minetest-mods/mesecons
1
0
Fork 2
mirror of https://github.com/minetest-mods/mesecons.git synced 2024-11-16 07:10:32 +01:00
Code Issues Releases Wiki Activity

microcontroller: don't execute code supplied by the user in a non-sandboxed environment

Browse Source
This commit is contained in:
flux 2022-07-29 16:53:33 -07:00
parent c4f9336a26
commit 9d34a1601e
No known key found for this signature in database
GPG Key ID: 9333B27816848A15
1 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
mesecons_microcontroller/init.lua
View File

@ -332,7 +332,8 @@ yc.parse_get_eeprom_param = function(cond, starti)
local addr
while s ~= "" do
s = string.sub(cond, i, i)
if string.find("0123456789", s) == nil or s == "" then
local b = s:byte()
if s == "" or 48 > b or b > 57 then
addr = string.sub(cond, starti, i-1) -- i: last number i+1 after last number
return addr, i
end
@ -419,7 +420,8 @@ yc.command_sbi = function(params, eeprom, L, Lv)
if status == nil then return nil, nil end
if string.find("ABCD", params[1])~=nil and #params[1]==1 then --is a port
local b = params[1]:byte()
if #params[1]==1 and 65 <= b and b <= 68 then -- is a port
if status == "1" then
Lv = yc.set_portstate (params[1], true, Lv)
else