Package org.apache.derby.iapi.services.io

Examples of org.apache.derby.iapi.services.io.FormatableBitSet

8348
8349
8350
8351
8352
8353
8354
8355
8356
8357
8358
8359
        // uses sparse rows
    Object[] row = new Object[2];
    row[1] = overflowHandle;

    // we are expanding the record to have 2 fields, the second field is the overflow pointer.
    FormatableBitSet validColumns = new FormatableBitSet(2);
    validColumns.set(1);

    // Use the slot interface as we don't need a lock since
    // the initial insert/update holds the lock on the first
    // portion of the record.
    int slot = getSlotNumber(handle);
View Full Code Here
8662
8663
8664
8665
8666
8667
8668
8669
8670
8671
8672
8673
8674
8675
8676
8677
8678
8679
8680
8681
8682
8683
8684
8685
8686
8687
8688
8689
                    // use a sparse row
          Object[] newRow =
                        new Object[possibleLastFieldExclusive];

          FormatableBitSet  newColumnList =
                        new FormatableBitSet(possibleLastFieldExclusive);

          ByteArrayOutputStream fieldStream = null;

          for (int i = nextColumn; i < possibleLastFieldExclusive; i++)
                    {
            if ((validColumns == null) ||
                            (validColumnsSize > i && validColumns.isSet(i)))
                        {
              newColumnList.set(i);
              // use the new value
              newRow[i] = RowUtil.getColumn(row, validColumns, i);

            }
                        else if (i < endFieldExclusive)
                        {
              newColumnList.set(i);

              // use the old value
              newRow[i] = savedFields[i - nextColumn];
            }
          }
View Full Code Here
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
     *
     * @param cdl list of columns whose positions we want to record in the bit map
   */
  public FormatableBitSet makeColumnMap( ColumnDescriptorList cdl )
  {
    FormatableBitSet    result = new FormatableBitSet( columnDescriptorList.size() + 1 );
        int                         count = cdl.size();

        for ( int i = 0; i < count; i++ )
        {
            ColumnDescriptor    cd = cdl.elementAt( i );

            result.set( cd.getPosition() );
        }

        return result;
  }
View Full Code Here
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
    if (hasPermissionOnTable(lcc, activation,
                   authorizationId, forGrant, ps)) {
      return;
    }

    FormatableBitSet permittedColumns = null;
    if( ! forGrant)
    {
      permittedColumns = addPermittedColumns( dd,
                          false /* non-grantable permissions */,
                          Authorizer.PUBLIC_AUTHORIZATION_ID,
                          permittedColumns);
      permittedColumns = addPermittedColumns( dd,
                          false /* non-grantable permissions */,
                          authorizationId,
                          permittedColumns);
    }
    permittedColumns = addPermittedColumns( dd,
                        true /* grantable permissions */,
                        Authorizer.PUBLIC_AUTHORIZATION_ID,
                        permittedColumns);
    permittedColumns = addPermittedColumns( dd,
                        true /* grantable permissions */,
                        authorizationId,
                        permittedColumns);
   
    //DERBY-4191
    //If we are looking for select privilege on ANY column,
    //then we can quit as soon as we find some column with select
    //privilege. This is needed for queries like
    //select count(*) from t1
    //select count(1) from t1
    //select 1 from t1
    //select t1.c1 from t1, t2
    if (privType == Authorizer.MIN_SELECT_PRIV && permittedColumns != null)
      return;

    FormatableBitSet unresolvedColumns = (FormatableBitSet)columns.clone();

    for (int i = unresolvedColumns.anySetBit();
       i >= 0;
       i = unresolvedColumns.anySetBit(i)) {

      if (permittedColumns != null && permittedColumns.get(i)) {
        // column i (zero-based here) accounted for:
        unresolvedColumns.clear(i);
      }
    }

    if (unresolvedColumns.anySetBit() < 0) {
      // all ok
      return;
    }

    // If columns are still unauthorized, look to role closure for
    // resolution.
    String role = lcc.getCurrentRoleId(activation);
    RoleGrantDescriptor rd = null;

    if (role != null) {
      // Check that role is still granted to current user or
      // to PUBLIC: A revoked role which is current for this
      // session, is lazily set to none when it is attempted
      // used.
      String dbo = dd.getAuthorizationDatabaseOwner();
      rd = dd.getRoleGrantDescriptor(role, authorizationId, dbo);

      if (rd == null) {
        rd = dd.getRoleGrantDescriptor
          (role,
           Authorizer.PUBLIC_AUTHORIZATION_ID,
           dbo);
      }

      if (rd == null) {
        // we have lost the right to set this role, so we can't
        // make use of any permission granted to it or its ancestors.
        lcc.setCurrentRole(activation, null);
      } else {
        // The current role is OK, so we can make use of
        // any permission granted to it.
        //
        // Look at the current role and, if necessary, the transitive
        // closure of roles granted to current role to see if
        // permission has been granted to any of the applicable roles.

        RoleClosureIterator rci =
          dd.createRoleClosureIterator
          (activation.getTransactionController(),
           role, true /* inverse relation*/);

        String r;

        while (unresolvedColumns.anySetBit() >= 0 &&
             (r = rci.next()) != null ) {
          //The user does not have needed privilege directly
          //granted to it, so let's see if he has that privilege
          //available to him/her through his roles.
          permittedColumns = tryRole(lcc, dd,  forGrant, r);
          //DERBY-4191
          //If we are looking for select privilege on ANY column,
          //then we can quit as soon as we find some column with select
          //privilege through this role. This is needed for queries like
          //select count(*) from t1
          //select count(1) from t1
          //select 1 from t1
          //select t1.c1 from t1, t2
          if (privType == Authorizer.MIN_SELECT_PRIV && permittedColumns != null) {
            DependencyManager dm = dd.getDependencyManager();
            RoleGrantDescriptor rgd =
              dd.getRoleDefinitionDescriptor(role);
            ContextManager cm = lcc.getContextManager();

            dm.addDependency(ps, rgd, cm);
            dm.addDependency(activation, rgd, cm);
            return;
          }

          //Use the privileges obtained through the role to satisfy
          //the column level privileges we need. If all the remaining
          //column level privileges are satisfied through this role,
          //we will quit out of this while loop
          for(int i = unresolvedColumns.anySetBit();
            i >= 0;
            i = unresolvedColumns.anySetBit(i)) {

            if(permittedColumns != null && permittedColumns.get(i)) {
              unresolvedColumns.clear(i);
            }
          }
        }
      }
    }
    TableDescriptor td = getTableDescriptor(dd);
    //if we are still here, then that means that we didn't find any select
    //privilege on the table or any column in the table
    if (privType == Authorizer.MIN_SELECT_PRIV)
      throw StandardException.newException( forGrant ? SQLState.AUTH_NO_TABLE_PERMISSION_FOR_GRANT
            : SQLState.AUTH_NO_TABLE_PERMISSION,
            authorizationId,
            getPrivName(),
            td.getSchemaName(),
            td.getName());

    int remains = unresolvedColumns.anySetBit();

    if (remains >= 0) {
      // No permission on this column.
      ColumnDescriptor cd = td.getColumnDescriptor(remains + 1);

View Full Code Here
322
323
324
325
326
327
328
329
330
331
332
333
334
335
    //return the permission descriptor for it.
    ColPermsDescriptor colsPermsDesc = dd.getColumnPermissions(tableUUID, privType, false, authid);
    if( colsPermsDesc != null)
    {
      if( colsPermsDesc.getColumns() != null){
        FormatableBitSet permittedColumns = colsPermsDesc.getColumns();
        for( int i = columns.anySetBit(); i >= 0; i = columns.anySetBit( i))
        {
          if(permittedColumns.get(i))
            return colsPermsDesc;
        }
      }
    }
    return null;
View Full Code Here
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
   */
  public PermissionsDescriptor getPUBLIClevelColPermsDescriptor(String authid, DataDictionary dd)
  throws StandardException
  {
    ColPermsDescriptor colsPermsDesc = dd.getColumnPermissions(tableUUID, privType, false, authid);
    FormatableBitSet permittedColumns = colsPermsDesc.getColumns();
    boolean allColumnsCoveredByUserLevelPrivilege = true;
    for( int i = columns.anySetBit(); i >= 0 && allColumnsCoveredByUserLevelPrivilege; i = columns.anySetBit( i))
    {
      if(permittedColumns.get(i))
        continue;
      else
        allColumnsCoveredByUserLevelPrivilege = false;
    }
    if (allColumnsCoveredByUserLevelPrivilege)
View Full Code Here
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
                           DataDictionary dd)
      throws StandardException {

    ColPermsDescriptor colsPermsDesc =
      dd.getColumnPermissions(tableUUID, privType, false, authid);
    FormatableBitSet permittedColumns = colsPermsDesc.getColumns();
    FormatableBitSet unresolvedColumns = (FormatableBitSet)columns.clone();
    boolean result = true;

    if (permittedColumns != null) { // else none at user level
      for(int i = unresolvedColumns.anySetBit();
        i >= 0;
        i = unresolvedColumns.anySetBit(i)) {

        if(permittedColumns.get(i)) {
          unresolvedColumns.clear(i);
        }
      }
    }


    if (unresolvedColumns.anySetBit() >= 0) {
      colsPermsDesc =
        dd.getColumnPermissions(
          tableUUID, privType, false,
          Authorizer.PUBLIC_AUTHORIZATION_ID);
      permittedColumns = colsPermsDesc.getColumns();

      if (permittedColumns != null) { // else none at public level
        for(int i = unresolvedColumns.anySetBit();
          i >= 0;
          i = unresolvedColumns.anySetBit(i)) {

          if(permittedColumns.get(i)) {
            unresolvedColumns.clear(i);
          }
        }
      }

      if (unresolvedColumns.anySetBit() >= 0) {
        // even after trying all grants to user and public there
        // are unresolved columns so role must have been used.
        result = false;
      }
    }
View Full Code Here
444
445
446
447
448
449
450
451
452
453
454
                   DataDictionary dd,
                   boolean forGrant,
                   String r)
      throws StandardException {

    FormatableBitSet permittedColumns = null;

    if (! forGrant) {
      // This is a weaker permission than GRANTable, so only applicable
      // if grantable is not required.
      permittedColumns = addPermittedColumns(dd, false, r, null);
View Full Code Here
8361
8362
8363
8364
8365
8366
8367
8368
8369
8370
8371
8372
        // uses sparse rows
    Object[] row = new Object[2];
    row[1] = overflowHandle;

    // we are expanding the record to have 2 fields, the second field is the overflow pointer.
    FormatableBitSet validColumns = new FormatableBitSet(2);
    validColumns.set(1);

    // Use the slot interface as we don't need a lock since
    // the initial insert/update holds the lock on the first
    // portion of the record.
    int slot = getSlotNumber(handle);
View Full Code Here
8675
8676
8677
8678
8679
8680
8681
8682
8683
8684
8685
8686
8687
8688
8689
8690
8691
8692
8693
8694
8695
8696
8697
8698
8699
8700
8701
8702
                    // use a sparse row
          Object[] newRow =
                        new Object[possibleLastFieldExclusive];

          FormatableBitSet  newColumnList =
                        new FormatableBitSet(possibleLastFieldExclusive);

          ByteArrayOutputStream fieldStream = null;

          for (int i = nextColumn; i < possibleLastFieldExclusive; i++)
                    {
            if ((validColumns == null) ||
                            (validColumnsSize > i && validColumns.isSet(i)))
                        {
              newColumnList.set(i);
              // use the new value
              newRow[i] = RowUtil.getColumn(row, validColumns, i);

            }
                        else if (i < endFieldExclusive)
                        {
              newColumnList.set(i);

              // use the old value
              newRow[i] = savedFields[i - nextColumn];
            }
          }
View Full Code Here
TOP

Related Classes of org.apache.derby.iapi.services.io.FormatableBitSet

  • org.apache.derby.iapi.db.ConsistencyChecker
  • org.apache.derby.iapi.sql.dictionary.StatementColumnPermission
  • org.apache.derby.iapi.sql.dictionary.TableDescriptor
  • org.apache.derby.iapi.store.access.RowUtil
  • org.apache.derby.impl.sql.catalog.DataDictionaryImpl
  • org.apache.derby.impl.sql.catalog.DDColumnDependableFinder
  • org.apache.derby.impl.sql.catalog.SYSCOLPERMSRowFactory
  • org.apache.derby.impl.sql.compile.AlterTableNode
  • org.apache.derby.impl.sql.compile.CompilerContextImpl
  • org.apache.derby.impl.sql.compile.CreateTableNode
    • Copyright © 2018 www.massapicom. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.