发表新帖
发表新帖

Parsing PL/SQL code to check against syntax and semantic errors

后端 未结
关注
4 815
鱼传尺愫
鱼传尺愫 2021-01-14 04:40

Please consider following scenario:

  • I have a Text-Area and a Button on UI.
  • User will enter a PL/SQL block in
相关标签:
4条回答
  • 梦谈多话
    2021-01-14 04:51

    I think you need a PL/SQL interpreter. It can check the given almost the syntax of the code. If you want to get full check, it is not easy, you have to check the DB objects, properties. permissions etc.

    You can create yourself a PL/SQL interpreter to ensure you requirements, OR you can try this parser: https://github.com/porcelli/plsql-parser

    By the way, I will be in trouble with "execute immediate" -calls.

    0 讨论(0)
  • 伪装坚强ぢ
    2021-01-14 05:02

    If you do have access to a running Oracle system which contains the tables in question, you can use dbms_sql.parse() to check if a given piece of SQL is valid or not.

    Regular DML statements are not execute through parse(), but DDL will be executed immediately. So you might want to check if the SQL is not a DDL statement (or better, only allow certain statements to begin with).

    Note that if the database you are connecting to, does not contain the tables used in the SQL, parse() will throw an error even if the statement is syntactically correct.

    0 讨论(0)
  • 耶瑟儿~
    2021-01-14 05:03

    It is difficult and you probably have to consider all kind of possiblities and make sure that the users do not wreck you database by making sure to grant very little rights etc. You got the point.

    This is not the full solution but it points you into the right direction.

    You could try to embed it into a CREATE or REPLACE PROCEDURE and fetch errors. Something like this:

    declare
  text_area varchar2(4000) := 'declare x number; begin xy := x + 1; end;';
begin
  execute immediate 'create or replace procedure DUMMY#__ IS BEGIN null; begin '|| text_area ||' end; END;';
exception
    -- see comment below about error handling
    when others then 
        -- signal yourself it went wrong
        RAISE;   
end;

    The trouble with an anonymous block would be that it is right away executed. But that way you only execute a createion of the procedure which does the compile. If you have several users you probably want to create different procedure names or you want to create different schemas even to prevent conflicts. As I said this is not the full solution but just pointing into some direction.

    "ORA-23344 success with compilation error" can be used to fetch compile errors.

    0 讨论(0)
  • 礼貌的吻别
    2021-01-14 05:06 
    SQL> explain plan for select from dual;
explain plan for select from dual
                        *
ERROR at line 1:
ORA-00936: missing expression


SQL> explain plan for select * from dual;

Explained.

    or

    declare
  c integer := dbms_sql.open_cursor();
begin
 dbms_sql.parse(c, 'select * emp', dbms_sql.native);
 dbms_sql.close_cursor(c);
end;
/
Error at line 1
ORA-00923: FROM keyword not found where expected
ORA-06512: at "SYS.DBMS_SQL", line 1053
ORA-06512: at line 4

    or hit http://www.softpedia.com/get/Internet/Servers/Database-Utils/EasySQL-Checker-for-Oracle.shtml

    0 讨论(0)
 看不清?
提交回复
热议问题