doublequote and confuse the Ingres interpreter)
register struct validate *v = q->validate;
register int i;
register int privileged = 0;
+ int len;
/* copy the arguments into a local argv that we can modify */
if (argc >= QMAXARGS)
return(SMS_ARGS);
for (i = 0; i < argc; i++) {
- if (strlen(argv_ro[i]) < ARGLEN)
+ if ((len = strlen(argv_ro[i])) < ARGLEN)
strcpy(Argv[i], argv_ro[i]);
else
return(SMS_ARG_TOO_LONG);
+ if (Argv[i][len-1] == '\\')
+ return(SMS_BAD_CHAR);
}
/* check initial query access */