private function quoteSql($sql)
{
return DB_Helper::quoteTableName($this, $this->tablePrefix, $sql);
}
/**
* @param string $sql the SQL to be quoted
* @param array $params
* @return string the quoted SQL
*/
private function quoteSql($sql, $params)
{
/**
* NOTE: PEAR driver treats these three as placeholders: '?&!'
* but we want to use only '?', so need to quote these others first
*
* @see DB_common::prepare()
*/
if (count($params)) {
$sql = preg_replace('/((?<!\\\\)[&!])/', '\\\\$1', $sql);
}
return DB_Helper::quoteTableName($this, $this->tablePrefix, $sql);
}