Do not allow here-documents for unauthenticated CLI sessions to prevent

them from becoming an out of memory DoS. git-svn-id: http://www.varnish-cache.org/svn/trunk/varnish-cache@5589 d4fa192b-c00b-0410-8231-f00ffab90ce4

Do not allow here-documents for unauthenticated CLI sessions to prevent
them from becoming an out of memory DoS. git-svn-id: http://www.varnish-cache.org/svn/trunk/varnish-cache@5589 d4fa192b-c00b-0410-8231-f00ffab90ce4
9cdba18a · Poul-Henning Kamp · 3bc404ec · 9cdba18a
Commit 9cdba18a authored Nov 26, 2010 by Poul-Henning Kamp
Hide whitespace changes
Inline Side-by-side

Showing with 1 addition and 1 deletion

cli_serve.c lib/libvarnish/cli_serve.c +1 -1

No files found.
--- a/lib/libvarnish/cli_serve.c
+++ b/lib/libvarnish/cli_serve.c
@@ -338,7 +338,7 @@ cls_vlu(void *priv, const char *p)
 		}
 		for (i = 1; av[i] != NULL; i++)
 			continue;
-		if (i < 3 || strcmp(av[i - 2], "<<")) {
+		if (i < 3 || cli->auth == 0 || strcmp(av[i - 2], "<<")) {
 			i = cls_vlu2(priv, av);
 			FreeArgv(av);	
 			free(cli->cmd);