Fix undefined array key in WithStatement

MauricioFauth · MauricioFauth · commit fb8fe989e578 · 2023-09-15T20:55:10.000-03:00
The CTE name must be a valid identifier.

Signed-off-by: Maurício Meneghini Fauth &lt;mauricio@fauth.dev&gt;
diff --git a/src/Statements/WithStatement.php b/src/Statements/WithStatement.php
@@ -16,6 +16,7 @@
 
 use function array_slice;
 use function count;
+use function preg_match;
 
 /**
  * `WITH` statement.
@@ -114,7 +115,7 @@ public function parse(Parser $parser, TokensList $list)
             }
 
             if ($state === 0) {
-                if ($token->type !== Token::TYPE_NONE) {
+                if ($token->type !== Token::TYPE_NONE || ! preg_match('/^[a-zA-Z0-9_$]+$/', $token->token)) {
                     $parser->error('The name of the CTE was expected.', $token);
                     break;
                 }
diff --git a/tests/Misc/BugsTest.php b/tests/Misc/BugsTest.php
@@ -23,6 +23,7 @@ public function bugProvider(): array
     {
         return [
             ['bugs/fuzz1'],
+            ['bugs/fuzz2'],
             ['bugs/gh9'],
             ['bugs/gh14'],
             ['bugs/gh16'],
diff --git a/tests/data/bugs/fuzz2.in b/tests/data/bugs/fuzz2.in
@@ -0,0 +1 @@
+WITH](
diff --git a/tests/data/bugs/fuzz2.out b/tests/data/bugs/fuzz2.out
@@ -0,0 +1,111 @@
+{
+    "query": "WITH](",
+    "lexer": {
+        "@type": "PhpMyAdmin\\SqlParser\\Lexer",
+        "str": "WITH](",
+        "len": 6,
+        "last": 6,
+        "list": {
+            "@type": "PhpMyAdmin\\SqlParser\\TokensList",
+            "tokens": [
+                {
+                    "@type": "PhpMyAdmin\\SqlParser\\Token",
+                    "token": "WITH",
+                    "value": "WITH",
+                    "keyword": "WITH",
+                    "type": 1,
+                    "flags": 3,
+                    "position": 0
+                },
+                {
+                    "@type": "PhpMyAdmin\\SqlParser\\Token",
+                    "token": "]",
+                    "value": "]",
+                    "keyword": null,
+                    "type": 0,
+                    "flags": 0,
+                    "position": 4
+                },
+                {
+                    "@type": "PhpMyAdmin\\SqlParser\\Token",
+                    "token": "(",
+                    "value": "(",
+                    "keyword": null,
+                    "type": 2,
+                    "flags": 16,
+                    "position": 5
+                },
+                {
+                    "@type": "PhpMyAdmin\\SqlParser\\Token",
+                    "token": null,
+                    "value": null,
+                    "keyword": null,
+                    "type": 9,
+                    "flags": 0,
+                    "position": null
+                }
+            ],
+            "count": 4,
+            "idx": 4
+        },
+        "delimiter": ";",
+        "delimiterLen": 1,
+        "strict": false,
+        "errors": []
+    },
+    "parser": {
+        "@type": "PhpMyAdmin\\SqlParser\\Parser",
+        "list": {
+            "@type": "@1"
+        },
+        "statements": [
+            {
+                "@type": "PhpMyAdmin\\SqlParser\\Statements\\WithStatement",
+                "withers": [],
+                "cteStatementParser": null,
+                "options": {
+                    "@type": "PhpMyAdmin\\SqlParser\\Components\\OptionsArray",
+                    "options": []
+                },
+                "first": 0,
+                "last": 0
+            }
+        ],
+        "brackets": 1,
+        "strict": false,
+        "errors": []
+    },
+    "errors": {
+        "lexer": [
+            [
+                "Unexpected character.",
+                "]",
+                4,
+                0
+            ]
+        ],
+        "parser": [
+            [
+                "The name of the CTE was expected.",
+                {
+                    "@type": "@3"
+                },
+                0
+            ],
+            [
+                "Unexpected end of the WITH CTE.",
+                {
+                    "@type": "@3"
+                },
+                0
+            ],
+            [
+                "Unexpected beginning of statement.",
+                {
+                    "@type": "@3"
+                },
+                0
+            ]
+        ]
+    }
+}

Original file line number	Diff line number	Diff line change
`@@ -16,6 +16,7 @@`
`16`	`16`
`17`	`17`	`use function array_slice;`
`18`	`18`	`use function count;`
	`19`	`+use function preg_match;`
`19`	`20`
`20`	`21`	`/**`
`21`	`22`	* `WITH` statement.
`@@ -114,7 +115,7 @@ public function parse(Parser $parser, TokensList $list)`
`114`	`115`	`}`
`115`	`116`
`116`	`117`	`if ($state === 0) {`
`117`		`- if ($token->type !== Token::TYPE_NONE) {`
	`118`	`+ if ($token->type !== Token::TYPE_NONE \|\| ! preg_match('/^[a-zA-Z0-9_$]+$/', $token->token)) {`
`118`	`119`	`$parser->error('The name of the CTE was expected.', $token);`
`119`	`120`	`break;`
`120`	`121`	`}`
Original file line number	Diff line number	Diff line change
`@@ -23,6 +23,7 @@ public function bugProvider(): array`
`23`	`23`	`{`
`24`	`24`	`return [`
`25`	`25`	`['bugs/fuzz1'],`
	`26`	`+ ['bugs/fuzz2'],`
`26`	`27`	`['bugs/gh9'],`
`27`	`28`	`['bugs/gh14'],`
`28`	`29`	`['bugs/gh16'],`