diff options
| author | Jonathan Gray <jsg@cvs.openbsd.org> | 2014-11-20 05:51:22 +0000 |
|---|---|---|
| committer | Jonathan Gray <jsg@cvs.openbsd.org> | 2014-11-20 05:51:22 +0000 |
| commit | 2eaa981b579a68f8adabaad74640807821ddd131 (patch) | |
| tree | b12cf2076861693c4d14b3a5130ee1ff2dca4fc8 /sbin/ipsecctl | |
| parent | 6a369f972afd1add899318b0d0d9d2b2877778e0 (diff) | |
Don't allow embedded nul characters in strings.
Fixes a pfctl crash with an anchor name containing
an embedded nul found with the afl fuzzer.
pfctl parse.y patch from and ok deraadt@
Diffstat (limited to 'sbin/ipsecctl')
| -rw-r--r-- | sbin/ipsecctl/parse.y | 5 |
1 files changed, 4 insertions, 1 deletions
diff --git a/sbin/ipsecctl/parse.y b/sbin/ipsecctl/parse.y index 0c5d12145fd..86d02492640 100644 --- a/sbin/ipsecctl/parse.y +++ b/sbin/ipsecctl/parse.y @@ -1,4 +1,4 @@ -/* $OpenBSD: parse.y,v 1.160 2014/11/04 05:56:39 doug Exp $ */ +/* $OpenBSD: parse.y,v 1.161 2014/11/20 05:51:20 jsg Exp $ */ /* * Copyright (c) 2002, 2003, 2004 Henning Brauer <henning@openbsd.org> @@ -1158,6 +1158,9 @@ top: } else if (c == quotec) { *p = '\0'; break; + } else if (c == '\0') { + yyerror("syntax error"); + return (findeol()); } if (p + 1 >= buf + sizeof(buf) - 1) { yyerror("string too long"); |