symfony
diff --git a/‎src/Symfony/Component/Serializer/Normalizer/AbstractObjectNormalizer.php
Lines changed: 19 additions & 5 deletions b/‎src/Symfony/Component/Serializer/Normalizer/AbstractObjectNormalizer.php
Lines changed: 19 additions & 5 deletions
diff --git a/‎src/Symfony/Component/Serializer/Tests/Fixtures/DummyWithNotNormalizable.php
Lines changed: 22 additions & 0 deletions b/‎src/Symfony/Component/Serializer/Tests/Fixtures/DummyWithNotNormalizable.php
Lines changed: 22 additions & 0 deletions
diff --git a/‎src/Symfony/Component/Serializer/Tests/Fixtures/DummyWithObjectOrBool.php
Lines changed: 22 additions & 0 deletions b/‎src/Symfony/Component/Serializer/Tests/Fixtures/DummyWithObjectOrBool.php
Lines changed: 22 additions & 0 deletions
diff --git a/‎src/Symfony/Component/Serializer/Tests/Fixtures/DummyWithObjectOrNull.php
Lines changed: 22 additions & 0 deletions b/‎src/Symfony/Component/Serializer/Tests/Fixtures/DummyWithObjectOrNull.php
Lines changed: 22 additions & 0 deletions
diff --git a/‎src/Symfony/Component/Serializer/Tests/Fixtures/NotNormalizableDummy.php
Lines changed: 31 additions & 0 deletions b/‎src/Symfony/Component/Serializer/Tests/Fixtures/NotNormalizableDummy.php
Lines changed: 31 additions & 0 deletions
diff --git a/‎src/Symfony/Component/Serializer/Tests/SerializerTest.php
Lines changed: 43 additions & 0 deletions b/‎src/Symfony/Component/Serializer/Tests/SerializerTest.php
Lines changed: 43 additions & 0 deletions
@@ -434,11 +434,16 @@ private function validateAndDenormalize(array $types, string $currentClass, stri
         $isUnionType = \count($types) > 1;
         $extraAttributesException = null;
         $missingConstructorArgumentsException = null;
+        $hasNonObjectType = false;
+        $isUnionTypeOrNullable = $isUnionType;
+
         foreach ($types as $type) {
             if (null === $data && $type->isNullable()) {
                 return null;
             }
 
+            $isUnionTypeOrNullable = $isUnionTypeOrNullable ?: $type->isNullable();
+            $hasNonObjectType = $hasNonObjectType ?: Type::BUILTIN_TYPE_OBJECT !== $type->getBuiltinType();
             $collectionValueType = $type->isCollection() ? $type->getCollectionValueTypes()[0] ?? null : null;
 
             // Fix a collection that contains the only one element
@@ -456,9 +461,10 @@ private function validateAndDenormalize(array $types, string $currentClass, stri
                 // In XML and CSV all basic datatypes are represented as strings, it is e.g. not possible to determine,
                 // if a value is meant to be a string, float, int or a boolean value from the serialized representation.
                 // That's why we have to transform the values, if one of these non-string basic datatypes is expected.
+                $builtinType = $type->getBuiltinType();
                 if (\is_string($data) && (XmlEncoder::FORMAT === $format || CsvEncoder::FORMAT === $format)) {
                     if ('' === $data) {
-                        if (Type::BUILTIN_TYPE_ARRAY === $builtinType = $type->getBuiltinType()) {
+                        if (Type::BUILTIN_TYPE_ARRAY === $builtinType) {
                             return [];
                         }
 
@@ -467,7 +473,7 @@ private function validateAndDenormalize(array $types, string $currentClass, stri
                         }
                     }
 
-                    switch ($builtinType ?? $type->getBuiltinType()) {
+                    switch ($builtinType) {
                         case Type::BUILTIN_TYPE_BOOL:
                             // according to https://www.w3.org/TR/xmlschema-2/#boolean, valid representations are "false", "true", "0" and "1"
                             if ('false' === $data || '0' === $data) {
@@ -564,24 +570,28 @@ private function validateAndDenormalize(array $types, string $currentClass, stri
                     return $data;
                 }
             } catch (NotNor
E864
malizableValueException|InvalidArgumentException $e) {
-                if (!$isUnionType) {
+                if (!$isUnionTypeOrNullable) {
                     throw $e;
                 }
             } catch (ExtraAttributesException $e) {
-                if (!$isUnionType) {
+                if (!$isUnionTypeOrNullable) {
                     throw $e;
                 }
 
                 $extraAttributesException ??= $e;
             } catch (MissingConstructorArgumentsException $e) {
-                if (!$isUnionType) {
+                if (!$isUnionTypeOrNullable) {
                     throw $e;
                 }
 
                 $missingConstructorArgumentsException ??= $e;
             }
         }
 
+        if ($data === '' && $isUnionTypeOrNullable && !$hasNonObjectType && (XmlEncoder::FORMAT === $format || CsvEncoder::FORMAT === $format)) {
+            return null;
+        }
+
         if ($extraAttributesException) {
             throw $extraAttributesException;
         }
@@ -590,6 +600,10 @@ private function validateAndDenormalize(array $types, string $currentClass, stri
             throw $missingConstructorArgumentsException;
         }
 
+        if (!$isUnionType && isset($e)) {
+            throw $e;
+        }
+
         if ($context[self::DISABLE_TYPE_ENFORCEMENT] ?? $this->defaultContext[self::DISABLE_TYPE_ENFORCEMENT] ?? false) {
             return $data;
         }
 
@@ -0,0 +1,22 @@
+<?php
+
+/*
+ * This file is part of the Symfony package.
+ *
+ * (c) Fabien Potencier <fabien@symfony.com>
+ *
+ * For the full copyright and license information, please view the LICENSE
+ * file that was distributed with this source code.
+ */
+
+namespace Symfony\Component\Serializer\Tests\Fixtures;
+
+/**
+ * @author Jeroen <github.com/Jeroeny>
+ */
+class DummyWithNotNormalizable
+{
+    public function __construct(public NotNormalizableDummy|null $value)
+    {
+    }
+}
@@ -0,0 +1,22 @@
+<?php
+
+/*
+ * This file is part of the Symfony package.
+ *
+ * (c) Fabien Potencier <fabien@symfony.com>
+ *
+ * For the full copyright and license information, please view the LICENSE
+ * file that was distributed with this source code.
+ */
+
+namespace Symfony\Component\Serializer\Tests\Fixtures;
+
+/**
+ * @author Jeroen <github.com/Jeroeny>
+ */
+class DummyWithObjectOrBool
+{
+    public function __construct(public Php80WithPromotedTypedConstructor|bool $value)
+    {
+    }
+}
@@ -0,0 +1,22 @@
+<?php
+
+/*
+ * This file is part of the Symfony package.
+ *
+ * (c) Fabien Potencier <fabien@symfony.com>
+ *
+ * For the full copyright and license information, please view the LICENSE
+ * file that was distributed with this source code.
+ */
+
+namespace Symfony\Component\Serializer\Tests\Fixtures;
+
+/**
+ * @author Jeroen <github.com/Jeroeny>
+ */
+class DummyWithObjectOrNull
+{
+    public function __construct(public Php80WithPromotedTypedConstructor|null $value)
+    {
+    }
+}
@@ -0,0 +1,31 @@
+<?php
+
+/*
+ * This file is part of the Symfony package.
+ *
+ * (c) Fabien Potencier <fabien@symfony.com>
+ *
+ * For the full copyright and license information, please view the LICENSE
+ * file that was distributed with this source code.
+ */
+
+namespace Symfony\Component\Serializer\Tests\Fixtures;
+
+use Symfony\Component\Serializer\Exception\NotNormalizableValueException;
+use Symfony\Component\Serializer\Normalizer\DenormalizableInterface;
+use Symfony\Component\Serializer\Normalizer\DenormalizerInterface;
+
+/**
+ * @author Jeroen <github.com/Jeroeny>
+ */
+class NotNormalizableDummy implements DenormalizableInterface
+{
+    public function __construct()
+    {
+    }
+
+    public function denormalize(DenormalizerInterface $denormalizer, float|int|bool|array|string $data, string $format = null, array $context = [])
+    {
+        throw new NotNormalizableValueException();
+    }
+}
@@ -16,10 +16,12 @@
 use Symfony\Component\PropertyInfo\Extractor\PhpDocExtractor;
 use Symfony\Component\PropertyInfo\Extractor\ReflectionExtractor;
 use Symfony\Component\PropertyInfo\PropertyInfoExtractor;
+use Symfony\Component\Serializer\Encoder\CsvEncoder;
 use Symfony\Component\Serializer\Encoder\JsonEncoder;
 use Symfony\Component\Serializer\Exception\ExtraAttributesException;
 use Symfony\Component\Serializer\Exception\InvalidArgumentException;
 use Symfony\Component\Serializer\Exception\LogicException;
+use Symfony\Component\Serializer\Exception\MissingConstructorArgumentsException;
 use Symfony\Component\Serializer\Exception\NotNormalizableValueException;
 use Symfony\Component\Serializer\Exception\PartialDenormalizationException;
 use Symfony\Component\Serializer\Exception\UnexpectedValueException;
@@ -57,6 +59,9 @@
 use Symfony\Component\Serializer\Tests\Fixtures\DummyMessageNumberTwo;
 use Symfony\Component\Serializer\Tests\Fixtures\DummyObjectWithEnumConstructor;
 use Symfony\Component\Serializer\Tests\Fixtures\DummyObjectWithEnumProperty;
+use Symfony\Component\Serializer\Tests\Fixtures\DummyWithNotNormalizable;
+use Symfony\Component\Serializer\Tests\Fixtures\DummyWithObjectOrBool;
+use Symfony\Component\Serializer\Tests\Fixtures\DummyWithObjectOrNull;
 use Symfony\Component\Serializer\Tests\Fixtures\FalseBuiltInDummy;
 use Symfony\Component\Serializer\Tests\Fixtures\FooImplementationDummy;
 use Symfony\Component\Serializer\Tests\Fixtures\FooInterfaceDummyDenormalizer;
@@ -842,6 +847,44 @@ public function testTrueBuiltInTypes()
         $this->assertEquals(new TrueBuiltInDummy(), $actual);
     }
 
+    public function testDeserializeUntypedFormat()
+    {
+        $serializer = new Serializer([new ObjectNormalizer(propertyTypeExtractor: new PropertyInfoExtractor([], [new PhpDocExtractor(), new ReflectionExtractor()]))], ['csv' => new CsvEncoder()]);
+        $actual = $serializer->deserialize('value'.PHP_EOL.',',DummyWithObjectOrNull::class, 'csv', [CsvEncoder::AS_COLLECTION_KEY => false]);
+
+        $this->assertEquals(new DummyWithObjectOrNull(null), $actual);
+    }
+
+    public function testDenormalizeUntypedFormat()
+    {
+        $serializer = new Serializer([new ObjectNormalizer(propertyTypeExtractor: new PropertyInfoExtractor([], [new PhpDocExtractor(), new ReflectionExtractor()]))]);
+        $actual = $serializer->denormalize(['value' => ''],DummyWithObjectOrNull::class, 'xml');
+
+        $this->assertEquals(new DummyWithObjectOrNull(null), $actual);
+    }
+
+    public function testDenormalizeUntypedFormatNotNormalizable()
+    {
+        $this->expectException(NotNormalizableValueException::class);
+        $serializer = new Serializer([new CustomNormalizer(), new ObjectNormalizer(propertyTypeExtractor: new PropertyInfoExtractor([], [new PhpDocExtractor(), new ReflectionExtractor()]))]);
+        $serializer->denormalize(['value' => 'test'],DummyWithNotNormalizable::class, 'xml');
+    }
+
+    public function testDenormalizeUntypedFormatMissingArg()
+    {
+        $this->expectException(MissingConstructorArgumentsException::class);
+        $serializer = new Serializer([new ObjectNormalizer(propertyTypeExtractor: new PropertyInfoExtractor([], [new PhpDocExtractor(), new ReflectionExtractor()]))]);
+        $serializer->denormalize(['value' => 'invalid'],DummyWithObjectOrNull::class, 'xml');
+    }
+
+    public function testDenormalizeUntypedFormatScalar()
+    {
+        $serializer = new Serializer([new ObjectNormalizer(propertyTypeExtractor: new PropertyInfoExtractor([], [new PhpDocExtractor(), new ReflectionExtractor()]))]);
+        $actual = $serializer->denormalize(['value' => 'false'],DummyWithObjectOrBool::class, 'xml');
+
+        $this->assertEquals(new DummyWithObjectOrBool(false), $actual);
+    }
+
     private function serializerWithClassDiscriminator()
     {
         $classMetadataFactory = new ClassMetadataFactory(new AttributeLoader());
Original file line number	Diff line number	Diff line change
`@@ -434,11 +434,16 @@ private function validateAndDenormalize(array $types, string $currentClass, stri`
`434`	`434`	`$isUnionType = \count($types) > 1;`
`435`	`435`	`$extraAttributesException = null;`
`436`	`436`	`$missingConstructorArgumentsException = null;`
	`437`	`+ $hasNonObjectType = false;`
	`438`	`+ $isUnionTypeOrNullable = $isUnionType;`
	`439`	`+`
`437`	`440`	`foreach ($types as $type) {`
`438`	`441`	`if (null === $data && $type->isNullable()) {`
`439`	`442`	`return null;`
`440`	`443`	`}`
`441`	`444`
	`445`	`+ $isUnionTypeOrNullable = $isUnionTypeOrNullable ?: $type->isNullable();`
	`446`	`+ $hasNonObjectType = $hasNonObjectType ?: Type::BUILTIN_TYPE_OBJECT !== $type->getBuiltinType();`
`442`	`447`	`$collectionValueType = $type->isCollection() ? $type->getCollectionValueTypes()[0] ?? null : null;`
`443`	`448`
`444`	`449`	`// Fix a collection that contains the only one element`
`@@ -456,9 +461,10 @@ private function validateAndDenormalize(array $types, string $currentClass, stri`
`456`	`461`	`// In XML and CSV all basic datatypes are represented as strings, it is e.g. not possible to determine,`
`457`	`462`	`// if a value is meant to be a string, float, int or a boolean value from the serialized representation.`
`458`	`463`	`// That's why we have to transform the values, if one of these non-string basic datatypes is expected.`
	`464`	`+ $builtinType = $type->getBuiltinType();`
`459`	`465`	`if (\is_string($data) && (XmlEncoder::FORMAT === $format \|\| CsvEncoder::FORMAT === $format)) {`
`460`	`466`	`if ('' === $data) {`
`461`		`- if (Type::BUILTIN_TYPE_ARRAY === $builtinType = $type->getBuiltinType()) {`
	`467`	`+ if (Type::BUILTIN_TYPE_ARRAY === $builtinType) {`
`462`	`468`	`return [];`
`463`	`469`	`}`
`464`	`470`
`@@ -467,7 +473,7 @@ private function validateAndDenormalize(array $types, string $currentClass, stri`
`467`	`473`	`}`
`468`	`474`	`}`
`469`	`475`
`470`		`- switch ($builtinType ?? $type->getBuiltinType()) {`
	`476`	`+ switch ($builtinType) {`
`471`	`477`	`case Type::BUILTIN_TYPE_BOOL:`
`472`	`478`	`// according to https://www.w3.org/TR/xmlschema-2/#boolean, valid representations are "false", "true", "0" and "1"`
`473`	`479`	`if ('false' === $data \|\| '0' === $data) {`
`@@ -564,24 +570,28 @@ private function validateAndDenormalize(array $types, string $currentClass, stri`
`564`	`570`	`return $data;`
`565`	`571`	`}`
`566`	`572`	`} catch (NotNor E864 malizableValueException\|InvalidArgumentException $e) {`
`567`		`- if (!$isUnionType) {`
	`573`	`+ if (!$isUnionTypeOrNullable) {`
`568`	`574`	`throw $e;`
`569`	`575`	`}`
`570`	`576`	`} catch (ExtraAttributesException $e) {`
`571`		`- if (!$isUnionType) {`
	`577`	`+ if (!$isUnionTypeOrNullable) {`
`572`	`578`	`throw $e;`
`573`	`579`	`}`
`574`	`580`
`575`	`581`	`$extraAttributesException ??= $e;`
`576`	`582`	`} catch (MissingConstructorArgumentsException $e) {`
`577`		`- if (!$isUnionType) {`
	`583`	`+ if (!$isUnionTypeOrNullable) {`
`578`	`584`	`throw $e;`
`579`	`585`	`}`
`580`	`586`
`581`	`587`	`$missingConstructorArgumentsException ??= $e;`
`582`	`588`	`}`
`583`	`589`	`}`
`584`	`590`
	`591`	`+ if ($data === '' && $isUnionTypeOrNullable && !$hasNonObjectType && (XmlEncoder::FORMAT === $format \|\| CsvEncoder::FORMAT === $format)) {`
	`592`	`+ return null;`
	`593`	`+ }`
	`594`	`+`
`585`	`595`	`if ($extraAttributesException) {`
`586`	`596`	`throw $extraAttributesException;`
`587`	`597`	`}`
`@@ -590,6 +600,10 @@ private function validateAndDenormalize(array $types, string $currentClass, stri`
`590`	`600`	`throw $missingConstructorArgumentsException;`
`591`	`601`	`}`
`592`	`602`
	`603`	`+ if (!$isUnionType && isset($e)) {`
	`604`	`+ throw $e;`
	`605`	`+ }`
	`606`	`+`
`593`	`607`	`if ($context[self::DISABLE_TYPE_ENFORCEMENT] ?? $this->defaultContext[self::DISABLE_TYPE_ENFORCEMENT] ?? false) {`
`594`	`608`	`return $data;`
`595`	`609`	`}`