === 'C') &&
-          (sql.charAt(idx + 4) === 't' || sql.charAt(idx + 4) === 'T')
-        ) {
-          //field/table name might contain 'select'
-          if (
-            idx > 1 &&
-            sql.charAt(idx - 2) > ' ' &&
-            '();><=-+,'.indexOf(sql.charAt(idx - 2)) === -1
-          ) {
-            break;
-          }
-          if (sql.charAt(idx + 5) > ' ' && '();><=-+,'.indexOf(sql.charAt(idx + 5)) === -1) {
-            break;
-          }
-          //SELECT queries, INSERT FROM SELECT not rewritable
-          reWritablePrepare = false;
-        }
-        break;
-      case 'v':
-      case 'V':
-        if (
-          state === State.Normal &&
-          !preValuePart1 &&
-          (lastChar == ')' || lastChar <= ' ') &&
-          sql.length > idx + 6 &&
-          (sql.charAt(idx) === 'a' || sql.charAt(idx) === 'A') &&
-          (sql.charAt(idx + 1) === 'l' || sql.charAt(idx + 1) === 'L') &&
-          (sql.charAt(idx + 2) === 'u' || sql.charAt(idx + 2) === 'U') &&
-          (sql.charAt(idx + 3) === 'e' || sql.charAt(idx + 3) === 'E') &&
-          (sql.charAt(idx + 4) === 's' || sql.charAt(idx + 4) === 'S') &&
-          (sql.charAt(idx + 5) === '(' || sql.charAt(idx + 5) <= ' ')
-        ) {
-          idx += 5;
-          preValuePart1 = sql.substring(lastParameterPosition, idx);
-          lastParameterPosition = idx;
-        }
-        break;
-      case 'l':
-      case 'L':
-        if (
-          state === State.Normal &&
-          sql.length > idx + 13 &&
-          (sql.charAt(idx) === 'a' || sql.charAt(idx) === 'A') &&
-          (sql.charAt(idx + 1) === 's' || sql.charAt(idx + 1) === 'S') &&
-          (sql.charAt(idx + 2) === 't' || sql.charAt(idx + 2) === 'T') &&
-          sql.charAt(idx + 3) === '_' &&
-          (sql.charAt(idx + 4) === 'i' || sql.charAt(idx + 4) === 'I') &&
-          (sql.charAt(idx + 5) === 'n' || sql.charAt(idx + 5) === 'N') &&
-          (sql.charAt(idx + 6) === 's' || sql.charAt(idx + 6) === 'S') &&
-          (sql.charAt(idx + 7) === 'e' || sql.charAt(idx + 7) === 'E') &&
-          (sql.charAt(idx + 8) === 'r' || sql.charAt(idx + 8) === 'R') &&
-          (sql.charAt(idx + 9) === 't' || sql.charAt(idx + 9) === 'T') &&
-          sql.charAt(idx + 10) === '_' &&
-          (sql.charAt(idx + 11) === 'i' || sql.charAt(idx + 11) === 'I') &&
-          (sql.charAt(idx + 12) === 'd' || sql.charAt(idx + 12) === 'D') &&
-          sql.charAt(idx + 13) === '('
-        ) {
-          reWritablePrepare = false;
-          idx += 13;
-        }
-        break;
-      case '(':
-        if (state === State.Normal) {
-          isInParenthesis++;
-        }
-        break;
-      case ')':
-        if (state === State.Normal) {
-          isInParenthesis--;
-          if (isInParenthesis === 0 && preValuePart2 !== null && postValuePart === null) {
-            postValuePart = sql.substring(lastParameterPosition, idx);
-            lastParameterPosition = idx;
-          }
-        }
-        break;
-      default:
-        if (state === State.Normal && isFirstChar && car > ' ') {
-          if (
-            (car === 'I' || car === 'i') &&
-            sql.length > idx + 6 &&
-            (sql.charAt(idx) === 'n' || sql.charAt(idx) === 'N') &&
-            (sql.charAt(idx + 1) === 's' || sql.charAt(idx + 1) === 'S') &&
-            (sql.charAt(idx + 2) === 'e' || sql.charAt(idx + 2) === 'E') &&
-            (sql.charAt(idx + 3) === 'r' || sql.charAt(idx + 3) === 'R') &&
-            (sql.charAt(idx + 4) === 't' || sql.charAt(idx + 4) === 'T') &&
-            (sql.charAt(idx + 5) === '(' || sql.charAt(idx + 5) <= ' ')
-          ) {
-            isInsert = true;
-          }
-          isFirstChar = false;
-        }
-        //multiple queries
-        if (state === State.Normal && semicolon && car >= ' ') {
-          reWritablePrepare = false;
-          multipleQueriesPrepare = true;
-        }
-        break;
-    }
-    lastChar = car;
-    car = sql.charAt(idx++);
-  }
-  if (state === State.EOLComment) multipleQueriesPrepare = false;
-  if (!hasParam) {
-    //permit to have rewrite without parameter
-    if (preValuePart1 === null) {
-      partList.unshift('');
-      partList.unshift(sql);
-    } else {
-      partList.unshift(sql.substring(lastParameterPosition, idx));
-      partList.unshift(preValuePart1);
-    }
-    lastParameterPosition = idx;
-  } else {
-    partList.unshift(preValuePart2 !== null ? preValuePart2 : '');
-    partList.unshift(preValuePart1 !== null ? preValuePart1 : '');
-  }
-  if (!isInsert) {
-    reWritablePrepare = false;
-  }
-  //postValuePart is the value after the last parameter and parenthesis
-  //if no param, don't add to the list.
-  if (hasParam) {
-    partList.push(postValuePart !== null ? postValuePart : '');
-  }
-  partList.push(sql.substring(lastParameterPosition, idx));
-  return {
-    partList: partList,
-    reWritable: reWritablePrepare,
-    multipleQueries: multipleQueriesPrepare,
-    values: values
-  };
-};
-/**
- * Ensure that filename requested by server corresponds to query
- * protocol : https://mariadb.com/kb/en/library/local_infile-packet/
- *
- * @param sql         query
- * @param parameters  parameters if any
- * @param fileName    server requested file
- * @returns {boolean} is filename corresponding to query
- */
-module.exports.validateFileName = function (sql, parameters, fileName) {
-  // in case of windows, file name in query are escaped
-  // so for example LOAD DATA LOCAL INFILE 'C:\\Temp\\myFile.txt' ...
-  // but server return 'C:\Temp\myFile.txt'
-  // so with regex escaped, must test LOAD DATA LOCAL INFILE 'C:\\\\Temp\\\\myFile.txt'
-  let queryValidator = new RegExp(
-    "^(\\s*\\/\\*([^\\*]|\\*[^\\/])*\\*\\/)*\\s*LOAD\\s+DATA\\s+((LOW_PRIORITY|CONCURRENT)\\s+)?LOCAL\\s+INFILE\\s+'" +
-      fileName.replace(/\\/g, '\\\\\\\\').replace('.', '\\.') +
-      "'",
-    'i'
-  );
-  if (queryValidator.test(sql)) return true;
-  if (parameters != null) {
-    queryValidator = new RegExp(
-      '^(\\s*\\/\\*([^\\*]|\\*[^\\/])*\\*\\/)*\\s*LOAD\\s+DATA\\s+((LOW_PRIORITY|CONCURRENT)\\s+)?LOCAL\\s+INFILE\\s+\\?',
-      'i'
-    );
-    if (queryValidator.test(sql) && parameters.length > 0) {
-      if (Array.isArray(parameters)) {
-        return parameters[0].toLowerCase() === fileName.toLowerCase();
-      }
-      return parameters.toLowerCase() === fileName.toLowerCase();
     }
+    lastChar = currByte;
   }
-  return false;
+  return queries;
 };