pgsql-parser/packages/deparser/src/utils/quote-utils.ts at 9104bf379a2874a110c5286a3b0bad8caab19804 · constructive-io/pgsql-parser · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
import { keywordKindOf } from '../kwlist';

export class QuoteUtils {
  static escape(literal: string): string {
    return `'${literal.replace(/'/g, "''")}'`;
  }

  /**
   * Escapes a string value for use in E-prefixed string literals
   * Handles both backslashes and single quotes properly
   */
  static escapeEString(value: string): string {
    return value.replace(/\\/g, '\\\\').replace(/'/g, "''");
  }

  /**
   * Formats a string as an E-prefixed string literal with proper escaping
   * This wraps the complete E-prefix logic including detection and formatting
   */
  static formatEString(value: string): string {
    const needsEscape = QuoteUtils.needsEscapePrefix(value);
    if (needsEscape) {
      const escapedValue = QuoteUtils.escapeEString(value);
      return `E'${escapedValue}'`;
    } else {
      return QuoteUtils.escape(value);
    }
  }

  /**
   * Determines if a string value needs E-prefix for escaped string literals
   * Detects backslash escape sequences that require E-prefix in PostgreSQL
   */
  static needsEscapePrefix(value: string): boolean {
    // Always use E'' if the string contains any backslashes,
    // unless it's a raw \x... bytea-style literal.
    return !/^\\x[0-9a-fA-F]+$/i.test(value) && value.includes('\\');
  }

  /**
   * Quote an identifier only if needed
   *
   * This is a TypeScript port of PostgreSQL's quote_identifier() function from ruleutils.c
   * https://github.com/postgres/postgres/blob/fab5cd3dd1323f9e66efeb676c4bb212ff340204/src/backend/utils/adt/ruleutils.c#L13055-L13137
   *
   * Can avoid quoting if ident starts with a lowercase letter or underscore
   * and contains only lowercase letters, digits, and underscores, *and* is
   * not any SQL keyword. Otherwise, supply quotes.
   *
   * When quotes are needed, embedded double quotes are properly escaped as "".
   */
  static quoteIdentifier(ident: string): string {
    if (!ident) return ident;

    let safe = true;

    // Check first character: must be lowercase letter or underscore
    const firstChar = ident[0];
    if (!((firstChar >= 'a' && firstChar <= 'z') || firstChar === '_')) {
      safe = false;
    }

    // Check all characters
    for (let i = 0; i < ident.length; i++) {
      const ch = ident[i];
      if ((ch >= 'a' && ch <= 'z') ||
          (ch >= '0' && ch <= '9') ||
          (ch === '_')) {
        // okay
      } else {
        safe = false;
      }
    }

    if (safe) {
      // Check for keyword. We quote keywords except for unreserved ones.
      // (In some cases we could avoid quoting a col_name or type_func_name
      // keyword, but it seems much harder than it's worth to tell that.)
      const kwKind = keywordKindOf(ident);
      if (kwKind !== 'NO_KEYWORD' && kwKind !== 'UNRESERVED_KEYWORD') {
        safe = false;
      }
    }

    if (safe) {
      return ident; // no change needed
    }

    // Build quoted identifier with escaped embedded quotes
    let result = '"';
    for (let i = 0; i < ident.length; i++) {
      const ch = ident[i];
      if (ch === '"') {
        result += '"'; // escape " as ""
      }
      result += ch;
    }
    result += '"';

    return result;
  }

  /**
   * Quote an identifier that appears after a dot in a qualified name.
   *
   * In PostgreSQL's grammar, identifiers that appear after a dot (e.g., schema.name,
   * table.column) are in a more permissive position that accepts all keyword categories
   * including RESERVED_KEYWORD. This means we only need to quote for lexical reasons
   * (uppercase, special characters, leading digits) not for keyword reasons.
   *
   * Empirically verified: `myschema.select`, `myschema.float`, `t.from` all parse
   * successfully in PostgreSQL without quotes.
   */
  static quoteIdentifierAfterDot(ident: string): string {
    if (!ident) return ident;

    let safe = true;

    const firstChar = ident[0];
    if (!((firstChar >= 'a' && firstChar <= 'z') || firstChar === '_')) {
      safe = false;
    }

    for (let i = 0; i < ident.length; i++) {
      const ch = ident[i];
      if ((ch >= 'a' && ch <= 'z') ||
          (ch >= '0' && ch <= '9') ||
          (ch === '_')) {
        // okay
      } else {
        safe = false;
      }
    }

    if (safe) {
      return ident;
    }

    let result = '"';
    for (let i = 0; i < ident.length; i++) {
      const ch = ident[i];
      if (ch === '"') {
        result += '"';
      }
      result += ch;
    }
    result += '"';

    return result;
  }

  /**
   * Quote a dotted name (e.g., schema.table, catalog.schema.table).
   *
   * The first part uses strict quoting (keywords are quoted), while subsequent
   * parts use relaxed quoting (keywords allowed, only quote for lexical reasons).
   *
   * This reflects PostgreSQL's grammar where the first identifier in a statement
   * may conflict with keywords, but identifiers after a dot are in a more
   * permissive position.
   */
  static quoteDottedName(parts: string[]): string {
    if (!parts || parts.length === 0) return '';
    if (parts.length === 1) {
      return QuoteUtils.quoteIdentifier(parts[0]);
    }
    return parts.map((part, index) =>
      index === 0 ? QuoteUtils.quoteIdentifier(part) : QuoteUtils.quoteIdentifierAfterDot(part)
    ).join('.');
  }

  /**
   * Quote a possibly-qualified identifier
   *
   * This is inspired by PostgreSQL's quote_qualified_identifier() function from ruleutils.c
   * but uses relaxed quoting for the tail component since PostgreSQL's grammar accepts
   * all keywords in qualified name positions.
   *
   * Return a name of the form qualifier.ident, or just ident if qualifier
   * is null/undefined, quoting each component if necessary.
   */
  static quoteQualifiedIdentifier(qualifier: string | null | undefined, ident: string): string {
    if (qualifier) {
      return `${QuoteUtils.quoteIdentifier(qualifier)}.${QuoteUtils.quoteIdentifierAfterDot(ident)}`;
    }
    return QuoteUtils.quoteIdentifier(ident);
  }

  /**
   * Quote an identifier that appears as a type name.
   *
   * Type names in PostgreSQL have a less strict quoting policy than standalone identifiers.
   * In type positions, COL_NAME_KEYWORD and TYPE_FUNC_NAME_KEYWORD are allowed unquoted
   * (e.g., 'json', 'int', 'boolean', 'interval'). Only RESERVED_KEYWORD must be quoted.
   *
   * This is different from:
   * - quoteIdentifier(): quotes all keywords except UNRESERVED_KEYWORD
   * - quoteIdentifierAfterDot(): only quotes for lexical reasons (no keyword checking)
   *
   * Type names still need quoting for lexical reasons (uppercase, special chars, etc.).
   */
  static quoteIdentifierTypeName(ident: string): string {
    if (!ident) return ident;

    let safe = true;

    // Check first character: must be lowercase letter or underscore
    const firstChar = ident[0];
    if (!((firstChar >= 'a' && firstChar <= 'z') || firstChar === '_')) {
      safe = false;
    }

    // Check all characters
    for (let i = 0; i < ident.length; i++) {
      const ch = ident[i];
      if ((ch >= 'a' && ch <= 'z') ||
          (ch >= '0' && ch <= '9') ||
          (ch === '_')) {
        // okay
      } else {
        safe = false;
      }
    }

    if (safe) {
      // For type names, only quote RESERVED_KEYWORD
      // COL_NAME_KEYWORD and TYPE_FUNC_NAME_KEYWORD are allowed unquoted in type positions
      const kwKind = keywordKindOf(ident);
      if (kwKind === 'RESERVED_KEYWORD') {
        safe = false;
      }
    }

    if (safe) {
      return ident; // no change needed
    }

    // Build quoted identifier with escaped embedded quotes
    let result = '"';
    for (let i = 0; i < ident.length; i++) {
      const ch = ident[i];
      if (ch === '"') {
        result += '"'; // escape " as ""
      }
      result += ch;
    }
    result += '"';

    return result;
  }

  /**
   * Quote a dotted type name (e.g., schema.typename).
   *
   * For type names, we use type-name quoting for all parts since the entire
   * qualified name is in a type context. This allows keywords like 'json',
   * 'int', 'boolean' to remain unquoted in user-defined schema-qualified types.
   */
  static quoteTypeDottedName(parts: string[]): string {
    if (!parts || parts.length === 0) return '';
    return parts.map(part => QuoteUtils.quoteIdentifierTypeName(part)).join('.');
  }

}