ret = snprintf(query, sizeof(query), "SELECT count(*) FROM "PHND_TABLE_BLOCKNUMBER" "
"WHERE user_id = %d AND (CASE "
"WHEN match_type = %d "
- "THEN '%s' = number OR '%s' = normalized_number "
+ "THEN ? = number OR '%s' = normalized_number "
"WHEN match_type = %d "
- "THEN SUBSTR('%s', 1, LENGTH(number)) = number OR "
+ "THEN SUBSTR(?, 1, LENGTH(number)) = number OR "
"SUBSTR('%s', 1, LENGTH(normalized_number)) = normalized_number "
"WHEN match_type = %d "
- "THEN SUBSTR('%s', -LENGTH(normalized_number)) = number "
+ "THEN SUBSTR(?, -LENGTH(normalized_number)) = number "
"WHEN match_type = %d "
- "THEN INSTR('%s', number) "
+ "THEN INSTR(?, number) "
"END) ",
user_id,
- PHONE_NUMBER_MATCH_TYPE_EXACTLY, number, normalized,
- PHONE_NUMBER_MATCH_TYPE_STARTS_WITH, number, normalized,
- PHONE_NUMBER_MATCH_TYPE_ENDS_WITH, number,
- PHONE_NUMBER_MATCH_TYPE_INCLUDES, number);
+ PHONE_NUMBER_MATCH_TYPE_EXACTLY, normalized,
+ PHONE_NUMBER_MATCH_TYPE_STARTS_WITH, normalized,
+ PHONE_NUMBER_MATCH_TYPE_ENDS_WITH,
+ PHONE_NUMBER_MATCH_TYPE_INCLUDES);
DBG("query : %s", query);
return ret;
/* LCOV_EXCL_STOP */
}
+
+ for (int i = 1; i <= 4; i++)
+ sqlite3_bind_text(stmt, i, number, strlen(number), SQLITE_STATIC);
+
int count = 0;
if (PHND_SQLITE_ROW == phnd_sqlite_step(stmt))
count = sqlite3_column_int(stmt, 0);
projects / platform / core / telephony / phonenumber-utils.git / commitdiff