#31271 closed Bug (fixed)
Logged queries may interpolate parameters in the wrong order on Oracle.
| Reported by: | Hans Aarne Liblik | Owned by: | Mariusz Felisiak |
|---|---|---|---|
| Component: | Database layer (models, ORM) | Version: | 3.0 |
| Severity: | Release blocker | Keywords: | oracle sql log debug logging |
| Cc: | Marti Raudsepp | Triage Stage: | Accepted |
| Has patch: | yes | Needs documentation: | no |
| Needs tests: | no | Patch needs improvement: | no |
| Easy pickings: | no | UI/UX: | no |
Description
When making a query
MyObject.objects.filter(field1='value1').exclude(field2__in=['badValue1', 'badValue2'])
django/db/backends/oracle/base.py 'def _fix_for_params()'
gets params as
tuple('value1', 'badValue1', 'badValue2')
and then makes them into a set
enumerate(set(params))
. This changes the order of params, and assigns them key (i.e arg0, arg1, ..). This also changes the SQL query and replaces '%s' with param key's (':arg0', ..). The order or param keys in SQL might not be in order anymore.
After SQL is executed this statement is logged. But for logging in
django/db/backends/oracle/operations.py 'def last_executed_query()'
The code is replacing param keys in SQL (':arg0', ..) with params, but they do not match anymore, since they are not in order in SQL statement anymore
REproducable all the time with more than 1 param for SQL
Change History (7)
follow-up: 2 comment:1 by , 4 years ago
| Component: | Uncategorized → Database layer (models, ORM) |
|---|---|
| Severity: | Normal → Release blocker |
| Summary: | Logged ORM query differs from executed one → Logged queries may interpolate parameters in the wrong order on Oracle. |
| Triage Stage: | Unreviewed → Accepted |
comment:3 by , 4 years ago
| Cc: | added |
|---|
comment:4 by , 4 years ago
| Owner: | changed from to |
|---|---|
| Status: | new → assigned |
Note:
See TracTickets
for help on using tickets.
Thanks for this report.
last_execute_query()didn't interpolate parameters before 79065b55a70cd220820a260a1c54851b7be0615a, so we can treat this as a regression. It seems that the only reasonable solution is to use mechanism that preserves ordering in_fix_for_params(), but it can be tricky to add a regression test. I was not able to reproduce an incorrect behavior but I agree that this can happen.Would you like to prepare a patch?