2003-08-31 05:33:59 +00:00
|
|
|
#include <stdio.h>
|
|
|
|
#include <string.h>
|
|
|
|
#include <stdlib.h>
|
|
|
|
|
2003-10-17 17:22:49 +00:00
|
|
|
#include "error_numbers.h"
|
2004-04-09 23:33:50 +00:00
|
|
|
#include "util.h"
|
2003-08-31 05:33:59 +00:00
|
|
|
#include "db_base.h"
|
|
|
|
|
2004-04-30 23:18:56 +00:00
|
|
|
#ifdef _USING_FCGI_
|
|
|
|
#include "fcgi_stdio.h"
|
|
|
|
#endif
|
|
|
|
|
2003-12-18 00:22:25 +00:00
|
|
|
#define MAX_QUERY_LEN 256000
|
|
|
|
// TODO: use "string" instead of char[]
|
2003-08-31 05:33:59 +00:00
|
|
|
|
2003-09-05 21:26:21 +00:00
|
|
|
DB_CONN::DB_CONN() {
|
|
|
|
mysql = 0;
|
|
|
|
}
|
|
|
|
|
2004-01-15 23:53:13 +00:00
|
|
|
int DB_CONN::open(char* db_name, char* db_host, char* db_user, char* dbpassword) {
|
2003-09-05 21:26:21 +00:00
|
|
|
mysql = mysql_init(0);
|
2003-12-18 00:22:25 +00:00
|
|
|
if (!mysql) return ERR_DB_CANT_INIT;
|
2004-01-15 23:53:13 +00:00
|
|
|
mysql = mysql_real_connect(mysql, db_host, db_user, dbpassword, db_name, 0, 0, 0);
|
2003-10-17 17:22:49 +00:00
|
|
|
if (mysql == 0) return ERR_DB_CANT_CONNECT;
|
|
|
|
return 0;
|
2003-09-05 21:26:21 +00:00
|
|
|
}
|
2003-08-31 05:33:59 +00:00
|
|
|
|
2003-09-05 21:26:21 +00:00
|
|
|
void DB_CONN::close() {
|
|
|
|
if (mysql) mysql_close(mysql);
|
|
|
|
}
|
|
|
|
|
2004-01-14 20:24:24 +00:00
|
|
|
int DB_CONN::do_query(char* p) {
|
2004-01-19 01:12:53 +00:00
|
|
|
int retval;
|
|
|
|
retval = mysql_query(mysql, p);
|
|
|
|
if (retval) {
|
|
|
|
fprintf(stderr, "Database error: query=%s\n", p);
|
|
|
|
}
|
|
|
|
return retval;
|
2004-01-14 20:24:24 +00:00
|
|
|
}
|
|
|
|
|
2003-09-05 21:26:21 +00:00
|
|
|
int DB_CONN::insert_id() {
|
|
|
|
int retval;
|
|
|
|
MYSQL_ROW row;
|
|
|
|
MYSQL_RES* rp;
|
|
|
|
|
2004-01-14 20:24:24 +00:00
|
|
|
retval = do_query("select LAST_INSERT_ID()");
|
2003-09-05 21:26:21 +00:00
|
|
|
if (retval) return retval;
|
|
|
|
rp = mysql_store_result(mysql);
|
|
|
|
row = mysql_fetch_row(rp);
|
|
|
|
return atoi(row[0]);
|
|
|
|
}
|
|
|
|
|
|
|
|
void DB_CONN::print_error(char* p) {
|
|
|
|
if (mysql) {
|
|
|
|
fprintf(stderr, "%s: Database error: %s\n", p, mysql_error(mysql));
|
|
|
|
} else {
|
|
|
|
fprintf(stderr, "%s: Database error\n", p);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
const char* DB_CONN::error_string() {
|
|
|
|
return mysql?mysql_error(mysql):"Not connected";
|
|
|
|
}
|
|
|
|
|
|
|
|
DB_BASE::DB_BASE(DB_CONN& p, char *tn) : db(&p), table_name(tn) {
|
2003-08-31 01:21:31 +00:00
|
|
|
cursor.active = false;
|
|
|
|
}
|
|
|
|
|
|
|
|
int DB_BASE::get_id() { return 0;}
|
|
|
|
void DB_BASE::db_print(char*) {}
|
|
|
|
|
|
|
|
void DB_BASE::db_parse(MYSQL_ROW&) {}
|
|
|
|
|
|
|
|
int DB_BASE::insert() {
|
|
|
|
char vals[MAX_QUERY_LEN], query[MAX_QUERY_LEN];
|
|
|
|
db_print(vals);
|
|
|
|
sprintf(query, "insert into %s set %s", table_name, vals);
|
2004-01-14 20:24:24 +00:00
|
|
|
return db->do_query(query);
|
2003-08-31 01:21:31 +00:00
|
|
|
}
|
|
|
|
|
2004-01-14 20:24:24 +00:00
|
|
|
// update an entire record
|
|
|
|
//
|
2003-08-31 01:21:31 +00:00
|
|
|
int DB_BASE::update() {
|
|
|
|
char vals[MAX_QUERY_LEN], query[MAX_QUERY_LEN];
|
|
|
|
db_print(vals);
|
|
|
|
sprintf(query, "update %s set %s where id=%d", table_name, vals, get_id());
|
2004-01-14 20:24:24 +00:00
|
|
|
return db->do_query(query);
|
|
|
|
}
|
|
|
|
|
|
|
|
// update one or more fields
|
|
|
|
// "clause" is something like "foo=5, blah='xxx'" or "foo=foo+5"
|
|
|
|
//
|
|
|
|
int DB_BASE::update_field(char* clause) {
|
|
|
|
char query[MAX_QUERY_LEN];
|
|
|
|
sprintf(query, "update %s set %s where id=%d", table_name, clause, get_id());
|
|
|
|
return db->do_query(query);
|
2003-08-31 01:21:31 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
int DB_BASE::lookup(char* clause) {
|
|
|
|
char query[MAX_QUERY_LEN];
|
|
|
|
int retval;
|
|
|
|
MYSQL_ROW row;
|
|
|
|
MYSQL_RES* rp;
|
|
|
|
|
|
|
|
sprintf(query, "select * from %s %s", table_name, clause);
|
2004-01-14 20:24:24 +00:00
|
|
|
retval = db->do_query(query);
|
2003-08-31 01:21:31 +00:00
|
|
|
if (retval) return retval;
|
2003-09-05 21:26:21 +00:00
|
|
|
rp = mysql_store_result(db->mysql);
|
2003-08-31 01:21:31 +00:00
|
|
|
if (!rp) return -1;
|
|
|
|
row = mysql_fetch_row(rp);
|
|
|
|
if (row) db_parse(row);
|
|
|
|
mysql_free_result(rp);
|
2003-10-17 17:22:49 +00:00
|
|
|
if (row == 0) return ERR_DB_NOT_FOUND;
|
|
|
|
|
|
|
|
// make sure there's exactly one row
|
|
|
|
//
|
|
|
|
row = mysql_fetch_row(rp);
|
|
|
|
if (row) return ERR_DB_NOT_UNIQUE;
|
|
|
|
return 0;
|
2003-08-31 01:21:31 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
int DB_BASE::lookup_id(int id) {
|
|
|
|
char query[MAX_QUERY_LEN];
|
|
|
|
int retval;
|
|
|
|
MYSQL_ROW row;
|
|
|
|
MYSQL_RES* rp;
|
|
|
|
|
|
|
|
sprintf(query, "select * from %s where id=%d", table_name, id);
|
2004-01-14 20:24:24 +00:00
|
|
|
retval = db->do_query(query);
|
2003-08-31 01:21:31 +00:00
|
|
|
if (retval) return retval;
|
2003-09-05 21:26:21 +00:00
|
|
|
rp = mysql_store_result(db->mysql);
|
2003-08-31 01:21:31 +00:00
|
|
|
if (!rp) return -1;
|
|
|
|
row = mysql_fetch_row(rp);
|
|
|
|
if (row) db_parse(row);
|
|
|
|
mysql_free_result(rp);
|
2003-10-17 17:22:49 +00:00
|
|
|
if (row == 0) return ERR_DB_NOT_FOUND;
|
|
|
|
|
|
|
|
// don't bother checking for uniqueness here
|
|
|
|
return 0;
|
2003-08-31 01:21:31 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
int DB_BASE::enumerate(char* clause) {
|
|
|
|
int x;
|
|
|
|
char query[MAX_QUERY_LEN];
|
|
|
|
MYSQL_ROW row;
|
|
|
|
|
|
|
|
if (!cursor.active) {
|
|
|
|
cursor.active = true;
|
|
|
|
sprintf(query, "select * from %s %s", table_name, clause);
|
2004-01-14 20:24:24 +00:00
|
|
|
x = db->do_query(query);
|
2003-09-05 21:26:21 +00:00
|
|
|
if (x) return mysql_errno(db->mysql);
|
|
|
|
cursor.rp = mysql_store_result(db->mysql);
|
|
|
|
if (!cursor.rp) return mysql_errno(db->mysql);
|
2003-08-31 01:21:31 +00:00
|
|
|
}
|
|
|
|
row = mysql_fetch_row(cursor.rp);
|
|
|
|
if (!row) {
|
|
|
|
mysql_free_result(cursor.rp);
|
|
|
|
cursor.active = false;
|
|
|
|
return 1;
|
|
|
|
} else {
|
|
|
|
db_parse(row);
|
2004-05-18 18:33:01 +00:00
|
|
|
}
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
// call this to end an enumeration before reaching end
|
|
|
|
//
|
|
|
|
int DB_BASE::end_enumerate() {
|
|
|
|
if (cursor.active) {
|
|
|
|
mysql_free_result(cursor.rp);
|
|
|
|
cursor.active = false;
|
2003-08-31 01:21:31 +00:00
|
|
|
}
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
int DB_BASE::get_integer(char* query, int& n) {
|
|
|
|
int retval;
|
|
|
|
MYSQL_ROW row;
|
|
|
|
MYSQL_RES* resp;
|
|
|
|
|
2004-01-14 20:24:24 +00:00
|
|
|
retval = db->do_query(query);
|
2003-08-31 01:21:31 +00:00
|
|
|
if (retval) return retval;
|
2003-09-05 21:26:21 +00:00
|
|
|
resp = mysql_store_result(db->mysql);
|
2003-10-17 17:22:49 +00:00
|
|
|
if (!resp) return ERR_DB_NOT_FOUND;
|
2003-08-31 01:21:31 +00:00
|
|
|
row = mysql_fetch_row(resp);
|
2003-10-17 17:22:49 +00:00
|
|
|
if (!row) return ERR_DB_NOT_FOUND;
|
|
|
|
if (!row[0]) return ERR_DB_NOT_FOUND;
|
2003-08-31 01:21:31 +00:00
|
|
|
n = atoi(row[0]);
|
|
|
|
mysql_free_result(resp);
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
int DB_BASE::get_double(char* query, double& x) {
|
|
|
|
int retval;
|
|
|
|
MYSQL_ROW row;
|
|
|
|
MYSQL_RES* resp;
|
|
|
|
|
2004-01-14 20:24:24 +00:00
|
|
|
retval = db->do_query(query);
|
2003-08-31 01:21:31 +00:00
|
|
|
if (retval) return retval;
|
2003-09-05 21:26:21 +00:00
|
|
|
resp = mysql_store_result(db->mysql);
|
2003-10-17 17:22:49 +00:00
|
|
|
if (!resp) return ERR_DB_NOT_FOUND;
|
2003-08-31 01:21:31 +00:00
|
|
|
row = mysql_fetch_row(resp);
|
2003-10-17 17:22:49 +00:00
|
|
|
if (!row) return ERR_DB_NOT_FOUND;
|
|
|
|
if (!row[0]) return ERR_DB_NOT_FOUND;
|
2003-08-31 01:21:31 +00:00
|
|
|
x = atof(row[0]);
|
|
|
|
mysql_free_result(resp);
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
int DB_BASE::count(int& n, char* clause) {
|
|
|
|
char query[MAX_QUERY_LEN];
|
|
|
|
sprintf(query, "select count(*) from %s %s", table_name, clause);
|
|
|
|
return get_integer(query, n);
|
|
|
|
}
|
|
|
|
|
|
|
|
int DB_BASE::sum(double& x, char* field, char* clause) {
|
|
|
|
char query[MAX_QUERY_LEN];
|
|
|
|
sprintf(query, "select sum(%s) from %s %s", field, table_name, clause);
|
|
|
|
return get_double(query, x);
|
|
|
|
}
|
|
|
|
|
2003-12-26 06:03:03 +00:00
|
|
|
// convert a string into a form that allows it to be used
|
2004-04-09 23:33:50 +00:00
|
|
|
// in SQL queries delimited by single quotes:
|
2004-04-13 23:55:05 +00:00
|
|
|
// replace ' with \', \ with \\
|
2003-12-26 06:03:03 +00:00
|
|
|
//
|
2004-04-09 23:33:50 +00:00
|
|
|
void escape_string(char* field, int len) {
|
2003-08-31 01:21:31 +00:00
|
|
|
char buf[MAX_QUERY_LEN];
|
|
|
|
char* q = buf, *p = field;
|
|
|
|
while (*p) {
|
|
|
|
if (*p == '\'') {
|
|
|
|
*q++ = '\\';
|
|
|
|
*q++ = '\'';
|
2003-12-26 06:03:03 +00:00
|
|
|
} else if (*p == '\\') {
|
|
|
|
*q++ = '\\';
|
|
|
|
*q++ = '\\';
|
2003-08-31 01:21:31 +00:00
|
|
|
} else {
|
|
|
|
*q++ = *p;
|
|
|
|
}
|
|
|
|
p++;
|
|
|
|
}
|
|
|
|
*q = 0;
|
2004-04-09 23:33:50 +00:00
|
|
|
safe_strncpy(field, buf, len);
|
2003-08-31 01:21:31 +00:00
|
|
|
}
|
|
|
|
|
2004-04-09 23:33:50 +00:00
|
|
|
// undo the above process
|
|
|
|
// (len not used because this doesn't expand the string)
|
|
|
|
//
|
|
|
|
void unescape_string(char* p, int /*len*/) {
|
2003-12-26 06:03:03 +00:00
|
|
|
while (*p) {
|
|
|
|
if (*p == '\\') {
|
|
|
|
strcpy(p, p+1);
|
|
|
|
}
|
|
|
|
p++;
|
2003-08-31 01:21:31 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|