1 /* 2 ** 2008 August 18 3 ** 4 ** The author disclaims copyright to this source code. In place of 5 ** a legal notice, here is a blessing: 6 ** 7 ** May you do good and not evil. 8 ** May you find forgiveness for yourself and forgive others. 9 ** May you share freely, never taking more than you give. 10 ** 11 ************************************************************************* 12 ** 13 ** This file contains routines used for walking the parser tree and 14 ** resolve all identifiers by associating them with a particular 15 ** table and column. 16 */ 17 #include "sqliteInt.h" 18 19 /* 20 ** Walk the expression tree pExpr and increase the aggregate function 21 ** depth (the Expr.op2 field) by N on every TK_AGG_FUNCTION node. 22 ** This needs to occur when copying a TK_AGG_FUNCTION node from an 23 ** outer query into an inner subquery. 24 ** 25 ** incrAggFunctionDepth(pExpr,n) is the main routine. incrAggDepth(..) 26 ** is a helper function - a callback for the tree walker. 27 */ 28 static int incrAggDepth(Walker *pWalker, Expr *pExpr){ 29 if( pExpr->op==TK_AGG_FUNCTION ) pExpr->op2 += pWalker->u.n; 30 return WRC_Continue; 31 } 32 static void incrAggFunctionDepth(Expr *pExpr, int N){ 33 if( N>0 ){ 34 Walker w; 35 memset(&w, 0, sizeof(w)); 36 w.xExprCallback = incrAggDepth; 37 w.u.n = N; 38 sqlite3WalkExpr(&w, pExpr); 39 } 40 } 41 42 /* 43 ** Turn the pExpr expression into an alias for the iCol-th column of the 44 ** result set in pEList. 45 ** 46 ** If the reference is followed by a COLLATE operator, then make sure 47 ** the COLLATE operator is preserved. For example: 48 ** 49 ** SELECT a+b, c+d FROM t1 ORDER BY 1 COLLATE nocase; 50 ** 51 ** Should be transformed into: 52 ** 53 ** SELECT a+b, c+d FROM t1 ORDER BY (a+b) COLLATE nocase; 54 ** 55 ** The nSubquery parameter specifies how many levels of subquery the 56 ** alias is removed from the original expression. The usual value is 57 ** zero but it might be more if the alias is contained within a subquery 58 ** of the original expression. The Expr.op2 field of TK_AGG_FUNCTION 59 ** structures must be increased by the nSubquery amount. 60 */ 61 static void resolveAlias( 62 Parse *pParse, /* Parsing context */ 63 ExprList *pEList, /* A result set */ 64 int iCol, /* A column in the result set. 0..pEList->nExpr-1 */ 65 Expr *pExpr, /* Transform this into an alias to the result set */ 66 const char *zType, /* "GROUP" or "ORDER" or "" */ 67 int nSubquery /* Number of subqueries that the label is moving */ 68 ){ 69 Expr *pOrig; /* The iCol-th column of the result set */ 70 Expr *pDup; /* Copy of pOrig */ 71 sqlite3 *db; /* The database connection */ 72 73 assert( iCol>=0 && iCol<pEList->nExpr ); 74 pOrig = pEList->a[iCol].pExpr; 75 assert( pOrig!=0 ); 76 db = pParse->db; 77 pDup = sqlite3ExprDup(db, pOrig, 0); 78 if( pDup==0 ) return; 79 if( zType[0]!='G' ) incrAggFunctionDepth(pDup, nSubquery); 80 if( pExpr->op==TK_COLLATE ){ 81 pDup = sqlite3ExprAddCollateString(pParse, pDup, pExpr->u.zToken); 82 } 83 ExprSetProperty(pDup, EP_Alias); 84 85 /* Before calling sqlite3ExprDelete(), set the EP_Static flag. This 86 ** prevents ExprDelete() from deleting the Expr structure itself, 87 ** allowing it to be repopulated by the memcpy() on the following line. 88 ** The pExpr->u.zToken might point into memory that will be freed by the 89 ** sqlite3DbFree(db, pDup) on the last line of this block, so be sure to 90 ** make a copy of the token before doing the sqlite3DbFree(). 91 */ 92 ExprSetProperty(pExpr, EP_Static); 93 sqlite3ExprDelete(db, pExpr); 94 memcpy(pExpr, pDup, sizeof(*pExpr)); 95 if( !ExprHasProperty(pExpr, EP_IntValue) && pExpr->u.zToken!=0 ){ 96 assert( (pExpr->flags & (EP_Reduced|EP_TokenOnly))==0 ); 97 pExpr->u.zToken = sqlite3DbStrDup(db, pExpr->u.zToken); 98 pExpr->flags |= EP_MemToken; 99 } 100 sqlite3DbFree(db, pDup); 101 } 102 103 104 /* 105 ** Return TRUE if the name zCol occurs anywhere in the USING clause. 106 ** 107 ** Return FALSE if the USING clause is NULL or if it does not contain 108 ** zCol. 109 */ 110 static int nameInUsingClause(IdList *pUsing, const char *zCol){ 111 if( pUsing ){ 112 int k; 113 for(k=0; k<pUsing->nId; k++){ 114 if( sqlite3StrICmp(pUsing->a[k].zName, zCol)==0 ) return 1; 115 } 116 } 117 return 0; 118 } 119 120 /* 121 ** Subqueries stores the original database, table and column names for their 122 ** result sets in ExprList.a[].zSpan, in the form "DATABASE.TABLE.COLUMN". 123 ** Check to see if the zSpan given to this routine matches the zDb, zTab, 124 ** and zCol. If any of zDb, zTab, and zCol are NULL then those fields will 125 ** match anything. 126 */ 127 int sqlite3MatchSpanName( 128 const char *zSpan, 129 const char *zCol, 130 const char *zTab, 131 const char *zDb 132 ){ 133 int n; 134 for(n=0; ALWAYS(zSpan[n]) && zSpan[n]!='.'; n++){} 135 if( zDb && (sqlite3StrNICmp(zSpan, zDb, n)!=0 || zDb[n]!=0) ){ 136 return 0; 137 } 138 zSpan += n+1; 139 for(n=0; ALWAYS(zSpan[n]) && zSpan[n]!='.'; n++){} 140 if( zTab && (sqlite3StrNICmp(zSpan, zTab, n)!=0 || zTab[n]!=0) ){ 141 return 0; 142 } 143 zSpan += n+1; 144 if( zCol && sqlite3StrICmp(zSpan, zCol)!=0 ){ 145 return 0; 146 } 147 return 1; 148 } 149 150 /* 151 ** Given the name of a column of the form X.Y.Z or Y.Z or just Z, look up 152 ** that name in the set of source tables in pSrcList and make the pExpr 153 ** expression node refer back to that source column. The following changes 154 ** are made to pExpr: 155 ** 156 ** pExpr->iDb Set the index in db->aDb[] of the database X 157 ** (even if X is implied). 158 ** pExpr->iTable Set to the cursor number for the table obtained 159 ** from pSrcList. 160 ** pExpr->pTab Points to the Table structure of X.Y (even if 161 ** X and/or Y are implied.) 162 ** pExpr->iColumn Set to the column number within the table. 163 ** pExpr->op Set to TK_COLUMN. 164 ** pExpr->pLeft Any expression this points to is deleted 165 ** pExpr->pRight Any expression this points to is deleted. 166 ** 167 ** The zDb variable is the name of the database (the "X"). This value may be 168 ** NULL meaning that name is of the form Y.Z or Z. Any available database 169 ** can be used. The zTable variable is the name of the table (the "Y"). This 170 ** value can be NULL if zDb is also NULL. If zTable is NULL it 171 ** means that the form of the name is Z and that columns from any table 172 ** can be used. 173 ** 174 ** If the name cannot be resolved unambiguously, leave an error message 175 ** in pParse and return WRC_Abort. Return WRC_Prune on success. 176 */ 177 static int lookupName( 178 Parse *pParse, /* The parsing context */ 179 const char *zDb, /* Name of the database containing table, or NULL */ 180 const char *zTab, /* Name of table containing column, or NULL */ 181 const char *zCol, /* Name of the column. */ 182 NameContext *pNC, /* The name context used to resolve the name */ 183 Expr *pExpr /* Make this EXPR node point to the selected column */ 184 ){ 185 int i, j; /* Loop counters */ 186 int cnt = 0; /* Number of matching column names */ 187 int cntTab = 0; /* Number of matching table names */ 188 int nSubquery = 0; /* How many levels of subquery */ 189 sqlite3 *db = pParse->db; /* The database connection */ 190 struct SrcList_item *pItem; /* Use for looping over pSrcList items */ 191 struct SrcList_item *pMatch = 0; /* The matching pSrcList item */ 192 NameContext *pTopNC = pNC; /* First namecontext in the list */ 193 Schema *pSchema = 0; /* Schema of the expression */ 194 int eNewExprOp = TK_COLUMN; /* New value for pExpr->op on success */ 195 Table *pTab = 0; /* Table hold the row */ 196 Column *pCol; /* A column of pTab */ 197 198 assert( pNC ); /* the name context cannot be NULL. */ 199 assert( zCol ); /* The Z in X.Y.Z cannot be NULL */ 200 assert( !ExprHasProperty(pExpr, EP_TokenOnly|EP_Reduced) ); 201 202 /* Initialize the node to no-match */ 203 pExpr->iTable = -1; 204 pExpr->pTab = 0; 205 ExprSetVVAProperty(pExpr, EP_NoReduce); 206 207 /* Translate the schema name in zDb into a pointer to the corresponding 208 ** schema. If not found, pSchema will remain NULL and nothing will match 209 ** resulting in an appropriate error message toward the end of this routine 210 */ 211 if( zDb ){ 212 testcase( pNC->ncFlags & NC_PartIdx ); 213 testcase( pNC->ncFlags & NC_IsCheck ); 214 if( (pNC->ncFlags & (NC_PartIdx|NC_IsCheck))!=0 ){ 215 /* Silently ignore database qualifiers inside CHECK constraints and 216 ** partial indices. Do not raise errors because that might break 217 ** legacy and because it does not hurt anything to just ignore the 218 ** database name. */ 219 zDb = 0; 220 }else{ 221 for(i=0; i<db->nDb; i++){ 222 assert( db->aDb[i].zDbSName ); 223 if( sqlite3StrICmp(db->aDb[i].zDbSName,zDb)==0 ){ 224 pSchema = db->aDb[i].pSchema; 225 break; 226 } 227 } 228 } 229 } 230 231 /* Start at the inner-most context and move outward until a match is found */ 232 assert( pNC && cnt==0 ); 233 do{ 234 ExprList *pEList; 235 SrcList *pSrcList = pNC->pSrcList; 236 237 if( pSrcList ){ 238 for(i=0, pItem=pSrcList->a; i<pSrcList->nSrc; i++, pItem++){ 239 pTab = pItem->pTab; 240 assert( pTab!=0 && pTab->zName!=0 ); 241 assert( pTab->nCol>0 ); 242 if( pItem->pSelect && (pItem->pSelect->selFlags & SF_NestedFrom)!=0 ){ 243 int hit = 0; 244 pEList = pItem->pSelect->pEList; 245 for(j=0; j<pEList->nExpr; j++){ 246 if( sqlite3MatchSpanName(pEList->a[j].zSpan, zCol, zTab, zDb) ){ 247 cnt++; 248 cntTab = 2; 249 pMatch = pItem; 250 pExpr->iColumn = j; 251 hit = 1; 252 } 253 } 254 if( hit || zTab==0 ) continue; 255 } 256 if( zDb && pTab->pSchema!=pSchema ){ 257 continue; 258 } 259 if( zTab ){ 260 const char *zTabName = pItem->zAlias ? pItem->zAlias : pTab->zName; 261 assert( zTabName!=0 ); 262 if( sqlite3StrICmp(zTabName, zTab)!=0 ){ 263 continue; 264 } 265 } 266 if( 0==(cntTab++) ){ 267 pMatch = pItem; 268 } 269 for(j=0, pCol=pTab->aCol; j<pTab->nCol; j++, pCol++){ 270 if( sqlite3StrICmp(pCol->zName, zCol)==0 ){ 271 /* If there has been exactly one prior match and this match 272 ** is for the right-hand table of a NATURAL JOIN or is in a 273 ** USING clause, then skip this match. 274 */ 275 if( cnt==1 ){ 276 if( pItem->fg.jointype & JT_NATURAL ) continue; 277 if( nameInUsingClause(pItem->pUsing, zCol) ) continue; 278 } 279 cnt++; 280 pMatch = pItem; 281 /* Substitute the rowid (column -1) for the INTEGER PRIMARY KEY */ 282 pExpr->iColumn = j==pTab->iPKey ? -1 : (i16)j; 283 break; 284 } 285 } 286 } 287 if( pMatch ){ 288 pExpr->iTable = pMatch->iCursor; 289 pExpr->pTab = pMatch->pTab; 290 /* RIGHT JOIN not (yet) supported */ 291 assert( (pMatch->fg.jointype & JT_RIGHT)==0 ); 292 if( (pMatch->fg.jointype & JT_LEFT)!=0 ){ 293 ExprSetProperty(pExpr, EP_CanBeNull); 294 } 295 pSchema = pExpr->pTab->pSchema; 296 } 297 } /* if( pSrcList ) */ 298 299 #if !defined(SQLITE_OMIT_TRIGGER) || !defined(SQLITE_OMIT_UPSERT) 300 /* If we have not already resolved the name, then maybe 301 ** it is a new.* or old.* trigger argument reference. Or 302 ** maybe it is an excluded.* from an upsert. 303 */ 304 if( zDb==0 && zTab!=0 && cntTab==0 ){ 305 pTab = 0; 306 #ifndef SQLITE_OMIT_TRIGGER 307 if( pParse->pTriggerTab!=0 ){ 308 int op = pParse->eTriggerOp; 309 assert( op==TK_DELETE || op==TK_UPDATE || op==TK_INSERT ); 310 if( op!=TK_DELETE && sqlite3StrICmp("new",zTab) == 0 ){ 311 pExpr->iTable = 1; 312 pTab = pParse->pTriggerTab; 313 }else if( op!=TK_INSERT && sqlite3StrICmp("old",zTab)==0 ){ 314 pExpr->iTable = 0; 315 pTab = pParse->pTriggerTab; 316 } 317 } 318 #endif /* SQLITE_OMIT_TRIGGER */ 319 #ifndef SQLITE_OMIT_UPSERT 320 if( (pNC->ncFlags & NC_UUpsert)!=0 ){ 321 Upsert *pUpsert = pNC->uNC.pUpsert; 322 if( pUpsert && sqlite3StrICmp("excluded",zTab)==0 ){ 323 pTab = pUpsert->pUpsertSrc->a[0].pTab; 324 pExpr->iTable = 2; 325 } 326 } 327 #endif /* SQLITE_OMIT_UPSERT */ 328 329 if( pTab ){ 330 int iCol; 331 pSchema = pTab->pSchema; 332 cntTab++; 333 for(iCol=0, pCol=pTab->aCol; iCol<pTab->nCol; iCol++, pCol++){ 334 if( sqlite3StrICmp(pCol->zName, zCol)==0 ){ 335 if( iCol==pTab->iPKey ){ 336 iCol = -1; 337 } 338 break; 339 } 340 } 341 if( iCol>=pTab->nCol && sqlite3IsRowid(zCol) && VisibleRowid(pTab) ){ 342 /* IMP: R-51414-32910 */ 343 iCol = -1; 344 } 345 if( iCol<pTab->nCol ){ 346 cnt++; 347 #ifndef SQLITE_OMIT_UPSERT 348 if( pExpr->iTable==2 ){ 349 testcase( iCol==(-1) ); 350 pExpr->iTable = pNC->uNC.pUpsert->regData + iCol; 351 eNewExprOp = TK_REGISTER; 352 }else 353 #endif /* SQLITE_OMIT_UPSERT */ 354 { 355 #ifndef SQLITE_OMIT_TRIGGER 356 if( iCol<0 ){ 357 pExpr->affinity = SQLITE_AFF_INTEGER; 358 }else if( pExpr->iTable==0 ){ 359 testcase( iCol==31 ); 360 testcase( iCol==32 ); 361 pParse->oldmask |= (iCol>=32 ? 0xffffffff : (((u32)1)<<iCol)); 362 }else{ 363 testcase( iCol==31 ); 364 testcase( iCol==32 ); 365 pParse->newmask |= (iCol>=32 ? 0xffffffff : (((u32)1)<<iCol)); 366 } 367 pExpr->pTab = pTab; 368 pExpr->iColumn = (i16)iCol; 369 eNewExprOp = TK_TRIGGER; 370 #endif /* SQLITE_OMIT_TRIGGER */ 371 } 372 } 373 } 374 } 375 #endif /* !defined(SQLITE_OMIT_TRIGGER) || !defined(SQLITE_OMIT_UPSERT) */ 376 377 /* 378 ** Perhaps the name is a reference to the ROWID 379 */ 380 if( cnt==0 381 && cntTab==1 382 && pMatch 383 && (pNC->ncFlags & NC_IdxExpr)==0 384 && sqlite3IsRowid(zCol) 385 && VisibleRowid(pMatch->pTab) 386 ){ 387 cnt = 1; 388 pExpr->iColumn = -1; 389 pExpr->affinity = SQLITE_AFF_INTEGER; 390 } 391 392 /* 393 ** If the input is of the form Z (not Y.Z or X.Y.Z) then the name Z 394 ** might refer to an result-set alias. This happens, for example, when 395 ** we are resolving names in the WHERE clause of the following command: 396 ** 397 ** SELECT a+b AS x FROM table WHERE x<10; 398 ** 399 ** In cases like this, replace pExpr with a copy of the expression that 400 ** forms the result set entry ("a+b" in the example) and return immediately. 401 ** Note that the expression in the result set should have already been 402 ** resolved by the time the WHERE clause is resolved. 403 ** 404 ** The ability to use an output result-set column in the WHERE, GROUP BY, 405 ** or HAVING clauses, or as part of a larger expression in the ORDER BY 406 ** clause is not standard SQL. This is a (goofy) SQLite extension, that 407 ** is supported for backwards compatibility only. Hence, we issue a warning 408 ** on sqlite3_log() whenever the capability is used. 409 */ 410 if( (pNC->ncFlags & NC_UEList)!=0 411 && cnt==0 412 && zTab==0 413 ){ 414 pEList = pNC->uNC.pEList; 415 assert( pEList!=0 ); 416 for(j=0; j<pEList->nExpr; j++){ 417 char *zAs = pEList->a[j].zName; 418 if( zAs!=0 && sqlite3StrICmp(zAs, zCol)==0 ){ 419 Expr *pOrig; 420 assert( pExpr->pLeft==0 && pExpr->pRight==0 ); 421 assert( pExpr->x.pList==0 ); 422 assert( pExpr->x.pSelect==0 ); 423 pOrig = pEList->a[j].pExpr; 424 if( (pNC->ncFlags&NC_AllowAgg)==0 && ExprHasProperty(pOrig, EP_Agg) ){ 425 sqlite3ErrorMsg(pParse, "misuse of aliased aggregate %s", zAs); 426 return WRC_Abort; 427 } 428 if( sqlite3ExprVectorSize(pOrig)!=1 ){ 429 sqlite3ErrorMsg(pParse, "row value misused"); 430 return WRC_Abort; 431 } 432 resolveAlias(pParse, pEList, j, pExpr, "", nSubquery); 433 cnt = 1; 434 pMatch = 0; 435 assert( zTab==0 && zDb==0 ); 436 goto lookupname_end; 437 } 438 } 439 } 440 441 /* Advance to the next name context. The loop will exit when either 442 ** we have a match (cnt>0) or when we run out of name contexts. 443 */ 444 if( cnt ) break; 445 pNC = pNC->pNext; 446 nSubquery++; 447 }while( pNC ); 448 449 450 /* 451 ** If X and Y are NULL (in other words if only the column name Z is 452 ** supplied) and the value of Z is enclosed in double-quotes, then 453 ** Z is a string literal if it doesn't match any column names. In that 454 ** case, we need to return right away and not make any changes to 455 ** pExpr. 456 ** 457 ** Because no reference was made to outer contexts, the pNC->nRef 458 ** fields are not changed in any context. 459 */ 460 if( cnt==0 && zTab==0 ){ 461 assert( pExpr->op==TK_ID ); 462 if( ExprHasProperty(pExpr,EP_DblQuoted) ){ 463 pExpr->op = TK_STRING; 464 pExpr->pTab = 0; 465 return WRC_Prune; 466 } 467 if( sqlite3ExprIdToTrueFalse(pExpr) ){ 468 return WRC_Prune; 469 } 470 } 471 472 /* 473 ** cnt==0 means there was not match. cnt>1 means there were two or 474 ** more matches. Either way, we have an error. 475 */ 476 if( cnt!=1 ){ 477 const char *zErr; 478 zErr = cnt==0 ? "no such column" : "ambiguous column name"; 479 if( zDb ){ 480 sqlite3ErrorMsg(pParse, "%s: %s.%s.%s", zErr, zDb, zTab, zCol); 481 }else if( zTab ){ 482 sqlite3ErrorMsg(pParse, "%s: %s.%s", zErr, zTab, zCol); 483 }else{ 484 sqlite3ErrorMsg(pParse, "%s: %s", zErr, zCol); 485 } 486 pParse->checkSchema = 1; 487 pTopNC->nErr++; 488 } 489 490 /* If a column from a table in pSrcList is referenced, then record 491 ** this fact in the pSrcList.a[].colUsed bitmask. Column 0 causes 492 ** bit 0 to be set. Column 1 sets bit 1. And so forth. If the 493 ** column number is greater than the number of bits in the bitmask 494 ** then set the high-order bit of the bitmask. 495 */ 496 if( pExpr->iColumn>=0 && pMatch!=0 ){ 497 int n = pExpr->iColumn; 498 testcase( n==BMS-1 ); 499 if( n>=BMS ){ 500 n = BMS-1; 501 } 502 assert( pMatch->iCursor==pExpr->iTable ); 503 pMatch->colUsed |= ((Bitmask)1)<<n; 504 } 505 506 /* Clean up and return 507 */ 508 sqlite3ExprDelete(db, pExpr->pLeft); 509 pExpr->pLeft = 0; 510 sqlite3ExprDelete(db, pExpr->pRight); 511 pExpr->pRight = 0; 512 pExpr->op = eNewExprOp; 513 ExprSetProperty(pExpr, EP_Leaf); 514 lookupname_end: 515 if( cnt==1 ){ 516 assert( pNC!=0 ); 517 if( !ExprHasProperty(pExpr, EP_Alias) ){ 518 sqlite3AuthRead(pParse, pExpr, pSchema, pNC->pSrcList); 519 } 520 /* Increment the nRef value on all name contexts from TopNC up to 521 ** the point where the name matched. */ 522 for(;;){ 523 assert( pTopNC!=0 ); 524 pTopNC->nRef++; 525 if( pTopNC==pNC ) break; 526 pTopNC = pTopNC->pNext; 527 } 528 return WRC_Prune; 529 } else { 530 return WRC_Abort; 531 } 532 } 533 534 /* 535 ** Allocate and return a pointer to an expression to load the column iCol 536 ** from datasource iSrc in SrcList pSrc. 537 */ 538 Expr *sqlite3CreateColumnExpr(sqlite3 *db, SrcList *pSrc, int iSrc, int iCol){ 539 Expr *p = sqlite3ExprAlloc(db, TK_COLUMN, 0, 0); 540 if( p ){ 541 struct SrcList_item *pItem = &pSrc->a[iSrc]; 542 p->pTab = pItem->pTab; 543 p->iTable = pItem->iCursor; 544 if( p->pTab->iPKey==iCol ){ 545 p->iColumn = -1; 546 }else{ 547 p->iColumn = (ynVar)iCol; 548 testcase( iCol==BMS ); 549 testcase( iCol==BMS-1 ); 550 pItem->colUsed |= ((Bitmask)1)<<(iCol>=BMS ? BMS-1 : iCol); 551 } 552 } 553 return p; 554 } 555 556 /* 557 ** Report an error that an expression is not valid for some set of 558 ** pNC->ncFlags values determined by validMask. 559 */ 560 static void notValid( 561 Parse *pParse, /* Leave error message here */ 562 NameContext *pNC, /* The name context */ 563 const char *zMsg, /* Type of error */ 564 int validMask /* Set of contexts for which prohibited */ 565 ){ 566 assert( (validMask&~(NC_IsCheck|NC_PartIdx|NC_IdxExpr))==0 ); 567 if( (pNC->ncFlags & validMask)!=0 ){ 568 const char *zIn = "partial index WHERE clauses"; 569 if( pNC->ncFlags & NC_IdxExpr ) zIn = "index expressions"; 570 #ifndef SQLITE_OMIT_CHECK 571 else if( pNC->ncFlags & NC_IsCheck ) zIn = "CHECK constraints"; 572 #endif 573 sqlite3ErrorMsg(pParse, "%s prohibited in %s", zMsg, zIn); 574 } 575 } 576 577 /* 578 ** Expression p should encode a floating point value between 1.0 and 0.0. 579 ** Return 1024 times this value. Or return -1 if p is not a floating point 580 ** value between 1.0 and 0.0. 581 */ 582 static int exprProbability(Expr *p){ 583 double r = -1.0; 584 if( p->op!=TK_FLOAT ) return -1; 585 sqlite3AtoF(p->u.zToken, &r, sqlite3Strlen30(p->u.zToken), SQLITE_UTF8); 586 assert( r>=0.0 ); 587 if( r>1.0 ) return -1; 588 return (int)(r*134217728.0); 589 } 590 591 /* 592 ** This routine is callback for sqlite3WalkExpr(). 593 ** 594 ** Resolve symbolic names into TK_COLUMN operators for the current 595 ** node in the expression tree. Return 0 to continue the search down 596 ** the tree or 2 to abort the tree walk. 597 ** 598 ** This routine also does error checking and name resolution for 599 ** function names. The operator for aggregate functions is changed 600 ** to TK_AGG_FUNCTION. 601 */ 602 static int resolveExprStep(Walker *pWalker, Expr *pExpr){ 603 NameContext *pNC; 604 Parse *pParse; 605 606 pNC = pWalker->u.pNC; 607 assert( pNC!=0 ); 608 pParse = pNC->pParse; 609 assert( pParse==pWalker->pParse ); 610 611 #ifndef NDEBUG 612 if( pNC->pSrcList && pNC->pSrcList->nAlloc>0 ){ 613 SrcList *pSrcList = pNC->pSrcList; 614 int i; 615 for(i=0; i<pNC->pSrcList->nSrc; i++){ 616 assert( pSrcList->a[i].iCursor>=0 && pSrcList->a[i].iCursor<pParse->nTab); 617 } 618 } 619 #endif 620 switch( pExpr->op ){ 621 622 #if defined(SQLITE_ENABLE_UPDATE_DELETE_LIMIT) && !defined(SQLITE_OMIT_SUBQUERY) 623 /* The special operator TK_ROW means use the rowid for the first 624 ** column in the FROM clause. This is used by the LIMIT and ORDER BY 625 ** clause processing on UPDATE and DELETE statements. 626 */ 627 case TK_ROW: { 628 SrcList *pSrcList = pNC->pSrcList; 629 struct SrcList_item *pItem; 630 assert( pSrcList && pSrcList->nSrc==1 ); 631 pItem = pSrcList->a; 632 assert( HasRowid(pItem->pTab) && pItem->pTab->pSelect==0 ); 633 pExpr->op = TK_COLUMN; 634 pExpr->pTab = pItem->pTab; 635 pExpr->iTable = pItem->iCursor; 636 pExpr->iColumn = -1; 637 pExpr->affinity = SQLITE_AFF_INTEGER; 638 break; 639 } 640 #endif /* defined(SQLITE_ENABLE_UPDATE_DELETE_LIMIT) 641 && !defined(SQLITE_OMIT_SUBQUERY) */ 642 643 /* A column name: ID 644 ** Or table name and column name: ID.ID 645 ** Or a database, table and column: ID.ID.ID 646 ** 647 ** The TK_ID and TK_OUT cases are combined so that there will only 648 ** be one call to lookupName(). Then the compiler will in-line 649 ** lookupName() for a size reduction and performance increase. 650 */ 651 case TK_ID: 652 case TK_DOT: { 653 const char *zColumn; 654 const char *zTable; 655 const char *zDb; 656 Expr *pRight; 657 658 if( pExpr->op==TK_ID ){ 659 zDb = 0; 660 zTable = 0; 661 zColumn = pExpr->u.zToken; 662 }else{ 663 notValid(pParse, pNC, "the \".\" operator", NC_IdxExpr); 664 pRight = pExpr->pRight; 665 if( pRight->op==TK_ID ){ 666 zDb = 0; 667 zTable = pExpr->pLeft->u.zToken; 668 zColumn = pRight->u.zToken; 669 }else{ 670 assert( pRight->op==TK_DOT ); 671 zDb = pExpr->pLeft->u.zToken; 672 zTable = pRight->pLeft->u.zToken; 673 zColumn = pRight->pRight->u.zToken; 674 } 675 } 676 return lookupName(pParse, zDb, zTable, zColumn, pNC, pExpr); 677 } 678 679 /* Resolve function names 680 */ 681 case TK_FUNCTION: { 682 ExprList *pList = pExpr->x.pList; /* The argument list */ 683 int n = pList ? pList->nExpr : 0; /* Number of arguments */ 684 int no_such_func = 0; /* True if no such function exists */ 685 int wrong_num_args = 0; /* True if wrong number of arguments */ 686 int is_agg = 0; /* True if is an aggregate function */ 687 int nId; /* Number of characters in function name */ 688 const char *zId; /* The function name. */ 689 FuncDef *pDef; /* Information about the function */ 690 u8 enc = ENC(pParse->db); /* The database encoding */ 691 692 assert( !ExprHasProperty(pExpr, EP_xIsSelect) ); 693 zId = pExpr->u.zToken; 694 nId = sqlite3Strlen30(zId); 695 pDef = sqlite3FindFunction(pParse->db, zId, n, enc, 0); 696 if( pDef==0 ){ 697 pDef = sqlite3FindFunction(pParse->db, zId, -2, enc, 0); 698 if( pDef==0 ){ 699 no_such_func = 1; 700 }else{ 701 wrong_num_args = 1; 702 } 703 }else{ 704 is_agg = pDef->xFinalize!=0; 705 if( pDef->funcFlags & SQLITE_FUNC_UNLIKELY ){ 706 ExprSetProperty(pExpr, EP_Unlikely|EP_Skip); 707 if( n==2 ){ 708 pExpr->iTable = exprProbability(pList->a[1].pExpr); 709 if( pExpr->iTable<0 ){ 710 sqlite3ErrorMsg(pParse, 711 "second argument to likelihood() must be a " 712 "constant between 0.0 and 1.0"); 713 pNC->nErr++; 714 } 715 }else{ 716 /* EVIDENCE-OF: R-61304-29449 The unlikely(X) function is 717 ** equivalent to likelihood(X, 0.0625). 718 ** EVIDENCE-OF: R-01283-11636 The unlikely(X) function is 719 ** short-hand for likelihood(X,0.0625). 720 ** EVIDENCE-OF: R-36850-34127 The likely(X) function is short-hand 721 ** for likelihood(X,0.9375). 722 ** EVIDENCE-OF: R-53436-40973 The likely(X) function is equivalent 723 ** to likelihood(X,0.9375). */ 724 /* TUNING: unlikely() probability is 0.0625. likely() is 0.9375 */ 725 pExpr->iTable = pDef->zName[0]=='u' ? 8388608 : 125829120; 726 } 727 } 728 #ifndef SQLITE_OMIT_AUTHORIZATION 729 { 730 int auth = sqlite3AuthCheck(pParse, SQLITE_FUNCTION, 0,pDef->zName,0); 731 if( auth!=SQLITE_OK ){ 732 if( auth==SQLITE_DENY ){ 733 sqlite3ErrorMsg(pParse, "not authorized to use function: %s", 734 pDef->zName); 735 pNC->nErr++; 736 } 737 pExpr->op = TK_NULL; 738 return WRC_Prune; 739 } 740 } 741 #endif 742 if( pDef->funcFlags & (SQLITE_FUNC_CONSTANT|SQLITE_FUNC_SLOCHNG) ){ 743 /* For the purposes of the EP_ConstFunc flag, date and time 744 ** functions and other functions that change slowly are considered 745 ** constant because they are constant for the duration of one query */ 746 ExprSetProperty(pExpr,EP_ConstFunc); 747 } 748 if( (pDef->funcFlags & SQLITE_FUNC_CONSTANT)==0 ){ 749 /* Date/time functions that use 'now', and other functions like 750 ** sqlite_version() that might change over time cannot be used 751 ** in an index. */ 752 notValid(pParse, pNC, "non-deterministic functions", 753 NC_IdxExpr|NC_PartIdx); 754 } 755 } 756 if( is_agg && (pNC->ncFlags & NC_AllowAgg)==0 ){ 757 sqlite3ErrorMsg(pParse, "misuse of aggregate function %.*s()", nId,zId); 758 pNC->nErr++; 759 is_agg = 0; 760 }else if( no_such_func && pParse->db->init.busy==0 761 #ifdef SQLITE_ENABLE_UNKNOWN_SQL_FUNCTION 762 && pParse->explain==0 763 #endif 764 ){ 765 sqlite3ErrorMsg(pParse, "no such function: %.*s", nId, zId); 766 pNC->nErr++; 767 }else if( wrong_num_args ){ 768 sqlite3ErrorMsg(pParse,"wrong number of arguments to function %.*s()", 769 nId, zId); 770 pNC->nErr++; 771 } 772 if( is_agg ) pNC->ncFlags &= ~NC_AllowAgg; 773 sqlite3WalkExprList(pWalker, pList); 774 if( is_agg ){ 775 NameContext *pNC2 = pNC; 776 pExpr->op = TK_AGG_FUNCTION; 777 pExpr->op2 = 0; 778 while( pNC2 && !sqlite3FunctionUsesThisSrc(pExpr, pNC2->pSrcList) ){ 779 pExpr->op2++; 780 pNC2 = pNC2->pNext; 781 } 782 assert( pDef!=0 ); 783 if( pNC2 ){ 784 assert( SQLITE_FUNC_MINMAX==NC_MinMaxAgg ); 785 testcase( (pDef->funcFlags & SQLITE_FUNC_MINMAX)!=0 ); 786 pNC2->ncFlags |= NC_HasAgg | (pDef->funcFlags & SQLITE_FUNC_MINMAX); 787 788 } 789 pNC->ncFlags |= NC_AllowAgg; 790 } 791 /* FIX ME: Compute pExpr->affinity based on the expected return 792 ** type of the function 793 */ 794 return WRC_Prune; 795 } 796 #ifndef SQLITE_OMIT_SUBQUERY 797 case TK_SELECT: 798 case TK_EXISTS: testcase( pExpr->op==TK_EXISTS ); 799 #endif 800 case TK_IN: { 801 testcase( pExpr->op==TK_IN ); 802 if( ExprHasProperty(pExpr, EP_xIsSelect) ){ 803 int nRef = pNC->nRef; 804 notValid(pParse, pNC, "subqueries", NC_IsCheck|NC_PartIdx|NC_IdxExpr); 805 sqlite3WalkSelect(pWalker, pExpr->x.pSelect); 806 assert( pNC->nRef>=nRef ); 807 if( nRef!=pNC->nRef ){ 808 ExprSetProperty(pExpr, EP_VarSelect); 809 pNC->ncFlags |= NC_VarSelect; 810 } 811 } 812 break; 813 } 814 case TK_VARIABLE: { 815 notValid(pParse, pNC, "parameters", NC_IsCheck|NC_PartIdx|NC_IdxExpr); 816 break; 817 } 818 case TK_IS: 819 case TK_ISNOT: { 820 Expr *pRight; 821 assert( !ExprHasProperty(pExpr, EP_Reduced) ); 822 /* Handle special cases of "x IS TRUE", "x IS FALSE", "x IS NOT TRUE", 823 ** and "x IS NOT FALSE". */ 824 if( (pRight = pExpr->pRight)->op==TK_ID ){ 825 int rc = resolveExprStep(pWalker, pRight); 826 if( rc==WRC_Abort ) return WRC_Abort; 827 if( pRight->op==TK_TRUEFALSE ){ 828 pExpr->op2 = pExpr->op; 829 pExpr->op = TK_TRUTH; 830 return WRC_Continue; 831 } 832 } 833 /* Fall thru */ 834 } 835 case TK_BETWEEN: 836 case TK_EQ: 837 case TK_NE: 838 case TK_LT: 839 case TK_LE: 840 case TK_GT: 841 case TK_GE: { 842 int nLeft, nRight; 843 if( pParse->db->mallocFailed ) break; 844 assert( pExpr->pLeft!=0 ); 845 nLeft = sqlite3ExprVectorSize(pExpr->pLeft); 846 if( pExpr->op==TK_BETWEEN ){ 847 nRight = sqlite3ExprVectorSize(pExpr->x.pList->a[0].pExpr); 848 if( nRight==nLeft ){ 849 nRight = sqlite3ExprVectorSize(pExpr->x.pList->a[1].pExpr); 850 } 851 }else{ 852 assert( pExpr->pRight!=0 ); 853 nRight = sqlite3ExprVectorSize(pExpr->pRight); 854 } 855 if( nLeft!=nRight ){ 856 testcase( pExpr->op==TK_EQ ); 857 testcase( pExpr->op==TK_NE ); 858 testcase( pExpr->op==TK_LT ); 859 testcase( pExpr->op==TK_LE ); 860 testcase( pExpr->op==TK_GT ); 861 testcase( pExpr->op==TK_GE ); 862 testcase( pExpr->op==TK_IS ); 863 testcase( pExpr->op==TK_ISNOT ); 864 testcase( pExpr->op==TK_BETWEEN ); 865 sqlite3ErrorMsg(pParse, "row value misused"); 866 } 867 break; 868 } 869 } 870 return (pParse->nErr || pParse->db->mallocFailed) ? WRC_Abort : WRC_Continue; 871 } 872 873 /* 874 ** pEList is a list of expressions which are really the result set of the 875 ** a SELECT statement. pE is a term in an ORDER BY or GROUP BY clause. 876 ** This routine checks to see if pE is a simple identifier which corresponds 877 ** to the AS-name of one of the terms of the expression list. If it is, 878 ** this routine return an integer between 1 and N where N is the number of 879 ** elements in pEList, corresponding to the matching entry. If there is 880 ** no match, or if pE is not a simple identifier, then this routine 881 ** return 0. 882 ** 883 ** pEList has been resolved. pE has not. 884 */ 885 static int resolveAsName( 886 Parse *pParse, /* Parsing context for error messages */ 887 ExprList *pEList, /* List of expressions to scan */ 888 Expr *pE /* Expression we are trying to match */ 889 ){ 890 int i; /* Loop counter */ 891 892 UNUSED_PARAMETER(pParse); 893 894 if( pE->op==TK_ID ){ 895 char *zCol = pE->u.zToken; 896 for(i=0; i<pEList->nExpr; i++){ 897 char *zAs = pEList->a[i].zName; 898 if( zAs!=0 && sqlite3StrICmp(zAs, zCol)==0 ){ 899 return i+1; 900 } 901 } 902 } 903 return 0; 904 } 905 906 /* 907 ** pE is a pointer to an expression which is a single term in the 908 ** ORDER BY of a compound SELECT. The expression has not been 909 ** name resolved. 910 ** 911 ** At the point this routine is called, we already know that the 912 ** ORDER BY term is not an integer index into the result set. That 913 ** case is handled by the calling routine. 914 ** 915 ** Attempt to match pE against result set columns in the left-most 916 ** SELECT statement. Return the index i of the matching column, 917 ** as an indication to the caller that it should sort by the i-th column. 918 ** The left-most column is 1. In other words, the value returned is the 919 ** same integer value that would be used in the SQL statement to indicate 920 ** the column. 921 ** 922 ** If there is no match, return 0. Return -1 if an error occurs. 923 */ 924 static int resolveOrderByTermToExprList( 925 Parse *pParse, /* Parsing context for error messages */ 926 Select *pSelect, /* The SELECT statement with the ORDER BY clause */ 927 Expr *pE /* The specific ORDER BY term */ 928 ){ 929 int i; /* Loop counter */ 930 ExprList *pEList; /* The columns of the result set */ 931 NameContext nc; /* Name context for resolving pE */ 932 sqlite3 *db; /* Database connection */ 933 int rc; /* Return code from subprocedures */ 934 u8 savedSuppErr; /* Saved value of db->suppressErr */ 935 936 assert( sqlite3ExprIsInteger(pE, &i)==0 ); 937 pEList = pSelect->pEList; 938 939 /* Resolve all names in the ORDER BY term expression 940 */ 941 memset(&nc, 0, sizeof(nc)); 942 nc.pParse = pParse; 943 nc.pSrcList = pSelect->pSrc; 944 nc.uNC.pEList = pEList; 945 nc.ncFlags = NC_AllowAgg|NC_UEList; 946 nc.nErr = 0; 947 db = pParse->db; 948 savedSuppErr = db->suppressErr; 949 db->suppressErr = 1; 950 rc = sqlite3ResolveExprNames(&nc, pE); 951 db->suppressErr = savedSuppErr; 952 if( rc ) return 0; 953 954 /* Try to match the ORDER BY expression against an expression 955 ** in the result set. Return an 1-based index of the matching 956 ** result-set entry. 957 */ 958 for(i=0; i<pEList->nExpr; i++){ 959 if( sqlite3ExprCompare(0, pEList->a[i].pExpr, pE, -1)<2 ){ 960 return i+1; 961 } 962 } 963 964 /* If no match, return 0. */ 965 return 0; 966 } 967 968 /* 969 ** Generate an ORDER BY or GROUP BY term out-of-range error. 970 */ 971 static void resolveOutOfRangeError( 972 Parse *pParse, /* The error context into which to write the error */ 973 const char *zType, /* "ORDER" or "GROUP" */ 974 int i, /* The index (1-based) of the term out of range */ 975 int mx /* Largest permissible value of i */ 976 ){ 977 sqlite3ErrorMsg(pParse, 978 "%r %s BY term out of range - should be " 979 "between 1 and %d", i, zType, mx); 980 } 981 982 /* 983 ** Analyze the ORDER BY clause in a compound SELECT statement. Modify 984 ** each term of the ORDER BY clause is a constant integer between 1 985 ** and N where N is the number of columns in the compound SELECT. 986 ** 987 ** ORDER BY terms that are already an integer between 1 and N are 988 ** unmodified. ORDER BY terms that are integers outside the range of 989 ** 1 through N generate an error. ORDER BY terms that are expressions 990 ** are matched against result set expressions of compound SELECT 991 ** beginning with the left-most SELECT and working toward the right. 992 ** At the first match, the ORDER BY expression is transformed into 993 ** the integer column number. 994 ** 995 ** Return the number of errors seen. 996 */ 997 static int resolveCompoundOrderBy( 998 Parse *pParse, /* Parsing context. Leave error messages here */ 999 Select *pSelect /* The SELECT statement containing the ORDER BY */ 1000 ){ 1001 int i; 1002 ExprList *pOrderBy; 1003 ExprList *pEList; 1004 sqlite3 *db; 1005 int moreToDo = 1; 1006 1007 pOrderBy = pSelect->pOrderBy; 1008 if( pOrderBy==0 ) return 0; 1009 db = pParse->db; 1010 if( pOrderBy->nExpr>db->aLimit[SQLITE_LIMIT_COLUMN] ){ 1011 sqlite3ErrorMsg(pParse, "too many terms in ORDER BY clause"); 1012 return 1; 1013 } 1014 for(i=0; i<pOrderBy->nExpr; i++){ 1015 pOrderBy->a[i].done = 0; 1016 } 1017 pSelect->pNext = 0; 1018 while( pSelect->pPrior ){ 1019 pSelect->pPrior->pNext = pSelect; 1020 pSelect = pSelect->pPrior; 1021 } 1022 while( pSelect && moreToDo ){ 1023 struct ExprList_item *pItem; 1024 moreToDo = 0; 1025 pEList = pSelect->pEList; 1026 assert( pEList!=0 ); 1027 for(i=0, pItem=pOrderBy->a; i<pOrderBy->nExpr; i++, pItem++){ 1028 int iCol = -1; 1029 Expr *pE, *pDup; 1030 if( pItem->done ) continue; 1031 pE = sqlite3ExprSkipCollate(pItem->pExpr); 1032 if( sqlite3ExprIsInteger(pE, &iCol) ){ 1033 if( iCol<=0 || iCol>pEList->nExpr ){ 1034 resolveOutOfRangeError(pParse, "ORDER", i+1, pEList->nExpr); 1035 return 1; 1036 } 1037 }else{ 1038 iCol = resolveAsName(pParse, pEList, pE); 1039 if( iCol==0 ){ 1040 pDup = sqlite3ExprDup(db, pE, 0); 1041 if( !db->mallocFailed ){ 1042 assert(pDup); 1043 iCol = resolveOrderByTermToExprList(pParse, pSelect, pDup); 1044 } 1045 sqlite3ExprDelete(db, pDup); 1046 } 1047 } 1048 if( iCol>0 ){ 1049 /* Convert the ORDER BY term into an integer column number iCol, 1050 ** taking care to preserve the COLLATE clause if it exists */ 1051 Expr *pNew = sqlite3Expr(db, TK_INTEGER, 0); 1052 if( pNew==0 ) return 1; 1053 pNew->flags |= EP_IntValue; 1054 pNew->u.iValue = iCol; 1055 if( pItem->pExpr==pE ){ 1056 pItem->pExpr = pNew; 1057 }else{ 1058 Expr *pParent = pItem->pExpr; 1059 assert( pParent->op==TK_COLLATE ); 1060 while( pParent->pLeft->op==TK_COLLATE ) pParent = pParent->pLeft; 1061 assert( pParent->pLeft==pE ); 1062 pParent->pLeft = pNew; 1063 } 1064 sqlite3ExprDelete(db, pE); 1065 pItem->u.x.iOrderByCol = (u16)iCol; 1066 pItem->done = 1; 1067 }else{ 1068 moreToDo = 1; 1069 } 1070 } 1071 pSelect = pSelect->pNext; 1072 } 1073 for(i=0; i<pOrderBy->nExpr; i++){ 1074 if( pOrderBy->a[i].done==0 ){ 1075 sqlite3ErrorMsg(pParse, "%r ORDER BY term does not match any " 1076 "column in the result set", i+1); 1077 return 1; 1078 } 1079 } 1080 return 0; 1081 } 1082 1083 /* 1084 ** Check every term in the ORDER BY or GROUP BY clause pOrderBy of 1085 ** the SELECT statement pSelect. If any term is reference to a 1086 ** result set expression (as determined by the ExprList.a.u.x.iOrderByCol 1087 ** field) then convert that term into a copy of the corresponding result set 1088 ** column. 1089 ** 1090 ** If any errors are detected, add an error message to pParse and 1091 ** return non-zero. Return zero if no errors are seen. 1092 */ 1093 int sqlite3ResolveOrderGroupBy( 1094 Parse *pParse, /* Parsing context. Leave error messages here */ 1095 Select *pSelect, /* The SELECT statement containing the clause */ 1096 ExprList *pOrderBy, /* The ORDER BY or GROUP BY clause to be processed */ 1097 const char *zType /* "ORDER" or "GROUP" */ 1098 ){ 1099 int i; 1100 sqlite3 *db = pParse->db; 1101 ExprList *pEList; 1102 struct ExprList_item *pItem; 1103 1104 if( pOrderBy==0 || pParse->db->mallocFailed ) return 0; 1105 if( pOrderBy->nExpr>db->aLimit[SQLITE_LIMIT_COLUMN] ){ 1106 sqlite3ErrorMsg(pParse, "too many terms in %s BY clause", zType); 1107 return 1; 1108 } 1109 pEList = pSelect->pEList; 1110 assert( pEList!=0 ); /* sqlite3SelectNew() guarantees this */ 1111 for(i=0, pItem=pOrderBy->a; i<pOrderBy->nExpr; i++, pItem++){ 1112 if( pItem->u.x.iOrderByCol ){ 1113 if( pItem->u.x.iOrderByCol>pEList->nExpr ){ 1114 resolveOutOfRangeError(pParse, zType, i+1, pEList->nExpr); 1115 return 1; 1116 } 1117 resolveAlias(pParse, pEList, pItem->u.x.iOrderByCol-1, pItem->pExpr, 1118 zType,0); 1119 } 1120 } 1121 return 0; 1122 } 1123 1124 /* 1125 ** pOrderBy is an ORDER BY or GROUP BY clause in SELECT statement pSelect. 1126 ** The Name context of the SELECT statement is pNC. zType is either 1127 ** "ORDER" or "GROUP" depending on which type of clause pOrderBy is. 1128 ** 1129 ** This routine resolves each term of the clause into an expression. 1130 ** If the order-by term is an integer I between 1 and N (where N is the 1131 ** number of columns in the result set of the SELECT) then the expression 1132 ** in the resolution is a copy of the I-th result-set expression. If 1133 ** the order-by term is an identifier that corresponds to the AS-name of 1134 ** a result-set expression, then the term resolves to a copy of the 1135 ** result-set expression. Otherwise, the expression is resolved in 1136 ** the usual way - using sqlite3ResolveExprNames(). 1137 ** 1138 ** This routine returns the number of errors. If errors occur, then 1139 ** an appropriate error message might be left in pParse. (OOM errors 1140 ** excepted.) 1141 */ 1142 static int resolveOrderGroupBy( 1143 NameContext *pNC, /* The name context of the SELECT statement */ 1144 Select *pSelect, /* The SELECT statement holding pOrderBy */ 1145 ExprList *pOrderBy, /* An ORDER BY or GROUP BY clause to resolve */ 1146 const char *zType /* Either "ORDER" or "GROUP", as appropriate */ 1147 ){ 1148 int i, j; /* Loop counters */ 1149 int iCol; /* Column number */ 1150 struct ExprList_item *pItem; /* A term of the ORDER BY clause */ 1151 Parse *pParse; /* Parsing context */ 1152 int nResult; /* Number of terms in the result set */ 1153 1154 if( pOrderBy==0 ) return 0; 1155 nResult = pSelect->pEList->nExpr; 1156 pParse = pNC->pParse; 1157 for(i=0, pItem=pOrderBy->a; i<pOrderBy->nExpr; i++, pItem++){ 1158 Expr *pE = pItem->pExpr; 1159 Expr *pE2 = sqlite3ExprSkipCollate(pE); 1160 if( zType[0]!='G' ){ 1161 iCol = resolveAsName(pParse, pSelect->pEList, pE2); 1162 if( iCol>0 ){ 1163 /* If an AS-name match is found, mark this ORDER BY column as being 1164 ** a copy of the iCol-th result-set column. The subsequent call to 1165 ** sqlite3ResolveOrderGroupBy() will convert the expression to a 1166 ** copy of the iCol-th result-set expression. */ 1167 pItem->u.x.iOrderByCol = (u16)iCol; 1168 continue; 1169 } 1170 } 1171 if( sqlite3ExprIsInteger(pE2, &iCol) ){ 1172 /* The ORDER BY term is an integer constant. Again, set the column 1173 ** number so that sqlite3ResolveOrderGroupBy() will convert the 1174 ** order-by term to a copy of the result-set expression */ 1175 if( iCol<1 || iCol>0xffff ){ 1176 resolveOutOfRangeError(pParse, zType, i+1, nResult); 1177 return 1; 1178 } 1179 pItem->u.x.iOrderByCol = (u16)iCol; 1180 continue; 1181 } 1182 1183 /* Otherwise, treat the ORDER BY term as an ordinary expression */ 1184 pItem->u.x.iOrderByCol = 0; 1185 if( sqlite3ResolveExprNames(pNC, pE) ){ 1186 return 1; 1187 } 1188 for(j=0; j<pSelect->pEList->nExpr; j++){ 1189 if( sqlite3ExprCompare(0, pE, pSelect->pEList->a[j].pExpr, -1)==0 ){ 1190 pItem->u.x.iOrderByCol = j+1; 1191 } 1192 } 1193 } 1194 return sqlite3ResolveOrderGroupBy(pParse, pSelect, pOrderBy, zType); 1195 } 1196 1197 /* 1198 ** Resolve names in the SELECT statement p and all of its descendants. 1199 */ 1200 static int resolveSelectStep(Walker *pWalker, Select *p){ 1201 NameContext *pOuterNC; /* Context that contains this SELECT */ 1202 NameContext sNC; /* Name context of this SELECT */ 1203 int isCompound; /* True if p is a compound select */ 1204 int nCompound; /* Number of compound terms processed so far */ 1205 Parse *pParse; /* Parsing context */ 1206 int i; /* Loop counter */ 1207 ExprList *pGroupBy; /* The GROUP BY clause */ 1208 Select *pLeftmost; /* Left-most of SELECT of a compound */ 1209 sqlite3 *db; /* Database connection */ 1210 1211 1212 assert( p!=0 ); 1213 if( p->selFlags & SF_Resolved ){ 1214 return WRC_Prune; 1215 } 1216 pOuterNC = pWalker->u.pNC; 1217 pParse = pWalker->pParse; 1218 db = pParse->db; 1219 1220 /* Normally sqlite3SelectExpand() will be called first and will have 1221 ** already expanded this SELECT. However, if this is a subquery within 1222 ** an expression, sqlite3ResolveExprNames() will be called without a 1223 ** prior call to sqlite3SelectExpand(). When that happens, let 1224 ** sqlite3SelectPrep() do all of the processing for this SELECT. 1225 ** sqlite3SelectPrep() will invoke both sqlite3SelectExpand() and 1226 ** this routine in the correct order. 1227 */ 1228 if( (p->selFlags & SF_Expanded)==0 ){ 1229 sqlite3SelectPrep(pParse, p, pOuterNC); 1230 return (pParse->nErr || db->mallocFailed) ? WRC_Abort : WRC_Prune; 1231 } 1232 1233 isCompound = p->pPrior!=0; 1234 nCompound = 0; 1235 pLeftmost = p; 1236 while( p ){ 1237 assert( (p->selFlags & SF_Expanded)!=0 ); 1238 assert( (p->selFlags & SF_Resolved)==0 ); 1239 p->selFlags |= SF_Resolved; 1240 1241 /* Resolve the expressions in the LIMIT and OFFSET clauses. These 1242 ** are not allowed to refer to any names, so pass an empty NameContext. 1243 */ 1244 memset(&sNC, 0, sizeof(sNC)); 1245 sNC.pParse = pParse; 1246 if( sqlite3ResolveExprNames(&sNC, p->pLimit) ){ 1247 return WRC_Abort; 1248 } 1249 1250 /* If the SF_Converted flags is set, then this Select object was 1251 ** was created by the convertCompoundSelectToSubquery() function. 1252 ** In this case the ORDER BY clause (p->pOrderBy) should be resolved 1253 ** as if it were part of the sub-query, not the parent. This block 1254 ** moves the pOrderBy down to the sub-query. It will be moved back 1255 ** after the names have been resolved. */ 1256 if( p->selFlags & SF_Converted ){ 1257 Select *pSub = p->pSrc->a[0].pSelect; 1258 assert( p->pSrc->nSrc==1 && p->pOrderBy ); 1259 assert( pSub->pPrior && pSub->pOrderBy==0 ); 1260 pSub->pOrderBy = p->pOrderBy; 1261 p->pOrderBy = 0; 1262 } 1263 1264 /* Recursively resolve names in all subqueries 1265 */ 1266 for(i=0; i<p->pSrc->nSrc; i++){ 1267 struct SrcList_item *pItem = &p->pSrc->a[i]; 1268 if( pItem->pSelect ){ 1269 NameContext *pNC; /* Used to iterate name contexts */ 1270 int nRef = 0; /* Refcount for pOuterNC and outer contexts */ 1271 const char *zSavedContext = pParse->zAuthContext; 1272 1273 /* Count the total number of references to pOuterNC and all of its 1274 ** parent contexts. After resolving references to expressions in 1275 ** pItem->pSelect, check if this value has changed. If so, then 1276 ** SELECT statement pItem->pSelect must be correlated. Set the 1277 ** pItem->fg.isCorrelated flag if this is the case. */ 1278 for(pNC=pOuterNC; pNC; pNC=pNC->pNext) nRef += pNC->nRef; 1279 1280 if( pItem->zName ) pParse->zAuthContext = pItem->zName; 1281 sqlite3ResolveSelectNames(pParse, pItem->pSelect, pOuterNC); 1282 pParse->zAuthContext = zSavedContext; 1283 if( pParse->nErr || db->mallocFailed ) return WRC_Abort; 1284 1285 for(pNC=pOuterNC; pNC; pNC=pNC->pNext) nRef -= pNC->nRef; 1286 assert( pItem->fg.isCorrelated==0 && nRef<=0 ); 1287 pItem->fg.isCorrelated = (nRef!=0); 1288 } 1289 } 1290 1291 /* Set up the local name-context to pass to sqlite3ResolveExprNames() to 1292 ** resolve the result-set expression list. 1293 */ 1294 sNC.ncFlags = NC_AllowAgg; 1295 sNC.pSrcList = p->pSrc; 1296 sNC.pNext = pOuterNC; 1297 1298 /* Resolve names in the result set. */ 1299 if( sqlite3ResolveExprListNames(&sNC, p->pEList) ) return WRC_Abort; 1300 1301 /* If there are no aggregate functions in the result-set, and no GROUP BY 1302 ** expression, do not allow aggregates in any of the other expressions. 1303 */ 1304 assert( (p->selFlags & SF_Aggregate)==0 ); 1305 pGroupBy = p->pGroupBy; 1306 if( pGroupBy || (sNC.ncFlags & NC_HasAgg)!=0 ){ 1307 assert( NC_MinMaxAgg==SF_MinMaxAgg ); 1308 p->selFlags |= SF_Aggregate | (sNC.ncFlags&NC_MinMaxAgg); 1309 }else{ 1310 sNC.ncFlags &= ~NC_AllowAgg; 1311 } 1312 1313 /* If a HAVING clause is present, then there must be a GROUP BY clause. 1314 */ 1315 if( p->pHaving && !pGroupBy ){ 1316 sqlite3ErrorMsg(pParse, "a GROUP BY clause is required before HAVING"); 1317 return WRC_Abort; 1318 } 1319 1320 /* Add the output column list to the name-context before parsing the 1321 ** other expressions in the SELECT statement. This is so that 1322 ** expressions in the WHERE clause (etc.) can refer to expressions by 1323 ** aliases in the result set. 1324 ** 1325 ** Minor point: If this is the case, then the expression will be 1326 ** re-evaluated for each reference to it. 1327 */ 1328 assert( (sNC.ncFlags & (NC_UAggInfo|NC_UUpsert))==0 ); 1329 sNC.uNC.pEList = p->pEList; 1330 sNC.ncFlags |= NC_UEList; 1331 if( sqlite3ResolveExprNames(&sNC, p->pHaving) ) return WRC_Abort; 1332 if( sqlite3ResolveExprNames(&sNC, p->pWhere) ) return WRC_Abort; 1333 1334 /* Resolve names in table-valued-function arguments */ 1335 for(i=0; i<p->pSrc->nSrc; i++){ 1336 struct SrcList_item *pItem = &p->pSrc->a[i]; 1337 if( pItem->fg.isTabFunc 1338 && sqlite3ResolveExprListNames(&sNC, pItem->u1.pFuncArg) 1339 ){ 1340 return WRC_Abort; 1341 } 1342 } 1343 1344 /* The ORDER BY and GROUP BY clauses may not refer to terms in 1345 ** outer queries 1346 */ 1347 sNC.pNext = 0; 1348 sNC.ncFlags |= NC_AllowAgg; 1349 1350 /* If this is a converted compound query, move the ORDER BY clause from 1351 ** the sub-query back to the parent query. At this point each term 1352 ** within the ORDER BY clause has been transformed to an integer value. 1353 ** These integers will be replaced by copies of the corresponding result 1354 ** set expressions by the call to resolveOrderGroupBy() below. */ 1355 if( p->selFlags & SF_Converted ){ 1356 Select *pSub = p->pSrc->a[0].pSelect; 1357 p->pOrderBy = pSub->pOrderBy; 1358 pSub->pOrderBy = 0; 1359 } 1360 1361 /* Process the ORDER BY clause for singleton SELECT statements. 1362 ** The ORDER BY clause for compounds SELECT statements is handled 1363 ** below, after all of the result-sets for all of the elements of 1364 ** the compound have been resolved. 1365 ** 1366 ** If there is an ORDER BY clause on a term of a compound-select other 1367 ** than the right-most term, then that is a syntax error. But the error 1368 ** is not detected until much later, and so we need to go ahead and 1369 ** resolve those symbols on the incorrect ORDER BY for consistency. 1370 */ 1371 if( isCompound<=nCompound /* Defer right-most ORDER BY of a compound */ 1372 && resolveOrderGroupBy(&sNC, p, p->pOrderBy, "ORDER") 1373 ){ 1374 return WRC_Abort; 1375 } 1376 if( db->mallocFailed ){ 1377 return WRC_Abort; 1378 } 1379 1380 /* Resolve the GROUP BY clause. At the same time, make sure 1381 ** the GROUP BY clause does not contain aggregate functions. 1382 */ 1383 if( pGroupBy ){ 1384 struct ExprList_item *pItem; 1385 1386 if( resolveOrderGroupBy(&sNC, p, pGroupBy, "GROUP") || db->mallocFailed ){ 1387 return WRC_Abort; 1388 } 1389 for(i=0, pItem=pGroupBy->a; i<pGroupBy->nExpr; i++, pItem++){ 1390 if( ExprHasProperty(pItem->pExpr, EP_Agg) ){ 1391 sqlite3ErrorMsg(pParse, "aggregate functions are not allowed in " 1392 "the GROUP BY clause"); 1393 return WRC_Abort; 1394 } 1395 } 1396 } 1397 1398 /* If this is part of a compound SELECT, check that it has the right 1399 ** number of expressions in the select list. */ 1400 if( p->pNext && p->pEList->nExpr!=p->pNext->pEList->nExpr ){ 1401 sqlite3SelectWrongNumTermsError(pParse, p->pNext); 1402 return WRC_Abort; 1403 } 1404 1405 /* Advance to the next term of the compound 1406 */ 1407 p = p->pPrior; 1408 nCompound++; 1409 } 1410 1411 /* Resolve the ORDER BY on a compound SELECT after all terms of 1412 ** the compound have been resolved. 1413 */ 1414 if( isCompound && resolveCompoundOrderBy(pParse, pLeftmost) ){ 1415 return WRC_Abort; 1416 } 1417 1418 return WRC_Prune; 1419 } 1420 1421 /* 1422 ** This routine walks an expression tree and resolves references to 1423 ** table columns and result-set columns. At the same time, do error 1424 ** checking on function usage and set a flag if any aggregate functions 1425 ** are seen. 1426 ** 1427 ** To resolve table columns references we look for nodes (or subtrees) of the 1428 ** form X.Y.Z or Y.Z or just Z where 1429 ** 1430 ** X: The name of a database. Ex: "main" or "temp" or 1431 ** the symbolic name assigned to an ATTACH-ed database. 1432 ** 1433 ** Y: The name of a table in a FROM clause. Or in a trigger 1434 ** one of the special names "old" or "new". 1435 ** 1436 ** Z: The name of a column in table Y. 1437 ** 1438 ** The node at the root of the subtree is modified as follows: 1439 ** 1440 ** Expr.op Changed to TK_COLUMN 1441 ** Expr.pTab Points to the Table object for X.Y 1442 ** Expr.iColumn The column index in X.Y. -1 for the rowid. 1443 ** Expr.iTable The VDBE cursor number for X.Y 1444 ** 1445 ** 1446 ** To resolve result-set references, look for expression nodes of the 1447 ** form Z (with no X and Y prefix) where the Z matches the right-hand 1448 ** size of an AS clause in the result-set of a SELECT. The Z expression 1449 ** is replaced by a copy of the left-hand side of the result-set expression. 1450 ** Table-name and function resolution occurs on the substituted expression 1451 ** tree. For example, in: 1452 ** 1453 ** SELECT a+b AS x, c+d AS y FROM t1 ORDER BY x; 1454 ** 1455 ** The "x" term of the order by is replaced by "a+b" to render: 1456 ** 1457 ** SELECT a+b AS x, c+d AS y FROM t1 ORDER BY a+b; 1458 ** 1459 ** Function calls are checked to make sure that the function is 1460 ** defined and that the correct number of arguments are specified. 1461 ** If the function is an aggregate function, then the NC_HasAgg flag is 1462 ** set and the opcode is changed from TK_FUNCTION to TK_AGG_FUNCTION. 1463 ** If an expression contains aggregate functions then the EP_Agg 1464 ** property on the expression is set. 1465 ** 1466 ** An error message is left in pParse if anything is amiss. The number 1467 ** if errors is returned. 1468 */ 1469 int sqlite3ResolveExprNames( 1470 NameContext *pNC, /* Namespace to resolve expressions in. */ 1471 Expr *pExpr /* The expression to be analyzed. */ 1472 ){ 1473 u16 savedHasAgg; 1474 Walker w; 1475 1476 if( pExpr==0 ) return SQLITE_OK; 1477 savedHasAgg = pNC->ncFlags & (NC_HasAgg|NC_MinMaxAgg); 1478 pNC->ncFlags &= ~(NC_HasAgg|NC_MinMaxAgg); 1479 w.pParse = pNC->pParse; 1480 w.xExprCallback = resolveExprStep; 1481 w.xSelectCallback = resolveSelectStep; 1482 w.xSelectCallback2 = 0; 1483 w.u.pNC = pNC; 1484 #if SQLITE_MAX_EXPR_DEPTH>0 1485 w.pParse->nHeight += pExpr->nHeight; 1486 if( sqlite3ExprCheckHeight(w.pParse, w.pParse->nHeight) ){ 1487 return SQLITE_ERROR; 1488 } 1489 #endif 1490 sqlite3WalkExpr(&w, pExpr); 1491 #if SQLITE_MAX_EXPR_DEPTH>0 1492 w.pParse->nHeight -= pExpr->nHeight; 1493 #endif 1494 if( pNC->ncFlags & NC_HasAgg ){ 1495 ExprSetProperty(pExpr, EP_Agg); 1496 } 1497 pNC->ncFlags |= savedHasAgg; 1498 return pNC->nErr>0 || w.pParse->nErr>0; 1499 } 1500 1501 /* 1502 ** Resolve all names for all expression in an expression list. This is 1503 ** just like sqlite3ResolveExprNames() except that it works for an expression 1504 ** list rather than a single expression. 1505 */ 1506 int sqlite3ResolveExprListNames( 1507 NameContext *pNC, /* Namespace to resolve expressions in. */ 1508 ExprList *pList /* The expression list to be analyzed. */ 1509 ){ 1510 int i; 1511 if( pList ){ 1512 for(i=0; i<pList->nExpr; i++){ 1513 if( sqlite3ResolveExprNames(pNC, pList->a[i].pExpr) ) return WRC_Abort; 1514 } 1515 } 1516 return WRC_Continue; 1517 } 1518 1519 /* 1520 ** Resolve all names in all expressions of a SELECT and in all 1521 ** decendents of the SELECT, including compounds off of p->pPrior, 1522 ** subqueries in expressions, and subqueries used as FROM clause 1523 ** terms. 1524 ** 1525 ** See sqlite3ResolveExprNames() for a description of the kinds of 1526 ** transformations that occur. 1527 ** 1528 ** All SELECT statements should have been expanded using 1529 ** sqlite3SelectExpand() prior to invoking this routine. 1530 */ 1531 void sqlite3ResolveSelectNames( 1532 Parse *pParse, /* The parser context */ 1533 Select *p, /* The SELECT statement being coded. */ 1534 NameContext *pOuterNC /* Name context for parent SELECT statement */ 1535 ){ 1536 Walker w; 1537 1538 assert( p!=0 ); 1539 w.xExprCallback = resolveExprStep; 1540 w.xSelectCallback = resolveSelectStep; 1541 w.xSelectCallback2 = 0; 1542 w.pParse = pParse; 1543 w.u.pNC = pOuterNC; 1544 sqlite3WalkSelect(&w, p); 1545 } 1546 1547 /* 1548 ** Resolve names in expressions that can only reference a single table: 1549 ** 1550 ** * CHECK constraints 1551 ** * WHERE clauses on partial indices 1552 ** 1553 ** The Expr.iTable value for Expr.op==TK_COLUMN nodes of the expression 1554 ** is set to -1 and the Expr.iColumn value is set to the column number. 1555 ** 1556 ** Any errors cause an error message to be set in pParse. 1557 */ 1558 void sqlite3ResolveSelfReference( 1559 Parse *pParse, /* Parsing context */ 1560 Table *pTab, /* The table being referenced */ 1561 int type, /* NC_IsCheck or NC_PartIdx or NC_IdxExpr */ 1562 Expr *pExpr, /* Expression to resolve. May be NULL. */ 1563 ExprList *pList /* Expression list to resolve. May be NULL. */ 1564 ){ 1565 SrcList sSrc; /* Fake SrcList for pParse->pNewTable */ 1566 NameContext sNC; /* Name context for pParse->pNewTable */ 1567 1568 assert( type==NC_IsCheck || type==NC_PartIdx || type==NC_IdxExpr ); 1569 memset(&sNC, 0, sizeof(sNC)); 1570 memset(&sSrc, 0, sizeof(sSrc)); 1571 sSrc.nSrc = 1; 1572 sSrc.a[0].zName = pTab->zName; 1573 sSrc.a[0].pTab = pTab; 1574 sSrc.a[0].iCursor = -1; 1575 sNC.pParse = pParse; 1576 sNC.pSrcList = &sSrc; 1577 sNC.ncFlags = type; 1578 if( sqlite3ResolveExprNames(&sNC, pExpr) ) return; 1579 if( pList ) sqlite3ResolveExprListNames(&sNC, pList); 1580 } 1581