#1101 Eager association loading sanitizes conditions using the wrong table - Ruby on Rails

Type	To find
responsible:me	tickets assigned to you
tagged:"@high"	tickets tagged @high
milestone:next	tickets in the upcoming milestone
state:invalid	tickets with the state invalid
created:"last week"	tickets created last week
sort:number, importance, updated	tickets sorted by #, importance or updated
Combine keywords for powerful searching.
Use advanced searching »

This project is archived and is in readonly mode.

#1101 ✓committed

Eager association loading sanitizes conditions using the wrong table

Reported by Will Bryant | September 24th, 2008 @ 10:59 AM | in 2.x

If you have an association with conditions in hash form:


class Project < ActiveRecord::Base
  has_many :tasks, :conditions => {:deleted_at => nil}
end

class Task < ActiveRecord::Base
  belongs_to :project
end

and you eagerly load the association:


  Project.find(:all, :include => :tasks)

then the deleted_at column in the condition gets expanded out to projects.deleted_at - when it should be tasks.deleted_at.

This is bad... if you're lucky it means these loads fail, if you're unlucky and have the same-named columns on the owner table, your app just misbehaves badly.

The attached patch calls the sanitiized_conditions method on the reflection which proxies the sanitize_sql call through to the target class, not the owner class, fixing this.

This bug is present in 2.1.0, 2.1.1, and edge. The attached patch is against edge. The first of the two commits in the patch is an additional test case showing the issue.

eager_loading_sanitizing_against_wrong_table.diff 3.9 KB

Comments and changes to this ticket

You flagged this item as spam.
Will Bryant September 24th, 2008 @ 11:02 AM
For the convenience of anyone who needs to patch this on their project running the released version of rails, here's a backport against your frozen-in vendor/rails 2.1.1.
- 0001-applied-my-patch-from-rails-lighthouse-ticket-8994.patch 4.4 KB
You flagged this item as spam.
Will Bryant September 24th, 2008 @ 12:14 PM
Erm, ignore the ticket number in that second filename :).
You flagged this item as spam.
Will Bryant September 27th, 2008 @ 05:04 AM
Backported to the 2-1-stable repository, since that's diverged from 2.1.1 release far enough for that not to apply.
- 2-1-eager_loading_sanitizing_against_wrong_table.diff 4.6 KB
Repository September 29th, 2008 @ 04:52 PM
(from [7823c50c975df975ca3237bfbe9ca0b3c60f6b6d]) fix eager loading's :condition sanitizing expanding against the wrong table

Signed-off-by: Michael Koziarski michael@koziarski.com [#1101 state:commited] http://github.com/rails/rails/co...
Frederick Cheung December 14th, 2008 @ 06:40 PM
- Tag changed from “2.1, activerecord, bug, eager_loading, edge, has_many, patch” to “2.1, activerecord, bug, eager_loading, edge, has_many, patch”
- State changed from “new” to “committed”

Create your profile

Help contribute to this project by taking a few moments to create your personal profile. Create your profile »

<h2 style="font-size: 14px">Tickets have moved to Github</h2>

The new ticket tracker is available at <a href="https://github.com/rails/rails/issues">https://github.com/rails/rails/issues</a>

Shared Ticket Bins (Sort)

↓↑ drag 455 Open Bugs
↓↑ drag 0 Recent Open Tickets
↓↑ drag 87 Open Patches
↓↑ drag 0 Open Doc Patches
↓↑ drag 542 Stale Tickets
↓↑ drag 3 Verified Patches
↓↑ drag 87 Stale Patches
↓↑ drag 0 Yesterday's Tickets
↓↑ drag 0 Two Days Ago
↓↑ drag 0 This Week
↓↑ drag 0 Last Week
↓↑ drag 7 Bugmash
↓↑ drag 0 Bugmash review queue
↓↑ drag 5 Rails 3 High Priority Tickets

People watching this ticket

Attachments

Referenced by

1101 Eager association loading sanitizes conditions using the wrong table Signed-off-by: Michael Koziarski michael@koziarski.com [#...

Rails Ruby on Rails → 2.x