db.kvdriver.php | searchcode

/lib/jelix-legacy/plugins/kvdb/db/db.kvdriver.php

http://github.com/jelix/jelix · PHP · 324 lines · 216 code · 57 blank · 51 comment · 32 complexity · 28ba78f8c09c60e26c1598946de99992 MD5 · raw file

<?php
/**
 * @package    jelix
 * @subpackage kvdb_plugin
 *
 * @author     Laurent Jouanneau
 * @copyright  2010-2021 Laurent Jouanneau
 * @licence  http://www.gnu.org/licenses/lgpl.html GNU Lesser General Public Licence, see LICENCE file
 */

use function \Jelix\Core\is_resource;

/**
 * Driver for jKVDB, that uses an SQL table to store key/value data.
 */
class dbKVDriver extends jKVDriver implements jIKVttl, jIKVPersistent
{
    /*
    MySQL:
        CREATE TABLE IF NOT EXISTS `mydb` (
        `k_key` VARCHAR( 50 ) NOT NULL ,
        `k_value` longblob NOT NULL ,
        `k_expire` DATETIME NOT NULL ,
        PRIMARY KEY ( `k_key` )
        ) ENGINE = MYISAM;

    pgsql:
        CREATE TABLE mydb (
        k_key character varying(255) NOT NULL ,
        k_value bytea NOT NULL ,
        k_expire time with time zone NOT NULL ,
        CONSTRAINT testkvdb_pkey PRIMARY KEY (k_key)
        );

    sqlite
        CREATE TABLE IF NOT EXISTS mydb (
        k_key varchar(255) NOT NULL,
        k_value blob NOT NULL,
        k_expire datetime default NULL,
        PRIMARY KEY  (k_key)
        );
    */
    protected $table;

    protected function _connect()
    {
        if (!isset($this->_profile['table']) || !isset($this->_profile['dbprofile'])) {
            throw new Exception('table and dbprofile is missing for the db kvdb driver');
        }

        $this->table = $this->_profile['table'];

        return jDb::getConnection($this->_profile['dbprofile']);
    }

    protected function _disconnect()
    {
        $this->_connection = null;
    }

    public function get($key)
    {
        $sql = 'SELECT k_key, k_value FROM '.$this->_connection->prefixTable($this->table).
        ' WHERE k_expire > \''.date('Y-m-d H:i:s').'\' AND k_key ';

        if (is_array($key)) {
            $in = '';
            foreach ($key as $k) {
                $in .= ','.$this->_connection->quote($k);
            }
            $sql .= ' IN ('.substr($in, 1).')';

            $result = array_combine($key, array_fill(0, count($key), null));
            $rs = $this->_connection->query($sql);
            if (!$rs) {
                return $result;
            }

            foreach ($rs as $rec) {
                $result[$rec->k_key] = unserialize($rs->unescapeBin($rec->k_value));
            }

            return $result;
        }

        $sql .= ' = '.$this->_connection->quote($key);
        $rs = $this->_connection->query($sql);
        if (!$rs) {
            return null;
        }
        $result = $rs->fetch();
        if (!$result) {
            return null;
        }

        return unserialize($rs->unescapeBin($result->k_value));
    }

    public function set($key, $value)
    {
        if (is_resource($value)) {
            return false;
        }

        return $this->_set($key, $value, '2050-12-31 00:00:00');
    }

    public function _set($key, $value, $expire)
    {
        $table = $this->_connection->prefixTable($this->table);
        $key = $this->_connection->quote($key);
        $value = $this->_connection->quote2(serialize($value), false, true);
        $expire = $this->_connection->quote($expire);

        $sql = 'SELECT k_key, k_value FROM '.$table.
               ' WHERE k_key = '.$key;

        $rs = $this->_connection->query($sql);
        if (!$rs || !$rs->fetch()) {
            $sql = 'INSERT INTO '.$table.' (k_key, k_value, k_expire) VALUES ('
            .$key.','.$value.','.$expire.')';
        } else {
            $sql = 'UPDATE '.$table.' SET k_value= '.$value.',  k_expire = '.$expire.'
            WHERE k_key='.$key;
        }

        return (bool) $this->_connection->exec($sql);
    }

    public function insert($key, $value)
    {
        if (is_resource($value)) {
            return false;
        }

        $table = $this->_connection->prefixTable($this->table);
        $key = $this->_connection->quote($key);
        $value = $this->_connection->quote2(serialize($value), false, true);

        try {
            $sql = 'INSERT INTO '.$table.' (k_key, k_value, k_expire) VALUES ('
            .$key.','.$value.',\'2050-12-31 00:00:00\')';

            return $this->_connection->exec($sql);
        } catch (Exception $e) {
            return false;
        }
    }

    public function replace($key, $value)
    {
        if (is_resource($value)) {
            return false;
        }

        $table = $this->_connection->prefixTable($this->table);
        $key = $this->_connection->quote($key);
        $value = $this->_connection->quote2(serialize($value), false, true);

        $sql = 'UPDATE '.$table.' SET k_value= '.$value.',  k_expire = \'2050-12-31 00:00:00\'
        WHERE k_key='.$key;

        return (bool) $this->_connection->exec($sql);
    }

    public function delete($key)
    {
        $table = $this->_connection->prefixTable($this->table);
        $key = $this->_connection->quote($key);
        $sql = 'DELETE FROM  '.$table.' WHERE k_key='.$key;

        return (bool) $this->_connection->exec($sql);
    }

    public function flush()
    {
        $table = $this->_connection->prefixTable($this->table);

        return (bool) $this->_connection->exec('DELETE FROM '.$table);
    }

    public function append($key, $value)
    {
        if (is_resource($value)) {
            return false;
        }

        $table = $this->_connection->prefixTable($this->table);
        $key = $this->_connection->quote($key);

        $sql = 'SELECT k_key, k_value FROM '.$table.' WHERE k_key = '.$key;

        $rs = $this->_connection->query($sql);
        if (!$rs || !($rec = $rs->fetch())) {
            return false;
        }
        $value = unserialize($rs->unescapeBin($rec->k_value)).$value;
        $sql = 'UPDATE '.$table.' SET k_value= '.$this->_connection->quote2(serialize($value), false, true).' WHERE k_key='.$key;
        if ($this->_connection->exec($sql)) {
            return $value;
        }

        return false;
    }

    public function prepend($key, $value)
    {
        if (is_resource($value)) {
            return false;
        }

        $table = $this->_connection->prefixTable($this->table);
        $key = $this->_connection->quote($key);

        $sql = 'SELECT k_key, k_value FROM '.$table.' WHERE k_key = '.$key;

        $rs = $this->_connection->query($sql);
        if (!$rs || !($rec = $rs->fetch())) {
            return false;
        }
        $value = $value.unserialize($rs->unescapeBin($rec->k_value));
        $sql = 'UPDATE '.$table.' SET k_value= '.$this->_connection->quote2(serialize($value), false, true).' WHERE k_key='.$key;
        if ($this->_connection->exec($sql)) {
            return $value;
        }

        return false;
    }

    public function increment($key, $incr = 1)
    {
        if (!is_numeric($incr)) {
            return false;
        }
        $table = $this->_connection->prefixTable($this->table);
        $key = $this->_connection->quote($key);

        $sql = 'SELECT k_key, k_value FROM '.$table.' WHERE k_key = '.$key;

        $rs = $this->_connection->query($sql);
        if (!$rs || !($rec = $rs->fetch())) {
            return false;
        }
        $value = unserialize($rec->k_value);
        if (!is_numeric($value)) {
            return false;
        }

        $value = serialize($value + $incr);
        $sql = 'UPDATE '.$table.' SET k_value= '.$this->_connection->quote($value).' WHERE k_key='.$key;

        return (bool) $this->_connection->exec($sql);
    }

    public function decrement($key, $decr = 1)
    {
        if (!is_numeric($decr)) {
            return false;
        }

        $table = $this->_connection->prefixTable($this->table);
        $key = $this->_connection->quote($key);

        $sql = 'SELECT k_key, k_value FROM '.$table.' WHERE k_key = '.$key;

        $rs = $this->_connection->query($sql);
        if (!$rs || !($rec = $rs->fetch())) {
            return false;
        }
        $value = unserialize($rec->k_value);
        if (!is_numeric($value)) {
            return false;
        }

        $value = serialize($value - $decr);
        $sql = 'UPDATE '.$table.' SET k_value= '.$this->_connection->quote($value).' WHERE k_key='.$key;

        return (bool) $this->_connection->exec($sql);
    }

    /**
     * set a key/value with a ttl value.
     *
     * @param string $key   the key
     * @param string $value the value
     * @param int    $ttl   the time to live in seconds...
     *
     * @return bool false if failure, if the value is a resource...
     */
    public function setWithTtl($key, $value, $ttl)
    {
        if (is_resource($value)) {
            return false;
        }
        if ($ttl > 0) {
            if ($ttl <= 2592000) {
                $ttl += time();
            }
            $ttl = date('Y-m-d H:i:s', $ttl);
        } else {
            $ttl = '2050-12-31 00:00:00';
        }

        return $this->_set($key, $value, $ttl);
    }

    /**
     * delete all keys which are not any more valid.
     *
     * @return bool false if failure
     */
    public function garbage()
    {
        $table = $this->_connection->prefixTable($this->table);
        $sql = 'DELETE FROM  '.$table.' WHERE k_expire < '.$this->_connection->quote(date('Y-m-d H:i:s'));

        return (bool) $this->_connection->exec($sql);
    }

    public function sync()
    {
        // nothing to do
    }
}
Alerts (10)

'exec(' System command execution detected; use safer alternatives (e.g., escapeshellarg) or avoid if possible
127 144 163 172 179 199 223 252 278 317