Merge branch 'QA_5_2'

MauricioFauth · MauricioFauth · commit 23de646fbb86 · 2024-06-16T19:20:45.000-03:00
Signed-off-by: Maurício Meneghini Fauth &lt;mauricio@fauth.dev&gt;
diff --git a/phpstan-baseline.neon b/phpstan-baseline.neon
@@ -2652,16 +2652,11 @@ parameters:
 
 		-
 			message: "#^Construct empty\\(\\) is not allowed\\. Use more strict comparison\\.$#"
-			count: 2
-			path: src/Controllers/Import/SimulateDmlController.php
-
-		-
-			message: "#^Parameter \\#1 \\$separator of function explode expects non\\-empty\\-string, string given\\.$#"
 			count: 1
 			path: src/Controllers/Import/SimulateDmlController.php
 
 		-
-			message: "#^Parameter \\#2 \\$string of function explode expects string, mixed given\\.$#"
+			message: "#^Parameter \\#1 \\$query of method PhpMyAdmin\\\\Controllers\\\\Import\\\\SimulateDmlController\\:\\:createParser\\(\\) expects string, mixed given\\.$#"
 			count: 1
 			path: src/Controllers/Import/SimulateDmlController.php
 
diff --git a/psalm-baseline.xml b/psalm-baseline.xml
@@ -1966,12 +1966,6 @@
     </UnusedProperty>
   </file>
   <file src="src/Controllers/Import/SimulateDmlController.php">
-    <ArgumentTypeCoercion>
-      <code><![CDATA[$sqlDelimiter]]></code>
-    </ArgumentTypeCoercion>
-    <PossiblyUnusedMethod>
-      <code><![CDATA[__construct]]></code>
-    </PossiblyUnusedMethod>
     <RiskyTruthyFalsyComparison>
       <code><![CDATA[empty($statement->join)]]></code>
     </RiskyTruthyFalsyComparison>
@@ -12745,6 +12739,11 @@
       <code><![CDATA[Config::getInstance()]]></code>
     </DeprecatedMethod>
   </file>
+  <file src="tests/unit/Controllers/Import/SimulateDmlControllerTest.php">
+    <PossiblyUnusedMethod>
+      <code><![CDATA[providerForTestGetMatchedRows]]></code>
+    </PossiblyUnusedMethod>
+  </file>
   <file src="tests/unit/Controllers/Navigation/UpdateNavWidthConfigControllerTest.php">
     <PossiblyUnusedMethod>
       <code><![CDATA[invalidParamsProvider]]></code>
@@ -13853,11 +13852,6 @@
       <code><![CDATA[assertNull]]></code>
     </TypeDoesNotContainNull>
   </file>
-  <file src="tests/unit/Import/SimulateDmlTest.php">
-    <PossiblyUnusedMethod>
-      <code><![CDATA[providerForTestGetMatchedRows]]></code>
-    </PossiblyUnusedMethod>
-  </file>
   <file src="tests/unit/IndexTest.php">
     <MixedArgument>
       <code><![CDATA[$this->params['columns']]]></code>
diff --git a/src/Controllers/Import/SimulateDmlController.php b/src/Controllers/Import/SimulateDmlController.php
@@ -10,78 +10,90 @@
 use PhpMyAdmin\Import\SimulateDml;
 use PhpMyAdmin\Message;
 use PhpMyAdmin\ResponseRenderer;
+use PhpMyAdmin\SqlParser\Lexer;
 use PhpMyAdmin\SqlParser\Parser;
 use PhpMyAdmin\SqlParser\Statements\DeleteStatement;
 use PhpMyAdmin\SqlParser\Statements\UpdateStatement;
+use PhpMyAdmin\SqlParser\TokensList;
+use PhpMyAdmin\SqlParser\TokenType;
 use PhpMyAdmin\SqlParser\Utils\Query;
 
 use function __;
+use function array_filter;
+use function array_values;
 use function count;
-use function explode;
 
 final class SimulateDmlController implements InvocableController
 {
+    private string $error = '';
+
+    /**
+     * @psalm-var list<array{
+     *   sql_query: string,
+     *   matched_rows: int,
+     *   matched_rows_url: string,
+     * }>
+     */
+    private array $data = [];
+
     public function __construct(private readonly ResponseRenderer $response, private readonly SimulateDml $simulateDml)
     {
     }
 
     public function __invoke(ServerRequest $request): Response
     {
-        $error = '';
-        $errorMsg = __('Only single-table UPDATE and DELETE queries can be simulated.');
         /** @var string $sqlDelimiter */
         $sqlDelimiter = $request->getParsedBodyParam('sql_delimiter', '');
-        $sqlData = [];
-        $queries = explode($sqlDelimiter, $GLOBALS['sql_query']);
-        foreach ($queries as $sqlQuery) {
-            if ($sqlQuery === '') {
-                continue;
-            }
 
-            // Parsing the query.
-            $parser = new Parser($sqlQuery);
+        $parser = $this->createParser($GLOBALS['sql_query'], $sqlDelimiter);
+        $this->process($parser);
 
-            if (empty($parser->statements[0])) {
-                continue;
-            }
+        if ($this->error !== '') {
+            $this->response->addJSON('message', Message::rawError($this->error));
+            $this->response->addJSON('sql_data', false);
 
-            $statement = $parser->statements[0];
+            return $this->response->response();
+        }
+
+        $this->response->addJSON('sql_data', $this->data);
+
+        return $this->response->response();
+    }
+
+    private function createParser(string $query, string $delimiter): Parser
+    {
+        $lexer = new Lexer($query, false, $delimiter);
+        $list = new TokensList(array_values(array_filter(
+            $lexer->list->tokens,
+            static function ($token): bool {
+                return $token->type !== TokenType::Comment;
+            },
+        )));
+
+        return new Parser($list);
+    }
 
+    private function process(Parser $parser): void
+    {
+        foreach ($parser->statements as $statement) {
             if (
-                ! ($statement instanceof UpdateStatement || $statement instanceof DeleteStatement)
+                ! $statement instanceof UpdateStatement && ! $statement instanceof DeleteStatement
                 || ! empty($statement->join)
+                || count(Query::getTables($statement)) > 1
             ) {
-                $error = $errorMsg;
-                break;
-            }
-
-            $tables = Query::getTables($statement);
-            if (count($tables) > 1) {
-                $error = $errorMsg;
+                $this->error = __('Only single-table UPDATE and DELETE queries can be simulated.');
                 break;
             }
 
             // Get the matched rows for the query.
-            $result = $this->simulateDml->getMatchedRows($sqlQuery, $parser, $statement);
-            $error = $this->simulateDml->getError();
+            $result = $this->simulateDml->getMatchedRows($parser, $statement);
+            $this->error = $this->simulateDml->getError();
 
-            if ($error !== '') {
+            if ($this->error !== '') {
                 break;
             }
 
-            $sqlData[] = $result;
+            $this->data[] = $result;
         }
-
-        if ($error !== '') {
-            $message = Message::rawError($error);
-            $this->response->addJSON('message', $message);
-            $this->response->addJSON('sql_data', false);
-
-            return $this->response->response();
-        }
-
-        $this->response->addJSON('sql_data', $sqlData);
-
-        return $this->response->response();
     }
 }
diff --git a/src/Import/SimulateDml.php b/src/Import/SimulateDml.php
@@ -41,11 +41,8 @@ public function getError(): string
      *   matched_rows_url: string
      * }
      */
-    public function getMatchedRows(
-        string $query,
-        Parser $parser,
-        DeleteStatement|UpdateStatement $statement,
-    ): array {
+    public function getMatchedRows(Parser $parser, DeleteStatement|UpdateStatement $statement): array
+    {
         if ($statement instanceof DeleteStatement) {
             $matchedRowsQuery = $this->getSimulatedDeleteQuery($parser, $statement);
         } else {
@@ -61,7 +58,7 @@ public function getMatchedRows(
         ]);
 
         return [
-            'sql_query' => Html\Generator::formatSql($query),
+            'sql_query' => Html\Generator::formatSql($statement->build()),
             'matched_rows' => $matchedRows,
             'matched_rows_url' => $matchedRowsUrl,
         ];
diff --git a/tests/unit/AbstractTestCase.php b/tests/unit/AbstractTestCase.php
@@ -185,4 +185,20 @@ protected function setProperty(object|null $object, string $className, string $p
 
         $property->setValue($object, $value);
     }
+
+    /**
+     * Get a private or protected property via reflection.
+     *
+     * @param object $object       The object to inspect, pass null for static objects()
+     * @param string $className    The class name
+     * @param string $propertyName The method name
+     * @phpstan-param class-string $className
+     */
+    protected function getProperty(object $object, string $className, string $propertyName): mixed
+    {
+        $class = new ReflectionClass($className);
+        $property = $class->getProperty($propertyName);
+
+        return $property->getValue($object);
+    }
 }
diff --git a/tests/unit/Controllers/Import/SimulateDmlControllerTest.php b/tests/unit/Controllers/Import/SimulateDmlControllerTest.php
diff --git a/tests/unit/Import/SimulateDmlTest.php b/tests/unit/Import/SimulateDmlTest.php
