1 /* 2 ** 2008 August 18 3 ** 4 ** The author disclaims copyright to this source code. In place of 5 ** a legal notice, here is a blessing: 6 ** 7 ** May you do good and not evil. 8 ** May you find forgiveness for yourself and forgive others. 9 ** May you share freely, never taking more than you give. 10 ** 11 ************************************************************************* 12 ** 13 ** This file contains routines used for walking the parser tree and 14 ** resolve all identifiers by associating them with a particular 15 ** table and column. 16 */ 17 #include "sqliteInt.h" 18 19 /* 20 ** Magic table number to mean the EXCLUDED table in an UPSERT statement. 21 */ 22 #define EXCLUDED_TABLE_NUMBER 2 23 24 /* 25 ** Walk the expression tree pExpr and increase the aggregate function 26 ** depth (the Expr.op2 field) by N on every TK_AGG_FUNCTION node. 27 ** This needs to occur when copying a TK_AGG_FUNCTION node from an 28 ** outer query into an inner subquery. 29 ** 30 ** incrAggFunctionDepth(pExpr,n) is the main routine. incrAggDepth(..) 31 ** is a helper function - a callback for the tree walker. 32 ** 33 ** See also the sqlite3WindowExtraAggFuncDepth() routine in window.c 34 */ 35 static int incrAggDepth(Walker *pWalker, Expr *pExpr){ 36 if( pExpr->op==TK_AGG_FUNCTION ) pExpr->op2 += pWalker->u.n; 37 return WRC_Continue; 38 } 39 static void incrAggFunctionDepth(Expr *pExpr, int N){ 40 if( N>0 ){ 41 Walker w; 42 memset(&w, 0, sizeof(w)); 43 w.xExprCallback = incrAggDepth; 44 w.u.n = N; 45 sqlite3WalkExpr(&w, pExpr); 46 } 47 } 48 49 /* 50 ** Turn the pExpr expression into an alias for the iCol-th column of the 51 ** result set in pEList. 52 ** 53 ** If the reference is followed by a COLLATE operator, then make sure 54 ** the COLLATE operator is preserved. For example: 55 ** 56 ** SELECT a+b, c+d FROM t1 ORDER BY 1 COLLATE nocase; 57 ** 58 ** Should be transformed into: 59 ** 60 ** SELECT a+b, c+d FROM t1 ORDER BY (a+b) COLLATE nocase; 61 ** 62 ** The nSubquery parameter specifies how many levels of subquery the 63 ** alias is removed from the original expression. The usual value is 64 ** zero but it might be more if the alias is contained within a subquery 65 ** of the original expression. The Expr.op2 field of TK_AGG_FUNCTION 66 ** structures must be increased by the nSubquery amount. 67 */ 68 static void resolveAlias( 69 Parse *pParse, /* Parsing context */ 70 ExprList *pEList, /* A result set */ 71 int iCol, /* A column in the result set. 0..pEList->nExpr-1 */ 72 Expr *pExpr, /* Transform this into an alias to the result set */ 73 int nSubquery /* Number of subqueries that the label is moving */ 74 ){ 75 Expr *pOrig; /* The iCol-th column of the result set */ 76 Expr *pDup; /* Copy of pOrig */ 77 sqlite3 *db; /* The database connection */ 78 79 assert( iCol>=0 && iCol<pEList->nExpr ); 80 pOrig = pEList->a[iCol].pExpr; 81 assert( pOrig!=0 ); 82 db = pParse->db; 83 pDup = sqlite3ExprDup(db, pOrig, 0); 84 if( db->mallocFailed ){ 85 sqlite3ExprDelete(db, pDup); 86 pDup = 0; 87 }else{ 88 incrAggFunctionDepth(pDup, nSubquery); 89 if( pExpr->op==TK_COLLATE ){ 90 assert( !ExprHasProperty(pExpr, EP_IntValue) ); 91 pDup = sqlite3ExprAddCollateString(pParse, pDup, pExpr->u.zToken); 92 } 93 94 /* Before calling sqlite3ExprDelete(), set the EP_Static flag. This 95 ** prevents ExprDelete() from deleting the Expr structure itself, 96 ** allowing it to be repopulated by the memcpy() on the following line. 97 ** The pExpr->u.zToken might point into memory that will be freed by the 98 ** sqlite3DbFree(db, pDup) on the last line of this block, so be sure to 99 ** make a copy of the token before doing the sqlite3DbFree(). 100 */ 101 ExprSetProperty(pExpr, EP_Static); 102 sqlite3ExprDelete(db, pExpr); 103 memcpy(pExpr, pDup, sizeof(*pExpr)); 104 if( !ExprHasProperty(pExpr, EP_IntValue) && pExpr->u.zToken!=0 ){ 105 assert( (pExpr->flags & (EP_Reduced|EP_TokenOnly))==0 ); 106 pExpr->u.zToken = sqlite3DbStrDup(db, pExpr->u.zToken); 107 pExpr->flags |= EP_MemToken; 108 } 109 if( ExprHasProperty(pExpr, EP_WinFunc) ){ 110 if( ALWAYS(pExpr->y.pWin!=0) ){ 111 pExpr->y.pWin->pOwner = pExpr; 112 } 113 } 114 sqlite3DbFree(db, pDup); 115 } 116 } 117 118 119 /* 120 ** Return TRUE if the name zCol occurs anywhere in the USING clause. 121 ** 122 ** Return FALSE if the USING clause is NULL or if it does not contain 123 ** zCol. 124 */ 125 static int nameInUsingClause(IdList *pUsing, const char *zCol){ 126 if( pUsing ){ 127 int k; 128 for(k=0; k<pUsing->nId; k++){ 129 if( sqlite3StrICmp(pUsing->a[k].zName, zCol)==0 ) return 1; 130 } 131 } 132 return 0; 133 } 134 135 /* 136 ** Subqueries stores the original database, table and column names for their 137 ** result sets in ExprList.a[].zSpan, in the form "DATABASE.TABLE.COLUMN". 138 ** Check to see if the zSpan given to this routine matches the zDb, zTab, 139 ** and zCol. If any of zDb, zTab, and zCol are NULL then those fields will 140 ** match anything. 141 */ 142 int sqlite3MatchEName( 143 const struct ExprList_item *pItem, 144 const char *zCol, 145 const char *zTab, 146 const char *zDb 147 ){ 148 int n; 149 const char *zSpan; 150 if( pItem->eEName!=ENAME_TAB ) return 0; 151 zSpan = pItem->zEName; 152 for(n=0; ALWAYS(zSpan[n]) && zSpan[n]!='.'; n++){} 153 if( zDb && (sqlite3StrNICmp(zSpan, zDb, n)!=0 || zDb[n]!=0) ){ 154 return 0; 155 } 156 zSpan += n+1; 157 for(n=0; ALWAYS(zSpan[n]) && zSpan[n]!='.'; n++){} 158 if( zTab && (sqlite3StrNICmp(zSpan, zTab, n)!=0 || zTab[n]!=0) ){ 159 return 0; 160 } 161 zSpan += n+1; 162 if( zCol && sqlite3StrICmp(zSpan, zCol)!=0 ){ 163 return 0; 164 } 165 return 1; 166 } 167 168 /* 169 ** Return TRUE if the double-quoted string mis-feature should be supported. 170 */ 171 static int areDoubleQuotedStringsEnabled(sqlite3 *db, NameContext *pTopNC){ 172 if( db->init.busy ) return 1; /* Always support for legacy schemas */ 173 if( pTopNC->ncFlags & NC_IsDDL ){ 174 /* Currently parsing a DDL statement */ 175 if( sqlite3WritableSchema(db) && (db->flags & SQLITE_DqsDML)!=0 ){ 176 return 1; 177 } 178 return (db->flags & SQLITE_DqsDDL)!=0; 179 }else{ 180 /* Currently parsing a DML statement */ 181 return (db->flags & SQLITE_DqsDML)!=0; 182 } 183 } 184 185 /* 186 ** The argument is guaranteed to be a non-NULL Expr node of type TK_COLUMN. 187 ** return the appropriate colUsed mask. 188 */ 189 Bitmask sqlite3ExprColUsed(Expr *pExpr){ 190 int n; 191 Table *pExTab; 192 193 n = pExpr->iColumn; 194 assert( ExprUseYTab(pExpr) ); 195 pExTab = pExpr->y.pTab; 196 assert( pExTab!=0 ); 197 if( (pExTab->tabFlags & TF_HasGenerated)!=0 198 && (pExTab->aCol[n].colFlags & COLFLAG_GENERATED)!=0 199 ){ 200 testcase( pExTab->nCol==BMS-1 ); 201 testcase( pExTab->nCol==BMS ); 202 return pExTab->nCol>=BMS ? ALLBITS : MASKBIT(pExTab->nCol)-1; 203 }else{ 204 testcase( n==BMS-1 ); 205 testcase( n==BMS ); 206 if( n>=BMS ) n = BMS-1; 207 return ((Bitmask)1)<<n; 208 } 209 } 210 211 /* 212 ** Given the name of a column of the form X.Y.Z or Y.Z or just Z, look up 213 ** that name in the set of source tables in pSrcList and make the pExpr 214 ** expression node refer back to that source column. The following changes 215 ** are made to pExpr: 216 ** 217 ** pExpr->iDb Set the index in db->aDb[] of the database X 218 ** (even if X is implied). 219 ** pExpr->iTable Set to the cursor number for the table obtained 220 ** from pSrcList. 221 ** pExpr->y.pTab Points to the Table structure of X.Y (even if 222 ** X and/or Y are implied.) 223 ** pExpr->iColumn Set to the column number within the table. 224 ** pExpr->op Set to TK_COLUMN. 225 ** pExpr->pLeft Any expression this points to is deleted 226 ** pExpr->pRight Any expression this points to is deleted. 227 ** 228 ** The zDb variable is the name of the database (the "X"). This value may be 229 ** NULL meaning that name is of the form Y.Z or Z. Any available database 230 ** can be used. The zTable variable is the name of the table (the "Y"). This 231 ** value can be NULL if zDb is also NULL. If zTable is NULL it 232 ** means that the form of the name is Z and that columns from any table 233 ** can be used. 234 ** 235 ** If the name cannot be resolved unambiguously, leave an error message 236 ** in pParse and return WRC_Abort. Return WRC_Prune on success. 237 */ 238 static int lookupName( 239 Parse *pParse, /* The parsing context */ 240 const char *zDb, /* Name of the database containing table, or NULL */ 241 const char *zTab, /* Name of table containing column, or NULL */ 242 const char *zCol, /* Name of the column. */ 243 NameContext *pNC, /* The name context used to resolve the name */ 244 Expr *pExpr /* Make this EXPR node point to the selected column */ 245 ){ 246 int i, j; /* Loop counters */ 247 int cnt = 0; /* Number of matching column names */ 248 int cntTab = 0; /* Number of matching table names */ 249 int nSubquery = 0; /* How many levels of subquery */ 250 sqlite3 *db = pParse->db; /* The database connection */ 251 SrcItem *pItem; /* Use for looping over pSrcList items */ 252 SrcItem *pMatch = 0; /* The matching pSrcList item */ 253 NameContext *pTopNC = pNC; /* First namecontext in the list */ 254 Schema *pSchema = 0; /* Schema of the expression */ 255 int eNewExprOp = TK_COLUMN; /* New value for pExpr->op on success */ 256 Table *pTab = 0; /* Table hold the row */ 257 Column *pCol; /* A column of pTab */ 258 259 assert( pNC ); /* the name context cannot be NULL. */ 260 assert( zCol ); /* The Z in X.Y.Z cannot be NULL */ 261 assert( !ExprHasProperty(pExpr, EP_TokenOnly|EP_Reduced) ); 262 263 /* Initialize the node to no-match */ 264 pExpr->iTable = -1; 265 ExprSetVVAProperty(pExpr, EP_NoReduce); 266 267 /* Translate the schema name in zDb into a pointer to the corresponding 268 ** schema. If not found, pSchema will remain NULL and nothing will match 269 ** resulting in an appropriate error message toward the end of this routine 270 */ 271 if( zDb ){ 272 testcase( pNC->ncFlags & NC_PartIdx ); 273 testcase( pNC->ncFlags & NC_IsCheck ); 274 if( (pNC->ncFlags & (NC_PartIdx|NC_IsCheck))!=0 ){ 275 /* Silently ignore database qualifiers inside CHECK constraints and 276 ** partial indices. Do not raise errors because that might break 277 ** legacy and because it does not hurt anything to just ignore the 278 ** database name. */ 279 zDb = 0; 280 }else{ 281 for(i=0; i<db->nDb; i++){ 282 assert( db->aDb[i].zDbSName ); 283 if( sqlite3StrICmp(db->aDb[i].zDbSName,zDb)==0 ){ 284 pSchema = db->aDb[i].pSchema; 285 break; 286 } 287 } 288 if( i==db->nDb && sqlite3StrICmp("main", zDb)==0 ){ 289 /* This branch is taken when the main database has been renamed 290 ** using SQLITE_DBCONFIG_MAINDBNAME. */ 291 pSchema = db->aDb[0].pSchema; 292 zDb = db->aDb[0].zDbSName; 293 } 294 } 295 } 296 297 /* Start at the inner-most context and move outward until a match is found */ 298 assert( pNC && cnt==0 ); 299 do{ 300 ExprList *pEList; 301 SrcList *pSrcList = pNC->pSrcList; 302 303 if( pSrcList ){ 304 for(i=0, pItem=pSrcList->a; i<pSrcList->nSrc; i++, pItem++){ 305 u8 hCol; 306 pTab = pItem->pTab; 307 assert( pTab!=0 && pTab->zName!=0 ); 308 assert( pTab->nCol>0 || pParse->nErr ); 309 if( pItem->pSelect && (pItem->pSelect->selFlags & SF_NestedFrom)!=0 ){ 310 int hit = 0; 311 pEList = pItem->pSelect->pEList; 312 for(j=0; j<pEList->nExpr; j++){ 313 if( sqlite3MatchEName(&pEList->a[j], zCol, zTab, zDb) ){ 314 cnt++; 315 cntTab = 2; 316 pMatch = pItem; 317 pExpr->iColumn = j; 318 hit = 1; 319 } 320 } 321 if( hit || zTab==0 ) continue; 322 } 323 if( zDb ){ 324 if( pTab->pSchema!=pSchema ) continue; 325 if( pSchema==0 && strcmp(zDb,"*")!=0 ) continue; 326 } 327 if( zTab ){ 328 const char *zTabName = pItem->zAlias ? pItem->zAlias : pTab->zName; 329 assert( zTabName!=0 ); 330 if( sqlite3StrICmp(zTabName, zTab)!=0 ){ 331 continue; 332 } 333 assert( ExprUseYTab(pExpr) ); 334 if( IN_RENAME_OBJECT && pItem->zAlias ){ 335 sqlite3RenameTokenRemap(pParse, 0, (void*)&pExpr->y.pTab); 336 } 337 } 338 hCol = sqlite3StrIHash(zCol); 339 for(j=0, pCol=pTab->aCol; j<pTab->nCol; j++, pCol++){ 340 if( pCol->hName==hCol 341 && sqlite3StrICmp(pCol->zCnName, zCol)==0 342 ){ 343 /* If there has been exactly one prior match and this match 344 ** is for the right-hand table of a NATURAL JOIN or is in a 345 ** USING clause, then skip this match. 346 */ 347 if( cnt==1 ){ 348 if( pItem->fg.jointype & JT_NATURAL ) continue; 349 if( nameInUsingClause(pItem->pUsing, zCol) ) continue; 350 } 351 cnt++; 352 pMatch = pItem; 353 /* Substitute the rowid (column -1) for the INTEGER PRIMARY KEY */ 354 pExpr->iColumn = j==pTab->iPKey ? -1 : (i16)j; 355 break; 356 } 357 } 358 if( 0==cnt && VisibleRowid(pTab) ){ 359 cntTab++; 360 pMatch = pItem; 361 } 362 } 363 if( pMatch ){ 364 pExpr->iTable = pMatch->iCursor; 365 assert( ExprUseYTab(pExpr) ); 366 pExpr->y.pTab = pMatch->pTab; 367 /* RIGHT JOIN not (yet) supported */ 368 assert( (pMatch->fg.jointype & JT_RIGHT)==0 ); 369 if( (pMatch->fg.jointype & JT_LEFT)!=0 ){ 370 ExprSetProperty(pExpr, EP_CanBeNull); 371 } 372 pSchema = pExpr->y.pTab->pSchema; 373 } 374 } /* if( pSrcList ) */ 375 376 #if !defined(SQLITE_OMIT_TRIGGER) || !defined(SQLITE_OMIT_UPSERT) 377 /* If we have not already resolved the name, then maybe 378 ** it is a new.* or old.* trigger argument reference. Or 379 ** maybe it is an excluded.* from an upsert. Or maybe it is 380 ** a reference in the RETURNING clause to a table being modified. 381 */ 382 if( cnt==0 && zDb==0 ){ 383 pTab = 0; 384 #ifndef SQLITE_OMIT_TRIGGER 385 if( pParse->pTriggerTab!=0 ){ 386 int op = pParse->eTriggerOp; 387 assert( op==TK_DELETE || op==TK_UPDATE || op==TK_INSERT ); 388 if( pParse->bReturning ){ 389 if( (pNC->ncFlags & NC_UBaseReg)!=0 390 && (zTab==0 || sqlite3StrICmp(zTab,pParse->pTriggerTab->zName)==0) 391 ){ 392 pExpr->iTable = op!=TK_DELETE; 393 pTab = pParse->pTriggerTab; 394 } 395 }else if( op!=TK_DELETE && zTab && sqlite3StrICmp("new",zTab) == 0 ){ 396 pExpr->iTable = 1; 397 pTab = pParse->pTriggerTab; 398 }else if( op!=TK_INSERT && zTab && sqlite3StrICmp("old",zTab)==0 ){ 399 pExpr->iTable = 0; 400 pTab = pParse->pTriggerTab; 401 } 402 } 403 #endif /* SQLITE_OMIT_TRIGGER */ 404 #ifndef SQLITE_OMIT_UPSERT 405 if( (pNC->ncFlags & NC_UUpsert)!=0 && zTab!=0 ){ 406 Upsert *pUpsert = pNC->uNC.pUpsert; 407 if( pUpsert && sqlite3StrICmp("excluded",zTab)==0 ){ 408 pTab = pUpsert->pUpsertSrc->a[0].pTab; 409 pExpr->iTable = EXCLUDED_TABLE_NUMBER; 410 } 411 } 412 #endif /* SQLITE_OMIT_UPSERT */ 413 414 if( pTab ){ 415 int iCol; 416 u8 hCol = sqlite3StrIHash(zCol); 417 pSchema = pTab->pSchema; 418 cntTab++; 419 for(iCol=0, pCol=pTab->aCol; iCol<pTab->nCol; iCol++, pCol++){ 420 if( pCol->hName==hCol 421 && sqlite3StrICmp(pCol->zCnName, zCol)==0 422 ){ 423 if( iCol==pTab->iPKey ){ 424 iCol = -1; 425 } 426 break; 427 } 428 } 429 if( iCol>=pTab->nCol && sqlite3IsRowid(zCol) && VisibleRowid(pTab) ){ 430 /* IMP: R-51414-32910 */ 431 iCol = -1; 432 } 433 if( iCol<pTab->nCol ){ 434 cnt++; 435 pMatch = 0; 436 #ifndef SQLITE_OMIT_UPSERT 437 if( pExpr->iTable==EXCLUDED_TABLE_NUMBER ){ 438 testcase( iCol==(-1) ); 439 assert( ExprUseYTab(pExpr) ); 440 if( IN_RENAME_OBJECT ){ 441 pExpr->iColumn = iCol; 442 pExpr->y.pTab = pTab; 443 eNewExprOp = TK_COLUMN; 444 }else{ 445 pExpr->iTable = pNC->uNC.pUpsert->regData + 446 sqlite3TableColumnToStorage(pTab, iCol); 447 eNewExprOp = TK_REGISTER; 448 } 449 }else 450 #endif /* SQLITE_OMIT_UPSERT */ 451 { 452 assert( ExprUseYTab(pExpr) ); 453 pExpr->y.pTab = pTab; 454 if( pParse->bReturning ){ 455 eNewExprOp = TK_REGISTER; 456 pExpr->op2 = TK_COLUMN; 457 pExpr->iTable = pNC->uNC.iBaseReg + (pTab->nCol+1)*pExpr->iTable + 458 sqlite3TableColumnToStorage(pTab, iCol) + 1; 459 }else{ 460 pExpr->iColumn = (i16)iCol; 461 eNewExprOp = TK_TRIGGER; 462 #ifndef SQLITE_OMIT_TRIGGER 463 if( iCol<0 ){ 464 pExpr->affExpr = SQLITE_AFF_INTEGER; 465 }else if( pExpr->iTable==0 ){ 466 testcase( iCol==31 ); 467 testcase( iCol==32 ); 468 pParse->oldmask |= (iCol>=32 ? 0xffffffff : (((u32)1)<<iCol)); 469 }else{ 470 testcase( iCol==31 ); 471 testcase( iCol==32 ); 472 pParse->newmask |= (iCol>=32 ? 0xffffffff : (((u32)1)<<iCol)); 473 } 474 #endif /* SQLITE_OMIT_TRIGGER */ 475 } 476 } 477 } 478 } 479 } 480 #endif /* !defined(SQLITE_OMIT_TRIGGER) || !defined(SQLITE_OMIT_UPSERT) */ 481 482 /* 483 ** Perhaps the name is a reference to the ROWID 484 */ 485 if( cnt==0 486 && cntTab==1 487 && pMatch 488 && (pNC->ncFlags & (NC_IdxExpr|NC_GenCol))==0 489 && sqlite3IsRowid(zCol) 490 && ALWAYS(VisibleRowid(pMatch->pTab)) 491 ){ 492 cnt = 1; 493 pExpr->iColumn = -1; 494 pExpr->affExpr = SQLITE_AFF_INTEGER; 495 } 496 497 /* 498 ** If the input is of the form Z (not Y.Z or X.Y.Z) then the name Z 499 ** might refer to an result-set alias. This happens, for example, when 500 ** we are resolving names in the WHERE clause of the following command: 501 ** 502 ** SELECT a+b AS x FROM table WHERE x<10; 503 ** 504 ** In cases like this, replace pExpr with a copy of the expression that 505 ** forms the result set entry ("a+b" in the example) and return immediately. 506 ** Note that the expression in the result set should have already been 507 ** resolved by the time the WHERE clause is resolved. 508 ** 509 ** The ability to use an output result-set column in the WHERE, GROUP BY, 510 ** or HAVING clauses, or as part of a larger expression in the ORDER BY 511 ** clause is not standard SQL. This is a (goofy) SQLite extension, that 512 ** is supported for backwards compatibility only. Hence, we issue a warning 513 ** on sqlite3_log() whenever the capability is used. 514 */ 515 if( cnt==0 516 && (pNC->ncFlags & NC_UEList)!=0 517 && zTab==0 518 ){ 519 pEList = pNC->uNC.pEList; 520 assert( pEList!=0 ); 521 for(j=0; j<pEList->nExpr; j++){ 522 char *zAs = pEList->a[j].zEName; 523 if( pEList->a[j].eEName==ENAME_NAME 524 && sqlite3_stricmp(zAs, zCol)==0 525 ){ 526 Expr *pOrig; 527 assert( pExpr->pLeft==0 && pExpr->pRight==0 ); 528 assert( ExprUseXList(pExpr)==0 || pExpr->x.pList==0 ); 529 assert( ExprUseXSelect(pExpr)==0 || pExpr->x.pSelect==0 ); 530 pOrig = pEList->a[j].pExpr; 531 if( (pNC->ncFlags&NC_AllowAgg)==0 && ExprHasProperty(pOrig, EP_Agg) ){ 532 sqlite3ErrorMsg(pParse, "misuse of aliased aggregate %s", zAs); 533 return WRC_Abort; 534 } 535 if( ExprHasProperty(pOrig, EP_Win) 536 && ((pNC->ncFlags&NC_AllowWin)==0 || pNC!=pTopNC ) 537 ){ 538 sqlite3ErrorMsg(pParse, "misuse of aliased window function %s",zAs); 539 return WRC_Abort; 540 } 541 if( sqlite3ExprVectorSize(pOrig)!=1 ){ 542 sqlite3ErrorMsg(pParse, "row value misused"); 543 return WRC_Abort; 544 } 545 resolveAlias(pParse, pEList, j, pExpr, nSubquery); 546 cnt = 1; 547 pMatch = 0; 548 assert( zTab==0 && zDb==0 ); 549 if( IN_RENAME_OBJECT ){ 550 sqlite3RenameTokenRemap(pParse, 0, (void*)pExpr); 551 } 552 goto lookupname_end; 553 } 554 } 555 } 556 557 /* Advance to the next name context. The loop will exit when either 558 ** we have a match (cnt>0) or when we run out of name contexts. 559 */ 560 if( cnt ) break; 561 pNC = pNC->pNext; 562 nSubquery++; 563 }while( pNC ); 564 565 566 /* 567 ** If X and Y are NULL (in other words if only the column name Z is 568 ** supplied) and the value of Z is enclosed in double-quotes, then 569 ** Z is a string literal if it doesn't match any column names. In that 570 ** case, we need to return right away and not make any changes to 571 ** pExpr. 572 ** 573 ** Because no reference was made to outer contexts, the pNC->nRef 574 ** fields are not changed in any context. 575 */ 576 if( cnt==0 && zTab==0 ){ 577 assert( pExpr->op==TK_ID ); 578 if( ExprHasProperty(pExpr,EP_DblQuoted) 579 && areDoubleQuotedStringsEnabled(db, pTopNC) 580 ){ 581 /* If a double-quoted identifier does not match any known column name, 582 ** then treat it as a string. 583 ** 584 ** This hack was added in the early days of SQLite in a misguided attempt 585 ** to be compatible with MySQL 3.x, which used double-quotes for strings. 586 ** I now sorely regret putting in this hack. The effect of this hack is 587 ** that misspelled identifier names are silently converted into strings 588 ** rather than causing an error, to the frustration of countless 589 ** programmers. To all those frustrated programmers, my apologies. 590 ** 591 ** Someday, I hope to get rid of this hack. Unfortunately there is 592 ** a huge amount of legacy SQL that uses it. So for now, we just 593 ** issue a warning. 594 */ 595 sqlite3_log(SQLITE_WARNING, 596 "double-quoted string literal: \"%w\"", zCol); 597 #ifdef SQLITE_ENABLE_NORMALIZE 598 sqlite3VdbeAddDblquoteStr(db, pParse->pVdbe, zCol); 599 #endif 600 pExpr->op = TK_STRING; 601 memset(&pExpr->y, 0, sizeof(pExpr->y)); 602 return WRC_Prune; 603 } 604 if( sqlite3ExprIdToTrueFalse(pExpr) ){ 605 return WRC_Prune; 606 } 607 } 608 609 /* 610 ** cnt==0 means there was not match. cnt>1 means there were two or 611 ** more matches. Either way, we have an error. 612 */ 613 if( cnt!=1 ){ 614 const char *zErr; 615 zErr = cnt==0 ? "no such column" : "ambiguous column name"; 616 if( zDb ){ 617 sqlite3ErrorMsg(pParse, "%s: %s.%s.%s", zErr, zDb, zTab, zCol); 618 }else if( zTab ){ 619 sqlite3ErrorMsg(pParse, "%s: %s.%s", zErr, zTab, zCol); 620 }else{ 621 sqlite3ErrorMsg(pParse, "%s: %s", zErr, zCol); 622 } 623 pParse->checkSchema = 1; 624 pTopNC->nNcErr++; 625 } 626 627 /* If a column from a table in pSrcList is referenced, then record 628 ** this fact in the pSrcList.a[].colUsed bitmask. Column 0 causes 629 ** bit 0 to be set. Column 1 sets bit 1. And so forth. Bit 63 is 630 ** set if the 63rd or any subsequent column is used. 631 ** 632 ** The colUsed mask is an optimization used to help determine if an 633 ** index is a covering index. The correct answer is still obtained 634 ** if the mask contains extra set bits. However, it is important to 635 ** avoid setting bits beyond the maximum column number of the table. 636 ** (See ticket [b92e5e8ec2cdbaa1]). 637 ** 638 ** If a generated column is referenced, set bits for every column 639 ** of the table. 640 */ 641 if( pExpr->iColumn>=0 && pMatch!=0 ){ 642 pMatch->colUsed |= sqlite3ExprColUsed(pExpr); 643 } 644 645 /* Clean up and return 646 */ 647 if( !ExprHasProperty(pExpr,(EP_TokenOnly|EP_Leaf)) ){ 648 sqlite3ExprDelete(db, pExpr->pLeft); 649 pExpr->pLeft = 0; 650 sqlite3ExprDelete(db, pExpr->pRight); 651 pExpr->pRight = 0; 652 } 653 pExpr->op = eNewExprOp; 654 ExprSetProperty(pExpr, EP_Leaf); 655 lookupname_end: 656 if( cnt==1 ){ 657 assert( pNC!=0 ); 658 #ifndef SQLITE_OMIT_AUTHORIZATION 659 if( pParse->db->xAuth 660 && (pExpr->op==TK_COLUMN || pExpr->op==TK_TRIGGER) 661 ){ 662 sqlite3AuthRead(pParse, pExpr, pSchema, pNC->pSrcList); 663 } 664 #endif 665 /* Increment the nRef value on all name contexts from TopNC up to 666 ** the point where the name matched. */ 667 for(;;){ 668 assert( pTopNC!=0 ); 669 pTopNC->nRef++; 670 if( pTopNC==pNC ) break; 671 pTopNC = pTopNC->pNext; 672 } 673 return WRC_Prune; 674 } else { 675 return WRC_Abort; 676 } 677 } 678 679 /* 680 ** Allocate and return a pointer to an expression to load the column iCol 681 ** from datasource iSrc in SrcList pSrc. 682 */ 683 Expr *sqlite3CreateColumnExpr(sqlite3 *db, SrcList *pSrc, int iSrc, int iCol){ 684 Expr *p = sqlite3ExprAlloc(db, TK_COLUMN, 0, 0); 685 if( p ){ 686 SrcItem *pItem = &pSrc->a[iSrc]; 687 Table *pTab; 688 assert( ExprUseYTab(p) ); 689 pTab = p->y.pTab = pItem->pTab; 690 p->iTable = pItem->iCursor; 691 if( p->y.pTab->iPKey==iCol ){ 692 p->iColumn = -1; 693 }else{ 694 p->iColumn = (ynVar)iCol; 695 if( (pTab->tabFlags & TF_HasGenerated)!=0 696 && (pTab->aCol[iCol].colFlags & COLFLAG_GENERATED)!=0 697 ){ 698 testcase( pTab->nCol==63 ); 699 testcase( pTab->nCol==64 ); 700 pItem->colUsed = pTab->nCol>=64 ? ALLBITS : MASKBIT(pTab->nCol)-1; 701 }else{ 702 testcase( iCol==BMS ); 703 testcase( iCol==BMS-1 ); 704 pItem->colUsed |= ((Bitmask)1)<<(iCol>=BMS ? BMS-1 : iCol); 705 } 706 } 707 } 708 return p; 709 } 710 711 /* 712 ** Report an error that an expression is not valid for some set of 713 ** pNC->ncFlags values determined by validMask. 714 ** 715 ** static void notValid( 716 ** Parse *pParse, // Leave error message here 717 ** NameContext *pNC, // The name context 718 ** const char *zMsg, // Type of error 719 ** int validMask, // Set of contexts for which prohibited 720 ** Expr *pExpr // Invalidate this expression on error 721 ** ){...} 722 ** 723 ** As an optimization, since the conditional is almost always false 724 ** (because errors are rare), the conditional is moved outside of the 725 ** function call using a macro. 726 */ 727 static void notValidImpl( 728 Parse *pParse, /* Leave error message here */ 729 NameContext *pNC, /* The name context */ 730 const char *zMsg, /* Type of error */ 731 Expr *pExpr /* Invalidate this expression on error */ 732 ){ 733 const char *zIn = "partial index WHERE clauses"; 734 if( pNC->ncFlags & NC_IdxExpr ) zIn = "index expressions"; 735 #ifndef SQLITE_OMIT_CHECK 736 else if( pNC->ncFlags & NC_IsCheck ) zIn = "CHECK constraints"; 737 #endif 738 #ifndef SQLITE_OMIT_GENERATED_COLUMNS 739 else if( pNC->ncFlags & NC_GenCol ) zIn = "generated columns"; 740 #endif 741 sqlite3ErrorMsg(pParse, "%s prohibited in %s", zMsg, zIn); 742 if( pExpr ) pExpr->op = TK_NULL; 743 } 744 #define sqlite3ResolveNotValid(P,N,M,X,E) \ 745 assert( ((X)&~(NC_IsCheck|NC_PartIdx|NC_IdxExpr|NC_GenCol))==0 ); \ 746 if( ((N)->ncFlags & (X))!=0 ) notValidImpl(P,N,M,E); 747 748 /* 749 ** Expression p should encode a floating point value between 1.0 and 0.0. 750 ** Return 1024 times this value. Or return -1 if p is not a floating point 751 ** value between 1.0 and 0.0. 752 */ 753 static int exprProbability(Expr *p){ 754 double r = -1.0; 755 if( p->op!=TK_FLOAT ) return -1; 756 assert( !ExprHasProperty(p, EP_IntValue) ); 757 sqlite3AtoF(p->u.zToken, &r, sqlite3Strlen30(p->u.zToken), SQLITE_UTF8); 758 assert( r>=0.0 ); 759 if( r>1.0 ) return -1; 760 return (int)(r*134217728.0); 761 } 762 763 /* 764 ** This routine is callback for sqlite3WalkExpr(). 765 ** 766 ** Resolve symbolic names into TK_COLUMN operators for the current 767 ** node in the expression tree. Return 0 to continue the search down 768 ** the tree or 2 to abort the tree walk. 769 ** 770 ** This routine also does error checking and name resolution for 771 ** function names. The operator for aggregate functions is changed 772 ** to TK_AGG_FUNCTION. 773 */ 774 static int resolveExprStep(Walker *pWalker, Expr *pExpr){ 775 NameContext *pNC; 776 Parse *pParse; 777 778 pNC = pWalker->u.pNC; 779 assert( pNC!=0 ); 780 pParse = pNC->pParse; 781 assert( pParse==pWalker->pParse ); 782 783 #ifndef NDEBUG 784 if( pNC->pSrcList && pNC->pSrcList->nAlloc>0 ){ 785 SrcList *pSrcList = pNC->pSrcList; 786 int i; 787 for(i=0; i<pNC->pSrcList->nSrc; i++){ 788 assert( pSrcList->a[i].iCursor>=0 && pSrcList->a[i].iCursor<pParse->nTab); 789 } 790 } 791 #endif 792 switch( pExpr->op ){ 793 794 /* The special operator TK_ROW means use the rowid for the first 795 ** column in the FROM clause. This is used by the LIMIT and ORDER BY 796 ** clause processing on UPDATE and DELETE statements, and by 797 ** UPDATE ... FROM statement processing. 798 */ 799 case TK_ROW: { 800 SrcList *pSrcList = pNC->pSrcList; 801 SrcItem *pItem; 802 assert( pSrcList && pSrcList->nSrc>=1 ); 803 pItem = pSrcList->a; 804 pExpr->op = TK_COLUMN; 805 assert( ExprUseYTab(pExpr) ); 806 pExpr->y.pTab = pItem->pTab; 807 pExpr->iTable = pItem->iCursor; 808 pExpr->iColumn--; 809 pExpr->affExpr = SQLITE_AFF_INTEGER; 810 break; 811 } 812 813 /* An optimization: Attempt to convert 814 ** 815 ** "expr IS NOT NULL" --> "TRUE" 816 ** "expr IS NULL" --> "FALSE" 817 ** 818 ** if we can prove that "expr" is never NULL. Call this the 819 ** "NOT NULL strength reduction optimization". 820 ** 821 ** If this optimization occurs, also restore the NameContext ref-counts 822 ** to the state they where in before the "column" LHS expression was 823 ** resolved. This prevents "column" from being counted as having been 824 ** referenced, which might prevent a SELECT from being erroneously 825 ** marked as correlated. 826 */ 827 case TK_NOTNULL: 828 case TK_ISNULL: { 829 int anRef[8]; 830 NameContext *p; 831 int i; 832 for(i=0, p=pNC; p && i<ArraySize(anRef); p=p->pNext, i++){ 833 anRef[i] = p->nRef; 834 } 835 sqlite3WalkExpr(pWalker, pExpr->pLeft); 836 if( 0==sqlite3ExprCanBeNull(pExpr->pLeft) && !IN_RENAME_OBJECT ){ 837 testcase( ExprHasProperty(pExpr, EP_FromJoin) ); 838 assert( !ExprHasProperty(pExpr, EP_IntValue) ); 839 if( pExpr->op==TK_NOTNULL ){ 840 pExpr->u.zToken = "true"; 841 ExprSetProperty(pExpr, EP_IsTrue); 842 }else{ 843 pExpr->u.zToken = "false"; 844 ExprSetProperty(pExpr, EP_IsFalse); 845 } 846 pExpr->op = TK_TRUEFALSE; 847 for(i=0, p=pNC; p && i<ArraySize(anRef); p=p->pNext, i++){ 848 p->nRef = anRef[i]; 849 } 850 sqlite3ExprDelete(pParse->db, pExpr->pLeft); 851 pExpr->pLeft = 0; 852 } 853 return WRC_Prune; 854 } 855 856 /* A column name: ID 857 ** Or table name and column name: ID.ID 858 ** Or a database, table and column: ID.ID.ID 859 ** 860 ** The TK_ID and TK_OUT cases are combined so that there will only 861 ** be one call to lookupName(). Then the compiler will in-line 862 ** lookupName() for a size reduction and performance increase. 863 */ 864 case TK_ID: 865 case TK_DOT: { 866 const char *zColumn; 867 const char *zTable; 868 const char *zDb; 869 Expr *pRight; 870 871 if( pExpr->op==TK_ID ){ 872 zDb = 0; 873 zTable = 0; 874 assert( !ExprHasProperty(pExpr, EP_IntValue) ); 875 zColumn = pExpr->u.zToken; 876 }else{ 877 Expr *pLeft = pExpr->pLeft; 878 testcase( pNC->ncFlags & NC_IdxExpr ); 879 testcase( pNC->ncFlags & NC_GenCol ); 880 sqlite3ResolveNotValid(pParse, pNC, "the \".\" operator", 881 NC_IdxExpr|NC_GenCol, 0); 882 pRight = pExpr->pRight; 883 if( pRight->op==TK_ID ){ 884 zDb = 0; 885 }else{ 886 assert( pRight->op==TK_DOT ); 887 assert( !ExprHasProperty(pRight, EP_IntValue) ); 888 zDb = pLeft->u.zToken; 889 pLeft = pRight->pLeft; 890 pRight = pRight->pRight; 891 } 892 assert( ExprUseUToken(pLeft) && ExprUseUToken(pRight) ); 893 zTable = pLeft->u.zToken; 894 zColumn = pRight->u.zToken; 895 assert( ExprUseYTab(pExpr) ); 896 if( IN_RENAME_OBJECT ){ 897 sqlite3RenameTokenRemap(pParse, (void*)pExpr, (void*)pRight); 898 sqlite3RenameTokenRemap(pParse, (void*)&pExpr->y.pTab, (void*)pLeft); 899 } 900 } 901 return lookupName(pParse, zDb, zTable, zColumn, pNC, pExpr); 902 } 903 904 /* Resolve function names 905 */ 906 case TK_FUNCTION: { 907 ExprList *pList = pExpr->x.pList; /* The argument list */ 908 int n = pList ? pList->nExpr : 0; /* Number of arguments */ 909 int no_such_func = 0; /* True if no such function exists */ 910 int wrong_num_args = 0; /* True if wrong number of arguments */ 911 int is_agg = 0; /* True if is an aggregate function */ 912 int nId; /* Number of characters in function name */ 913 const char *zId; /* The function name. */ 914 FuncDef *pDef; /* Information about the function */ 915 u8 enc = ENC(pParse->db); /* The database encoding */ 916 int savedAllowFlags = (pNC->ncFlags & (NC_AllowAgg | NC_AllowWin)); 917 #ifndef SQLITE_OMIT_WINDOWFUNC 918 Window *pWin = (IsWindowFunc(pExpr) ? pExpr->y.pWin : 0); 919 #endif 920 assert( !ExprHasProperty(pExpr, EP_xIsSelect|EP_IntValue) ); 921 zId = pExpr->u.zToken; 922 nId = sqlite3Strlen30(zId); 923 pDef = sqlite3FindFunction(pParse->db, zId, n, enc, 0); 924 if( pDef==0 ){ 925 pDef = sqlite3FindFunction(pParse->db, zId, -2, enc, 0); 926 if( pDef==0 ){ 927 no_such_func = 1; 928 }else{ 929 wrong_num_args = 1; 930 } 931 }else{ 932 is_agg = pDef->xFinalize!=0; 933 if( pDef->funcFlags & SQLITE_FUNC_UNLIKELY ){ 934 ExprSetProperty(pExpr, EP_Unlikely); 935 if( n==2 ){ 936 pExpr->iTable = exprProbability(pList->a[1].pExpr); 937 if( pExpr->iTable<0 ){ 938 sqlite3ErrorMsg(pParse, 939 "second argument to likelihood() must be a " 940 "constant between 0.0 and 1.0"); 941 pNC->nNcErr++; 942 } 943 }else{ 944 /* EVIDENCE-OF: R-61304-29449 The unlikely(X) function is 945 ** equivalent to likelihood(X, 0.0625). 946 ** EVIDENCE-OF: R-01283-11636 The unlikely(X) function is 947 ** short-hand for likelihood(X,0.0625). 948 ** EVIDENCE-OF: R-36850-34127 The likely(X) function is short-hand 949 ** for likelihood(X,0.9375). 950 ** EVIDENCE-OF: R-53436-40973 The likely(X) function is equivalent 951 ** to likelihood(X,0.9375). */ 952 /* TUNING: unlikely() probability is 0.0625. likely() is 0.9375 */ 953 pExpr->iTable = pDef->zName[0]=='u' ? 8388608 : 125829120; 954 } 955 } 956 #ifndef SQLITE_OMIT_AUTHORIZATION 957 { 958 int auth = sqlite3AuthCheck(pParse, SQLITE_FUNCTION, 0,pDef->zName,0); 959 if( auth!=SQLITE_OK ){ 960 if( auth==SQLITE_DENY ){ 961 sqlite3ErrorMsg(pParse, "not authorized to use function: %s", 962 pDef->zName); 963 pNC->nNcErr++; 964 } 965 pExpr->op = TK_NULL; 966 return WRC_Prune; 967 } 968 } 969 #endif 970 if( pDef->funcFlags & (SQLITE_FUNC_CONSTANT|SQLITE_FUNC_SLOCHNG) ){ 971 /* For the purposes of the EP_ConstFunc flag, date and time 972 ** functions and other functions that change slowly are considered 973 ** constant because they are constant for the duration of one query. 974 ** This allows them to be factored out of inner loops. */ 975 ExprSetProperty(pExpr,EP_ConstFunc); 976 } 977 if( (pDef->funcFlags & SQLITE_FUNC_CONSTANT)==0 ){ 978 /* Clearly non-deterministic functions like random(), but also 979 ** date/time functions that use 'now', and other functions like 980 ** sqlite_version() that might change over time cannot be used 981 ** in an index or generated column. Curiously, they can be used 982 ** in a CHECK constraint. SQLServer, MySQL, and PostgreSQL all 983 ** all this. */ 984 sqlite3ResolveNotValid(pParse, pNC, "non-deterministic functions", 985 NC_IdxExpr|NC_PartIdx|NC_GenCol, 0); 986 }else{ 987 assert( (NC_SelfRef & 0xff)==NC_SelfRef ); /* Must fit in 8 bits */ 988 pExpr->op2 = pNC->ncFlags & NC_SelfRef; 989 if( pNC->ncFlags & NC_FromDDL ) ExprSetProperty(pExpr, EP_FromDDL); 990 } 991 if( (pDef->funcFlags & SQLITE_FUNC_INTERNAL)!=0 992 && pParse->nested==0 993 && (pParse->db->mDbFlags & DBFLAG_InternalFunc)==0 994 ){ 995 /* Internal-use-only functions are disallowed unless the 996 ** SQL is being compiled using sqlite3NestedParse() or 997 ** the SQLITE_TESTCTRL_INTERNAL_FUNCTIONS test-control has be 998 ** used to activate internal functionsn for testing purposes */ 999 no_such_func = 1; 1000 pDef = 0; 1001 }else 1002 if( (pDef->funcFlags & (SQLITE_FUNC_DIRECT|SQLITE_FUNC_UNSAFE))!=0 1003 && !IN_RENAME_OBJECT 1004 ){ 1005 sqlite3ExprFunctionUsable(pParse, pExpr, pDef); 1006 } 1007 } 1008 1009 if( 0==IN_RENAME_OBJECT ){ 1010 #ifndef SQLITE_OMIT_WINDOWFUNC 1011 assert( is_agg==0 || (pDef->funcFlags & SQLITE_FUNC_MINMAX) 1012 || (pDef->xValue==0 && pDef->xInverse==0) 1013 || (pDef->xValue && pDef->xInverse && pDef->xSFunc && pDef->xFinalize) 1014 ); 1015 if( pDef && pDef->xValue==0 && pWin ){ 1016 sqlite3ErrorMsg(pParse, 1017 "%.*s() may not be used as a window function", nId, zId 1018 ); 1019 pNC->nNcErr++; 1020 }else if( 1021 (is_agg && (pNC->ncFlags & NC_AllowAgg)==0) 1022 || (is_agg && (pDef->funcFlags&SQLITE_FUNC_WINDOW) && !pWin) 1023 || (is_agg && pWin && (pNC->ncFlags & NC_AllowWin)==0) 1024 ){ 1025 const char *zType; 1026 if( (pDef->funcFlags & SQLITE_FUNC_WINDOW) || pWin ){ 1027 zType = "window"; 1028 }else{ 1029 zType = "aggregate"; 1030 } 1031 sqlite3ErrorMsg(pParse, "misuse of %s function %.*s()",zType,nId,zId); 1032 pNC->nNcErr++; 1033 is_agg = 0; 1034 } 1035 #else 1036 if( (is_agg && (pNC->ncFlags & NC_AllowAgg)==0) ){ 1037 sqlite3ErrorMsg(pParse,"misuse of aggregate function %.*s()",nId,zId); 1038 pNC->nNcErr++; 1039 is_agg = 0; 1040 } 1041 #endif 1042 else if( no_such_func && pParse->db->init.busy==0 1043 #ifdef SQLITE_ENABLE_UNKNOWN_SQL_FUNCTION 1044 && pParse->explain==0 1045 #endif 1046 ){ 1047 sqlite3ErrorMsg(pParse, "no such function: %.*s", nId, zId); 1048 pNC->nNcErr++; 1049 }else if( wrong_num_args ){ 1050 sqlite3ErrorMsg(pParse,"wrong number of arguments to function %.*s()", 1051 nId, zId); 1052 pNC->nNcErr++; 1053 } 1054 #ifndef SQLITE_OMIT_WINDOWFUNC 1055 else if( is_agg==0 && ExprHasProperty(pExpr, EP_WinFunc) ){ 1056 sqlite3ErrorMsg(pParse, 1057 "FILTER may not be used with non-aggregate %.*s()", 1058 nId, zId 1059 ); 1060 pNC->nNcErr++; 1061 } 1062 #endif 1063 if( is_agg ){ 1064 /* Window functions may not be arguments of aggregate functions. 1065 ** Or arguments of other window functions. But aggregate functions 1066 ** may be arguments for window functions. */ 1067 #ifndef SQLITE_OMIT_WINDOWFUNC 1068 pNC->ncFlags &= ~(NC_AllowWin | (!pWin ? NC_AllowAgg : 0)); 1069 #else 1070 pNC->ncFlags &= ~NC_AllowAgg; 1071 #endif 1072 } 1073 } 1074 #ifndef SQLITE_OMIT_WINDOWFUNC 1075 else if( ExprHasProperty(pExpr, EP_WinFunc) ){ 1076 is_agg = 1; 1077 } 1078 #endif 1079 sqlite3WalkExprList(pWalker, pList); 1080 if( is_agg ){ 1081 #ifndef SQLITE_OMIT_WINDOWFUNC 1082 if( pWin ){ 1083 Select *pSel = pNC->pWinSelect; 1084 assert( pWin==0 || (ExprUseYWin(pExpr) && pWin==pExpr->y.pWin) ); 1085 if( IN_RENAME_OBJECT==0 ){ 1086 sqlite3WindowUpdate(pParse, pSel ? pSel->pWinDefn : 0, pWin, pDef); 1087 if( pParse->db->mallocFailed ) break; 1088 } 1089 sqlite3WalkExprList(pWalker, pWin->pPartition); 1090 sqlite3WalkExprList(pWalker, pWin->pOrderBy); 1091 sqlite3WalkExpr(pWalker, pWin->pFilter); 1092 sqlite3WindowLink(pSel, pWin); 1093 pNC->ncFlags |= NC_HasWin; 1094 }else 1095 #endif /* SQLITE_OMIT_WINDOWFUNC */ 1096 { 1097 NameContext *pNC2; /* For looping up thru outer contexts */ 1098 pExpr->op = TK_AGG_FUNCTION; 1099 pExpr->op2 = 0; 1100 #ifndef SQLITE_OMIT_WINDOWFUNC 1101 if( ExprHasProperty(pExpr, EP_WinFunc) ){ 1102 sqlite3WalkExpr(pWalker, pExpr->y.pWin->pFilter); 1103 } 1104 #endif 1105 pNC2 = pNC; 1106 while( pNC2 1107 && sqlite3ReferencesSrcList(pParse, pExpr, pNC2->pSrcList)==0 1108 ){ 1109 pExpr->op2++; 1110 pNC2 = pNC2->pNext; 1111 } 1112 assert( pDef!=0 || IN_RENAME_OBJECT ); 1113 if( pNC2 && pDef ){ 1114 assert( SQLITE_FUNC_MINMAX==NC_MinMaxAgg ); 1115 assert( SQLITE_FUNC_ANYORDER==NC_OrderAgg ); 1116 testcase( (pDef->funcFlags & SQLITE_FUNC_MINMAX)!=0 ); 1117 testcase( (pDef->funcFlags & SQLITE_FUNC_ANYORDER)!=0 ); 1118 pNC2->ncFlags |= NC_HasAgg 1119 | ((pDef->funcFlags^SQLITE_FUNC_ANYORDER) 1120 & (SQLITE_FUNC_MINMAX|SQLITE_FUNC_ANYORDER)); 1121 } 1122 } 1123 pNC->ncFlags |= savedAllowFlags; 1124 } 1125 /* FIX ME: Compute pExpr->affinity based on the expected return 1126 ** type of the function 1127 */ 1128 return WRC_Prune; 1129 } 1130 #ifndef SQLITE_OMIT_SUBQUERY 1131 case TK_SELECT: 1132 case TK_EXISTS: testcase( pExpr->op==TK_EXISTS ); 1133 #endif 1134 case TK_IN: { 1135 testcase( pExpr->op==TK_IN ); 1136 if( ExprUseXSelect(pExpr) ){ 1137 int nRef = pNC->nRef; 1138 testcase( pNC->ncFlags & NC_IsCheck ); 1139 testcase( pNC->ncFlags & NC_PartIdx ); 1140 testcase( pNC->ncFlags & NC_IdxExpr ); 1141 testcase( pNC->ncFlags & NC_GenCol ); 1142 if( pNC->ncFlags & NC_SelfRef ){ 1143 notValidImpl(pParse, pNC, "subqueries", pExpr); 1144 }else{ 1145 sqlite3WalkSelect(pWalker, pExpr->x.pSelect); 1146 } 1147 assert( pNC->nRef>=nRef ); 1148 if( nRef!=pNC->nRef ){ 1149 ExprSetProperty(pExpr, EP_VarSelect); 1150 pNC->ncFlags |= NC_VarSelect; 1151 } 1152 } 1153 break; 1154 } 1155 case TK_VARIABLE: { 1156 testcase( pNC->ncFlags & NC_IsCheck ); 1157 testcase( pNC->ncFlags & NC_PartIdx ); 1158 testcase( pNC->ncFlags & NC_IdxExpr ); 1159 testcase( pNC->ncFlags & NC_GenCol ); 1160 sqlite3ResolveNotValid(pParse, pNC, "parameters", 1161 NC_IsCheck|NC_PartIdx|NC_IdxExpr|NC_GenCol, pExpr); 1162 break; 1163 } 1164 case TK_IS: 1165 case TK_ISNOT: { 1166 Expr *pRight = sqlite3ExprSkipCollateAndLikely(pExpr->pRight); 1167 assert( !ExprHasProperty(pExpr, EP_Reduced) ); 1168 /* Handle special cases of "x IS TRUE", "x IS FALSE", "x IS NOT TRUE", 1169 ** and "x IS NOT FALSE". */ 1170 if( ALWAYS(pRight) && (pRight->op==TK_ID || pRight->op==TK_TRUEFALSE) ){ 1171 int rc = resolveExprStep(pWalker, pRight); 1172 if( rc==WRC_Abort ) return WRC_Abort; 1173 if( pRight->op==TK_TRUEFALSE ){ 1174 pExpr->op2 = pExpr->op; 1175 pExpr->op = TK_TRUTH; 1176 return WRC_Continue; 1177 } 1178 } 1179 /* no break */ deliberate_fall_through 1180 } 1181 case TK_BETWEEN: 1182 case TK_EQ: 1183 case TK_NE: 1184 case TK_LT: 1185 case TK_LE: 1186 case TK_GT: 1187 case TK_GE: { 1188 int nLeft, nRight; 1189 if( pParse->db->mallocFailed ) break; 1190 assert( pExpr->pLeft!=0 ); 1191 nLeft = sqlite3ExprVectorSize(pExpr->pLeft); 1192 if( pExpr->op==TK_BETWEEN ){ 1193 assert( ExprUseXList(pExpr) ); 1194 nRight = sqlite3ExprVectorSize(pExpr->x.pList->a[0].pExpr); 1195 if( nRight==nLeft ){ 1196 nRight = sqlite3ExprVectorSize(pExpr->x.pList->a[1].pExpr); 1197 } 1198 }else{ 1199 assert( pExpr->pRight!=0 ); 1200 nRight = sqlite3ExprVectorSize(pExpr->pRight); 1201 } 1202 if( nLeft!=nRight ){ 1203 testcase( pExpr->op==TK_EQ ); 1204 testcase( pExpr->op==TK_NE ); 1205 testcase( pExpr->op==TK_LT ); 1206 testcase( pExpr->op==TK_LE ); 1207 testcase( pExpr->op==TK_GT ); 1208 testcase( pExpr->op==TK_GE ); 1209 testcase( pExpr->op==TK_IS ); 1210 testcase( pExpr->op==TK_ISNOT ); 1211 testcase( pExpr->op==TK_BETWEEN ); 1212 sqlite3ErrorMsg(pParse, "row value misused"); 1213 } 1214 break; 1215 } 1216 } 1217 assert( pParse->db->mallocFailed==0 || pParse->nErr!=0 ); 1218 return pParse->nErr ? WRC_Abort : WRC_Continue; 1219 } 1220 1221 /* 1222 ** pEList is a list of expressions which are really the result set of the 1223 ** a SELECT statement. pE is a term in an ORDER BY or GROUP BY clause. 1224 ** This routine checks to see if pE is a simple identifier which corresponds 1225 ** to the AS-name of one of the terms of the expression list. If it is, 1226 ** this routine return an integer between 1 and N where N is the number of 1227 ** elements in pEList, corresponding to the matching entry. If there is 1228 ** no match, or if pE is not a simple identifier, then this routine 1229 ** return 0. 1230 ** 1231 ** pEList has been resolved. pE has not. 1232 */ 1233 static int resolveAsName( 1234 Parse *pParse, /* Parsing context for error messages */ 1235 ExprList *pEList, /* List of expressions to scan */ 1236 Expr *pE /* Expression we are trying to match */ 1237 ){ 1238 int i; /* Loop counter */ 1239 1240 UNUSED_PARAMETER(pParse); 1241 1242 if( pE->op==TK_ID ){ 1243 const char *zCol; 1244 assert( !ExprHasProperty(pE, EP_IntValue) ); 1245 zCol = pE->u.zToken; 1246 for(i=0; i<pEList->nExpr; i++){ 1247 if( pEList->a[i].eEName==ENAME_NAME 1248 && sqlite3_stricmp(pEList->a[i].zEName, zCol)==0 1249 ){ 1250 return i+1; 1251 } 1252 } 1253 } 1254 return 0; 1255 } 1256 1257 /* 1258 ** pE is a pointer to an expression which is a single term in the 1259 ** ORDER BY of a compound SELECT. The expression has not been 1260 ** name resolved. 1261 ** 1262 ** At the point this routine is called, we already know that the 1263 ** ORDER BY term is not an integer index into the result set. That 1264 ** case is handled by the calling routine. 1265 ** 1266 ** Attempt to match pE against result set columns in the left-most 1267 ** SELECT statement. Return the index i of the matching column, 1268 ** as an indication to the caller that it should sort by the i-th column. 1269 ** The left-most column is 1. In other words, the value returned is the 1270 ** same integer value that would be used in the SQL statement to indicate 1271 ** the column. 1272 ** 1273 ** If there is no match, return 0. Return -1 if an error occurs. 1274 */ 1275 static int resolveOrderByTermToExprList( 1276 Parse *pParse, /* Parsing context for error messages */ 1277 Select *pSelect, /* The SELECT statement with the ORDER BY clause */ 1278 Expr *pE /* The specific ORDER BY term */ 1279 ){ 1280 int i; /* Loop counter */ 1281 ExprList *pEList; /* The columns of the result set */ 1282 NameContext nc; /* Name context for resolving pE */ 1283 sqlite3 *db; /* Database connection */ 1284 int rc; /* Return code from subprocedures */ 1285 u8 savedSuppErr; /* Saved value of db->suppressErr */ 1286 1287 assert( sqlite3ExprIsInteger(pE, &i)==0 ); 1288 pEList = pSelect->pEList; 1289 1290 /* Resolve all names in the ORDER BY term expression 1291 */ 1292 memset(&nc, 0, sizeof(nc)); 1293 nc.pParse = pParse; 1294 nc.pSrcList = pSelect->pSrc; 1295 nc.uNC.pEList = pEList; 1296 nc.ncFlags = NC_AllowAgg|NC_UEList|NC_NoSelect; 1297 nc.nNcErr = 0; 1298 db = pParse->db; 1299 savedSuppErr = db->suppressErr; 1300 db->suppressErr = 1; 1301 rc = sqlite3ResolveExprNames(&nc, pE); 1302 db->suppressErr = savedSuppErr; 1303 if( rc ) return 0; 1304 1305 /* Try to match the ORDER BY expression against an expression 1306 ** in the result set. Return an 1-based index of the matching 1307 ** result-set entry. 1308 */ 1309 for(i=0; i<pEList->nExpr; i++){ 1310 if( sqlite3ExprCompare(0, pEList->a[i].pExpr, pE, -1)<2 ){ 1311 return i+1; 1312 } 1313 } 1314 1315 /* If no match, return 0. */ 1316 return 0; 1317 } 1318 1319 /* 1320 ** Generate an ORDER BY or GROUP BY term out-of-range error. 1321 */ 1322 static void resolveOutOfRangeError( 1323 Parse *pParse, /* The error context into which to write the error */ 1324 const char *zType, /* "ORDER" or "GROUP" */ 1325 int i, /* The index (1-based) of the term out of range */ 1326 int mx /* Largest permissible value of i */ 1327 ){ 1328 sqlite3ErrorMsg(pParse, 1329 "%r %s BY term out of range - should be " 1330 "between 1 and %d", i, zType, mx); 1331 } 1332 1333 /* 1334 ** Analyze the ORDER BY clause in a compound SELECT statement. Modify 1335 ** each term of the ORDER BY clause is a constant integer between 1 1336 ** and N where N is the number of columns in the compound SELECT. 1337 ** 1338 ** ORDER BY terms that are already an integer between 1 and N are 1339 ** unmodified. ORDER BY terms that are integers outside the range of 1340 ** 1 through N generate an error. ORDER BY terms that are expressions 1341 ** are matched against result set expressions of compound SELECT 1342 ** beginning with the left-most SELECT and working toward the right. 1343 ** At the first match, the ORDER BY expression is transformed into 1344 ** the integer column number. 1345 ** 1346 ** Return the number of errors seen. 1347 */ 1348 static int resolveCompoundOrderBy( 1349 Parse *pParse, /* Parsing context. Leave error messages here */ 1350 Select *pSelect /* The SELECT statement containing the ORDER BY */ 1351 ){ 1352 int i; 1353 ExprList *pOrderBy; 1354 ExprList *pEList; 1355 sqlite3 *db; 1356 int moreToDo = 1; 1357 1358 pOrderBy = pSelect->pOrderBy; 1359 if( pOrderBy==0 ) return 0; 1360 db = pParse->db; 1361 if( pOrderBy->nExpr>db->aLimit[SQLITE_LIMIT_COLUMN] ){ 1362 sqlite3ErrorMsg(pParse, "too many terms in ORDER BY clause"); 1363 return 1; 1364 } 1365 for(i=0; i<pOrderBy->nExpr; i++){ 1366 pOrderBy->a[i].done = 0; 1367 } 1368 pSelect->pNext = 0; 1369 while( pSelect->pPrior ){ 1370 pSelect->pPrior->pNext = pSelect; 1371 pSelect = pSelect->pPrior; 1372 } 1373 while( pSelect && moreToDo ){ 1374 struct ExprList_item *pItem; 1375 moreToDo = 0; 1376 pEList = pSelect->pEList; 1377 assert( pEList!=0 ); 1378 for(i=0, pItem=pOrderBy->a; i<pOrderBy->nExpr; i++, pItem++){ 1379 int iCol = -1; 1380 Expr *pE, *pDup; 1381 if( pItem->done ) continue; 1382 pE = sqlite3ExprSkipCollateAndLikely(pItem->pExpr); 1383 if( NEVER(pE==0) ) continue; 1384 if( sqlite3ExprIsInteger(pE, &iCol) ){ 1385 if( iCol<=0 || iCol>pEList->nExpr ){ 1386 resolveOutOfRangeError(pParse, "ORDER", i+1, pEList->nExpr); 1387 return 1; 1388 } 1389 }else{ 1390 iCol = resolveAsName(pParse, pEList, pE); 1391 if( iCol==0 ){ 1392 /* Now test if expression pE matches one of the values returned 1393 ** by pSelect. In the usual case this is done by duplicating the 1394 ** expression, resolving any symbols in it, and then comparing 1395 ** it against each expression returned by the SELECT statement. 1396 ** Once the comparisons are finished, the duplicate expression 1397 ** is deleted. 1398 ** 1399 ** If this is running as part of an ALTER TABLE operation and 1400 ** the symbols resolve successfully, also resolve the symbols in the 1401 ** actual expression. This allows the code in alter.c to modify 1402 ** column references within the ORDER BY expression as required. */ 1403 pDup = sqlite3ExprDup(db, pE, 0); 1404 if( !db->mallocFailed ){ 1405 assert(pDup); 1406 iCol = resolveOrderByTermToExprList(pParse, pSelect, pDup); 1407 if( IN_RENAME_OBJECT && iCol>0 ){ 1408 resolveOrderByTermToExprList(pParse, pSelect, pE); 1409 } 1410 } 1411 sqlite3ExprDelete(db, pDup); 1412 } 1413 } 1414 if( iCol>0 ){ 1415 /* Convert the ORDER BY term into an integer column number iCol, 1416 ** taking care to preserve the COLLATE clause if it exists. */ 1417 if( !IN_RENAME_OBJECT ){ 1418 Expr *pNew = sqlite3Expr(db, TK_INTEGER, 0); 1419 if( pNew==0 ) return 1; 1420 pNew->flags |= EP_IntValue; 1421 pNew->u.iValue = iCol; 1422 if( pItem->pExpr==pE ){ 1423 pItem->pExpr = pNew; 1424 }else{ 1425 Expr *pParent = pItem->pExpr; 1426 assert( pParent->op==TK_COLLATE ); 1427 while( pParent->pLeft->op==TK_COLLATE ) pParent = pParent->pLeft; 1428 assert( pParent->pLeft==pE ); 1429 pParent->pLeft = pNew; 1430 } 1431 sqlite3ExprDelete(db, pE); 1432 pItem->u.x.iOrderByCol = (u16)iCol; 1433 } 1434 pItem->done = 1; 1435 }else{ 1436 moreToDo = 1; 1437 } 1438 } 1439 pSelect = pSelect->pNext; 1440 } 1441 for(i=0; i<pOrderBy->nExpr; i++){ 1442 if( pOrderBy->a[i].done==0 ){ 1443 sqlite3ErrorMsg(pParse, "%r ORDER BY term does not match any " 1444 "column in the result set", i+1); 1445 return 1; 1446 } 1447 } 1448 return 0; 1449 } 1450 1451 /* 1452 ** Check every term in the ORDER BY or GROUP BY clause pOrderBy of 1453 ** the SELECT statement pSelect. If any term is reference to a 1454 ** result set expression (as determined by the ExprList.a.u.x.iOrderByCol 1455 ** field) then convert that term into a copy of the corresponding result set 1456 ** column. 1457 ** 1458 ** If any errors are detected, add an error message to pParse and 1459 ** return non-zero. Return zero if no errors are seen. 1460 */ 1461 int sqlite3ResolveOrderGroupBy( 1462 Parse *pParse, /* Parsing context. Leave error messages here */ 1463 Select *pSelect, /* The SELECT statement containing the clause */ 1464 ExprList *pOrderBy, /* The ORDER BY or GROUP BY clause to be processed */ 1465 const char *zType /* "ORDER" or "GROUP" */ 1466 ){ 1467 int i; 1468 sqlite3 *db = pParse->db; 1469 ExprList *pEList; 1470 struct ExprList_item *pItem; 1471 1472 if( pOrderBy==0 || pParse->db->mallocFailed || IN_RENAME_OBJECT ) return 0; 1473 if( pOrderBy->nExpr>db->aLimit[SQLITE_LIMIT_COLUMN] ){ 1474 sqlite3ErrorMsg(pParse, "too many terms in %s BY clause", zType); 1475 return 1; 1476 } 1477 pEList = pSelect->pEList; 1478 assert( pEList!=0 ); /* sqlite3SelectNew() guarantees this */ 1479 for(i=0, pItem=pOrderBy->a; i<pOrderBy->nExpr; i++, pItem++){ 1480 if( pItem->u.x.iOrderByCol ){ 1481 if( pItem->u.x.iOrderByCol>pEList->nExpr ){ 1482 resolveOutOfRangeError(pParse, zType, i+1, pEList->nExpr); 1483 return 1; 1484 } 1485 resolveAlias(pParse, pEList, pItem->u.x.iOrderByCol-1, pItem->pExpr,0); 1486 } 1487 } 1488 return 0; 1489 } 1490 1491 #ifndef SQLITE_OMIT_WINDOWFUNC 1492 /* 1493 ** Walker callback for windowRemoveExprFromSelect(). 1494 */ 1495 static int resolveRemoveWindowsCb(Walker *pWalker, Expr *pExpr){ 1496 UNUSED_PARAMETER(pWalker); 1497 if( ExprHasProperty(pExpr, EP_WinFunc) ){ 1498 Window *pWin = pExpr->y.pWin; 1499 sqlite3WindowUnlinkFromSelect(pWin); 1500 } 1501 return WRC_Continue; 1502 } 1503 1504 /* 1505 ** Remove any Window objects owned by the expression pExpr from the 1506 ** Select.pWin list of Select object pSelect. 1507 */ 1508 static void windowRemoveExprFromSelect(Select *pSelect, Expr *pExpr){ 1509 if( pSelect->pWin ){ 1510 Walker sWalker; 1511 memset(&sWalker, 0, sizeof(Walker)); 1512 sWalker.xExprCallback = resolveRemoveWindowsCb; 1513 sWalker.u.pSelect = pSelect; 1514 sqlite3WalkExpr(&sWalker, pExpr); 1515 } 1516 } 1517 #else 1518 # define windowRemoveExprFromSelect(a, b) 1519 #endif /* SQLITE_OMIT_WINDOWFUNC */ 1520 1521 /* 1522 ** pOrderBy is an ORDER BY or GROUP BY clause in SELECT statement pSelect. 1523 ** The Name context of the SELECT statement is pNC. zType is either 1524 ** "ORDER" or "GROUP" depending on which type of clause pOrderBy is. 1525 ** 1526 ** This routine resolves each term of the clause into an expression. 1527 ** If the order-by term is an integer I between 1 and N (where N is the 1528 ** number of columns in the result set of the SELECT) then the expression 1529 ** in the resolution is a copy of the I-th result-set expression. If 1530 ** the order-by term is an identifier that corresponds to the AS-name of 1531 ** a result-set expression, then the term resolves to a copy of the 1532 ** result-set expression. Otherwise, the expression is resolved in 1533 ** the usual way - using sqlite3ResolveExprNames(). 1534 ** 1535 ** This routine returns the number of errors. If errors occur, then 1536 ** an appropriate error message might be left in pParse. (OOM errors 1537 ** excepted.) 1538 */ 1539 static int resolveOrderGroupBy( 1540 NameContext *pNC, /* The name context of the SELECT statement */ 1541 Select *pSelect, /* The SELECT statement holding pOrderBy */ 1542 ExprList *pOrderBy, /* An ORDER BY or GROUP BY clause to resolve */ 1543 const char *zType /* Either "ORDER" or "GROUP", as appropriate */ 1544 ){ 1545 int i, j; /* Loop counters */ 1546 int iCol; /* Column number */ 1547 struct ExprList_item *pItem; /* A term of the ORDER BY clause */ 1548 Parse *pParse; /* Parsing context */ 1549 int nResult; /* Number of terms in the result set */ 1550 1551 assert( pOrderBy!=0 ); 1552 nResult = pSelect->pEList->nExpr; 1553 pParse = pNC->pParse; 1554 for(i=0, pItem=pOrderBy->a; i<pOrderBy->nExpr; i++, pItem++){ 1555 Expr *pE = pItem->pExpr; 1556 Expr *pE2 = sqlite3ExprSkipCollateAndLikely(pE); 1557 if( NEVER(pE2==0) ) continue; 1558 if( zType[0]!='G' ){ 1559 iCol = resolveAsName(pParse, pSelect->pEList, pE2); 1560 if( iCol>0 ){ 1561 /* If an AS-name match is found, mark this ORDER BY column as being 1562 ** a copy of the iCol-th result-set column. The subsequent call to 1563 ** sqlite3ResolveOrderGroupBy() will convert the expression to a 1564 ** copy of the iCol-th result-set expression. */ 1565 pItem->u.x.iOrderByCol = (u16)iCol; 1566 continue; 1567 } 1568 } 1569 if( sqlite3ExprIsInteger(pE2, &iCol) ){ 1570 /* The ORDER BY term is an integer constant. Again, set the column 1571 ** number so that sqlite3ResolveOrderGroupBy() will convert the 1572 ** order-by term to a copy of the result-set expression */ 1573 if( iCol<1 || iCol>0xffff ){ 1574 resolveOutOfRangeError(pParse, zType, i+1, nResult); 1575 return 1; 1576 } 1577 pItem->u.x.iOrderByCol = (u16)iCol; 1578 continue; 1579 } 1580 1581 /* Otherwise, treat the ORDER BY term as an ordinary expression */ 1582 pItem->u.x.iOrderByCol = 0; 1583 if( sqlite3ResolveExprNames(pNC, pE) ){ 1584 return 1; 1585 } 1586 for(j=0; j<pSelect->pEList->nExpr; j++){ 1587 if( sqlite3ExprCompare(0, pE, pSelect->pEList->a[j].pExpr, -1)==0 ){ 1588 /* Since this expresion is being changed into a reference 1589 ** to an identical expression in the result set, remove all Window 1590 ** objects belonging to the expression from the Select.pWin list. */ 1591 windowRemoveExprFromSelect(pSelect, pE); 1592 pItem->u.x.iOrderByCol = j+1; 1593 } 1594 } 1595 } 1596 return sqlite3ResolveOrderGroupBy(pParse, pSelect, pOrderBy, zType); 1597 } 1598 1599 /* 1600 ** Resolve names in the SELECT statement p and all of its descendants. 1601 */ 1602 static int resolveSelectStep(Walker *pWalker, Select *p){ 1603 NameContext *pOuterNC; /* Context that contains this SELECT */ 1604 NameContext sNC; /* Name context of this SELECT */ 1605 int isCompound; /* True if p is a compound select */ 1606 int nCompound; /* Number of compound terms processed so far */ 1607 Parse *pParse; /* Parsing context */ 1608 int i; /* Loop counter */ 1609 ExprList *pGroupBy; /* The GROUP BY clause */ 1610 Select *pLeftmost; /* Left-most of SELECT of a compound */ 1611 sqlite3 *db; /* Database connection */ 1612 1613 1614 assert( p!=0 ); 1615 if( p->selFlags & SF_Resolved ){ 1616 return WRC_Prune; 1617 } 1618 pOuterNC = pWalker->u.pNC; 1619 pParse = pWalker->pParse; 1620 db = pParse->db; 1621 1622 /* Normally sqlite3SelectExpand() will be called first and will have 1623 ** already expanded this SELECT. However, if this is a subquery within 1624 ** an expression, sqlite3ResolveExprNames() will be called without a 1625 ** prior call to sqlite3SelectExpand(). When that happens, let 1626 ** sqlite3SelectPrep() do all of the processing for this SELECT. 1627 ** sqlite3SelectPrep() will invoke both sqlite3SelectExpand() and 1628 ** this routine in the correct order. 1629 */ 1630 if( (p->selFlags & SF_Expanded)==0 ){ 1631 sqlite3SelectPrep(pParse, p, pOuterNC); 1632 return pParse->nErr ? WRC_Abort : WRC_Prune; 1633 } 1634 1635 isCompound = p->pPrior!=0; 1636 nCompound = 0; 1637 pLeftmost = p; 1638 while( p ){ 1639 assert( (p->selFlags & SF_Expanded)!=0 ); 1640 assert( (p->selFlags & SF_Resolved)==0 ); 1641 assert( db->suppressErr==0 ); /* SF_Resolved not set if errors suppressed */ 1642 p->selFlags |= SF_Resolved; 1643 1644 1645 /* Resolve the expressions in the LIMIT and OFFSET clauses. These 1646 ** are not allowed to refer to any names, so pass an empty NameContext. 1647 */ 1648 memset(&sNC, 0, sizeof(sNC)); 1649 sNC.pParse = pParse; 1650 sNC.pWinSelect = p; 1651 if( sqlite3ResolveExprNames(&sNC, p->pLimit) ){ 1652 return WRC_Abort; 1653 } 1654 1655 /* If the SF_Converted flags is set, then this Select object was 1656 ** was created by the convertCompoundSelectToSubquery() function. 1657 ** In this case the ORDER BY clause (p->pOrderBy) should be resolved 1658 ** as if it were part of the sub-query, not the parent. This block 1659 ** moves the pOrderBy down to the sub-query. It will be moved back 1660 ** after the names have been resolved. */ 1661 if( p->selFlags & SF_Converted ){ 1662 Select *pSub = p->pSrc->a[0].pSelect; 1663 assert( p->pSrc->nSrc==1 && p->pOrderBy ); 1664 assert( pSub->pPrior && pSub->pOrderBy==0 ); 1665 pSub->pOrderBy = p->pOrderBy; 1666 p->pOrderBy = 0; 1667 } 1668 1669 /* Recursively resolve names in all subqueries in the FROM clause 1670 */ 1671 for(i=0; i<p->pSrc->nSrc; i++){ 1672 SrcItem *pItem = &p->pSrc->a[i]; 1673 if( pItem->pSelect && (pItem->pSelect->selFlags & SF_Resolved)==0 ){ 1674 int nRef = pOuterNC ? pOuterNC->nRef : 0; 1675 const char *zSavedContext = pParse->zAuthContext; 1676 1677 if( pItem->zName ) pParse->zAuthContext = pItem->zName; 1678 sqlite3ResolveSelectNames(pParse, pItem->pSelect, pOuterNC); 1679 pParse->zAuthContext = zSavedContext; 1680 if( pParse->nErr ) return WRC_Abort; 1681 assert( db->mallocFailed==0 ); 1682 1683 /* If the number of references to the outer context changed when 1684 ** expressions in the sub-select were resolved, the sub-select 1685 ** is correlated. It is not required to check the refcount on any 1686 ** but the innermost outer context object, as lookupName() increments 1687 ** the refcount on all contexts between the current one and the 1688 ** context containing the column when it resolves a name. */ 1689 if( pOuterNC ){ 1690 assert( pItem->fg.isCorrelated==0 && pOuterNC->nRef>=nRef ); 1691 pItem->fg.isCorrelated = (pOuterNC->nRef>nRef); 1692 } 1693 } 1694 } 1695 1696 /* Set up the local name-context to pass to sqlite3ResolveExprNames() to 1697 ** resolve the result-set expression list. 1698 */ 1699 sNC.ncFlags = NC_AllowAgg|NC_AllowWin; 1700 sNC.pSrcList = p->pSrc; 1701 sNC.pNext = pOuterNC; 1702 1703 /* Resolve names in the result set. */ 1704 if( sqlite3ResolveExprListNames(&sNC, p->pEList) ) return WRC_Abort; 1705 sNC.ncFlags &= ~NC_AllowWin; 1706 1707 /* If there are no aggregate functions in the result-set, and no GROUP BY 1708 ** expression, do not allow aggregates in any of the other expressions. 1709 */ 1710 assert( (p->selFlags & SF_Aggregate)==0 ); 1711 pGroupBy = p->pGroupBy; 1712 if( pGroupBy || (sNC.ncFlags & NC_HasAgg)!=0 ){ 1713 assert( NC_MinMaxAgg==SF_MinMaxAgg ); 1714 assert( NC_OrderAgg==SF_OrderByReqd ); 1715 p->selFlags |= SF_Aggregate | (sNC.ncFlags&(NC_MinMaxAgg|NC_OrderAgg)); 1716 }else{ 1717 sNC.ncFlags &= ~NC_AllowAgg; 1718 } 1719 1720 /* Add the output column list to the name-context before parsing the 1721 ** other expressions in the SELECT statement. This is so that 1722 ** expressions in the WHERE clause (etc.) can refer to expressions by 1723 ** aliases in the result set. 1724 ** 1725 ** Minor point: If this is the case, then the expression will be 1726 ** re-evaluated for each reference to it. 1727 */ 1728 assert( (sNC.ncFlags & (NC_UAggInfo|NC_UUpsert|NC_UBaseReg))==0 ); 1729 sNC.uNC.pEList = p->pEList; 1730 sNC.ncFlags |= NC_UEList; 1731 if( p->pHaving ){ 1732 if( !pGroupBy ){ 1733 sqlite3ErrorMsg(pParse, "a GROUP BY clause is required before HAVING"); 1734 return WRC_Abort; 1735 } 1736 if( sqlite3ResolveExprNames(&sNC, p->pHaving) ) return WRC_Abort; 1737 } 1738 if( sqlite3ResolveExprNames(&sNC, p->pWhere) ) return WRC_Abort; 1739 1740 /* Resolve names in table-valued-function arguments */ 1741 for(i=0; i<p->pSrc->nSrc; i++){ 1742 SrcItem *pItem = &p->pSrc->a[i]; 1743 if( pItem->fg.isTabFunc 1744 && sqlite3ResolveExprListNames(&sNC, pItem->u1.pFuncArg) 1745 ){ 1746 return WRC_Abort; 1747 } 1748 } 1749 1750 #ifndef SQLITE_OMIT_WINDOWFUNC 1751 if( IN_RENAME_OBJECT ){ 1752 Window *pWin; 1753 for(pWin=p->pWinDefn; pWin; pWin=pWin->pNextWin){ 1754 if( sqlite3ResolveExprListNames(&sNC, pWin->pOrderBy) 1755 || sqlite3ResolveExprListNames(&sNC, pWin->pPartition) 1756 ){ 1757 return WRC_Abort; 1758 } 1759 } 1760 } 1761 #endif 1762 1763 /* The ORDER BY and GROUP BY clauses may not refer to terms in 1764 ** outer queries 1765 */ 1766 sNC.pNext = 0; 1767 sNC.ncFlags |= NC_AllowAgg|NC_AllowWin; 1768 1769 /* If this is a converted compound query, move the ORDER BY clause from 1770 ** the sub-query back to the parent query. At this point each term 1771 ** within the ORDER BY clause has been transformed to an integer value. 1772 ** These integers will be replaced by copies of the corresponding result 1773 ** set expressions by the call to resolveOrderGroupBy() below. */ 1774 if( p->selFlags & SF_Converted ){ 1775 Select *pSub = p->pSrc->a[0].pSelect; 1776 p->pOrderBy = pSub->pOrderBy; 1777 pSub->pOrderBy = 0; 1778 } 1779 1780 /* Process the ORDER BY clause for singleton SELECT statements. 1781 ** The ORDER BY clause for compounds SELECT statements is handled 1782 ** below, after all of the result-sets for all of the elements of 1783 ** the compound have been resolved. 1784 ** 1785 ** If there is an ORDER BY clause on a term of a compound-select other 1786 ** than the right-most term, then that is a syntax error. But the error 1787 ** is not detected until much later, and so we need to go ahead and 1788 ** resolve those symbols on the incorrect ORDER BY for consistency. 1789 */ 1790 if( p->pOrderBy!=0 1791 && isCompound<=nCompound /* Defer right-most ORDER BY of a compound */ 1792 && resolveOrderGroupBy(&sNC, p, p->pOrderBy, "ORDER") 1793 ){ 1794 return WRC_Abort; 1795 } 1796 if( db->mallocFailed ){ 1797 return WRC_Abort; 1798 } 1799 sNC.ncFlags &= ~NC_AllowWin; 1800 1801 /* Resolve the GROUP BY clause. At the same time, make sure 1802 ** the GROUP BY clause does not contain aggregate functions. 1803 */ 1804 if( pGroupBy ){ 1805 struct ExprList_item *pItem; 1806 1807 if( resolveOrderGroupBy(&sNC, p, pGroupBy, "GROUP") || db->mallocFailed ){ 1808 return WRC_Abort; 1809 } 1810 for(i=0, pItem=pGroupBy->a; i<pGroupBy->nExpr; i++, pItem++){ 1811 if( ExprHasProperty(pItem->pExpr, EP_Agg) ){ 1812 sqlite3ErrorMsg(pParse, "aggregate functions are not allowed in " 1813 "the GROUP BY clause"); 1814 return WRC_Abort; 1815 } 1816 } 1817 } 1818 1819 /* If this is part of a compound SELECT, check that it has the right 1820 ** number of expressions in the select list. */ 1821 if( p->pNext && p->pEList->nExpr!=p->pNext->pEList->nExpr ){ 1822 sqlite3SelectWrongNumTermsError(pParse, p->pNext); 1823 return WRC_Abort; 1824 } 1825 1826 /* Advance to the next term of the compound 1827 */ 1828 p = p->pPrior; 1829 nCompound++; 1830 } 1831 1832 /* Resolve the ORDER BY on a compound SELECT after all terms of 1833 ** the compound have been resolved. 1834 */ 1835 if( isCompound && resolveCompoundOrderBy(pParse, pLeftmost) ){ 1836 return WRC_Abort; 1837 } 1838 1839 return WRC_Prune; 1840 } 1841 1842 /* 1843 ** This routine walks an expression tree and resolves references to 1844 ** table columns and result-set columns. At the same time, do error 1845 ** checking on function usage and set a flag if any aggregate functions 1846 ** are seen. 1847 ** 1848 ** To resolve table columns references we look for nodes (or subtrees) of the 1849 ** form X.Y.Z or Y.Z or just Z where 1850 ** 1851 ** X: The name of a database. Ex: "main" or "temp" or 1852 ** the symbolic name assigned to an ATTACH-ed database. 1853 ** 1854 ** Y: The name of a table in a FROM clause. Or in a trigger 1855 ** one of the special names "old" or "new". 1856 ** 1857 ** Z: The name of a column in table Y. 1858 ** 1859 ** The node at the root of the subtree is modified as follows: 1860 ** 1861 ** Expr.op Changed to TK_COLUMN 1862 ** Expr.pTab Points to the Table object for X.Y 1863 ** Expr.iColumn The column index in X.Y. -1 for the rowid. 1864 ** Expr.iTable The VDBE cursor number for X.Y 1865 ** 1866 ** 1867 ** To resolve result-set references, look for expression nodes of the 1868 ** form Z (with no X and Y prefix) where the Z matches the right-hand 1869 ** size of an AS clause in the result-set of a SELECT. The Z expression 1870 ** is replaced by a copy of the left-hand side of the result-set expression. 1871 ** Table-name and function resolution occurs on the substituted expression 1872 ** tree. For example, in: 1873 ** 1874 ** SELECT a+b AS x, c+d AS y FROM t1 ORDER BY x; 1875 ** 1876 ** The "x" term of the order by is replaced by "a+b" to render: 1877 ** 1878 ** SELECT a+b AS x, c+d AS y FROM t1 ORDER BY a+b; 1879 ** 1880 ** Function calls are checked to make sure that the function is 1881 ** defined and that the correct number of arguments are specified. 1882 ** If the function is an aggregate function, then the NC_HasAgg flag is 1883 ** set and the opcode is changed from TK_FUNCTION to TK_AGG_FUNCTION. 1884 ** If an expression contains aggregate functions then the EP_Agg 1885 ** property on the expression is set. 1886 ** 1887 ** An error message is left in pParse if anything is amiss. The number 1888 ** if errors is returned. 1889 */ 1890 int sqlite3ResolveExprNames( 1891 NameContext *pNC, /* Namespace to resolve expressions in. */ 1892 Expr *pExpr /* The expression to be analyzed. */ 1893 ){ 1894 int savedHasAgg; 1895 Walker w; 1896 1897 if( pExpr==0 ) return SQLITE_OK; 1898 savedHasAgg = pNC->ncFlags & (NC_HasAgg|NC_MinMaxAgg|NC_HasWin|NC_OrderAgg); 1899 pNC->ncFlags &= ~(NC_HasAgg|NC_MinMaxAgg|NC_HasWin|NC_OrderAgg); 1900 w.pParse = pNC->pParse; 1901 w.xExprCallback = resolveExprStep; 1902 w.xSelectCallback = (pNC->ncFlags & NC_NoSelect) ? 0 : resolveSelectStep; 1903 w.xSelectCallback2 = 0; 1904 w.u.pNC = pNC; 1905 #if SQLITE_MAX_EXPR_DEPTH>0 1906 w.pParse->nHeight += pExpr->nHeight; 1907 if( sqlite3ExprCheckHeight(w.pParse, w.pParse->nHeight) ){ 1908 return SQLITE_ERROR; 1909 } 1910 #endif 1911 sqlite3WalkExpr(&w, pExpr); 1912 #if SQLITE_MAX_EXPR_DEPTH>0 1913 w.pParse->nHeight -= pExpr->nHeight; 1914 #endif 1915 assert( EP_Agg==NC_HasAgg ); 1916 assert( EP_Win==NC_HasWin ); 1917 testcase( pNC->ncFlags & NC_HasAgg ); 1918 testcase( pNC->ncFlags & NC_HasWin ); 1919 ExprSetProperty(pExpr, pNC->ncFlags & (NC_HasAgg|NC_HasWin) ); 1920 pNC->ncFlags |= savedHasAgg; 1921 return pNC->nNcErr>0 || w.pParse->nErr>0; 1922 } 1923 1924 /* 1925 ** Resolve all names for all expression in an expression list. This is 1926 ** just like sqlite3ResolveExprNames() except that it works for an expression 1927 ** list rather than a single expression. 1928 */ 1929 int sqlite3ResolveExprListNames( 1930 NameContext *pNC, /* Namespace to resolve expressions in. */ 1931 ExprList *pList /* The expression list to be analyzed. */ 1932 ){ 1933 int i; 1934 int savedHasAgg = 0; 1935 Walker w; 1936 if( pList==0 ) return WRC_Continue; 1937 w.pParse = pNC->pParse; 1938 w.xExprCallback = resolveExprStep; 1939 w.xSelectCallback = resolveSelectStep; 1940 w.xSelectCallback2 = 0; 1941 w.u.pNC = pNC; 1942 savedHasAgg = pNC->ncFlags & (NC_HasAgg|NC_MinMaxAgg|NC_HasWin|NC_OrderAgg); 1943 pNC->ncFlags &= ~(NC_HasAgg|NC_MinMaxAgg|NC_HasWin|NC_OrderAgg); 1944 for(i=0; i<pList->nExpr; i++){ 1945 Expr *pExpr = pList->a[i].pExpr; 1946 if( pExpr==0 ) continue; 1947 #if SQLITE_MAX_EXPR_DEPTH>0 1948 w.pParse->nHeight += pExpr->nHeight; 1949 if( sqlite3ExprCheckHeight(w.pParse, w.pParse->nHeight) ){ 1950 return WRC_Abort; 1951 } 1952 #endif 1953 sqlite3WalkExpr(&w, pExpr); 1954 #if SQLITE_MAX_EXPR_DEPTH>0 1955 w.pParse->nHeight -= pExpr->nHeight; 1956 #endif 1957 assert( EP_Agg==NC_HasAgg ); 1958 assert( EP_Win==NC_HasWin ); 1959 testcase( pNC->ncFlags & NC_HasAgg ); 1960 testcase( pNC->ncFlags & NC_HasWin ); 1961 if( pNC->ncFlags & (NC_HasAgg|NC_MinMaxAgg|NC_HasWin|NC_OrderAgg) ){ 1962 ExprSetProperty(pExpr, pNC->ncFlags & (NC_HasAgg|NC_HasWin) ); 1963 savedHasAgg |= pNC->ncFlags & 1964 (NC_HasAgg|NC_MinMaxAgg|NC_HasWin|NC_OrderAgg); 1965 pNC->ncFlags &= ~(NC_HasAgg|NC_MinMaxAgg|NC_HasWin|NC_OrderAgg); 1966 } 1967 if( w.pParse->nErr>0 ) return WRC_Abort; 1968 } 1969 pNC->ncFlags |= savedHasAgg; 1970 return WRC_Continue; 1971 } 1972 1973 /* 1974 ** Resolve all names in all expressions of a SELECT and in all 1975 ** decendents of the SELECT, including compounds off of p->pPrior, 1976 ** subqueries in expressions, and subqueries used as FROM clause 1977 ** terms. 1978 ** 1979 ** See sqlite3ResolveExprNames() for a description of the kinds of 1980 ** transformations that occur. 1981 ** 1982 ** All SELECT statements should have been expanded using 1983 ** sqlite3SelectExpand() prior to invoking this routine. 1984 */ 1985 void sqlite3ResolveSelectNames( 1986 Parse *pParse, /* The parser context */ 1987 Select *p, /* The SELECT statement being coded. */ 1988 NameContext *pOuterNC /* Name context for parent SELECT statement */ 1989 ){ 1990 Walker w; 1991 1992 assert( p!=0 ); 1993 w.xExprCallback = resolveExprStep; 1994 w.xSelectCallback = resolveSelectStep; 1995 w.xSelectCallback2 = 0; 1996 w.pParse = pParse; 1997 w.u.pNC = pOuterNC; 1998 sqlite3WalkSelect(&w, p); 1999 } 2000 2001 /* 2002 ** Resolve names in expressions that can only reference a single table 2003 ** or which cannot reference any tables at all. Examples: 2004 ** 2005 ** "type" flag 2006 ** ------------ 2007 ** (1) CHECK constraints NC_IsCheck 2008 ** (2) WHERE clauses on partial indices NC_PartIdx 2009 ** (3) Expressions in indexes on expressions NC_IdxExpr 2010 ** (4) Expression arguments to VACUUM INTO. 0 2011 ** (5) GENERATED ALWAYS as expressions NC_GenCol 2012 ** 2013 ** In all cases except (4), the Expr.iTable value for Expr.op==TK_COLUMN 2014 ** nodes of the expression is set to -1 and the Expr.iColumn value is 2015 ** set to the column number. In case (4), TK_COLUMN nodes cause an error. 2016 ** 2017 ** Any errors cause an error message to be set in pParse. 2018 */ 2019 int sqlite3ResolveSelfReference( 2020 Parse *pParse, /* Parsing context */ 2021 Table *pTab, /* The table being referenced, or NULL */ 2022 int type, /* NC_IsCheck, NC_PartIdx, NC_IdxExpr, NC_GenCol, or 0 */ 2023 Expr *pExpr, /* Expression to resolve. May be NULL. */ 2024 ExprList *pList /* Expression list to resolve. May be NULL. */ 2025 ){ 2026 SrcList sSrc; /* Fake SrcList for pParse->pNewTable */ 2027 NameContext sNC; /* Name context for pParse->pNewTable */ 2028 int rc; 2029 2030 assert( type==0 || pTab!=0 ); 2031 assert( type==NC_IsCheck || type==NC_PartIdx || type==NC_IdxExpr 2032 || type==NC_GenCol || pTab==0 ); 2033 memset(&sNC, 0, sizeof(sNC)); 2034 memset(&sSrc, 0, sizeof(sSrc)); 2035 if( pTab ){ 2036 sSrc.nSrc = 1; 2037 sSrc.a[0].zName = pTab->zName; 2038 sSrc.a[0].pTab = pTab; 2039 sSrc.a[0].iCursor = -1; 2040 if( pTab->pSchema!=pParse->db->aDb[1].pSchema ){ 2041 /* Cause EP_FromDDL to be set on TK_FUNCTION nodes of non-TEMP 2042 ** schema elements */ 2043 type |= NC_FromDDL; 2044 } 2045 } 2046 sNC.pParse = pParse; 2047 sNC.pSrcList = &sSrc; 2048 sNC.ncFlags = type | NC_IsDDL; 2049 if( (rc = sqlite3ResolveExprNames(&sNC, pExpr))!=SQLITE_OK ) return rc; 2050 if( pList ) rc = sqlite3ResolveExprListNames(&sNC, pList); 2051 return rc; 2052 } 2053