@dmsnell can you poke any holes in this? We assume everything is UTF-8, and if it isn't then GIGO.

It'd be great to get more eyes on this. The context is:

1. We know what the DEFAULT 'some-value' is in SQLite.
2. We want to convert the 'some-value' part to MySQL for a DEFAULT 'some-value' in an exported MySQL CREATE TABLE statement.
3. What characters that come in raw from SQLite do we need to escape?

🤔 or we could bale out of the escaping part of the problem:

CREATE TABLE  `my_table` (
  `id` INT NOT NULL,
  `name` VARCHAR(45) DEFAULT (FROM_BASE64('aGV5IPCfpJQ='))
) ENGINE = InnoDB;

@JanJakes see also https://github.com/adamziel/zs-sync/blob/trunk/lib/class.zs-sync-mysql-helper.php for escaping inspiration

@adamziel Oh, that's an elegant solution! But here's the catch — https://dev.mysql.com/doc/refman/8.0/en/data-type-defaults.html — it only works for MySQL >= 8.0.13 😞

So, I was digging deeper, and it seems that PDO\SQLite always uses UTF-8. SQLite C API's can also work with UTF-16, but those are not used by PDO.

So generally speaking, escaping ASCII control characters in this way should be fine, we only need to make sure we list them all. It actually seems that mysqli.real-escape-string.php lists less of them than MySQL docs, so I'll need to verify that.

The only issue could be SQLite's GIGO policy — the fact that they don't enforce UTF-8 validity. We could strip off all invalid UTF-8 sequences, here's a neat trick:

htmlspecialchars_decode(htmlspecialchars($s, ENT_NOQUOTES | ENT_IGNORE, 'UTF-8'), ENT_NOQUOTES);

But in that case... what other values should we escape as well? Seems like SQLite's GIGO policy applies to the database schema as well, so an invalid UTF-8 sequence in a table or a column name could cause troubles too. Maybe that's beyond the scope here.

I don't see anything wrong with embracing GIGO on our end. We just have to make sure we're working with a utf-8 connection for this reason.

Also, WordPress requires MySQL >= 8.0. We could be a little bit stricter and require 8.0.13 here if that makes it easier. We'll still have to solve the escaping in a medium term but maybe we don't have to block this PR.

@adamziel

I don't see anything wrong with embracing GIGO on our end. We just have to make sure we're working with a utf-8 connection for this reason.

In PHP, the SQLite connection will always be UTF-8. However, if someone saves invalid UTF-8, and we later fetch it and try to manipulate it (e.g., escaping it), that could probably cause some issues, but that's the SQLite GIGO.

Also, WordPress requires MySQL >= 8.0.

Unfortunately, it's 5.5.5+ and 5 has still around 30% of the usage: https://wordpress.org/about/stats/

Unfortunately, it's 5.5.5+ and 5 has still around 30% of the usage: wordpress.org/about/stats

You're a treasure. Thank you for checking this and not just blindly accepting what I said 🙇

In PHP, the SQLite connection will always be UTF-8. However, if someone saves invalid UTF-8, and we later fetch it and try to manipulate it (e.g., escaping it), that could probably cause some issues, but that's the SQLite GIGO.

That's our backend and we can't do any better than that. Let's just embrace it. UTF-8 is a fine constraint to have and I don't think WordPress is actually compatible with any other encoding, other than by accident. We could even refuse to execute any non-utf8 SET NAMES and CREATE TABLE queries which would cleanly resolve the most difficult encoding issues. Even better, a hypothetical developers who uses latin2 would see the error, get annoyed, create an issue, and teach us about their use-case.

nit – how about heredoc or nowdoc to make it a bit more readable for humans?

For the purposes of this PR it's lovely. Thank you for all the thorough escaping!

Future-wise, we should start a separate discussion about query formatting. Having two formatting systems is not ideal, even if only because the sprintf() caller may accidentally pull an extra ? into the query. CC @dmsnell

That being said, I wouldn't worry about that too much here. We have to stop somewhere and that seems like a reasonable boundary.

What do you think about extends \PDO as a way of enforcing the interface? Then, we can preface this with if(!class_exists('\PDO')) { class \PDO {} } to prevent fatal errors on PDO-less installations.

I also wonder about clarity. Since this is SQLite-specific, in the future we could have a separate WP_MySQL_Over_SQLite_Connection class that will expect a different SQL dialect and would expose MySQL-specific quote and quote_identifier implementation. Nothing actionable here, I'm just thinking out loud.

@adamziel My thinking here was making an "internal" wrapper of PDO\SQLite or SQLite3 (or both) for connection to the SQLite database. The part that will need to expose a unified API (e.g., PDO-like), is the current WP_SQLite_Driver, I think.

But I see making this adhere to the PDO API may make be useful as well, especially to avoid reinventing the APIs.

As for the clarity of the APIs, maybe we could use the DSN prefix as PDO does? Something like:

$connection = new WP_PDO('mysql:host=localhost;dbname=wordpress'); // MySQL
$connection = new WP_PDO('sqlite:dbname=wordpress'); // SQLite -- this is the one we're discussing now
$connection = new WP_PDO('mysql-on-sqlite:dbname=wordpress'); // MySQL on SQLite -- this is the new driver
$connection = new WP_PDO('pgsql:host=localhost;dbname=wordpress'); // Postgres
$connection = new WP_PDO('pgsql-on-sqlite:dbname=wordpress'); // Postgres on SQLite

At first, it felt wrong, but the more I think about it the more I like it. It's the most connection interface we can possibly offer. Really nice idea. If I'm to nitpick, maybe I'd do WP_PDO::connect() instead of new WP_PDO just to return the correct class instance right away and save on WP_PDO proxy where each method just calls $this->actual_driver->method()

Follow-up PR idea: use a SQL-specific exception class.