MINOR: cli: set tainted when using CLI expert/experimental mode Mark the process as tainted as soon as a command command only accessible in expert or experimental mode is executed.

commit: f492992065d0aead958df7613541acb709a0c52c [log] [tgz]
author: Amaury Denoyelle <adenoyelle@haproxy.com> Wed May 05 16:29:23 2021 +0200
committer: Amaury Denoyelle <adenoyelle@haproxy.com> Fri May 07 14:35:02 2021 +0200
tree: e7349ac18a59283101f9dd825a0a5b9eb7b09d31
parent: 03517735346bc3e46e9fea855dd48c6576996f63 [diff]
diff --git a/include/haproxy/global.h b/include/haproxy/global.h
index c69955c..2ff7b5d 100644
--- a/include/haproxy/global.h
+++ b/include/haproxy/global.h

@@ -100,6 +100,8 @@
 enum tainted_flags {
 	TAINTED_CONFIG_EXP_KW_DECLARED = 0x1,
 	TAINTED_ACTION_EXP_EXECUTED    = 0x2,
+	TAINTED_CLI_EXPERT_MODE        = 0x4,
+	TAINTED_CLI_EXPERIMENTAL_MODE  = 0x8,
 };
 void mark_tainted(const enum tainted_flags flag);
 unsigned int get_tainted();

diff --git a/src/cli.c b/src/cli.c
index 4d9624b..c5009a3 100644
--- a/src/cli.c
+++ b/src/cli.c

@@ -739,6 +739,11 @@
 		return 0;
 	}
 
+	if (kw->level == ACCESS_EXPERT)
+		mark_tainted(TAINTED_CLI_EXPERT_MODE);
+	else if (kw->level == ACCESS_EXPERIMENTAL)
+		mark_tainted(TAINTED_CLI_EXPERIMENTAL_MODE);
+
 	appctx->io_handler = kw->io_handler;
 	appctx->io_release = kw->io_release;
commit	f492992065d0aead958df7613541acb709a0c52c	[log] [tgz]
author	Amaury Denoyelle <adenoyelle@haproxy.com>	Wed May 05 16:29:23 2021 +0200
committer	Amaury Denoyelle <adenoyelle@haproxy.com>	Fri May 07 14:35:02 2021 +0200
tree	e7349ac18a59283101f9dd825a0a5b9eb7b09d31
parent	03517735346bc3e46e9fea855dd48c6576996f63 [diff]