Restrict deep nesting of configfiles

There is no point in restricting the number of included config- files, but there is a point in restricting the nestinglevel of configfiles: to avoid recursive inclusions. This is easily achieved by decrementing the static nesting-variable upon exit from cgit_read_config(). Also fix some whitespace breakage. Signed-off-by: Lars Hjemli <hjemli@gmail.com>
2007-05-15 23:28:40 +02:00 · 2007-05-15 23:28:40 +02:00 · 47a81c77fd
commit 47a81c77fd
parent ad3b39d3b8
1 changed files with 6 additions and 4 deletions
--- a/parsing.c
+++ b/parsing.c
@ -70,13 +70,15 @@ int cgit_read_config(const char *filename, configfn fn)
 	const char *value;
 	FILE *f;

-	/* cancel the reading of yet another configfile after 16 invocations */
-	if (nesting++ > 16)
+	/* cancel deeply nested include-commands */
+	if (nesting > 8)
 		return -1;
 	if (!(f = fopen(filename, "r")))
 		return -1;
+	nesting++;
 	while((len = read_config_line(f, line, &value, sizeof(line))) > 0)
 		(*fn)(line, value);
+	nesting--;
 	fclose(f);
 	return 0;
 }