MS SQL Driver doesn't handle escaping for LIKE patterns correctly
Closed, ResolvedPublic
Actions

Description

Author: emadelwany

Description:
MS SQL requires specifying the escape character in the query using the ESCAPE directive. The way it is currently handled leads to incorrect escaping, for example, simpleSearch doesn't work since the backend query contains something like:

"...page_title LIKE '%foo\_bar'%..." which works for most DB's, but MS SQL requires:
"...page_title LIKE '%foo\_bar'% ESCAPE '\'..."

This is breaking various functions around the code base that expect LIKE queries to work correctly.

Version: 1.25-git
Severity: normal

Details

Commits: rMWa65d43b836d7: Fix escaping for MSSQL LIKE queries.
Reference: bz71207

Event Timeline

bzimport added a project: MediaWiki-Database.Nov 22 2014, 3:51 AM

bzimport raised the priority of this task from to Normal.

bzimport set Reference to bz71207.

bzimport added a subscriber: Unknown Object (MLST).

bzimport created this task.Sep 23 2014, 11:10 PM

gerritadmin wrote:

Change 162508 had a related patch set uploaded by Emadelwany:
Add ESCAPE identifier to MS SQL LIKE queries so that the escaping would work as expected.

https://gerrit.wikimedia.org/r/162508

Change 162508 had a related patch set uploaded (by Legoktm):
Fix escaping for MSSQL LIKE queries.

https://gerrit.wikimedia.org/r/162508

Change 162508 merged by jenkins-bot:
Fix escaping for MSSQL LIKE queries.

https://gerrit.wikimedia.org/r/162508

ReleaseTaggerBot added projects: MW-1.27-release-notes, MW-1.27-release (WMF-deploy-2016-04-26_(1.27.0-wmf.22)).Apr 25 2016, 6:00 AM

Skizzerz closed this task as Resolved by committing rMWa65d43b836d7: Fix escaping for MSSQL LIKE queries..Apr 28 2016, 3:00 AM

Skizzerz added a commit: rMWa65d43b836d7: Fix escaping for MSSQL LIKE queries..

tstarling added a project: MSSQL.May 19 2017, 10:11 AM

tstarling removed a parent task: T11767: [DO NOT USE] Microsoft SQL Server/MSSQL support (tracking).May 19 2017, 10:15 AM