Inspection of "Merge pull request #23922 from nextcloud/bugfix/no..." - nextcloud/server - Measure and Improve Code Quality continuously with Scrutinizer

Passed

Push — master ( 63f996...9981ff )

by Morris

created 2020-11-06 21:18 UTC

Status

Indentation +210 added lines, -210 removed lines patch added patch discarded remove patch

@@ -38,214 +38,214 @@
 block discarded – undo
  */
 class OC_DB {
 
-	/**
-	 * get MDB2 schema manager
-	 *
-	 * @return \OC\DB\MDB2SchemaManager
-	 */
-	private static function getMDB2SchemaManager() {
-		return new \OC\DB\MDB2SchemaManager(\OC::$server->getDatabaseConnection());
-	}
-
-	/**
-	 * Prepare a SQL query
-	 * @param string $query Query string
-	 * @param int|null $limit
-	 * @param int|null $offset
-	 * @param bool|null $isManipulation
-	 * @throws \OC\DatabaseException
-	 * @return OC_DB_StatementWrapper prepared SQL query
-	 * @depreacted 21.0.0 Please use \OCP\IDBConnection::getQueryBuilder() instead
-	 *
-	 * SQL query via Doctrine prepare(), needs to be execute()'d!
-	 */
-	public static function prepare($query , $limit = null, $offset = null, $isManipulation = null) {
-		$connection = \OC::$server->getDatabaseConnection();
-
-		if ($isManipulation === null) {
-			//try to guess, so we return the number of rows on manipulations
-			$isManipulation = self::isManipulation($query);
-		}
-
-		// return the result
-		try {
-			$result = $connection->prepare($query, $limit, $offset);
-		} catch (\Doctrine\DBAL\DBALException $e) {
-			throw new \OC\DatabaseException($e->getMessage());
-		}
-		// differentiate between query and manipulation
-		return new OC_DB_StatementWrapper($result, $isManipulation);
-	}
-
-	/**
-	 * tries to guess the type of statement based on the first 10 characters
-	 * the current check allows some whitespace but does not work with IF EXISTS or other more complex statements
-	 *
-	 * @param string $sql
-	 * @return bool
-	 */
-	public static function isManipulation($sql) {
-		$sql = trim($sql);
-		$selectOccurrence = stripos($sql, 'SELECT');
-		if ($selectOccurrence === 0) {
-			return false;
-		}
-		$insertOccurrence = stripos($sql, 'INSERT');
-		if ($insertOccurrence === 0) {
-			return true;
-		}
-		$updateOccurrence = stripos($sql, 'UPDATE');
-		if ($updateOccurrence === 0) {
-			return true;
-		}
-		$deleteOccurrence = stripos($sql, 'DELETE');
-		if ($deleteOccurrence === 0) {
-			return true;
-		}
-
-		\OC::$server->getLogger()->logException(new \Exception('Can not detect if query is manipulating: ' . $sql));
-
-		return false;
-	}
-
-	/**
-	 * execute a prepared statement, on error write log and throw exception
-	 * @param mixed $stmt OC_DB_StatementWrapper,
-	 *					  an array with 'sql' and optionally 'limit' and 'offset' keys
-	 *					.. or a simple sql query string
-	 * @param array $parameters
-	 * @return OC_DB_StatementWrapper
-	 * @throws \OC\DatabaseException
-	 * @depreacted 21.0.0 Please use \OCP\IDBConnection::getQueryBuilder() instead
-	 */
-	public static function executeAudited($stmt, array $parameters = []) {
-		if (is_string($stmt)) {
-			// convert to an array with 'sql'
-			if (stripos($stmt, 'LIMIT') !== false) { //OFFSET requires LIMIT, so we only need to check for LIMIT
-				// TODO try to convert LIMIT OFFSET notation to parameters
-				$message = 'LIMIT and OFFSET are forbidden for portability reasons,'
-						 . ' pass an array with \'limit\' and \'offset\' instead';
-				throw new \OC\DatabaseException($message);
-			}
-			$stmt = ['sql' => $stmt, 'limit' => null, 'offset' => null];
-		}
-		if (is_array($stmt)) {
-			// convert to prepared statement
-			if (! array_key_exists('sql', $stmt)) {
-				$message = 'statement array must at least contain key \'sql\'';
-				throw new \OC\DatabaseException($message);
-			}
-			if (! array_key_exists('limit', $stmt)) {
-				$stmt['limit'] = null;
-			}
-			if (! array_key_exists('limit', $stmt)) {
-				$stmt['offset'] = null;
-			}
-			$stmt = self::prepare($stmt['sql'], $stmt['limit'], $stmt['offset']);
-		}
-		self::raiseExceptionOnError($stmt, 'Could not prepare statement');
-		if ($stmt instanceof OC_DB_StatementWrapper) {
-			$result = $stmt->execute($parameters);
-			self::raiseExceptionOnError($result, 'Could not execute statement');
-		} else {
-			if (is_object($stmt)) {
-				$message = 'Expected a prepared statement or array got ' . get_class($stmt);
-			} else {
-				$message = 'Expected a prepared statement or array got ' . gettype($stmt);
-			}
-			throw new \OC\DatabaseException($message);
-		}
-		return $result;
-	}
-
-	/**
-	 * saves database schema to xml file
-	 * @param string $file name of file
-	 * @return bool
-	 *
-	 * TODO: write more documentation
-	 */
-	public static function getDbStructure($file) {
-		$schemaManager = self::getMDB2SchemaManager();
-		return $schemaManager->getDbStructure($file);
-	}
-
-	/**
-	 * Creates tables from XML file
-	 * @param string $file file to read structure from
-	 * @return bool
-	 *
-	 * TODO: write more documentation
-	 */
-	public static function createDbFromStructure($file) {
-		$schemaManager = self::getMDB2SchemaManager();
-		return $schemaManager->createDbFromStructure($file);
-	}
-
-	/**
-	 * update the database schema
-	 * @param string $file file to read structure from
-	 * @throws Exception
-	 * @return string|boolean
-	 * @suppress PhanDeprecatedFunction
-	 */
-	public static function updateDbFromStructure($file) {
-		$schemaManager = self::getMDB2SchemaManager();
-		try {
-			$result = $schemaManager->updateDbFromStructure($file);
-		} catch (Exception $e) {
-			\OCP\Util::writeLog('core', 'Failed to update database structure ('.$e.')', ILogger::FATAL);
-			throw $e;
-		}
-		return $result;
-	}
-
-	/**
-	 * remove all tables defined in a database structure xml file
-	 * @param string $file the xml file describing the tables
-	 */
-	public static function removeDBStructure($file) {
-		$schemaManager = self::getMDB2SchemaManager();
-		$schemaManager->removeDBStructure($file);
-	}
-
-	/**
-	 * check if a result is an error and throws an exception, works with \Doctrine\DBAL\DBALException
-	 * @param mixed $result
-	 * @param string $message
-	 * @return void
-	 * @throws \OC\DatabaseException
-	 */
-	public static function raiseExceptionOnError($result, $message = null) {
-		if ($result === false) {
-			if ($message === null) {
-				$message = self::getErrorMessage();
-			} else {
-				$message .= ', Root cause:' . self::getErrorMessage();
-			}
-			throw new \OC\DatabaseException($message);
-		}
-	}
-
-	/**
-	 * returns the error code and message as a string for logging
-	 * works with DoctrineException
-	 * @return string
-	 */
-	public static function getErrorMessage() {
-		$connection = \OC::$server->getDatabaseConnection();
-		return $connection->getError();
-	}
-
-	/**
-	 * Checks if a table exists in the database - the database prefix will be prepended
-	 *
-	 * @param string $table
-	 * @return bool
-	 * @throws \OC\DatabaseException
-	 */
-	public static function tableExists($table) {
-		$connection = \OC::$server->getDatabaseConnection();
-		return $connection->tableExists($table);
-	}
+    /**
+     * get MDB2 schema manager
+     *
+     * @return \OC\DB\MDB2SchemaManager
+     */
+    private static function getMDB2SchemaManager() {
+        return new \OC\DB\MDB2SchemaManager(\OC::$server->getDatabaseConnection());
+    }
+
+    /**
+     * Prepare a SQL query
+     * @param string $query Query string
+     * @param int|null $limit
+     * @param int|null $offset
+     * @param bool|null $isManipulation
+     * @throws \OC\DatabaseException
+     * @return OC_DB_StatementWrapper prepared SQL query
+     * @depreacted 21.0.0 Please use \OCP\IDBConnection::getQueryBuilder() instead
+     *
+     * SQL query via Doctrine prepare(), needs to be execute()'d!
+     */
+    public static function prepare($query , $limit = null, $offset = null, $isManipulation = null) {
+        $connection = \OC::$server->getDatabaseConnection();
+
+        if ($isManipulation === null) {
+            //try to guess, so we return the number of rows on manipulations
+            $isManipulation = self::isManipulation($query);
+        }
+
+        // return the result
+        try {
+            $result = $connection->prepare($query, $limit, $offset);
+        } catch (\Doctrine\DBAL\DBALException $e) {
+            throw new \OC\DatabaseException($e->getMessage());
+        }
+        // differentiate between query and manipulation
+        return new OC_DB_StatementWrapper($result, $isManipulation);
+    }
+
+    /**
+     * tries to guess the type of statement based on the first 10 characters
+     * the current check allows some whitespace but does not work with IF EXISTS or other more complex statements
+     *
+     * @param string $sql
+     * @return bool
+     */
+    public static function isManipulation($sql) {
+        $sql = trim($sql);
+        $selectOccurrence = stripos($sql, 'SELECT');
+        if ($selectOccurrence === 0) {
+            return false;
+        }
+        $insertOccurrence = stripos($sql, 'INSERT');
+        if ($insertOccurrence === 0) {
+            return true;
+        }
+        $updateOccurrence = stripos($sql, 'UPDATE');
+        if ($updateOccurrence === 0) {
+            return true;
+        }
+        $deleteOccurrence = stripos($sql, 'DELETE');
+        if ($deleteOccurrence === 0) {
+            return true;
+        }
+
+        \OC::$server->getLogger()->logException(new \Exception('Can not detect if query is manipulating: ' . $sql));
+
+        return false;
+    }
+
+    /**
+     * execute a prepared statement, on error write log and throw exception
+     * @param mixed $stmt OC_DB_StatementWrapper,
+     *					  an array with 'sql' and optionally 'limit' and 'offset' keys
+     *					.. or a simple sql query string
+     * @param array $parameters
+     * @return OC_DB_StatementWrapper
+     * @throws \OC\DatabaseException
+     * @depreacted 21.0.0 Please use \OCP\IDBConnection::getQueryBuilder() instead
+     */
+    public static function executeAudited($stmt, array $parameters = []) {
+        if (is_string($stmt)) {
+            // convert to an array with 'sql'
+            if (stripos($stmt, 'LIMIT') !== false) { //OFFSET requires LIMIT, so we only need to check for LIMIT
+                // TODO try to convert LIMIT OFFSET notation to parameters
+                $message = 'LIMIT and OFFSET are forbidden for portability reasons,'
+                            . ' pass an array with \'limit\' and \'offset\' instead';
+                throw new \OC\DatabaseException($message);
+            }
+            $stmt = ['sql' => $stmt, 'limit' => null, 'offset' => null];
+        }
+        if (is_array($stmt)) {
+            // convert to prepared statement
+            if (! array_key_exists('sql', $stmt)) {
+                $message = 'statement array must at least contain key \'sql\'';
+                throw new \OC\DatabaseException($message);
+            }
+            if (! array_key_exists('limit', $stmt)) {
+                $stmt['limit'] = null;
+            }
+            if (! array_key_exists('limit', $stmt)) {
+                $stmt['offset'] = null;
+            }
+            $stmt = self::prepare($stmt['sql'], $stmt['limit'], $stmt['offset']);
+        }
+        self::raiseExceptionOnError($stmt, 'Could not prepare statement');
+        if ($stmt instanceof OC_DB_StatementWrapper) {
+            $result = $stmt->execute($parameters);
+            self::raiseExceptionOnError($result, 'Could not execute statement');
+        } else {
+            if (is_object($stmt)) {
+                $message = 'Expected a prepared statement or array got ' . get_class($stmt);
+            } else {
+                $message = 'Expected a prepared statement or array got ' . gettype($stmt);
+            }
+            throw new \OC\DatabaseException($message);
+        }
+        return $result;
+    }
+
+    /**
+     * saves database schema to xml file
+     * @param string $file name of file
+     * @return bool
+     *
+     * TODO: write more documentation
+     */
+    public static function getDbStructure($file) {
+        $schemaManager = self::getMDB2SchemaManager();
+        return $schemaManager->getDbStructure($file);
+    }
+
+    /**
+     * Creates tables from XML file
+     * @param string $file file to read structure from
+     * @return bool
+     *
+     * TODO: write more documentation
+     */
+    public static function createDbFromStructure($file) {
+        $schemaManager = self::getMDB2SchemaManager();
+        return $schemaManager->createDbFromStructure($file);
+    }
+
+    /**
+     * update the database schema
+     * @param string $file file to read structure from
+     * @throws Exception
+     * @return string|boolean
+     * @suppress PhanDeprecatedFunction
+     */
+    public static function updateDbFromStructure($file) {
+        $schemaManager = self::getMDB2SchemaManager();
+        try {
+            $result = $schemaManager->updateDbFromStructure($file);
+        } catch (Exception $e) {
+            \OCP\Util::writeLog('core', 'Failed to update database structure ('.$e.')', ILogger::FATAL);
+            throw $e;
+        }
+        return $result;
+    }
+
+    /**
+     * remove all tables defined in a database structure xml file
+     * @param string $file the xml file describing the tables
+     */
+    public static function removeDBStructure($file) {
+        $schemaManager = self::getMDB2SchemaManager();
+        $schemaManager->removeDBStructure($file);
+    }
+
+    /**
+     * check if a result is an error and throws an exception, works with \Doctrine\DBAL\DBALException
+     * @param mixed $result
+     * @param string $message
+     * @return void
+     * @throws \OC\DatabaseException
+     */
+    public static function raiseExceptionOnError($result, $message = null) {
+        if ($result === false) {
+            if ($message === null) {
+                $message = self::getErrorMessage();
+            } else {
+                $message .= ', Root cause:' . self::getErrorMessage();
+            }
+            throw new \OC\DatabaseException($message);
+        }
+    }
+
+    /**
+     * returns the error code and message as a string for logging
+     * works with DoctrineException
+     * @return string
+     */
+    public static function getErrorMessage() {
+        $connection = \OC::$server->getDatabaseConnection();
+        return $connection->getError();
+    }
+
+    /**
+     * Checks if a table exists in the database - the database prefix will be prepended
+     *
+     * @param string $table
+     * @return bool
+     * @throws \OC\DatabaseException
+     */
+    public static function tableExists($table) {
+        $connection = \OC::$server->getDatabaseConnection();
+        return $connection->tableExists($table);
+    }
 }

Please login to merge, or discard this patch.

Spacing +8 added lines, -8 removed lines patch added patch discarded remove patch

@@ -59,7 +59,7 @@  discard block
 block discarded – undo
 	 *
 	 * SQL query via Doctrine prepare(), needs to be execute()'d!
 	 */
-	public static function prepare($query , $limit = null, $offset = null, $isManipulation = null) {
+	public static function prepare($query, $limit = null, $offset = null, $isManipulation = null) {
 		$connection = \OC::$server->getDatabaseConnection();
 
 		if ($isManipulation === null) {
@@ -103,7 +103,7 @@  discard block
 block discarded – undo
 			return true;
 		}
 
-		\OC::$server->getLogger()->logException(new \Exception('Can not detect if query is manipulating: ' . $sql));
+		\OC::$server->getLogger()->logException(new \Exception('Can not detect if query is manipulating: '.$sql));
 
 		return false;
 	}
@@ -131,14 +131,14 @@  discard block
 block discarded – undo
 		}
 		if (is_array($stmt)) {
 			// convert to prepared statement
-			if (! array_key_exists('sql', $stmt)) {
+			if (!array_key_exists('sql', $stmt)) {
 				$message = 'statement array must at least contain key \'sql\'';
 				throw new \OC\DatabaseException($message);
 			}
-			if (! array_key_exists('limit', $stmt)) {
+			if (!array_key_exists('limit', $stmt)) {
 				$stmt['limit'] = null;
 			}
-			if (! array_key_exists('limit', $stmt)) {
+			if (!array_key_exists('limit', $stmt)) {
 				$stmt['offset'] = null;
 			}
 			$stmt = self::prepare($stmt['sql'], $stmt['limit'], $stmt['offset']);
@@ -149,9 +149,9 @@  discard block
 block discarded – undo
 			self::raiseExceptionOnError($result, 'Could not execute statement');
 		} else {
 			if (is_object($stmt)) {
-				$message = 'Expected a prepared statement or array got ' . get_class($stmt);
+				$message = 'Expected a prepared statement or array got '.get_class($stmt);
 			} else {
-				$message = 'Expected a prepared statement or array got ' . gettype($stmt);
+				$message = 'Expected a prepared statement or array got '.gettype($stmt);
 			}
 			throw new \OC\DatabaseException($message);
 		}
@@ -221,7 +221,7 @@  discard block
 block discarded – undo
 			if ($message === null) {
 				$message = self::getErrorMessage();
 			} else {
-				$message .= ', Root cause:' . self::getErrorMessage();
+				$message .= ', Root cause:'.self::getErrorMessage();
 			}
 			throw new \OC\DatabaseException($message);
 		}

Please login to merge, or discard this patch.

		@@ -59,7 +59,7 @@ discard block
		block discarded – undo
59	59	*
60	60	* SQL query via Doctrine prepare(), needs to be execute()'d!
61	61	*/
62		- public static function prepare($query , $limit = null, $offset = null, $isManipulation = null) {
	62	+ public static function prepare($query, $limit = null, $offset = null, $isManipulation = null) {
63	63	$connection = \OC::$server->getDatabaseConnection();
64	64
65	65	if ($isManipulation === null) {
		@@ -103,7 +103,7 @@ discard block
		block discarded – undo
103	103	return true;
104	104	}
105	105
106		- \OC::$server->getLogger()->logException(new \Exception('Can not detect if query is manipulating: ' . $sql));
	106	+ \OC::$server->getLogger()->logException(new \Exception('Can not detect if query is manipulating: '.$sql));
107	107
108	108	return false;
109	109	}
		@@ -131,14 +131,14 @@ discard block
		block discarded – undo
131	131	}
132	132	if (is_array($stmt)) {
133	133	// convert to prepared statement
134		- if (! array_key_exists('sql', $stmt)) {
	134	+ if (!array_key_exists('sql', $stmt)) {
135	135	$message = 'statement array must at least contain key \'sql\'';
136	136	throw new \OC\DatabaseException($message);
137	137	}
138		- if (! array_key_exists('limit', $stmt)) {
	138	+ if (!array_key_exists('limit', $stmt)) {
139	139	$stmt['limit'] = null;
140	140	}
141		- if (! array_key_exists('limit', $stmt)) {
	141	+ if (!array_key_exists('limit', $stmt)) {
142	142	$stmt['offset'] = null;
143	143	}
144	144	$stmt = self::prepare($stmt['sql'], $stmt['limit'], $stmt['offset']);
		@@ -149,9 +149,9 @@ discard block
		block discarded – undo
149	149	self::raiseExceptionOnError($result, 'Could not execute statement');
150	150	} else {
151	151	if (is_object($stmt)) {
152		- $message = 'Expected a prepared statement or array got ' . get_class($stmt);
	152	+ $message = 'Expected a prepared statement or array got '.get_class($stmt);
153	153	} else {
154		- $message = 'Expected a prepared statement or array got ' . gettype($stmt);
	154	+ $message = 'Expected a prepared statement or array got '.gettype($stmt);
155	155	}
156	156	throw new \OC\DatabaseException($message);
157	157	}
		@@ -221,7 +221,7 @@ discard block
		block discarded – undo
221	221	if ($message === null) {
222	222	$message = self::getErrorMessage();
223	223	} else {
224		- $message .= ', Root cause:' . self::getErrorMessage();
	224	+ $message .= ', Root cause:'.self::getErrorMessage();
225	225	}
226	226	throw new \OC\DatabaseException($message);
227	227	}

		@@ -38,214 +38,214 @@
		block discarded – undo
38	38	*/
39	39	class OC_DB {
40	40
41		- /**
42		- * get MDB2 schema manager
43		- *
44		- * @return \OC\DB\MDB2SchemaManager
45		- */
46		- private static function getMDB2SchemaManager() {
47		- return new \OC\DB\MDB2SchemaManager(\OC::$server->getDatabaseConnection());
48		- }
49		-
50		- /**
51		- * Prepare a SQL query
52		- * @param string $query Query string
53		- * @param int\|null $limit
54		- * @param int\|null $offset
55		- * @param bool\|null $isManipulation
56		- * @throws \OC\DatabaseException
57		- * @return OC_DB_StatementWrapper prepared SQL query
58		- * @depreacted 21.0.0 Please use \OCP\IDBConnection::getQueryBuilder() instead
59		- *
60		- * SQL query via Doctrine prepare(), needs to be execute()'d!
61		- */
62		- public static function prepare($query , $limit = null, $offset = null, $isManipulation = null) {
63		- $connection = \OC::$server->getDatabaseConnection();
64		-
65		- if ($isManipulation === null) {
66		- //try to guess, so we return the number of rows on manipulations
67		- $isManipulation = self::isManipulation($query);
68		- }
69		-
70		- // return the result
71		- try {
72		- $result = $connection->prepare($query, $limit, $offset);
73		- } catch (\Doctrine\DBAL\DBALException $e) {
74		- throw new \OC\DatabaseException($e->getMessage());
75		- }
76		- // differentiate between query and manipulation
77		- return new OC_DB_StatementWrapper($result, $isManipulation);
78		- }
79		-
80		- /**
81		- * tries to guess the type of statement based on the first 10 characters
82		- * the current check allows some whitespace but does not work with IF EXISTS or other more complex statements
83		- *
84		- * @param string $sql
85		- * @return bool
86		- */
87		- public static function isManipulation($sql) {
88		- $sql = trim($sql);
89		- $selectOccurrence = stripos($sql, 'SELECT');
90		- if ($selectOccurrence === 0) {
91		- return false;
92		- }
93		- $insertOccurrence = stripos($sql, 'INSERT');
94		- if ($insertOccurrence === 0) {
95		- return true;
96		- }
97		- $updateOccurrence = stripos($sql, 'UPDATE');
98		- if ($updateOccurrence === 0) {
99		- return true;
100		- }
101		- $deleteOccurrence = stripos($sql, 'DELETE');
102		- if ($deleteOccurrence === 0) {
103		- return true;
104		- }
105		-
106		- \OC::$server->getLogger()->logException(new \Exception('Can not detect if query is manipulating: ' . $sql));
107		-
108		- return false;
109		- }
110		-
111		- /**
112		- * execute a prepared statement, on error write log and throw exception
113		- * @param mixed $stmt OC_DB_StatementWrapper,
114		- * an array with 'sql' and optionally 'limit' and 'offset' keys
115		- * .. or a simple sql query string
116		- * @param array $parameters
117		- * @return OC_DB_StatementWrapper
118		- * @throws \OC\DatabaseException
119		- * @depreacted 21.0.0 Please use \OCP\IDBConnection::getQueryBuilder() instead
120		- */
121		- public static function executeAudited($stmt, array $parameters = []) {
122		- if (is_string($stmt)) {
123		- // convert to an array with 'sql'
124		- if (stripos($stmt, 'LIMIT') !== false) { //OFFSET requires LIMIT, so we only need to check for LIMIT
125		- // TODO try to convert LIMIT OFFSET notation to parameters
126		- $message = 'LIMIT and OFFSET are forbidden for portability reasons,'
127		- . ' pass an array with \'limit\' and \'offset\' instead';
128		- throw new \OC\DatabaseException($message);
129		- }
130		- $stmt = ['sql' => $stmt, 'limit' => null, 'offset' => null];
131		- }
132		- if (is_array($stmt)) {
133		- // convert to prepared statement
134		- if (! array_key_exists('sql', $stmt)) {
135		- $message = 'statement array must at least contain key \'sql\'';
136		- throw new \OC\DatabaseException($message);
137		- }
138		- if (! array_key_exists('limit', $stmt)) {
139		- $stmt['limit'] = null;
140		- }
141		- if (! array_key_exists('limit', $stmt)) {
142		- $stmt['offset'] = null;
143		- }
144		- $stmt = self::prepare($stmt['sql'], $stmt['limit'], $stmt['offset']);
145		- }
146		- self::raiseExceptionOnError($stmt, 'Could not prepare statement');
147		- if ($stmt instanceof OC_DB_StatementWrapper) {
148		- $result = $stmt->execute($parameters);
149		- self::raiseExceptionOnError($result, 'Could not execute statement');
150		- } else {
151		- if (is_object($stmt)) {
152		- $message = 'Expected a prepared statement or array got ' . get_class($stmt);
153		- } else {
154		- $message = 'Expected a prepared statement or array got ' . gettype($stmt);
155		- }
156		- throw new \OC\DatabaseException($message);
157		- }
158		- return $result;
159		- }
160		-
161		- /**
162		- * saves database schema to xml file
163		- * @param string $file name of file
164		- * @return bool
165		- *
166		- * TODO: write more documentation
167		- */
168		- public static function getDbStructure($file) {
169		- $schemaManager = self::getMDB2SchemaManager();
170		- return $schemaManager->getDbStructure($file);
171		- }
172		-
173		- /**
174		- * Creates tables from XML file
175		- * @param string $file file to read structure from
176		- * @return bool
177		- *
178		- * TODO: write more documentation
179		- */
180		- public static function createDbFromStructure($file) {
181		- $schemaManager = self::getMDB2SchemaManager();
182		- return $schemaManager->createDbFromStructure($file);
183		- }
184		-
185		- /**
186		- * update the database schema
187		- * @param string $file file to read structure from
188		- * @throws Exception
189		- * @return string\|boolean
190		- * @suppress PhanDeprecatedFunction
191		- */
192		- public static function updateDbFromStructure($file) {
193		- $schemaManager = self::getMDB2SchemaManager();
194		- try {
195		- $result = $schemaManager->updateDbFromStructure($file);
196		- } catch (Exception $e) {
197		- \OCP\Util::writeLog('core', 'Failed to update database structure ('.$e.')', ILogger::FATAL);
198		- throw $e;
199		- }
200		- return $result;
201		- }
202		-
203		- /**
204		- * remove all tables defined in a database structure xml file
205		- * @param string $file the xml file describing the tables
206		- */
207		- public static function removeDBStructure($file) {
208		- $schemaManager = self::getMDB2SchemaManager();
209		- $schemaManager->removeDBStructure($file);
210		- }
211		-
212		- /**
213		- * check if a result is an error and throws an exception, works with \Doctrine\DBAL\DBALException
214		- * @param mixed $result
215		- * @param string $message
216		- * @return void
217		- * @throws \OC\DatabaseException
218		- */
219		- public static function raiseExceptionOnError($result, $message = null) {
220		- if ($result === false) {
221		- if ($message === null) {
222		- $message = self::getErrorMessage();
223		- } else {
224		- $message .= ', Root cause:' . self::getErrorMessage();
225		- }
226		- throw new \OC\DatabaseException($message);
227		- }
228		- }
229		-
230		- /**
231		- * returns the error code and message as a string for logging
232		- * works with DoctrineException
233		- * @return string
234		- */
235		- public static function getErrorMessage() {
236		- $connection = \OC::$server->getDatabaseConnection();
237		- return $connection->getError();
238		- }
239		-
240		- /**
241		- * Checks if a table exists in the database - the database prefix will be prepended
242		- *
243		- * @param string $table
244		- * @return bool
245		- * @throws \OC\DatabaseException
246		- */
247		- public static function tableExists($table) {
248		- $connection = \OC::$server->getDatabaseConnection();
249		- return $connection->tableExists($table);
250		- }
	41	+ /**
	42	+ * get MDB2 schema manager
	43	+ *
	44	+ * @return \OC\DB\MDB2SchemaManager
	45	+ */
	46	+ private static function getMDB2SchemaManager() {
	47	+ return new \OC\DB\MDB2SchemaManager(\OC::$server->getDatabaseConnection());
	48	+ }
	49	+
	50	+ /**
	51	+ * Prepare a SQL query
	52	+ * @param string $query Query string
	53	+ * @param int\|null $limit
	54	+ * @param int\|null $offset
	55	+ * @param bool\|null $isManipulation
	56	+ * @throws \OC\DatabaseException
	57	+ * @return OC_DB_StatementWrapper prepared SQL query
	58	+ * @depreacted 21.0.0 Please use \OCP\IDBConnection::getQueryBuilder() instead
	59	+ *
	60	+ * SQL query via Doctrine prepare(), needs to be execute()'d!
	61	+ */
	62	+ public static function prepare($query , $limit = null, $offset = null, $isManipulation = null) {
	63	+ $connection = \OC::$server->getDatabaseConnection();
	64	+
	65	+ if ($isManipulation === null) {
	66	+ //try to guess, so we return the number of rows on manipulations
	67	+ $isManipulation = self::isManipulation($query);
	68	+ }
	69	+
	70	+ // return the result
	71	+ try {
	72	+ $result = $connection->prepare($query, $limit, $offset);
	73	+ } catch (\Doctrine\DBAL\DBALException $e) {
	74	+ throw new \OC\DatabaseException($e->getMessage());
	75	+ }
	76	+ // differentiate between query and manipulation
	77	+ return new OC_DB_StatementWrapper($result, $isManipulation);
	78	+ }
	79	+
	80	+ /**
	81	+ * tries to guess the type of statement based on the first 10 characters
	82	+ * the current check allows some whitespace but does not work with IF EXISTS or other more complex statements
	83	+ *
	84	+ * @param string $sql
	85	+ * @return bool
	86	+ */
	87	+ public static function isManipulation($sql) {
	88	+ $sql = trim($sql);
	89	+ $selectOccurrence = stripos($sql, 'SELECT');
	90	+ if ($selectOccurrence === 0) {
	91	+ return false;
	92	+ }
	93	+ $insertOccurrence = stripos($sql, 'INSERT');
	94	+ if ($insertOccurrence === 0) {
	95	+ return true;
	96	+ }
	97	+ $updateOccurrence = stripos($sql, 'UPDATE');
	98	+ if ($updateOccurrence === 0) {
	99	+ return true;
	100	+ }
	101	+ $deleteOccurrence = stripos($sql, 'DELETE');
	102	+ if ($deleteOccurrence === 0) {
	103	+ return true;
	104	+ }
	105	+
	106	+ \OC::$server->getLogger()->logException(new \Exception('Can not detect if query is manipulating: ' . $sql));
	107	+
	108	+ return false;
	109	+ }
	110	+
	111	+ /**
	112	+ * execute a prepared statement, on error write log and throw exception
	113	+ * @param mixed $stmt OC_DB_StatementWrapper,
	114	+ * an array with 'sql' and optionally 'limit' and 'offset' keys
	115	+ * .. or a simple sql query string
	116	+ * @param array $parameters
	117	+ * @return OC_DB_StatementWrapper
	118	+ * @throws \OC\DatabaseException
	119	+ * @depreacted 21.0.0 Please use \OCP\IDBConnection::getQueryBuilder() instead
	120	+ */
	121	+ public static function executeAudited($stmt, array $parameters = []) {
	122	+ if (is_string($stmt)) {
	123	+ // convert to an array with 'sql'
	124	+ if (stripos($stmt, 'LIMIT') !== false) { //OFFSET requires LIMIT, so we only need to check for LIMIT
	125	+ // TODO try to convert LIMIT OFFSET notation to parameters
	126	+ $message = 'LIMIT and OFFSET are forbidden for portability reasons,'
	127	+ . ' pass an array with \'limit\' and \'offset\' instead';
	128	+ throw new \OC\DatabaseException($message);
	129	+ }
	130	+ $stmt = ['sql' => $stmt, 'limit' => null, 'offset' => null];
	131	+ }
	132	+ if (is_array($stmt)) {
	133	+ // convert to prepared statement
	134	+ if (! array_key_exists('sql', $stmt)) {
	135	+ $message = 'statement array must at least contain key \'sql\'';
	136	+ throw new \OC\DatabaseException($message);
	137	+ }
	138	+ if (! array_key_exists('limit', $stmt)) {
	139	+ $stmt['limit'] = null;
	140	+ }
	141	+ if (! array_key_exists('limit', $stmt)) {
	142	+ $stmt['offset'] = null;
	143	+ }
	144	+ $stmt = self::prepare($stmt['sql'], $stmt['limit'], $stmt['offset']);
	145	+ }
	146	+ self::raiseExceptionOnError($stmt, 'Could not prepare statement');
	147	+ if ($stmt instanceof OC_DB_StatementWrapper) {
	148	+ $result = $stmt->execute($parameters);
	149	+ self::raiseExceptionOnError($result, 'Could not execute statement');
	150	+ } else {
	151	+ if (is_object($stmt)) {
	152	+ $message = 'Expected a prepared statement or array got ' . get_class($stmt);
	153	+ } else {
	154	+ $message = 'Expected a prepared statement or array got ' . gettype($stmt);
	155	+ }
	156	+ throw new \OC\DatabaseException($message);
	157	+ }
	158	+ return $result;
	159	+ }
	160	+
	161	+ /**
	162	+ * saves database schema to xml file
	163	+ * @param string $file name of file
	164	+ * @return bool
	165	+ *
	166	+ * TODO: write more documentation
	167	+ */
	168	+ public static function getDbStructure($file) {
	169	+ $schemaManager = self::getMDB2SchemaManager();
	170	+ return $schemaManager->getDbStructure($file);
	171	+ }
	172	+
	173	+ /**
	174	+ * Creates tables from XML file
	175	+ * @param string $file file to read structure from
	176	+ * @return bool
	177	+ *
	178	+ * TODO: write more documentation
	179	+ */
	180	+ public static function createDbFromStructure($file) {
	181	+ $schemaManager = self::getMDB2SchemaManager();
	182	+ return $schemaManager->createDbFromStructure($file);
	183	+ }
	184	+
	185	+ /**
	186	+ * update the database schema
	187	+ * @param string $file file to read structure from
	188	+ * @throws Exception
	189	+ * @return string\|boolean
	190	+ * @suppress PhanDeprecatedFunction
	191	+ */
	192	+ public static function updateDbFromStructure($file) {
	193	+ $schemaManager = self::getMDB2SchemaManager();
	194	+ try {
	195	+ $result = $schemaManager->updateDbFromStructure($file);
	196	+ } catch (Exception $e) {
	197	+ \OCP\Util::writeLog('core', 'Failed to update database structure ('.$e.')', ILogger::FATAL);
	198	+ throw $e;
	199	+ }
	200	+ return $result;
	201	+ }
	202	+
	203	+ /**
	204	+ * remove all tables defined in a database structure xml file
	205	+ * @param string $file the xml file describing the tables
	206	+ */
	207	+ public static function removeDBStructure($file) {
	208	+ $schemaManager = self::getMDB2SchemaManager();
	209	+ $schemaManager->removeDBStructure($file);
	210	+ }
	211	+
	212	+ /**
	213	+ * check if a result is an error and throws an exception, works with \Doctrine\DBAL\DBALException
	214	+ * @param mixed $result
	215	+ * @param string $message
	216	+ * @return void
	217	+ * @throws \OC\DatabaseException
	218	+ */
	219	+ public static function raiseExceptionOnError($result, $message = null) {
	220	+ if ($result === false) {
	221	+ if ($message === null) {
	222	+ $message = self::getErrorMessage();
	223	+ } else {
	224	+ $message .= ', Root cause:' . self::getErrorMessage();
	225	+ }
	226	+ throw new \OC\DatabaseException($message);
	227	+ }
	228	+ }
	229	+
	230	+ /**
	231	+ * returns the error code and message as a string for logging
	232	+ * works with DoctrineException
	233	+ * @return string
	234	+ */
	235	+ public static function getErrorMessage() {
	236	+ $connection = \OC::$server->getDatabaseConnection();
	237	+ return $connection->getError();
	238	+ }
	239	+
	240	+ /**
	241	+ * Checks if a table exists in the database - the database prefix will be prepended
	242	+ *
	243	+ * @param string $table
	244	+ * @return bool
	245	+ * @throws \OC\DatabaseException
	246	+ */
	247	+ public static function tableExists($table) {
	248	+ $connection = \OC::$server->getDatabaseConnection();
	249	+ return $connection->tableExists($table);
	250	+ }
251	251	}

nextcloud / server

Push — master ( 63f996...9981ff )

Status

Category

Indentation +210 added lines, -210 removed lines patch added patch discarded remove patch

Spacing +8 added lines, -8 removed lines patch added patch discarded remove patch