projects / pithos / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Escape catch-all characters in LIKE queries.
[pithos] / pithos / backends / lib / sqlalchemy / xfeatures.py
diff --git a/pithos/backends/lib/sqlalchemy/xfeatures.py b/pithos/backends/lib/sqlalchemy/xfeatures.py
index 7cdcf1e..7bfacb9 100644 (file)
--- a/pithos/backends/lib/sqlalchemy/xfeatures.py
+++ b/pithos/backends/lib/sqlalchemy/xfeatures.py
@@ -92,7 +92,7 @@ class XFeatures(DBWorker):
             return [inherited]
         
         s = select([self.xfeatures.c.path, self.xfeatures.c.feature_id])
-        s = s.where(and_(self.xfeatures.c.path.like(path + '%'),
+        s = s.where(and_(self.xfeatures.c.path.like(self.escape_like(path) + '%', escape='\\'),
                      self.xfeatures.c.path != path))
         s = s.order_by(self.xfeatures.c.path)
         r = self.conn.execute(s)
Unnamed repository; edit this file 'description' to name the repository.