Thread: BUG #5505: Busted referential integrity with triggers
The following bug has been logged online: Bug reference: 5505 Logged by: Tommy McDaniel Email address: tommstein@myway.com PostgreSQL version: 8.4.4 Operating system: Kubuntu 9.10 Description: Busted referential integrity with triggers Details: Let us create a table as follows: CREATE TABLE table_1 ( field_1 character varying(20) PRIMARY KEY ); Let us create another table as follows: CREATE TABLE table_2 ( field_2 character varying(20) PRIMARY KEY REFERENCES table_1 ON UPDATE CASCADE ); Let us also create a trigger to disable UPDATEs on table_2: CREATE FUNCTION cancel_update() RETURNS trigger AS $$ BEGIN RETURN NULL; END; $$ LANGUAGE plpgsql; CREATE TRIGGER cancel_update_trigger BEFORE UPDATE ON table_2 FOR EACH ROW EXECUTE PROCEDURE cancel_update(); Let us now insert some data: INSERT INTO table_1 VALUES ('val_1'); INSERT INTO table_2 VALUES ('val_1'); It does what we expect: testdb=# SELECT * FROM table_1; field_1 --------- val_1 (1 row) testdb=# SELECT * FROM table_2; field_2 --------- val_1 (1 row) Now we decide to change the value in table_1: UPDATE table_1 SET field_1 = 'val_2' WHERE field_1 = 'val_1'; Now let's see what values we have in the database: testdb=# SELECT * FROM table_1; field_1 --------- val_2 (1 row) testdb=# SELECT * FROM table_2; field_2 --------- val_1 (1 row) And, we have now broken referential integrity. I expected that ON UPDATE CASCADE would ignore the trigger. Failing that, I would still expect the foreign key constraint to be checked and raise an error. Neither appears to be happening, so we're silently getting busted referential integrity. This makes me sad.
"Tommy McDaniel" <tommstein@myway.com> writes: > Let us also create a trigger to disable UPDATEs on table_2: > ... > And, we have now broken referential integrity. Yup, this is not a bug, it's a feature. Triggers fire on referential-integrity updates. (If they didn't, you could not for example have a logging trigger log RI actions.) If you don't want to break RI, you'd better think more carefully about what your trigger does. regards, tom lane
I can understand firing the triggers. But what's up with not checking that = the foreign key constraint is met? If the user has to manually ensure that = values maintain referential integrity, why have foreign keys at all? The wh= ole point of foreign keys is to make the database ensure referential integr= ity is maintained instead of having to do it manually. Tommy McDaniel -----Original Message----- From: "Tom Lane" [tgl@sss.pgh.pa.us] Date: 06/14/2010 08:13 AM To: "Tommy McDaniel" <tommstein@myway.com> CC: pgsql-bugs@postgresql.org Subject: Re: [BUGS] BUG #5505: Busted referential integrity with triggers= =20 "Tommy McDaniel" <tommstein@myway.com> writes: > Let us also create a trigger to disable UPDATEs on table_2: > ... > And, we have now broken referential integrity. Yup, this is not a bug, it's a feature. Triggers fire on referential-integrity updates. (If they didn't, you could not for example have a logging trigger log RI actions.) If you don't want to break RI, you'd better think more carefully about what your trigger does. regards, tom lane
"Tommy McDaniel" <tommstein@myway.com> writes: > I can understand firing the triggers. But what's up with not checking that the foreign key constraint is met? If the userhas to manually ensure that values maintain referential integrity, why have foreign keys at all? The whole point of foreignkeys is to make the database ensure referential integrity is maintained instead of having to do it manually. [ shrug... ] The database is doing its best. Do you really want us to incur the extra overhead of checking that a trigger didn't screw things up? Exactly how far should that go? For instance, maybe we have to check that the trigger didn't queue a subsequent event that will make the undesired change after we look? I can assure you that far more people would complain about the useless overhead induced by rechecking than will complain about the fact that they can write triggers that will fire on RI updates. regards, tom lane