[MDEV-8248] mysqldump incorrect identifier quoting during equality comparison - Jira

XML

Word

Printable

Details

Type: Bug
Status: Closed (View Workflow)
Priority: Major
Resolution: Fixed
Affects Version/s: 10.1
Fix Version/s: 10.1.5
Component/s: Scripts & Clients
Labels:
None

Description

When performing queries like the one in get_table_structure(), that make use of schema object names as strings for equality comparison, we must make sure to format the string so as to escape any characters that might affect the query.

Query:

  const char *show_fields_stmt= "SELECT `COLUMN_NAME` AS `Field`, "

                                "`COLUMN_TYPE` AS `Type`, "

                                "`IS_NULLABLE` AS `Null`, "

                                "`COLUMN_KEY` AS `Key`, "

                                "`COLUMN_DEFAULT` AS `Default`, "

                                "`EXTRA` AS `Extra`, "

                                "`COLUMN_COMMENT` AS `Comment` "

                                "FROM `INFORMATION_SCHEMA`.`COLUMNS` WHERE "

                                "TABLE_SCHEMA = '%s' AND TABLE_NAME = '%s'";

    /* ... snip ... */

    /* This needs to quote the identifiers db and table. quote_for_equal() does the job. */

    my_snprintf(query_buff, sizeof(query_buff), show_fields_stmt, db, table);

Attachments

Activity

People

Assignee:: Vicențiu Ciorbaru

Reporter:: Vicențiu Ciorbaru

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 2015-05-30 12:10

Updated:: 2015-06-01 01:45

Resolved:: 2015-05-30 13:20

Git Integration

Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.