Skip to content

Fixes #26798: Add backticks to table name in mysql median function #27406

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
harshach merged 1 commit into from
Apr 16, 2026
Merged

Fixes #26798: Add backticks to table name in mysql median function #27406

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
20 changes: 10 additions & 10 deletions ingestion/src/metadata/profiler/orm/functions/median.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -207,11 +207,11 @@ def _(elements, compiler, **kwargs): # pylint: disable=unused-argument
{col},
ROW_NUMBER() OVER () AS row_num
FROM
{table} AS median_inner,
`{table}` AS median_inner,
(SELECT @counter := COUNT(*)
FROM {table} AS median_count
WHERE median_count.{dimension_col} = {table}.{dimension_col}) t_count
WHERE median_inner.{dimension_col} = {table}.{dimension_col}
FROM `{table}` AS median_count
WHERE median_count.{dimension_col} = `{table}`.{dimension_col}) t_count
WHERE median_inner.{dimension_col} = `{table}`.{dimension_col}
ORDER BY {col}
) temp
WHERE temp.row_num = ROUND({percentile} * @counter)
Expand All @@ -229,8 +229,8 @@ def _(elements, compiler, **kwargs): # pylint: disable=unused-argument
{col},
ROW_NUMBER() OVER () AS row_num
FROM
{table},
(SELECT @counter := COUNT(*) FROM {table}) t_count
`{table}`,
(SELECT @counter := COUNT(*) FROM `{table}`) t_count
ORDER BY {col}
) temp
WHERE temp.row_num = ROUND({percentile} * @counter)
Expand Down Expand Up @@ -275,8 +275,8 @@ def _(elements, compiler, **kwargs): # pylint: disable=unused-argument
SELECT {col},
ROW_NUMBER() OVER (ORDER BY {col}) as rn,
COUNT(*) OVER () as cnt
FROM {table} AS median_inner
WHERE median_inner.{dimension_col} = {table}.{dimension_col}
FROM "{table}" AS median_inner
WHERE median_inner.{dimension_col} = "{table}".{dimension_col}
AND {col} IS NOT NULL
)
WHERE rn IN (
Expand All @@ -292,13 +292,13 @@ def _(elements, compiler, **kwargs): # pylint: disable=unused-argument
return """
(SELECT
{col}
FROM {table}
FROM "{table}"
WHERE {col} IS NOT NULL
ORDER BY {col}
LIMIT 1
OFFSET (
SELECT ROUND(COUNT(*) * {percentile} -1)
FROM {table}
FROM "{table}"
WHERE {col} IS NOT NULL
)
)
Expand Down
10 changes: 10 additions & 0 deletions ingestion/tests/unit/observability/profiler/sqlalchemy/mysql/__init__.py
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,10 @@
# Copyright 2025 Collate
# Licensed under the Collate Community License, Version 1.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
# https://github.com/open-metadata/OpenMetadata/blob/main/ingestion/LICENSE
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
181 changes: 181 additions & 0 deletions ingestion/tests/unit/observability/profiler/sqlalchemy/mysql/test_mysql_median.py
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,181 @@
# Copyright 2025 Collate
# Licensed under the Collate Community License, Version 1.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
# https://github.com/open-metadata/OpenMetadata/blob/main/ingestion/LICENSE
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.

"""
Test MySQL median/quartile SQL generation with reserved word table names.

Issue: https://github.com/open-metadata/OpenMetadata/issues/26798
When table names are MySQL reserved words (e.g., "Signal"), the generated SQL
must escape them with backticks to avoid syntax errors.
"""

import pytest
from sqlalchemy import Column, Integer, String, create_engine
from sqlalchemy.orm import DeclarativeBase

from metadata.profiler.orm.functions.median import MedianFn


class Base(DeclarativeBase):
pass


class Signal(Base):
"""Test table with reserved word name"""

__tablename__ = "Signal"
id = Column(Integer, primary_key=True)
customer_id = Column(String(50))
value = Column(Integer)


class TestMySQLMedianSQL:
"""Test MySQL median SQL generation with reserved word table names"""

@pytest.fixture
def mysql_engine(self):
"""Create a MySQL engine for compilation testing"""
# Using mysql+pymysql://localhost/test dialect for compilation
# We don't need actual connection, just the dialect for SQL compilation
engine = create_engine(
"mysql+pymysql://", strategy="mock", executor=lambda *a, **kw: None
)
return engine

def test_median_with_reserved_word_table_name(self, mysql_engine):
"""Test that table name is properly escaped with backticks"""
col = Signal.customer_id
table_name = "Signal" # Reserved word
percentile = 0.5

# Create the MedianFn expression
median_expr = MedianFn(col, table_name, percentile)

# Compile with MySQL dialect
compiled = median_expr.compile(
dialect=mysql_engine.dialect, compile_kwargs={"literal_binds": True}
)
sql_string = str(compiled)

# Verify table name is escaped with backticks
assert "`Signal`" in sql_string, (
f"Table name 'Signal' should be escaped with backticks.\n"
f"Generated SQL: {sql_string}"
)

# Verify that the unquoted "Signal" doesn't appear as a table reference
# (it may appear in other contexts, but not as "FROM Signal," or "FROM Signal)")
lines = sql_string.split("\n")
for line in lines:
# Check FROM clauses - they should have backticks
if "FROM" in line and "Signal" in line and "Signal" not in "`Signal`":
# This would be the problematic case: FROM Signal without backticks
assert "`Signal`" in line, (
f"FROM clause should have backticks around table name.\n"
f"Line: {line}"
)
Comment on lines +77 to +84
Copy link
Copy Markdown

@gitar-bot gitar-bot Bot Apr 15, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Bug: Test assertion on line 79 is always a no-op due to logic error

The condition on line 79 checks "Signal" not in "Signal", but the string "Signal" is a substring of "`Signal`", so this evaluates to False. This means the inner assert on lines 80-84 is never reached, making the entire loop (lines 77-84) a no-op that validates nothing.

The intent was presumably to detect lines where Signal appears unescaped (without backticks), but the string containment check is wrong.

Suggested fix:

Replace the condition with a proper check, e.g.:

    for line in lines:
        if "FROM" in line and "Signal" in line:
            assert "`Signal`" in line, (
                f"FROM clause should have backticks around table name.
"
                f"Line: {line}"
            )

Was this helpful? React with 👍 / 👎 | Reply gitar fix to apply this suggestion


def test_first_quartile_with_reserved_word_table_name(self, mysql_engine):
"""Test that first quartile (Q1) works with reserved word table names"""
col = Signal.customer_id
table_name = "Signal"
percentile = 0.25

median_expr = MedianFn(col, table_name, percentile)
compiled = median_expr.compile(
dialect=mysql_engine.dialect, compile_kwargs={"literal_binds": True}
)
sql_string = str(compiled)

assert "`Signal`" in sql_string, (
f"Q1 (0.25): Table name should be escaped.\n" f"Generated SQL: {sql_string}"
)

def test_third_quartile_with_reserved_word_table_name(self, mysql_engine):
"""Test that third quartile (Q3) works with reserved word table names"""
col = Signal.customer_id
table_name = "Signal"
percentile = 0.75

median_expr = MedianFn(col, table_name, percentile)
compiled = median_expr.compile(
dialect=mysql_engine.dialect, compile_kwargs={"literal_binds": True}
)
sql_string = str(compiled)

assert "`Signal`" in sql_string, (
f"Q3 (0.75): Table name should be escaped.\n" f"Generated SQL: {sql_string}"
)

def test_median_with_multiple_reserved_words(self, mysql_engine):
"""Test with various MySQL reserved words as table names"""
reserved_words = ["Signal", "Order", "Group", "Select", "Create", "Table"]
percentile = 0.5

for table_name in reserved_words:
col = Signal.customer_id
median_expr = MedianFn(col, table_name, percentile)
compiled = median_expr.compile(
dialect=mysql_engine.dialect, compile_kwargs={"literal_binds": True}
)
sql_string = str(compiled)

expected_escaped = f"`{table_name}`"
assert expected_escaped in sql_string, (
f"Reserved word '{table_name}' should be escaped with backticks.\n"
f"Generated SQL: {sql_string}"
)

def test_column_name_properly_quoted(self, mysql_engine):
"""Verify that column names are properly quoted by compiler.process()"""
col = Signal.customer_id
table_name = "Signal"
percentile = 0.5

median_expr = MedianFn(col, table_name, percentile)
compiled = median_expr.compile(
dialect=mysql_engine.dialect, compile_kwargs={"literal_binds": True}
)
sql_string = str(compiled)

# Column name should be quoted (either backticks or other depending on compiler)
# It should be present in the SQL
assert "customer_id" in sql_string or "`customer_id`" in sql_string, (
f"Column name should be present in generated SQL.\n"
f"Generated SQL: {sql_string}"
)

def test_no_cross_join_syntax_error(self, mysql_engine):
"""Verify the generated SQL doesn't have the problematic comma-join pattern"""
col = Signal.customer_id
table_name = "Signal"
percentile = 0.5

median_expr = MedianFn(col, table_name, percentile)
compiled = median_expr.compile(
dialect=mysql_engine.dialect, compile_kwargs={"literal_binds": True}
)
sql_string = str(compiled)

# The old problematic pattern was:
# FROM Signal, (SELECT @counter := COUNT(*) FROM Signal) t_count
# This would fail because Signal is a reserved word without backticks
# With the fix, it should be:
# FROM `Signal`, (SELECT ... FROM `Signal`) t_count

# Verify that if there's a FROM clause with Signal and a comma join,
# the table name is escaped
if "FROM" in sql_string and "," in sql_string:
# Look for the pattern "FROM `table`," which is correct
assert "FROM `Signal`" in sql_string or "FROM\n" in sql_string, (
f"If using comma-join, table must be escaped.\n"
f"Generated SQL: {sql_string}"
)
Loading