diff options
| author | Sebastian Benoit <benno@cvs.openbsd.org> | 2016-06-21 21:35:26 +0000 |
|---|---|---|
| committer | Sebastian Benoit <benno@cvs.openbsd.org> | 2016-06-21 21:35:26 +0000 |
| commit | f2ada2db1464df13335d236529c834c378ced993 (patch) | |
| tree | a15cd06b17ca32de9b75238620437773f018ecdf /sbin/pfctl/parse.y | |
| parent | 05fc6735d59f44db060a9d3a428944db3e862ebe (diff) | |
do not allow whitespace in macro names, i.e. "this is" = "a variable".
change this in all config parsers in our tree that support macros.
problem reported by sven falempin.
feedback from henning@, stsp@, deraadt@
ok florian@ mikeb@
Diffstat (limited to 'sbin/pfctl/parse.y')
| -rw-r--r-- | sbin/pfctl/parse.y | 10 |
1 files changed, 9 insertions, 1 deletions
diff --git a/sbin/pfctl/parse.y b/sbin/pfctl/parse.y index 776eb12abda..e03b0037d0c 100644 --- a/sbin/pfctl/parse.y +++ b/sbin/pfctl/parse.y @@ -1,4 +1,4 @@ -/* $OpenBSD: parse.y,v 1.651 2016/06/21 13:40:43 benno Exp $ */ +/* $OpenBSD: parse.y,v 1.652 2016/06/21 21:35:24 benno Exp $ */ /* * Copyright (c) 2001 Markus Friedl. All rights reserved. @@ -712,8 +712,16 @@ numberstring : NUMBER { ; varset : STRING '=' varstring { + char *s = $1; if (pf->opts & PF_OPT_VERBOSE) printf("%s = \"%s\"\n", $1, $3); + while (*s++) { + if (isspace((unsigned char)*s)) { + yyerror("macro name cannot contain " + "whitespace"); + YYERROR; + } + } if (symset($1, $3, 0) == -1) err(1, "cannot store variable %s", $1); free($1); |