django1/django/db/backends/mysql/client.py

from django.db.backends.base.client import BaseDatabaseClient


class DatabaseClient(BaseDatabaseClient):
    executable_name = 'mysql'

    @classmethod
    def settings_to_cmd_args_env(cls, settings_dict, parameters):
        args = [cls.executable_name]
        env = None
        database = settings_dict['OPTIONS'].get(
            'database',
            settings_dict['OPTIONS'].get('db', settings_dict['NAME']),
        )
        user = settings_dict['OPTIONS'].get('user', settings_dict['USER'])
        password = settings_dict['OPTIONS'].get(
            'password',
            settings_dict['OPTIONS'].get('passwd', settings_dict['PASSWORD'])
        )
        host = settings_dict['OPTIONS'].get('host', settings_dict['HOST'])
        port = settings_dict['OPTIONS'].get('port', settings_dict['PORT'])
        server_ca = settings_dict['OPTIONS'].get('ssl', {}).get('ca')
        client_cert = settings_dict['OPTIONS'].get('ssl', {}).get('cert')
        client_key = settings_dict['OPTIONS'].get('ssl', {}).get('key')
        defaults_file = settings_dict['OPTIONS'].get('read_default_file')
        charset = settings_dict['OPTIONS'].get('charset')
        # Seems to be no good way to set sql_mode with CLI.

        if defaults_file:
            args += ["--defaults-file=%s" % defaults_file]
        if user:
            args += ["--user=%s" % user]
        if password:
            # The MYSQL_PWD environment variable usage is discouraged per
            # MySQL's documentation due to the possibility of exposure through
            # `ps` on old Unix flavors but --password suffers from the same
            # flaw on even more systems. Usage of an environment variable also
            # prevents password exposure if the subprocess.run(check=True) call
            # raises a CalledProcessError since the string representation of
            # the latter includes all of the provided `args`.
            env = {'MYSQL_PWD': password}
        if host:
            if '/' in host:
                args += ["--socket=%s" % host]
            else:
                args += ["--host=%s" % host]
        if port:
            args += ["--port=%s" % port]
        if server_ca:
            args += ["--ssl-ca=%s" % server_ca]
        if client_cert:
            args += ["--ssl-cert=%s" % client_cert]
        if client_key:
            args += ["--ssl-key=%s" % client_key]
        if charset:
            args += ['--default-character-set=%s' % charset]
        if database:
            args += [database]
        args.extend(parameters)
        return args, env
Fixed #22603 -- Reorganized classes in django.db.backends. 2015-01-13 04:20:40 +08:00			`from django.db.backends.base.client import BaseDatabaseClient`
MERGED MAGIC-REMOVAL BRANCH TO TRUNK. This change is highly backwards-incompatible. Please read http://code.djangoproject.com/wiki/RemovingTheMagic for upgrade instructions. git-svn-id: http://code.djangoproject.com/svn/django/trunk@2809 bcc190cf-cafb-0310-a4f2-bffc1f526a37 2006-05-02 09:31:56 +08:00
A large number of stylistic cleanups across django/db/ 2013-07-08 08:39:54 +08:00
Fixed #5461 -- Refactored the database backend code to use classes for the creation and introspection modules. Introduces a new validation module for DB-specific validation. This is a backwards incompatible change; see the wiki for details. git-svn-id: http://code.djangoproject.com/svn/django/trunk@8296 bcc190cf-cafb-0310-a4f2-bffc1f526a37 2008-08-11 20:11:25 +08:00			`class DatabaseClient(BaseDatabaseClient):`
db: Gave each DatabaseClient class an 'executable_name' attribute (e.g., 'psql' or 'mysql'), so that we can use it to make a more helpful error message. Refs #8978 git-svn-id: http://code.djangoproject.com/svn/django/trunk@8989 bcc190cf-cafb-0310-a4f2-bffc1f526a37 2008-09-09 10:13:58 +08:00			`executable_name = 'mysql'`

Fixed #22646: Added support for the MySQL ssl-ca option to dbshell. 2014-05-21 21:05:41 +08:00			`@classmethod`
Refs #32061 -- Unified DatabaseClient.runshell() in db backends. 2020-10-05 06:25:29 +08:00			`def settings_to_cmd_args_env(cls, settings_dict, parameters):`
Fixed #22646: Added support for the MySQL ssl-ca option to dbshell. 2014-05-21 21:05:41 +08:00			`args = [cls.executable_name]`
Refs #32061 -- Prevented password leak on MySQL dbshell crash. The usage of the --password flag when invoking the mysql CLI has the potential of exposing the password in plain text if the command happens to crash due to the inclusion of args provided to subprocess.run(check=True) in the string representation of the subprocess.CalledProcessError exception raised on non-zero return code. Since this has the potential of leaking the password to logging facilities configured to capture crashes (e.g. sys.excepthook, Sentry) it's safer to rely on the MYSQL_PWD environment variable instead even if its usage is discouraged due to potential leak through the ps command on old flavors of Unix. Thanks Charlie Denton for reporting the issue to the security team. Refs #24999. 2020-10-05 06:31:04 +08:00			`env = None`
Fixed #32732 -- Removed usage of deprecated 'db' and 'passwd' connection options in MySQL backend. The 'db' and 'passwd' connection options have been deprecated, use 'database' and 'password' instead (available since mysqlclient >= 1.3.8). This also allows the 'database' option in DATABASES['OPTIONS'] on MySQL. 2021-05-11 04:32:10 +08:00			`database = settings_dict['OPTIONS'].get(`
			`'database',`
			`settings_dict['OPTIONS'].get('db', settings_dict['NAME']),`
			`)`
Fixed #1142 -- Added multiple database support. This monster of a patch is the result of Alex Gaynor's 2009 Google Summer of Code project. Congratulations to Alex for a job well done. Big thanks also go to: * Justin Bronn for keeping GIS in line with the changes, * Karen Tracey and Jani Tiainen for their help testing Oracle support * Brett Hoerner, Jon Loyens, and Craig Kimmerer for their feedback. * Malcolm Treddinick for his guidance during the GSoC submission process. * Simon Willison for driving the original design process * Cal Henderson for complaining about ponies he wanted. ... and everyone else too numerous to mention that helped to bring this feature into fruition. git-svn-id: http://code.djangoproject.com/svn/django/trunk@11952 bcc190cf-cafb-0310-a4f2-bffc1f526a37 2009-12-22 23:18:51 +08:00			`user = settings_dict['OPTIONS'].get('user', settings_dict['USER'])`
Fixed #31491 -- Allowed 'password' option in DATABASES['OPTIONS'] on MySQL. 2020-06-12 02:12:35 +08:00			`password = settings_dict['OPTIONS'].get(`
			`'password',`
			`settings_dict['OPTIONS'].get('passwd', settings_dict['PASSWORD'])`
			`)`
Fixed #1142 -- Added multiple database support. This monster of a patch is the result of Alex Gaynor's 2009 Google Summer of Code project. Congratulations to Alex for a job well done. Big thanks also go to: * Justin Bronn for keeping GIS in line with the changes, * Karen Tracey and Jani Tiainen for their help testing Oracle support * Brett Hoerner, Jon Loyens, and Craig Kimmerer for their feedback. * Malcolm Treddinick for his guidance during the GSoC submission process. * Simon Willison for driving the original design process * Cal Henderson for complaining about ponies he wanted. ... and everyone else too numerous to mention that helped to bring this feature into fruition. git-svn-id: http://code.djangoproject.com/svn/django/trunk@11952 bcc190cf-cafb-0310-a4f2-bffc1f526a37 2009-12-22 23:18:51 +08:00			`host = settings_dict['OPTIONS'].get('host', settings_dict['HOST'])`
			`port = settings_dict['OPTIONS'].get('port', settings_dict['PORT'])`
Fixed #28322 -- Added dbshell support for MySQL client TLS certs. 2017-06-20 06:11:25 +08:00			`server_ca = settings_dict['OPTIONS'].get('ssl', {}).get('ca')`
			`client_cert = settings_dict['OPTIONS'].get('ssl', {}).get('cert')`
			`client_key = settings_dict['OPTIONS'].get('ssl', {}).get('key')`
Fixed #1142 -- Added multiple database support. This monster of a patch is the result of Alex Gaynor's 2009 Google Summer of Code project. Congratulations to Alex for a job well done. Big thanks also go to: * Justin Bronn for keeping GIS in line with the changes, * Karen Tracey and Jani Tiainen for their help testing Oracle support * Brett Hoerner, Jon Loyens, and Craig Kimmerer for their feedback. * Malcolm Treddinick for his guidance during the GSoC submission process. * Simon Willison for driving the original design process * Cal Henderson for complaining about ponies he wanted. ... and everyone else too numerous to mention that helped to bring this feature into fruition. git-svn-id: http://code.djangoproject.com/svn/django/trunk@11952 bcc190cf-cafb-0310-a4f2-bffc1f526a37 2009-12-22 23:18:51 +08:00			`defaults_file = settings_dict['OPTIONS'].get('read_default_file')`
Fixed #6517 -- Made dbshell use charset option on MySQL. Co-Authored-By: Mariusz Felisiak <felisiak.mariusz@gmail.com> 2020-10-15 02:07:57 +08:00			`charset = settings_dict['OPTIONS'].get('charset')`
db: Gave each DatabaseClient class an 'executable_name' attribute (e.g., 'psql' or 'mysql'), so that we can use it to make a more helpful error message. Refs #8978 git-svn-id: http://code.djangoproject.com/svn/django/trunk@8989 bcc190cf-cafb-0310-a4f2-bffc1f526a37 2008-09-09 10:13:58 +08:00			`# Seems to be no good way to set sql_mode with CLI.`
Fixed #10357 -- Fixed the "dbshell" command for Windows users. git-svn-id: http://code.djangoproject.com/svn/django/trunk@10517 bcc190cf-cafb-0310-a4f2-bffc1f526a37 2009-04-11 19:41:35 +08:00
Fixed #5461 -- Refactored the database backend code to use classes for the creation and introspection modules. Introduces a new validation module for DB-specific validation. This is a backwards incompatible change; see the wiki for details. git-svn-id: http://code.djangoproject.com/svn/django/trunk@8296 bcc190cf-cafb-0310-a4f2-bffc1f526a37 2008-08-11 20:11:25 +08:00			`if defaults_file:`
			`args += ["--defaults-file=%s" % defaults_file]`
			`if user:`
			`args += ["--user=%s" % user]`
Fixed #31491 -- Allowed 'password' option in DATABASES['OPTIONS'] on MySQL. 2020-06-12 02:12:35 +08:00			`if password:`
Refs #32061 -- Prevented password leak on MySQL dbshell crash. The usage of the --password flag when invoking the mysql CLI has the potential of exposing the password in plain text if the command happens to crash due to the inclusion of args provided to subprocess.run(check=True) in the string representation of the subprocess.CalledProcessError exception raised on non-zero return code. Since this has the potential of leaking the password to logging facilities configured to capture crashes (e.g. sys.excepthook, Sentry) it's safer to rely on the MYSQL_PWD environment variable instead even if its usage is discouraged due to potential leak through the ps command on old flavors of Unix. Thanks Charlie Denton for reporting the issue to the security team. Refs #24999. 2020-10-05 06:31:04 +08:00			`# The MYSQL_PWD environment variable usage is discouraged per`
			`# MySQL's documentation due to the possibility of exposure through`
			# `ps` on old Unix flavors but --password suffers from the same
			`# flaw on even more systems. Usage of an environment variable also`
			`# prevents password exposure if the subprocess.run(check=True) call`
			`# raises a CalledProcessError since the string representation of`
			# the latter includes all of the provided `args`.
			`env = {'MYSQL_PWD': password}`
Fixed #5461 -- Refactored the database backend code to use classes for the creation and introspection modules. Introduces a new validation module for DB-specific validation. This is a backwards incompatible change; see the wiki for details. git-svn-id: http://code.djangoproject.com/svn/django/trunk@8296 bcc190cf-cafb-0310-a4f2-bffc1f526a37 2008-08-11 20:11:25 +08:00			`if host:`
Fixed #12343 -- Added support for connection-by-socket to MySQL using the dbshell management command. Thanks to elyon001@gmail.com for the report, and sfllaw for the patch. git-svn-id: http://code.djangoproject.com/svn/django/trunk@13660 bcc190cf-cafb-0310-a4f2-bffc1f526a37 2010-08-28 21:17:50 +08:00			`if '/' in host:`
			`args += ["--socket=%s" % host]`
			`else:`
Fixed #15006 -- Removed some stray tabs in python code. Thanks to vanschelven for the report. git-svn-id: http://code.djangoproject.com/svn/django/trunk@15134 bcc190cf-cafb-0310-a4f2-bffc1f526a37 2011-01-03 21:19:59 +08:00			`args += ["--host=%s" % host]`
Fixed #5461 -- Refactored the database backend code to use classes for the creation and introspection modules. Introduces a new validation module for DB-specific validation. This is a backwards incompatible change; see the wiki for details. git-svn-id: http://code.djangoproject.com/svn/django/trunk@8296 bcc190cf-cafb-0310-a4f2-bffc1f526a37 2008-08-11 20:11:25 +08:00			`if port:`
			`args += ["--port=%s" % port]`
Fixed #28322 -- Added dbshell support for MySQL client TLS certs. 2017-06-20 06:11:25 +08:00			`if server_ca:`
			`args += ["--ssl-ca=%s" % server_ca]`
			`if client_cert:`
			`args += ["--ssl-cert=%s" % client_cert]`
			`if client_key:`
			`args += ["--ssl-key=%s" % client_key]`
Fixed #6517 -- Made dbshell use charset option on MySQL. Co-Authored-By: Mariusz Felisiak <felisiak.mariusz@gmail.com> 2020-10-15 02:07:57 +08:00			`if charset:`
			`args += ['--default-character-set=%s' % charset]`
Fixed #32732 -- Removed usage of deprecated 'db' and 'passwd' connection options in MySQL backend. The 'db' and 'passwd' connection options have been deprecated, use 'database' and 'password' instead (available since mysqlclient >= 1.3.8). This also allows the 'database' option in DATABASES['OPTIONS'] on MySQL. 2021-05-11 04:32:10 +08:00			`if database:`
			`args += [database]`
Fixed #29501 -- Allowed dbshell to pass options to underlying tool. 2020-04-14 15:56:40 +08:00			`args.extend(parameters)`
Refs #32061 -- Prevented password leak on MySQL dbshell crash. The usage of the --password flag when invoking the mysql CLI has the potential of exposing the password in plain text if the command happens to crash due to the inclusion of args provided to subprocess.run(check=True) in the string representation of the subprocess.CalledProcessError exception raised on non-zero return code. Since this has the potential of leaking the password to logging facilities configured to capture crashes (e.g. sys.excepthook, Sentry) it's safer to rely on the MYSQL_PWD environment variable instead even if its usage is discouraged due to potential leak through the ps command on old flavors of Unix. Thanks Charlie Denton for reporting the issue to the security team. Refs #24999. 2020-10-05 06:31:04 +08:00			`return args, env`