Verify validity of session name when received from outside

Only ASCII letters and digits are allowed.
author: Zbigniew Jędrzejewski-Szmek <zbyszek@in.waw.pl> 2013-09-15 22:26:56 -0400
committer: Zbigniew Jędrzejewski-Szmek <zbyszek@in.waw.pl> 2013-09-16 09:58:37 -0500
commit: 4b549144d82ea0f368321d149215f577049fffa6 (patch)
tree: ee916708f2758a03690c6c0770cc238aa8757e91 /src/login/login-shared.c
parent: 1244d8d640a2644aa8dc8e588cd9c414b3d39163 (diff)
1 files changed, 8 insertions, 0 deletions
diff --git a/src/login/login-shared.c b/src/login/login-shared.c
new file mode 100644
index 0000000000..ff13c28861
--- /dev/null
+++ b/src/login/login-shared.c
@@ -0,0 +1,8 @@
+#include "login-shared.h"
+#include "def.h"
+
+bool session_id_valid(const char *id) {
+        assert(id);
+
+        return id + strspn(id, LETTERS DIGITS) == '\0';
+}
author	Zbigniew Jędrzejewski-Szmek <zbyszek@in.waw.pl>	2013-09-15 22:26:56 -0400
committer	Zbigniew Jędrzejewski-Szmek <zbyszek@in.waw.pl>	2013-09-16 09:58:37 -0500
commit	4b549144d82ea0f368321d149215f577049fffa6 (patch)
tree	ee916708f2758a03690c6c0770cc238aa8757e91 /src/login/login-shared.c
parent	1244d8d640a2644aa8dc8e588cd9c414b3d39163 (diff)