Movatterモバイル変換

[0]ホーム
URL:

Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly

 Sign up
Appearance settings

Fix backslash escape handling in SQL string literals with performance optimization#2335

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to ourterms of service andprivacy statement. We’ll occasionally send you account related emails.

Already on GitHub?Sign in to your account

Open
Copilot wants to merge11 commits intodevelop
base:develop
Choose a base branch
Loading
fromcopilot/fix-ascii-escapes
Open
Changes from1 commit
Commits
Show all changes
11 commits
Select commitHold shift + click to select a range
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
PrevPrevious commit
NextNext commit
Add double quote and parameterized query tests
Added two new test sections:- Test G: Double quote escaping tests, documenting that AlaSQL treats double quotes in double-quoted strings as literals (not escape sequences), which is correct behavior since double quotes are typically for identifiers in SQL- Test H: Parameterized queries with escaped data, testing round-trip behavior with single quotes, backslashes, and combinations passed as parameters and stored/retrieved from tablesAll 8 test sections now pass, providing comprehensive coverage of string literal escaping.Co-authored-by: mathiasrw <1063454+mathiasrw@users.noreply.github.com>
  • Loading branch information
@mathiasrw
Copilot andmathiasrw committedDec 12, 2025
commit8235c493f905aa5a310d02043a75f095897c919f

Some comments aren't visible on the classic Files Changed page.

81 changes: 81 additions & 0 deletionstest/test489.js
View file
Open in desktop
Original file line numberDiff line numberDiff line change
Expand Up@@ -111,4 +111,85 @@ describe('Test 489 - ASCII with backslash character', function () {
var result = alasql("VALUE OF SELECT '\\\\\\\\''\\\\'''");
assert.equal(result, "\\\\'\\'");
});

it('G) Double quote escaping tests', function () {
// Note: In SQL, double quotes are typically for identifiers, not string literals
// AlaSQL allows both single and double quotes for strings, but only single quote
// doubling works as an escape sequence. Double quotes inside double-quoted strings
// are treated as literal characters, not escape sequences.

// Double-quoted string with literal double quotes (no escaping)
assert.equal(alasql('VALUE OF SELECT """"'), '""');

// Double-quoted string (alternative syntax, no escaping needed)
assert.equal(alasql("VALUE OF SELECT \"\"\"\""), '""');

// Double quote inside single quotes (no escaping, just literal characters)
assert.equal(alasql("VALUE OF SELECT '\"\"'"), '""');

// Single double quote in double-quoted string
assert.equal(alasql('VALUE OF SELECT "x"'), 'x');

// Multiple double quotes are literal in double-quoted strings
assert.equal(alasql('VALUE OF SELECT "a""b"'), 'a""b');
});

it('H) Parameterized queries with escaped data', function () {
// Test how the parser handles escaped characters when data is passed in

// Single quote in parameter
var res1 = alasql("VALUE OF SELECT ?", ["'"]);
assert.equal(res1, "'");

// Double single quotes in parameter
var res2 = alasql("VALUE OF SELECT ?", ["''"]);
assert.equal(res2, "''");

// Backslash in parameter
var res3 = alasql("VALUE OF SELECT ?", ["\\"]);
assert.equal(res3, "\\");

// Multiple backslashes in parameter
var res4 = alasql("VALUE OF SELECT ?", ["\\\\"]);
assert.equal(res4, "\\\\");

// Backslash followed by quote in parameter
var res5 = alasql("VALUE OF SELECT ?", ["\\'"]);
assert.equal(res5, "\\'");

// Double quote in parameter
var res6 = alasql("VALUE OF SELECT ?", ['"']);
assert.equal(res6, '"');

// Double quotes in parameter
var res7 = alasql("VALUE OF SELECT ?", ['""']);
assert.equal(res7, '""');

// Complex: backslash, quote, backslash in parameter
var res8 = alasql("VALUE OF SELECT ?", ["\\'\\"]);
assert.equal(res8, "\\'\\");

// Test round-trip: insert and select with escaped characters
alasql("CREATE TABLE test_escape (val STRING)");

// Insert single quote
alasql("INSERT INTO test_escape VALUES (?)", ["'"]);
var result1 = alasql("SELECT val FROM test_escape");
assert.equal(result1[0].val, "'");

// Clear and insert backslash
alasql("DELETE FROM test_escape");
alasql("INSERT INTO test_escape VALUES (?)", ["\\"]);
var result2 = alasql("SELECT val FROM test_escape");
assert.equal(result2[0].val, "\\");

// Clear and insert backslash + quote
alasql("DELETE FROM test_escape");
alasql("INSERT INTO test_escape VALUES (?)", ["\\'"]);
var result3 = alasql("SELECT val FROM test_escape");
assert.equal(result3[0].val, "\\'");

// Clean up
alasql("DROP TABLE test_escape");
});
});
[8]ページ先頭
©2009-2025 Movatter.jp