summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorTaniadz <tdziubenko@ukr.net>2017-09-13 11:23:23 +0300
committerTaniadz <tdziubenko@ukr.net>2017-09-13 11:23:23 +0300
commitc3f5d07fd0a763cbc8286265ab03ebe30fd56ee9 (patch)
treefa93c8b3778824ea9df827acbe113eafc46eeef1
parentdd67f0333363d3afb0f8d42aaed94f52712dd759 (diff)
downloadvyconf-c3f5d07fd0a763cbc8286265ab03ebe30fd56ee9.tar.gz
vyconf-c3f5d07fd0a763cbc8286265ab03ebe30fd56ee9.zip
Prevent command injection in VyConf external validator execution
Diffstat
-rw-r--r--src/value_checker.ml15
1 files changed, 10 insertions, 5 deletions
diff --git a/src/value_checker.ml b/src/value_checker.ml
index e7bec15..3cd7123 100644
--- a/src/value_checker.ml
+++ b/src/value_checker.ml
@@ -17,11 +17,16 @@ let validate_value dir value_constraint value =
*)
let validator = F.concat dir v in
let arg = BatOption.default "" c in
- let result = Unix.system (Printf.sprintf "%s %s %s" validator arg value) in
- match result with
- | Unix.WEXITED 0 -> true
- | Unix.WEXITED 127 -> raise (Bad_validator (Printf.sprintf "Could not execute validator %s" validator))
- | _ -> false
+ let danger = "[\",\\$,`]" in
+ let allowable = "'.*'" in
+ match Pcre.pmatch ~rex:(Pcre.regexp danger) validator with
+ |true -> false
+ |false ->
+ (match Pcre.pmatch ~rex:(Pcre.regexp danger) arg with
+ |false -> true
+ |true -> (try let _ = Pcre.exec ~pat:allowable arg in true
+ with Not_found -> false)
+ )
(* If no constraints given, consider it valid.
Otherwise consider it valid if it satisfies at least
generated by cgit v1.2.3 (git 2.39.1) at 2025-04-25 16:57:15 +0000