Page MenuHomePhabricator
Create Task
Maniphest T73207

MS SQL Driver doesn't handle escaping for LIKE patterns correctly
Closed, ResolvedPublic
Actions

Description

Author: emadelwany

Description:
MS SQL requires specifying the escape character in the query using the ESCAPE directive. The way it is currently handled leads to incorrect escaping, for example, simpleSearch doesn't work since the backend query contains something like:

"...page_title LIKE '%foo\_bar'%..." which works for most DB's, but MS SQL requires:
"...page_title LIKE '%foo\_bar'% ESCAPE '\'..."

This is breaking various functions around the code base that expect LIKE queries to work correctly.

Version: 1.25-git
Severity: normal

Details

Reference
bz71207
ProjectBranchLines +/-Subject
mediawiki/coremaster+29 -0Fix escaping for MSSQL LIKE queries.
Customize query in gerrit

Revisions and Commits

rMW MediaWiki
rMWa65d43b836d7 Fix escaping for MSSQL LIKE queries.

Event Timeline

bzimport raised the priority of this task from to Medium.Nov 22 2014, 3:51 AM
bzimport added a project: Wikimedia-Rdbms.
bzimport set Reference to bz71207.
bzimport added a subscriber: Unknown Object (MLST).
bzimport created this task.Sep 23 2014, 11:10 PM
bzimport added a comment.Sep 23 2014, 11:34 PM

gerritadmin wrote:

Change 162508 had a related patch set uploaded by Emadelwany:
Add ESCAPE identifier to MS SQL LIKE queries so that the escaping would work as expected.

https://gerrit.wikimedia.org/r/162508

gerritbot added a subscriber: gerritbot.Apr 25 2016, 4:51 AM

Change 162508 had a related patch set uploaded (by Legoktm):
Fix escaping for MSSQL LIKE queries.

https://gerrit.wikimedia.org/r/162508

gerritbot added a comment.Apr 25 2016, 5:01 AM

Change 162508 merged by jenkins-bot:
Fix escaping for MSSQL LIKE queries.

https://gerrit.wikimedia.org/r/162508

ReleaseTaggerBot added projects: MW-1.27-release-notes, MW-1.27-release (WMF-deploy-2016-04-26_(1.27.0-wmf.22)).Apr 25 2016, 6:00 AM
Skizzerz closed this task as Resolved by committing rMWa65d43b836d7: Fix escaping for MSSQL LIKE queries..Apr 28 2016, 3:00 AM
Skizzerz added a commit: rMWa65d43b836d7: Fix escaping for MSSQL LIKE queries..
tstarling added a project: MSSQL.May 19 2017, 10:11 AM
tstarling removed a parent task: T11767: [DO NOT USE] Microsoft SQL Server/MSSQL support (tracking).May 19 2017, 10:15 AM
Content licensed under Creative Commons Attribution-ShareAlike 3.0 (CC-BY-SA) unless otherwise noted; code licensed under GNU General Public License (GPL) or other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL