Fix bug #68463 listen.allowed_clients can silently result in no allowed access

Add a "There are no allowed addresses for this pool"
2024-09-22 18:37:25 +00:00 · 2014-11-20 15:14:34 +01:00 · 2014-11-20 15:14:34 +01:00 · 5be75da202
commit 5be75da202
parent c4ca220467
1 changed files with 4 additions and 0 deletions
--- a/sapi/fpm/fpm/fastcgi.c
+++ b/sapi/fpm/fpm/fastcgi.c
@ -280,6 +280,10 @@ void fcgi_set_allowed_clients(char *ip)
 		}
 		allowed_clients[n].sa.sa_family = 0;
 		free(ip);
+		if (!n) {
+			zlog(ZLOG_ERROR, "There are no allowed addresses for this pool");
+			/* don't clear allowed_clients as it will create an "open for all" security issue */
+		}
 	}
 }