Fix _real_escape behavior for non-scalar values

Author: JanJakes

.github/workflows/wp-tests-phpunit-run.js

@@ -20,10 +20,6 @@ const expectedErrors = [
 	'Tests_Comment_WpComment::test_get_instance_should_succeed_for_float_that_is_equal_to_post_id',
 	'Tests_Cron_getCronArray::test_get_cron_array_output_validation with data set "null"',
 	'Tests_DB_Charset::test_strip_invalid_text',
-	'Tests_DB_RealEscape::test_real_escape_input_type_handling with data set "empty array"',
-	'Tests_DB_RealEscape::test_real_escape_input_type_handling with data set "non-empty array"',
-	'Tests_DB_RealEscape::test_real_escape_input_type_handling with data set "null"',
-	'Tests_DB_RealEscape::test_real_escape_input_type_handling with data set "simple object"',
 	'Tests_DB::test_db_reconnect',
 	'Tests_DB::test_get_col_info',
 	'Tests_DB::test_prepare_should_respect_the_allow_unsafe_unquoted_parameters_property with data set "escaped-false-1"',
@@ -44,39 +40,8 @@ const expectedErrors = [
 	'Tests_DB::test_set_allowed_incompatible_sql_mode',
 	'Tests_DB::test_set_incompatible_sql_mode',
 	'Tests_DB::test_set_sql_mode',
-	'Tests_Import_Import::test_double_import',
-	'Tests_Import_Import::test_slashes_should_not_be_stripped',
-	'Tests_Import_Import::test_small_import',
-	'Tests_Import_Postmeta::test_serialized_postmeta_no_cdata',
-	'Tests_Import_Postmeta::test_serialized_postmeta_with_cdata',
-	'Tests_Import_Postmeta::test_serialized_postmeta_with_evil_stuff_in_cdata',
-	'Tests_Import_Postmeta::test_utw_postmeta',
-	'Tests_Meta_Query::test_convert_null_value_to_empty_string',
-	'Tests_Meta_Query::test_null_value_sql',
-	'Tests_Option_WpPrimeOptionCaches::test_get_option_should_return_identical_value_when_pre_primed_by_wp_prime_option_caches with data set "null"',
-	'Tests_Option_WpPrimeOptionCaches::test_wp_prime_option_caches_cache_should_be_identical_to_get_option_cache with data set "null"',
-	'Tests_Option_WpPrimeOptionCaches::test_wp_prime_option_caches_does_not_trigger_db_queries_for_alloptions with data set "null"',
-	'Tests_Option_WpPrimeOptionCaches::test_wp_prime_option_caches_does_not_trigger_db_queries_repriming_options with data set "null"',
-	'Tests_Post_Nav_Menu::test_class_applied_to_front_page_item',
-	'Tests_Post_Nav_Menu::test_class_applied_to_privacy_policy_page_item',
-	'Tests_Post_Nav_Menu::test_class_not_applied_to_taxonomies_with_same_id_as_front_page_item',
-	'Tests_Post_Nav_Menu::test_iri_current_menu_item with data set #0',
-	'Tests_Post_Nav_Menu::test_iri_current_menu_item with data set #1',
-	'Tests_Post_Nav_Menu::test_iri_current_menu_item with data set #2',
-	'Tests_Post_Nav_Menu::test_iri_current_menu_item with data set #3',
-	'Tests_Post_Nav_Menu::test_iri_current_menu_item with data set #4',
-	'Tests_Post_Nav_Menu::test_iri_current_menu_item with data set #5',
-	'Tests_Post_Nav_Menu::test_no_front_page_class_applied',
-	'Tests_Post_Nav_Menu::test_no_privacy_policy_class_applied',
-	'Tests_Post_Nav_Menu::test_orphan_nav_menu_item',
-	'Tests_Post_Nav_Menu::test_parent_ancestor_for_post_archive',
-	'Tests_Post_Nav_Menu::test_wp_get_nav_menu_items_with_taxonomy_term',
 	'Tests_Post_wpPost::test_get_instance_should_succeed_for_float_that_is_equal_to_post_id',
 	'Tests_Post::test_stick_post_with_unexpected_sticky_posts_option with data set "null"',
-	'Tests_Post::test_wp_tag_cloud_link_with_post_type',
-	'Tests_Term_getTerms::test_wp_delete_term_should_invalidate_cache',
-	'Tests_Term_GetTheTerms::test_term_cache_should_be_invalidated_on_remove_object_terms',
-	'Tests_Term_GetTheTerms::test_term_cache_should_be_invalidated_on_set_object_terms',
 ];
 
 const expectedFailures = [
@@ -115,46 +80,7 @@ const expectedFailures = [
 	'Tests_Menu_Walker_Nav_Menu::test_start_el_with_empty_attributes with data set #5',
 	'Tests_Menu_Walker_Nav_Menu::test_start_el_with_empty_attributes with data set #6',
 	'Tests_Menu_Walker_Nav_Menu::test_start_el_with_empty_attributes with data set #7',
-	'Tests_Menu_wpNavMenu::test_parent_with_higher_id_should_not_error',
-	'Tests_Menu_wpNavMenu::test_wp_nav_menu_should_have_has_children_class_without_custom_depth',
 	'Tests_Menu_wpNavMenu::test_wp_nav_menu_should_not_have_has_children_class_with_custom_depth',
-	'Tests_Post_Nav_Menu::test_wp_get_nav_menu_items_cache_primes_posts',
-	'Tests_Post_Nav_Menu::test_wp_get_nav_menu_items_cache_primes_terms',
-	'Tests_Post_Nav_Menu::test_wp_nav_menu_empty_container',
-	'Tests_Post_Nav_Menu::test_wp_nav_menu_whitespace_options',
-	'Tests_Sitemaps_Sitemaps::test_get_sitemap_entries_post_with_permalinks',
-	'Tests_Sitemaps_Sitemaps::test_get_sitemap_entries',
-	'Tests_Sitemaps_wpSitemapsTaxonomies::test_get_sitemap_entries_custom_taxonomies',
-	'Tests_Sitemaps_wpSitemapsTaxonomies::test_get_url_list_custom_taxonomy',
-	'Tests_Sitemaps_wpSitemapsTaxonomies::test_get_url_list_taxonomies',
-	'Tests_Term_getTerms::test_get_terms_cache_should_be_missed_when_passing_number',
-	'Tests_Term_getTerms::test_get_terms_cache',
-	'Tests_Term_getTerms::test_get_terms_grandparent_zero',
-	'Tests_Term_getTerms::test_get_terms_hierarchical_tax_hide_empty_true_fields_count_hierarchical_false',
-	'Tests_Term_getTerms::test_get_terms_hierarchical_tax_hide_empty_true_fields_count',
-	'Tests_Term_getTerms::test_get_terms_hierarchical_tax_hide_empty_true_fields_idname_hierarchical_false',
-	'Tests_Term_getTerms::test_get_terms_hierarchical_tax_hide_empty_true_fields_idname',
-	'Tests_Term_getTerms::test_get_terms_hierarchical_tax_hide_empty_true_fields_idparent_hierarchical_false',
-	'Tests_Term_getTerms::test_get_terms_hierarchical_tax_hide_empty_true_fields_idparent',
-	'Tests_Term_getTerms::test_get_terms_hierarchical_tax_hide_empty_true_fields_ids_hierarchical_false',
-	'Tests_Term_getTerms::test_get_terms_hierarchical_tax_hide_empty_true_fields_ids',
-	'Tests_Term_getTerms::test_get_terms_hierarchical_tax_hide_empty_true_fields_idslug_hierarchical_false',
-	'Tests_Term_getTerms::test_get_terms_hierarchical_tax_hide_empty_true_fields_idslug',
-	'Tests_Term_getTerms::test_get_terms_hierarchical_tax_hide_empty_true_fields_names_hierarchical_false',
-	'Tests_Term_getTerms::test_get_terms_hierarchical_tax_hide_empty_true_fields_names',
-	'Tests_Term_getTerms::test_get_terms_parent_zero',
-	'Tests_Term_getTerms::test_get_terms_seven_levels_deep',
-	'Tests_Term_getTerms::test_get_terms_without_update_get_terms_cache',
-	'Tests_Term_getTerms::test_hierarchical_false_with_child_of_and_direct_child',
-	'Tests_Term_getTerms::test_hierarchical_should_recurse_properly_for_all_taxonomies',
-	'Tests_Term_getTerms::test_hierarchical_true_parent_overrides_child_of',
-	'Tests_Term_getTerms::test_hierarchical_true_with_child_of_should_return_grandchildren',
-	'Tests_Term_getTerms::test_hierarchical_true_with_parent',
-	'Tests_Term_getTerms::test_meta_query_args_only',
-	'Tests_Term_GetTheTerms::test_count_should_not_be_improperly_cached',
-	'Tests_Term::test_wp_count_terms',
-	'WP_Test_REST_Categories_Controller::test_get_items_hide_empty_arg',
-	'WP_Test_REST_Tags_Controller::test_get_items_hide_empty_arg',
 ];
 
 console.log( 'Running WordPress PHPUnit tests with expected failures tracking...' );

wp-includes/sqlite/class-wp-sqlite-db.php

@@ -99,12 +99,15 @@ public function select( $db, $dbh = null ) {
 	 *
 	 * @see wpdb::_real_escape()
 	 *
-	 * @param string $str The string to escape.
+	 * @param string $data The string to escape.
 	 *
 	 * @return string escaped
 	 */
-	public function _real_escape( $str ) {
-		return addslashes( $str );
+	public function _real_escape( $data ) {
+		if ( ! is_scalar( $data ) ) {
+			return '';
+		}
+		return addslashes( $data );
 	}
 
 	/**