From 92a09fdb713cb33f0409378161ed41dc85a11eb5 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Pawe=C5=82=20Chmielowski?= <pchmielowski@process-one.net>
Date: Wed, 18 Mar 2020 14:36:17 +0100
Subject: [PATCH] Also add "escape '\'" to prepared statements in
 pgsqllike_escape

---
 src/ejabberd_sql.erl | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/ejabberd_sql.erl b/src/ejabberd_sql.erl
index 87679f60b..ddcca0459 100644
--- a/src/ejabberd_sql.erl
+++ b/src/ejabberd_sql.erl
@@ -779,7 +779,7 @@ pgsql_prepare(SQLQuery, State) ->
 	    fun(arg, {Acc, I}) ->
 		{[<<$$, (integer_to_binary(I))/binary>> | Acc], I + 1};
 	       (escape, {Acc, I}) ->
-		   {[<<"">> | Acc], I};
+		   {[<<"ESCAPE E'\\\\'">> | Acc], I};
 	       (List, {Acc, I}) when is_list(List) ->
 		   {[<<$$, (integer_to_binary(I))/binary>> | Acc], I + 1}
 	    end, {[], 1}, (SQLQuery#sql_query.args)(Escape)),