doctrine/archived-orm
1
0
Fork 0
mirror of https://github.com/doctrine/orm.git synced 2026-03-24 06:52:09 +01:00
Code Issues 5.3k Packages Projects Releases 100 Wiki Activity

DDC-1919: Doctrine fails to escape entity with reserved name in various situations #2421

New Issue
Closed
opened 2026-01-22 13:52:29 +01:00 by admin · 13 comments
admin commented 2026-01-22 13:52:29 +01:00
Owner
Copy Link

Originally created by @doctrinebot on GitHub (Jul 10, 2012).

Originally assigned to: @beberlei on GitHub.

Jira issue originally created by user klaussilveira:

I have submitted a PR here, fixing part of this issue: https://github.com/doctrine/dbal/pull/166

However, it fails when UPDATE or INSERT is used. I'm using a very simple, and common, entity name: Group. Doctrine is failing to escape this in various situations, causing queries to fail in MySQL due to reserved keywords.

Originally created by @doctrinebot on GitHub (Jul 10, 2012). Originally assigned to: @beberlei on GitHub. Jira issue originally created by user klaussilveira: I have submitted a PR here, fixing part of this issue: https://github.com/doctrine/dbal/pull/166 However, it fails when UPDATE or INSERT is used. I'm using a very simple, and common, entity name: Group. Doctrine is failing to escape this in various situations, causing queries to fail in MySQL due to reserved keywords.
admin added the Bug label 2026-01-22 13:52:29 +01:00
admin closed this issue 2026-01-22 13:52:29 +01:00
admin commented 2026-01-22 13:52:31 +01:00
Author
Owner
Copy Link

@doctrinebot commented on GitHub (Jul 11, 2012):

Comment created by @ocramius:

Can you try using the quoting strategy in master? By defining an '@Table(name="Group")' on your entity you should be able to fix this issue by yourself... Anyway, this is only available in latest master.
Please give it a try and let us know.

@doctrinebot commented on GitHub (Jul 11, 2012): Comment created by @ocramius: Can you try using the quoting strategy in master? By defining an '@Table(name="`Group`")' on your entity you should be able to fix this issue by yourself... Anyway, this is only available in latest master. Please give it a try and let us know.
admin commented 2026-01-22 13:52:31 +01:00
Author
Owner
Copy Link

@doctrinebot commented on GitHub (Jul 11, 2012):

Comment created by klaussilveira:

That hack, of course, fixes the problem. However, Doctrine is failing to escape entities with reserved keywords in various different situations and this should be a major problem, specially since there are many keywords that are common table names. Having to change the table name or escape the table name manually is not the best solution.

I have look through the code but could not find out why getQuotedTableName() is failing to quote the table name "Group". I fixed the other problem, involving schema creation, but this one i couldn't fix. That's why i'm opening the issue, hoping someone with more experience in the ORM codebase manages to fix it.

@doctrinebot commented on GitHub (Jul 11, 2012): Comment created by klaussilveira: That hack, of course, fixes the problem. However, Doctrine is failing to escape entities with reserved keywords in various different situations and this should be a major problem, specially since there are many keywords that are common table names. Having to change the table name or escape the table name manually is not the best solution. I have look through the code but could not find out why getQuotedTableName() is failing to quote the table name "Group". I fixed the other problem, involving schema creation, but this one i couldn't fix. That's why i'm opening the issue, hoping someone with more experience in the ORM codebase manages to fix it.
admin commented 2026-01-22 13:52:33 +01:00
Author
Owner
Copy Link

@doctrinebot commented on GitHub (Jul 11, 2012):

Comment created by @ocramius:

[~klaussilveira], doctrine won't quote (at least with the default strategy) a table called "Group". The default strategy will look for the sorrounding "" ("Group`").
Is it still failing to quote something in latest master? Can you write a simple example of a failure you are getting?

@doctrinebot commented on GitHub (Jul 11, 2012): Comment created by @ocramius: [~klaussilveira], doctrine won't quote (at least with the default strategy) a table called "Group". The default strategy will look for the sorrounding "`" ("`Group`"). Is it still failing to quote something in latest master? Can you write a simple example of a failure you are getting?
admin commented 2026-01-22 13:52:33 +01:00
Author
Owner
Copy Link

@doctrinebot commented on GitHub (Jul 11, 2012):

Comment created by klaussilveira:

The failure is caused when querying anything related to an entity wich it's name is a reserved keyword, for example, an entity called "Group". I expected Doctrine to quote such table names.

@doctrinebot commented on GitHub (Jul 11, 2012): Comment created by klaussilveira: The failure is caused when querying anything related to an entity wich it's name is a reserved keyword, for example, an entity called "Group". I expected Doctrine to quote such table names.
admin commented 2026-01-22 13:52:33 +01:00
Author
Owner
Copy Link

@doctrinebot commented on GitHub (Jul 11, 2012):

Comment created by @ocramius:

[~klaussilveira] did you put an @Table(name="Group") in it?

@doctrinebot commented on GitHub (Jul 11, 2012): Comment created by @ocramius: [~klaussilveira] did you put an @Table(name="`Group`") in it?
admin commented 2026-01-22 13:52:33 +01:00
Author
Owner
Copy Link

@doctrinebot commented on GitHub (Jul 11, 2012):

Comment created by @ocramius:

Please note that php@Table(name="Group") and php@Table(name="Group") are quite different. That's why I'm asking

@doctrinebot commented on GitHub (Jul 11, 2012): Comment created by @ocramius: Please note that `php@Table(name="Group")` and `php@Table(name="`Group`")` are quite different. That's why I'm asking
admin commented 2026-01-22 13:52:35 +01:00
Author
Owner
Copy Link

@doctrinebot commented on GitHub (Jul 11, 2012):

Comment created by klaussilveira:

As i said, that hack fixes the problem. But i don't believe that having to change the table name or escape the table name manually is the best solution. Doctrine should be doing that transparently, as it does for other situations (such as during schema creation). Why not during all other operations? Makes no sense at all.

@doctrinebot commented on GitHub (Jul 11, 2012): Comment created by klaussilveira: As i said, that hack fixes the problem. But i don't believe that having to change the table name or escape the table name manually is the best solution. Doctrine should be doing that transparently, as it does for other situations (such as during schema creation). Why not during all other operations? Makes no sense at all.
admin commented 2026-01-22 13:52:35 +01:00
Author
Owner
Copy Link

@doctrinebot commented on GitHub (Jul 11, 2012):

Comment created by @ocramius:

This is not a hack... In ORM, "`" is not the MySQL identifier quote. It is exactly thought as a character with which you tell the ORM that the identifier should be quoted.
The default strategy does make use of it, so please use it.

@doctrinebot commented on GitHub (Jul 11, 2012): Comment created by @ocramius: This is not a hack... In ORM, "`" is not the MySQL identifier quote. It is exactly thought as a character with which you tell the ORM that the identifier should be quoted. The default strategy does make use of it, so please use it.
admin commented 2026-01-22 13:52:35 +01:00
Author
Owner
Copy Link

@doctrinebot commented on GitHub (Jul 11, 2012):

Comment created by @ocramius:

Also, we won't collect the SQL reserved keywords, nor we can know what keywords are used in all vendors. The patch for the quoting strategy was exactly thought to allow end users to use insecure names for their objects/fields/indexes/etc but without having the ORM implement those checks for them (since it would just be messy and too "magic").

Please also reconsider your pull request on github too ( DBAL-298 ).

I'm closing this one

@doctrinebot commented on GitHub (Jul 11, 2012): Comment created by @ocramius: Also, we won't collect the SQL reserved keywords, nor we can know what keywords are used in all vendors. The patch for the quoting strategy was exactly thought to allow end users to use insecure names for their objects/fields/indexes/etc but without having the ORM implement those checks for them (since it would just be messy and too "magic"). Please also reconsider your pull request on github too ( [DBAL-298](http://www.doctrine-project.org/jira/browse/DBAL-298) ). I'm closing this one
admin commented 2026-01-22 13:52:35 +01:00
Author
Owner
Copy Link

@doctrinebot commented on GitHub (Jul 11, 2012):

Issue was closed with resolution "Invalid"

@doctrinebot commented on GitHub (Jul 11, 2012): Issue was closed with resolution "Invalid"
admin commented 2026-01-22 13:52:37 +01:00
Author
Owner
Copy Link

@doctrinebot commented on GitHub (Jul 11, 2012):

Comment created by klaussilveira:

Then what's the purpose of Doctrine\DBAL\Platforms\Keywords\MySQLKeywords?

@doctrinebot commented on GitHub (Jul 11, 2012): Comment created by klaussilveira: Then what's the purpose of Doctrine\DBAL\Platforms\Keywords\MySQLKeywords?
admin commented 2026-01-22 13:52:37 +01:00
Author
Owner
Copy Link

@doctrinebot commented on GitHub (Jul 11, 2012):

Comment created by @ocramius:

[~klaussilveira] not sure, but it isn't used in ORM.

@doctrinebot commented on GitHub (Jul 11, 2012): Comment created by @ocramius: [~klaussilveira] not sure, but it isn't used in ORM.
admin commented 2026-01-22 13:52:37 +01:00
Author
Owner
Copy Link

@doctrinebot commented on GitHub (Jul 19, 2012):

Comment created by @beberlei:

A related Github Pull-Request [GH-166] was closed
https://github.com/doctrine/dbal/pull/166

@doctrinebot commented on GitHub (Jul 19, 2012): Comment created by @beberlei: A related Github Pull-Request [GH-166] was closed https://github.com/doctrine/dbal/pull/166
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
BC Break
Bug
Can't Fix
Deprecation
Documentation
DQL
Duplicate
Failing Test
Hacktoberfest
Improvement
Improvement
Incomplete
Invalid
Missing Tests
New Feature
PR Created
pull-request
Mirrored from GitHub Pull Request
 Question
Regression
Status: Waiting feedback
Waiting feedback
WIP
Won't Fix
No Label Bug
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
admin
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: doctrine/archived-orm#2421
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?