svn commit: r335409 - stable/11/usr.sbin/sysrc
Devin Teske
dteske at FreeBSD.org
Wed Jun 20 06:24:04 UTC 2018
Author: dteske
Date: Wed Jun 20 06:24:03 2018
New Revision: 335409
URL: https://svnweb.freebsd.org/changeset/base/335409
Log:
MFC r334303: sysrc(8): Test variable names for invalid characters
PR: bin/187461
Reported by: ebay at looksharp.net
Sponsored by: Smule, Inc.
Modified:
stable/11/usr.sbin/sysrc/sysrc
Directory Properties:
stable/11/ (props changed)
Modified: stable/11/usr.sbin/sysrc/sysrc
==============================================================================
--- stable/11/usr.sbin/sysrc/sysrc Wed Jun 20 06:11:51 2018 (r335408)
+++ stable/11/usr.sbin/sysrc/sysrc Wed Jun 20 06:24:03 2018 (r335409)
@@ -370,6 +370,18 @@ if [ "$LIST_SERVICE_CONFS" ]; then
fi
#
+# Validate arguments
+#
+for name in "$@"; do
+ # NB: shell expansion syntax removed first
+ name="${name%%:[+=-]*}"
+ name="${name%%[%#+=-]*}"
+ [ "$name" = "${name#*[!$VALID_VARNAME_CHARS]}" ] || die \
+ "%s: %s: name contains characters not allowed in shell" \
+ "$pgm" "$name"
+done
+
+#
# Process `-s name' argument
#
if [ "$SERVICE" -a ! "${RC_CONFS+set}" ]; then
More information about the svn-src-stable
mailing list